defsec
defsec copied to clipboard
aquasecurity
Trivy's misconfiguration scanning engine
**Provider** **Severity** **Short Code** **Description** Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric filters and alarms. It is recommended...
As discussed with @liamg in the tfsec repo this PR is for issue #914
**Provider** GCP **Severity** LOW **Short Code** bucket-encryption-customer-key **Description** Ensure that GCP storage buckets are configured to use customer-managed encryption keys. **Link** https://cloud.google.com/storage/docs/encryption/customer-managed-keys
**Provider** aws **Severity** LOW **Short Code** ensure-default-sg-restricts-everything **Description** A VPC comes with a default security group whose initial settings deny all inbound traffic, allow all outbound traffic, and allow all...
Bumps [github.com/aws/aws-sdk-go-v2/service/dynamodb](https://github.com/aws/aws-sdk-go-v2) from 1.15.13 to 1.16.2. Commits 9f608f2 Release 2022-03-30 b20782d Regenerated Clients 3d6301f Update API model f9446dc EventStream Fixes (#1647) b03e3da internal/awstesting: Update SDK custom certificate testing utils (#1626)...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [github.com/aws/aws-sdk-go-v2/service/cloudwatch](https://github.com/aws/aws-sdk-go-v2) from 1.20.1 to 1.21.2. Commits 6d1d570 Release 2022-06-07 f8fae61 Regenerated Clients 42141da Update SDK's smithy-go dependency to v1.11.3 fc52306 Update endpoints model ef357c0 Update API model 78ae54b Update...
Bumps [github.com/aws/aws-sdk-go-v2/service/cloudfront](https://github.com/aws/aws-sdk-go-v2) from 1.18.8 to 1.20.1. Changelog Sourced from github.com/aws/aws-sdk-go-v2/service/cloudfront's changelog. Release (2022-08-30) General Highlights Dependency Update: Updated to the latest SDK module versions Module Highlights github.com/aws/aws-sdk-go-v2/service/greengrassv2: v1.17.0 Feature: Adds...
Bumps [github.com/aws/aws-sdk-go-v2/service/secretsmanager](https://github.com/aws/aws-sdk-go-v2) from 1.15.17 to 1.15.20. Commits f8a5aa2 Release 2022-08-30 8072564 Regenerated Clients 9f60590 Update endpoints model 8874a3e Update API model d1091d0 Release 2022-08-29 a1140b1 Regenerated Clients 8f3045a Update SDK's...
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.77 to 1.44.88. Release notes Sourced from github.com/aws/aws-sdk-go's releases. Release v1.44.88 (2022-08-30) Service Client Updates service/greengrassv2: Updates service API and documentation service/identitystore: Updates service documentation service/lookoutequipment: Updates...
These checks amount to the automatable components for satisfying AWS CIS 1.4 For each issue below, the following steps are required; - Abstraction Object - If there is no object...