[New Resource]: aws_inspector2_cis_scan_configuration

hashicorp / terraform-provider-aws

The AWS Provider enables Terraform to manage AWS resources.

Mozilla Public License 2.0

9.85k stars 9.2k forks source link

Description

AWS Inspector supports running CIS security scans on EC2 instances from the AWS Console. It is particularly useful with the Schedule option which triggers CIS scans periodically.

Requested Resource(s) and/or Data Source(s)

aws_inspector2_cis_scan_configuration

Potential Terraform Configuration

resource aws_inspector2_cis_scan_configuration monthly_cis {
  scan_name = "monthly-cis-scan"
  schedule = {
    monthly {
      day = "SAT"
      start_time = "12:45"
    }
  }
  security_level = "LEVEL_1"
  targets = {
    account_ids = "1234567980
    target_resource_tags = {
      "environment": ["dev", "prod"]
    }
  }
  tags = {
    "owner" = "terraform"
  }
}

References

https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/service/inspector2#Client.CreateCisScanConfiguration

Would you like to implement a fix?

Community Note

Voting for Prioritization

Please vote on this issue by adding a 👍 reaction to the original post to help the community and maintainers prioritize this request.

Please see our prioritization guide for information on how we prioritize.

Please do not leave "+1" or other comments that do not add relevant new information or questions, they generate extra noise for issue followers and do not help prioritize the request.

Volunteering to Work on This Issue

If you are interested in working on this issue, please leave a comment.

If this would be your first contribution, please review the contribution guide.

hashicorp / terraform-provider-aws