aws-guard-rules-registry
aws-guard-rules-registry copied to clipboard
aws-cloudformation
Rules Registry for Compliance Frameworks
Add [elasticache_redis_cluster_automatic_backup_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/elasticache/elasticache_redis_cluster_automatic_backup_check.guard) cfn-guard rule for AWS Config managed rule [elasticache-redis-cluster-automatic-backup-check](https://docs.aws.amazon.com/config/latest/developerguide/elasticache-redis-cluster-automatic-backup-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [alb_waf_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/elastic_load_balancing_v2/alb_waf_enabled.guard) cfn-guard rule for AWS Config managed rule [alb-waf-enabled](https://docs.aws.amazon.com/config/latest/developerguide/alb-waf-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [elb_predefined_security_policy_ssl_check](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/elastic_load_balancing/elb_predefined_security_policy_ssl_check.guard) cfn-guard rule for AWS Config managed rule [elb-predefined-security-policy-ssl-check](https://docs.aws.amazon.com/config/latest/developerguide/elb-predefined-security-policy-ssl-check.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [elastic_beanstalk_managed_updates_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/elastic_beanstalk/elastic_beanstalk_managed_updates_enabled.guard) cfn-guard rule for AWS Config managed rule [elastic-beanstalk-managed-updates-enabled](https://docs.aws.amazon.com/config/latest/developerguide/elastic-beanstalk-managed-updates-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [beanstalk_enhanced_health_reporting_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/elastic_beanstalk/beanstalk_enhanced_health_reporting_enabled.guard) cfn-guard rule for AWS Config managed rule [beanstalk-enhanced-health-reporting-enabled](https://docs.aws.amazon.com/config/latest/developerguide/beanstalk-enhanced-health-reporting-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [dynamodb_table_encrypted_kms](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/dynamodb/dynamodb_table_encrypted_kms.guard) cfn-guard rule for AWS Config managed rule [dynamodb-table-encrypted-kms](https://docs.aws.amazon.com/config/latest/developerguide/dynamodb-table-encrypted-kms.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Add [dynamodb_autoscaling_enabled](https://github.com/aws-cloudformation/aws-cloudformation-guard-rules-registry/blob/main/rules/aws/dynamodb/dynamodb_autoscaling_enabled.guard) cfn-guard rule for AWS Config managed rule [dynamodb-autoscaling-enabled](https://docs.aws.amazon.com/config/latest/developerguide/dynamodb-autoscaling-enabled.html). 1. Determine if AWS Config rule can be represented as an AWS cfn-guard rule 2. Develop cfn-guard rule in file...
Best practice for cfn-guard rules for CDK synthesized resources that are wrapped in a CustomResource
### General Issue CDK Constructs (e.g. `aws-cdk-lib.aws_eks.Cluster`) do not always synthesize the resource type (e.g. `AWS::EKS::Cluster`) that registered rules expect. ### The Question What is the best practice for standard...
### What is the problem? The suppression rule for `DYNAMODB_PITR_ENABLED` is not working as expected. ### Reproduction Steps `template.yaml` ```yaml Resources: Table: DeletionPolicy: Delete UpdateReplacePolicy: Delete Type: AWS::DynamoDB::Table Metadata: guard:...
### What is the problem? I have been trying to re-build the rule-sets and have found that there seem to be many guard rules referenced in the rule-set files which...
Metadata
Owner
Metadata
Rules Registry for Compliance Frameworks