This fixes https://lacework.atlassian.net/browse/RAIN-75027. This changes our terraform to follow best practices and further scope down the permission KmsGrant to only allow use on AWS resources.
How did you test this change?
I made this change in a local version of our Terraform provider and created a new agentless integration with it, confirming that scans still run and succeed as expected.
Summary
This fixes https://lacework.atlassian.net/browse/RAIN-75027. This changes our terraform to follow best practices and further scope down the permission KmsGrant to only allow use on AWS resources.
Issue https://lacework.atlassian.net/browse/RAIN-75027
How did you test this change?
How did you test this change? I made this change in a local version of our Terraform provider and created a new agentless integration with it, confirming that scans still run and succeed as expected.
Issue
https://lacework.atlassian.net/browse/RAIN-75027