If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)
Issue details
Problem:
I want to exclude one or two policies when using out-of-the-box compliance packages, e.g., the aws s3 pcidds policies. To my knowledge, the only way of achieving this is to do a selectPoliciesByName with the long list of included policies, and hope I didn't miss any. Example, to exclude aws-s3-bucket-enable-replication-configuration, I have to the following:
Hello!
Issue details
Problem:
I want to exclude one or two policies when using out-of-the-box compliance packages, e.g., the aws s3 pcidds policies. To my knowledge, the only way of achieving this is to do a
selectPoliciesByName
with the long list of included policies, and hope I didn't miss any. Example, to excludeaws-s3-bucket-enable-replication-configuration
, I have to the following:Potential solution:
Similar to how we have a
selectPolicies
, we could have anexcludePolicies
equivalent.Affected area/feature