Scalr API Token

Bridgecrew Policy ID: BC_GIT_76
Chekov Check ID: CKV_SECRET_76
Severity: LOW

Scalr API Token

Description

Scalr is a remote operations backend for Terraform. It executes Terraform operations and stores state, regardless of the workflow, in Scalr itself allowing for easy collaboration across your organization. That means you can easily onboard an existing GitOps or native Terraform CLI based workflows into Scalr with little to no modification to your actual code.

Fix - Buildtime

Scalr

Step 1: Revoke the token

  1. Go to Scalr, click on Account
  2. Click on API Tokens
  3. Find the token to revoke and click on the trash icon

Step 2: Monitor for abuse