Existing aws config rules that can be added to cfn-nag

To get better coverage of encryption and make sure no public instances is created by mistake.

Encryption

https://asecure.cloud/a/cfgrule_eks-secrets-encrypted/ (Done)
https://asecure.cloud/a/cfgrule_dax-encryption-enabled/ (Done)
https://asecure.cloud/a/cfgrule_cloudwatch-log-group-encrypted/ (Done)
https://asecure.cloud/a/cfgrule_api-gw-cache-enabled-and-encrypted/ (adjusted to only check for encryption https://github.com/stelligent/cfn_nag/pull/519)(Done)
https://asecure.cloud/a/cfgrule_elasticsearch-node-to-node-encryption-check/ (Done)


Public

https://asecure.cloud/a/cfgrule_elasticsearch-in-vpc-only/ (https://github.com/stelligent/cfn_nag/pull/528)
https://asecure.cloud/a/cfgrule_emr-master-no-public-ip/ (hard to do)
https://asecure.cloud/a/cfgrule_dms-replication-not-public/ (https://github.com/stelligent/cfn_nag/pull/529)
https://asecure.cloud/a/cfgrule_eks-endpoint-no-public-access/ (hard to do)
https://asecure.cloud/a/cfgrule_lambda-inside-vpc/ (https://github.com/stelligent/cfn_nag/pull/527)

Limits

https://asecure.cloud/a/cfgrule_lambda-concurrency-check/ (https://github.com/stelligent/cfn_nag/pull/530)

Audit retention

https://asecure.cloud/a/cfgrule_cw-loggroup-retention-period-check/  (Done)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Existing aws config rules that can be added to cfn-nag #503

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Existing aws config rules that can be added to cfn-nag #503

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions