Finish Compute rules for AWSGuard - Githubissues

pulumi / pulumi-policy-aws

A policy pack of rules to enforce AWS best practices for security, reliability, cost, and more!

https://www.pulumi.com

Apache License 2.0

35 stars 7 forks source link

Finish Compute rules for AWSGuard #10

Open ekrengel opened 5 years ago

ekrengel commented 5 years ago

Tracking Spreadsheet

[ ] #88
[ ] approved-amis-by-tag
[ ] #90
[ ] #94
[ ] desired-instance-type
[ ] ebs-optimized-instance
[ ] ec2-instance-detailed-monitoring-enabled
[ ] ec2-instance-managed-by-systems-manager
[ ] ec2-instance-no-public-ip
[ ] ec2-instances-in-vpc
[ ] ec2-managedinstance-applications-blacklisted
[ ] ec2-managedinstance-applications-required
[ ] ec2-managedinstance-association-compliance-status-check
[ ] ec2-managedinstance-inventory-blacklisted
[ ] ec2-managedinstance-patch-compliance-status-check
[ ] ec2-managedinstance-platform-check
[ ] ec2-security-group-attached-to-eni
[ ] ec2-volume-inuse-check
[ ] eip-attached
[ ] elb-acm-certificate-required
[ ] elb-custom-security-policy-ssl-check
[ ] elb-logging-enabled
[ ] elb-predefined-security-policy-ssl-check
[ ] encrypted-volumes
[ ] lambda-concurrency-check
[ ] lambda-dlq-check
[ ] lambda-function-settings-check
[ ] lambda-function-public-access-prohibited
[ ] lambda-inside-vpc
[ ] restricted-common-ports
[ ] restricted-ssh

Definition of Done:

Written in new API format
Configurable in an exported function - example
Unit tests
Integrations tests