Description : S3 bucket Access is allowed to all AWS Account Users.
File : infra/modules/s3/main.tf
Line : 19
Severity : HIGH
-----------------------------------------------------------------------
Description : S3 bucket Access is allowed to all AWS Account Users.
File : ../../../tmp/rgt0ve/main.tf
Line : 1
Severity : HIGH
-----------------------------------------------------------------------
Description : Lambda tracing is not enabled.
File : ../../../tmp/g5lsxs/modules/lambda/main.tf
Line : 24
Severity : LOW
-----------------------------------------------------------------------
Description : Enabling S3 versioning will enable easy recovery from both unintended user actions, like deletes and overwrites
File : infra/modules/s3/main.tf
Line : 19
Severity : HIGH
-----------------------------------------------------------------------
Description : Lambda does not use KMS CMK key to protect environment variables.
File : ../../../tmp/g5lsxs/modules/lambda/main.tf
Line : 24
Severity : High
-----------------------------------------------------------------------
Description : Ensure VPC flow logging is enabled in all VPCs
File : infra/modules/vpc/main.tf
Line : 2
Severity : MEDIUM
-----------------------------------------------------------------------
Description : AWS CloudWatch log group is not encrypted with a KMS CMK
File : infra/modules/glue/main.tf
Line : 18
Severity : HIGH
-----------------------------------------------------------------------
Description : AWS CloudWatch log group is not encrypted with a KMS CMK
File : ../../../tmp/g5lsxs/modules/lambda/cloudwatch.tf
Line : 1
Severity : HIGH
-----------------------------------------------------------------------
Description : Ensure rotation for customer created CMKs is enabled
File : ../../../tmp/g5lsxs/modules/dynamodb/main.tf
Line : 22
Severity : MEDIUM
-----------------------------------------------------------------------
Description : Lambda function doesn't not include a VPC configuration.
File : ../../../tmp/g5lsxs/modules/lambda/main.tf
Line : 24
Severity : Low
-----------------------------------------------------------------------
Description : Ensure that S3 Buckets have server side encryption at rest enabled with KMS key to protect sensitive data.
File : infra/modules/s3/main.tf
Line : 5
Severity : HIGH
-----------------------------------------------------------------------
Description : Ensure that S3 Buckets have server side encryption at rest enabled with KMS key to protect sensitive data.
File : infra/modules/s3/main.tf
Line : 19
Severity : HIGH
-----------------------------------------------------------------------
Description : Ensure that S3 Buckets have server side encryption at rest enabled with KMS key to protect sensitive data.
File : ../../../tmp/rgt0ve/main.tf
Line : 1
Severity : HIGH
-----------------------------------------------------------------------
Description : Ensure S3 object is Encrypted
File : ../../../tmp/rgt0ve/main.tf
Line : 31
Severity : MEDIUM
-----------------------------------------------------------------------
Description : Ensure S3 object is Encrypted
File : ../../../tmp/rgt0ve/main.tf
Line : 11
Severity : MEDIUM
-----------------------------------------------------------------------
Scan Summary -
File/Folder : /home/r00t/HealthcareLake
IaC Type : all
Scanned At : 2021-05-06 15:36:19.490915396 +0000 UTC
Policies Validated : 584
Violated Policies : 15
Low : 2
Medium : 4
High : 9
Violation Details -
Scan Summary -