panther_analysis_tooltest to ensure your unit tests are passing, followed by
panther_analysis_tool uploadto upload new detections to your Panther instance. Setting environment variables
AWS_DEFAULT_REGION(obtained from support if an IAM user is created, yours if a Panther role was created) is necessary for these commands to execute successfully.
AWS_DEFAULT_REGIONare passed into the job to allow for correct authentication. These will be provided by support in the case they created an IAM user and can be stored encrypted as repository secrets. The process of adding repository secrets is covered more in-depth in the next section.
panther-analysis. The CircleCI documentation for environment variables can be found here. The environment variables that need to be created are are
$INTERNAL_ACCESS_KEY_ID(AWS Access Key),
$INTERNAL_SECRET_ACCESS_KEY(AWS Secret Access Key), and
$INTERNAL_DEFAULT_REGION(AWS Default Region). These are obtained from support if an IAM user is created, yours if a Panther role was created.
.circleci/aws_configwithin your forked version of
panther-analysis. In the below example, you will need to update the
role_arnwhich will be provided to you by Panther and
regionwhere your Panther instance has been deployed.