Open charles545587 opened 5 years ago
I have made a work around by commenting out the check in the code.
It would be great if this feature could be implemented. Not having it makes automating this deployment impossible if the enabled_standards switch is used.
It looks like a solution for this has already been opened here: https://github.com/awslabs/aws-securityhub-multiaccount-scripts/pull/22
I am trying to run this via a CodePipeline Project, at the moment the task will fail as the code requires user input to accept the deployment of the CIS Benchmarks.
Could an additional positional argument be added to accept this allowing it to run without user input? for example
$python enablesecurityhub.py -y ${enablecsv} --master_account ${AdministratorAccountId} --assume_role ${CodeBuildManageSecurityHubRole} --enable_standards arn:aws:securityhub:::ruleset/cis-aws-foundations-benchmark/v/1.2.0
I will attempt to do this myself, but someone else might be able to perform a quicker fix.