Skip to content

feat: add credential_process allowlist for profile registry#933

Draft
sbldevnet wants to merge 2 commits intomainfrom
feat/credential-process-allowlist
Draft

feat: add credential_process allowlist for profile registry#933
sbldevnet wants to merge 2 commits intomainfrom
feat/credential-process-allowlist

Conversation

@sbldevnet
Copy link
Copy Markdown
Collaborator

@sbldevnet sbldevnet commented Mar 29, 2026
edited
Loading

Problem

The profile registry feature allows registry administrators to set arbitrary credential_process values in synced profiles. An attacker with write access to a registry repository could inject a malicious command that executes whenever the AWS CLI resolves credentials for that profile.

Solution

Add an AllowedCredentialProcesses option to the [ProfileRegistry] config in ~/.granted/config. During registry sync, any profile whose credential_process value does not match an entry in the allowlist is skipped with a warning and never written to ~/.aws/config.

When no allowlist is configured, only granted credential-process is permitted. Organizations with custom credential helpers can explicitly allow them:

[ProfileRegistry]
AllowedCredentialProcesses = [
  "granted credential-process",
  "/usr/local/bin/company-cred-helper",
]

Example

registry add:

❯ dgranted registry add -name debug -u git@github.com:sbldevnet/granted-registry.git -f debug.yml
[i] Cloning into '/Users/sbldevnet/.dgranted/registries/debug'...
[!] skipping registry profile "debug1": credential_process not in allowlist ("/bin/sh -c 'unauthorized-command'")

registry sync:

❯ dgranted registry sync
[i] From github.com:sbldevnet/granted-registry
[i]  * branch            HEAD       -> FETCH_HEAD
[!] skipping registry profile "debug1": credential_process not in allowlist ("/bin/sh -c 'unauthorized-command'")

@sbldevnet
feat: add AllowedCredentialProcesses allowlist to mitigate credential…
2710b8f 
…_process injection via profile registry

Registry admins could set arbitrary credential_process values in
profiles, allowing command injection when AWS CLI resolves credentials.

Add an AllowedCredentialProcesses config option under [ProfileRegistry]
in ~/.granted/config that restricts which credential_process command
prefixes are accepted from registry-sourced profiles. Profiles with
disallowed values are skipped with a warning at sync time.

When no allowlist is configured, only "granted credential-process" is
permitted by default (secure by default). Orgs with custom credential
helpers can explicitly allow them in their config.
@sbldevnet
feat: improve credential_process allowlist warning message
35cdaf3
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@sbldevnet