Closed danibarranqueroo closed 2 months ago
Attention: Patch coverage is 92.59259%
with 2 lines
in your changes missing coverage. Please review.
Project coverage is 89.04%. Comparing base (
0c7b960
) to head (2568f4f
). Report is 2 commits behind head on master.
Files | Patch % | Lines |
---|---|---|
...enabled/rds_instance_iam_authentication_enabled.py | 83.33% | 2 Missing :warning: |
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Context
We have decided to modify the checks for RDS instances that inherit settings from their clusters. For example, if
iam authentication
is enabled at the cluster level but not at the instance level, the cluster setting will prevail, and the instance will have this setting on. Previously, these checks only scanned unclustered instances because the cluster checks covered any clustered instances. However, it's not ideal to have no findings when scanning instances, even if the cluster check covers them. The new approach is to adjust these checks so that they provide findings indicating whether a pass or fail result comes from an unclustered instance or is inherited from the cluster level.Description
Modified checks
rds_instance_iam_authentication_enabled
andrds_instance_default_admin
with their unit tests.License
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.