https://community.dynatrace.com/t5/Automations/Dynatrace-Workflows-and-malicious-activity/m-p/210306#M143 <P><SPAN class="TextRun SCXW151167609 BCX0" data-contrast="none"><SPAN class="NormalTextRun SCXW151167609 BCX0">Executing scripts and actions in my environment introduces new security risks compared to the </SPAN><SPAN class="NormalTextRun SCXW151167609 BCX0">previous</SPAN><SPAN class="NormalTextRun SCXW151167609 BCX0"> observability and security data gathering. <BR /><BR />What are you doing to ensure no malicious activity is coming from Dynatrace Workflows?&nbsp;</SPAN></SPAN><SPAN class="EOP SCXW151167609 BCX0" data-ccp-props="{}">&nbsp;</SPAN></P> Thu, 20 Jul 2023 11:16:38 GMT AgataWlodarczyk 2023-07-20T11:16:38Z https://community.dynatrace.com/t5/Automations/Dynatrace-Workflows-and-malicious-activity/m-p/210306#M143 <P><SPAN class="TextRun SCXW151167609 BCX0" data-contrast="none"><SPAN class="NormalTextRun SCXW151167609 BCX0">Executing scripts and actions in my environment introduces new security risks compared to the </SPAN><SPAN class="NormalTextRun SCXW151167609 BCX0">previous</SPAN><SPAN class="NormalTextRun SCXW151167609 BCX0"> observability and security data gathering. <BR /><BR />What are you doing to ensure no malicious activity is coming from Dynatrace Workflows?&nbsp;</SPAN></SPAN><SPAN class="EOP SCXW151167609 BCX0" data-ccp-props="{}">&nbsp;</SPAN></P> Thu, 20 Jul 2023 11:16:38 GMT https://community.dynatrace.com/t5/Automations/Dynatrace-Workflows-and-malicious-activity/m-p/210306#M143 AgataWlodarczyk 2023-07-20T11:16:38Z https://community.dynatrace.com/t5/Automations/Dynatrace-Workflows-and-malicious-activity/m-p/210307#M144 <P><SPAN class="TextRun SCXW52267187 BCX0" data-contrast="none"><SPAN class="NormalTextRun SCXW52267187 BCX0">Actions are exclusively run inside the Dynatrace platform and not directly inside a customer's environment. Furthermore, all actions are added via apps which both need to be installed by the customer first to make the actions available and are either directly developed by Dynatrace, partners, or the customer themselves. </SPAN></SPAN><SPAN class="LineBreakBlob BlobObject DragDrop SCXW52267187 BCX0"><SPAN class="SCXW52267187 BCX0">&nbsp;<BR /></SPAN><BR class="SCXW52267187 BCX0" /></SPAN><SPAN class="TextRun SCXW52267187 BCX0" data-contrast="none"><SPAN class="NormalTextRun SCXW52267187 BCX0">Any action or customer (ad-hoc) script is run with a user context and is limited to data the user can access. Any action or script (aka function) can only communicate with the outside via HTTP calls. </SPAN><SPAN class="NormalTextRun SCXW52267187 BCX0">The platform supports an allow list, which blocks any and all calls to unauthorized domains.</SPAN> <SPAN class="NormalTextRun AdvancedProofingIssueV2Themed SCXW52267187 BCX0">In order to</SPAN><SPAN class="NormalTextRun SCXW52267187 BCX0"> give access to on-premise systems (</SPAN><SPAN class="NormalTextRun ContextualSpellingAndGrammarErrorV2Themed SCXW52267187 BCX0">e.g.</SPAN><SPAN class="NormalTextRun SCXW52267187 BCX0"> Jira), Dynatrace </SPAN></SPAN><SPAN class="TextRun Highlight SCXW52267187 BCX0" data-contrast="none"><SPAN class="NormalTextRun SpellingErrorV2Themed SCXW52267187 BCX0">EdgeConnect</SPAN></SPAN><SPAN class="TextRun SCXW52267187 BCX0" data-contrast="none"><SPAN class="NormalTextRun SCXW52267187 BCX0"> can be deployed </SPAN><SPAN class="NormalTextRun AdvancedProofingIssueV2Themed SCXW52267187 BCX0">in order to</SPAN><SPAN class="NormalTextRun SCXW52267187 BCX0"> work as an HTTP proxy with similar whitelisting and mapping rules for domains, both centrally in the platform and can be further limited on the local Dynatrace </SPAN><SPAN class="NormalTextRun SpellingErrorV2Themed SCXW52267187 BCX0">EdgeConnect</SPAN><SPAN class="NormalTextRun SCXW52267187 BCX0"> config.</SPAN></SPAN></P> Thu, 20 Apr 2023 10:58:41 GMT https://community.dynatrace.com/t5/Automations/Dynatrace-Workflows-and-malicious-activity/m-p/210307#M144 michaelwinkler 2023-04-20T10:58:41Z