search

awslabs / aws-config-rules

[Node, Python, Java] Repository of sample Custom Rules for AWS Config.
http://aws.amazon.com/config/
Creative Commons Zero v1.0 Universal
1.58k stars 851 forks source link

Added custom rule to remove public CIDR block from Security Group #329

Open soroushatarod opened 4 years ago

soroushatarod commented 4 years ago

I confirm these files are made available under CC0 1.0 Universal (https://creativecommons.org/publicdomain/zero/1.0/legalcode)

Issue #, if available:

Description of changes: There are environments such as the production which we do not want to have a security group with public CIDR block except certain Security Groups only. This rule will remove the public accessible CIDR block from the security group.

good-bot commented 4 years ago

***** Module ec2_security_group_remove_public_cidr ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name) ec2_security_group_remove_public_cidr.py:1:0: C0103: Module name "ec2_security_group_remove_public_cidr" doesn't conform to '(?=.{2,128}$)([A-Z][A-Z_0-9]+A-Z0-9?)$' pattern (invalid-name)

soroushatarod commented 4 years ago

@jongogogo could you please review? Not quite sure how to get the module name correct. I have added it to the pylintrc ignore

fuellbie commented 3 years ago

Hi, according to the regex, the Module name must consist of capital letters. Try EC2_SECURITY_GROUP_REMOVE_PUBLIC_CIDR!