Closed phelewski closed 4 years ago
Partial for #123
This covers the CloudTrail, CodePipeline, & RDS rules for Terraform11.
CLOUDTRAIL_ENCRYPTION
CODEPIPELINE_ENCRYPTION
codepipeline
DB_INSTANCE_ENCRYPTION
storage_encrypted
True
replicate_source_db
REPLICA_DB_INSTANCE_ENCRYPTION
kms_key_id
RDS_CLUSTER_ENCYPTION
RDS_PUBLIC_AVAILABILITY
testtf
Partial for #123
This covers the CloudTrail, CodePipeline, & RDS rules for Terraform11.
CLOUDTRAIL_ENCRYPTION
CODEPIPELINE_ENCRYPTION
codepipeline
tag to CodePipeline ruleDB_INSTANCE_ENCRYPTION
rule into 2 rulesDB_INSTANCE_ENCRYPTION
now checks to ensure thatstorage_encrypted
is set toTrue
IFreplicate_source_db
is not presentREPLICA_DB_INSTANCE_ENCRYPTION
(new rule) checks to ensure thatkms_key_id
is provided ifreplicate_source_db
is usedRDS_CLUSTER_ENCYPTION
rule as encryption is enabled by default in some scenariosRDS_PUBLIC_AVAILABILITY
totesttf
function call