library
turbot/aws_thrifty

Correct one SecretsManager secret if unused

Overview

SecretsManager secrets have an inherent monthly cost, therefore secrets which are no longer accessed / used should be removed to prevent further charges.

This pipeline allows you to specify a single unused secret and then either sends a notification or attempts to perform a predefined corrective action.

Whilst it is possible to utilise this pipeline standalone, it is usually called from the correct_secretsmanager_secrets_if_unused pipeline.

Params

NameTypeRequiredDescriptionDefault
credstringYesName of the credential to be used for any authenticated actions.-
notification_levelstringYesThe verbosity level of notification messages to send. Valid options are 'verbose', 'info', 'error'.info
enabled_actionslist of stringYesThe list of enabled actions to provide to approvers for selection.
[
"skip",
"delete_secret"
]
titlestringYesTitle of the resource, to be used as a display name.-
namestringYesThe friendly name of the SecretsManager secret.-
regionstringYesAWS Region of the resource(s).-
notifierstringYesThe name of the notifier to use for sending notification messages.default
approverslist of stringYesList of notifiers to be used for obtaining action/approval decisions.
[]
default_actionstringYesThe default action to use for the detected item, used if no input is provided.notify

Outputs

This pipeline has no outputs.