cloudsploit The "EKS private endpoint" plugin can result in a False-Negative

The "EKS private endpoint" plugin can result in a False-Negative

Open celsogbezerra opened this issue 4 years ago • 0 comments

trafficstars

The EKS endpoint setting can have endpointPublicAccess as true, and endpointPrivateAccess as true too. So, just checking if endpointPrivateAccess is true can result in a false-negative.

The right way to check it is to find endpointPublicAccess as true. Or if endpointPrivateAccess is enabled AND endpointPublicAccess is disabled.

Jul 29 '21 15:07 celsogbezerra

cloudsploit cloudsploit copied to clipboard

The "EKS private endpoint" plugin can result in a False-Negative

cloudsploit
cloudsploit copied to clipboard