dontirun
commented
6 months ago Looks like a good set of rules to implement given community involvement.
Open jlosito opened 7 months ago
dontirun
commented
6 months ago Looks like a good set of rules to implement given community involvement.
Description
It would be nice if I could make sure all of my CDK is CIS compliant. Right now there's the ability to check for PCI DSS, NIST, and AWS recommended best practices, but not CIS which is a pretty common framework.
Use Case
I have a requirement to ensure all of the resources I provision are CIS compliance. There are other services like AWS Config that can check for this sort of thing with conformance packs, but it would be nice to check for compliance even before deploying to the account.
Proposed Solution
Implement a pack which includes the CIS related checks.
Other information
No response
Acknowledge