aws-guard-rules-registry

aws-guard-rules-registry copied to clipboard

Add [codebuild_project_source_repo_url_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/codebuild/codebuild_project_source_repo_url_check.guard) cfn-guard rule for AWS Config managed rule [codebuild-project-source-repo-url-check](https://docs.aws.amazon.com/config/latest/developerguide/codebuild-project-source-repo-url-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [sagemaker_endpoint_configuration_kms_key_configured](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/amazon_sagemaker/sagemaker_endpoint_configuration_kms_key_configured.guard) cfn-guard rule for AWS Config managed rule [sagemaker-endpoint-configuration-kms-key-configured](https://docs.aws.amazon.com/config/latest/developerguide/sagemaker-endpoint-configuration-kms-key-configured.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [emr_kerberos_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/amazon_emr/emr_kerberos_enabled.guard) cfn-guard rule for AWS Config managed rule [emr-kerberos-enabled](https://docs.aws.amazon.com/config/latest/developerguide/emr-kerberos-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [secretsmanager_secret_periodic_rotation](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/secrets_manager/secretsmanager_secret_periodic_rotation.guard) cfn-guard rule for AWS Config managed rule [secretsmanager-secret-periodic-rotation](https://docs.aws.amazon.com/config/latest/developerguide/secretsmanager-secret-periodic-rotation.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [secretsmanager_rotation_enabled_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/secrets_manager/secretsmanager_rotation_enabled_check.guard) cfn-guard rule for AWS Config managed rule [secretsmanager-rotation-enabled-check](https://docs.aws.amazon.com/config/latest/developerguide/secretsmanager-rotation-enabled-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

(rules): RDS Cluster Instances fail RDS Instance Rules

8

### General Issue RDS Instances that are part of a cluster will always fail **DB_INSTANCE_BACKUP_ENABLED**, **RDS_SNAPSHOT_ENCRYPTED**, and **RDS_STORAGE_ENCRYPTED** rules. ### The Question When there are RDS clusters, the cluster resource...

mattvanstone

Add [ecs_task_definition_user_for_host_mode_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/amazon_ecs/ecs_task_definition_user_for_host_mode_check.guard) cfn-guard rule for AWS Config managed rule [ecs-task-definition-user-for-host-mode-check](https://docs.aws.amazon.com/config/latest/developerguide/ecs-task-definition-user-for-host-mode-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [wafv2_logging_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/aws_waf_v2/wafv2_logging_enabled.guard) cfn-guard rule for AWS Config managed rule [wafv2-logging-enabled](https://docs.aws.amazon.com/config/latest/developerguide/wafv2-logging-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [s3_bucket_policy_grantee_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/amazon_s3/s3_bucket_policy_grantee_check.guard) cfn-guard rule for AWS Config managed rule [s3-bucket-policy-grantee-check](https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-policy-grantee-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston

Add [emr_master_no_public_ip](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/amazon_emr/emr_master_no_public_ip.guard) cfn-guard rule for AWS Config managed rule [emr-master-no-public-ip](https://docs.aws.amazon.com/config/latest/developerguide/emr-master-no-public-ip.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...

grolston