elbv2 Load balancer integrated with wafv2 Rule Check

turbot / steampipe-mod-aws-compliance

Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.

https://hub.steampipe.io/mods/turbot/aws_compliance

Apache License 2.0

373 stars 63 forks source link

elbv2 Load balancer integrated with wafv2 Rule Check #832

Closed shyam0904a closed 3 days ago

shyam0904a commented 1 month ago

Is your feature request related to a problem? Please describe. No

Describe the solution you'd like Currently checks are made to check if waf fail open is configured but there are cases where waf fail open is set to true but does not have a waf web acl associated with it.

Describe alternatives you've considered A new control that can check for elb/elbv2 for its association with wafv2

Additional context nil

khushboo9024 commented 2 weeks ago

@shyam0904a Apologies for the delay in responding. We have updated our query elb_application_lb_waf_enabled to correctly evaluate results when a WAF Web ACL is associated. Please let us know if you have any other concerns.

Thanks

misraved commented 3 days ago

Fix available in v1.1.1 mod version - https://github.com/turbot/steampipe-mod-aws-compliance/blob/main/CHANGELOG.md#v111-2024-10-30