Sprinto Dashboard

AWS CodeCommit Integration

The following guide helps you integrate AWS CodeCommit with Sprinto.

AWS CodeCommit, a fully managed source control service, can be seamlessly integrated with Sprinto, allowing for streamlined code collaboration and version control.

How does this integration help Sprinto

This integration ensures secure and efficient collaboration by establishing necessary access permissions and configurations for AWS CodeCommit repositories within Sprinto. Sprinto utilizes the IAM role to retrieve essential details, facilitate checks, and maintain compliance.

Sprinto checks for AWS CodeCommit

Below are the Sprinto checks available for AWS CodeCommit integration:

Sprinto check

Reference procedure

AWS CodeCommit access should be removed for offboarded user

How to fix

AWS CodeCommit user should have MFA enabled

How to fix

Branch Protection rules should be enforced for admins

How to fix

Peer review should be enforced for code changes

How to fix

Before you begin

  • Log in to Sprinto as an administrator.

  • Ensure you have IAM privileges to create roles and configure AWS CodeCommit.

Integrate Sprinto with AWS CodeCommit

Follow the below procedure to integrate AWS CodeCommit on Sprinto

  1. Create a new IAM AWS Role on AWS.

    • Log in to the AWS Console using your credentials.

    • Navigate to the AWS Roles service.

    • Click Create role to create a new role.

    • Select AWS account from the Select trust entities section.

    • Select Another AWS account option, and enter the Account ID as 001360870653.

    • Select the Require external ID option and enter the External ID as ImF3c2NjLTNmMzhiNzRhLTFiNTMtNDI0MS04YzE5LTFhZDhiMTc0OWUyOS0xIg==.

    • Do not select the Require MFA option.

    • Click Next to proceed further.

    • Select the following policies, then click Next.

      • AWSCodeCommitReadOnly

      • IAMReadOnlyAccess

    • Enter the role name as sprinto-codecommit-role and the role description. Optionally, you can add tags to the role.

    • Click Create role.

  2. Copy the newly created roles ARNs.

    • Select the newly created role. You can use the search bar for quick navigation.

    • Copy the ARN and save it securely. We will need this detail on Sprinto to build integration.

  3. Integrate AWS CodeCommit as a change management source.

    • On the Sprinto app, go to Security Hub > Change Mgmt, then click Add system.

    • Click Add next to AWS Code Commit. Note: You must see “Connected” highlighted next to AWS Code Commit if the integration was successful.

    • Follow the on-screen instructions to configure your account.

Final Step

Sprinto will take 15 to 20 minutes to sync data (Depending on the size of your repositories/issues). AWS Code Commit is now integrated with your Sprinto account. Once data is synced, Sprinto will activate Sprinto and check for any configuration that does not align with compliance requirements.

Contact Sprinto support if you have any queries regarding the integration or need any assistance.

PreviousAvoma IntegrationNextAWS GovCloud Integration

Last updated