search

mitre / aws-foundations-cis-baseline

InSpec profile to validate your VPC to the standards of the CIS Amazon Web Services Foundations Benchmark
Other
77 stars 30 forks source link

aws_iam_access_keys.where(active: true).entries to validate only active keys #100

Closed rx294 closed 3 years ago

rx294 commented 3 years ago

https://github.com/mitre/aws-foundations-cis-baseline/blob/fe2639dc4c1979b8d868b951b5aacc87bcb8b10d/controls/aws-foundations-cis-1.21.rb#L70-L75

The use of aws_iam_access_keys.entries should be updated to use aws_iam_access_keys.where(active: true).entries to validate only active keys