Closed apmarshall closed 8 months ago
antonbabenko
commented
8 months ago Thank you for expressing interest. Closing for the same reasons as https://github.com/terraform-aws-modules/terraform-aws-kms/pull/29 .
PS: Shameless plug... https://compliance.tf is in development.
github-actions[bot]
commented
7 months ago I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.
Description
This PR introduces a new variable,
nist_mode, which, when set totrueoverrides other variables within the module to guarantee certain values for compliance purposes.In the context of this module, the changes made can be seen in the updates to the README, which documents both what requirements are being met and what variables are overridden to achieve this.
Motivation and Context
There are some environments, especially those in the government space, where adherence to NIST SP 800-53 standards is required. Rather than creating separate modules that enforce these requirements, this allows users in those environments to continue using these community supported modules by setting a single variable to ensure compliance requirements are met.
Breaking Changes
This should not introduce any breaking changes to uses who do not enable
nist_mode.The default fornist_modeis set to false, which means that the module should continue to perform exactly as it currently does for users who have not enablednist_mode.Enablingnist_modeoverrides certain variables, as documented in the README, which could result in breaking changes for module implementations that would have been out of compliance before settingnist_modetotrue.How Has This Been Tested?
examples/*to demonstrate and validate my change(s)examples/*projectspre-commit run -aon my pull request