ievans/secrets.py

## secrets.py
# Prompt: Find all instances of boto3.client usage where someone has hardcoded the "aws_secret_access_key".

import boto3 as b3
import os

# semgrep should fire here
client = b3.client(
    's3',
    aws_secret_access_key = "jWnyeKHgaSRZVd_THIS_IS_FAKE_EsvPLRKNZCYRXRL",
    aws_access_key_id = "AKIAIOSFO_THIS_IS_FAKE_DNN7652GQNB")

# ok
client = b3.client(
    's3',
    aws_secret_access_key = os.environ['foo'],
    aws_access_key_id = os.environ['bar'])
	# Prompt: Find all instances of boto3.client usage where someone has hardcoded the "aws_secret_access_key".

	import boto3 as b3
	import os

	# semgrep should fire here
	client = b3.client(
	's3',
	aws_secret_access_key = "jWnyeKHgaSRZVd_THIS_IS_FAKE_EsvPLRKNZCYRXRL",
	aws_access_key_id = "AKIAIOSFO_THIS_IS_FAKE_DNN7652GQNB")

	# ok
	client = b3.client(
	's3',
	aws_secret_access_key = os.environ['foo'],
	aws_access_key_id = os.environ['bar'])