cloudformation-guard icon indicating copy to clipboard operation
cloudformation-guard copied to clipboard

Published 20 hours ago verified publisher icon aws-cloudformation

DSL - but aren't there any default CloudFormation rules (eg. Conformance Packs)

Open markl11 opened this issue 3 years ago • 1 comments

Hi,

I understand that cfn-guard is a DSL, but aren't there any default rules to validate compliance with? For example, example rules that check compliance with AWS Config Conformance Packs or Security Hub standards would be extremely useful as we shift-left....

If there are not default rules then I think most people will just ignore cfn-guard to be honest (the community will just continue to use Checkov, cfn-nag, etc, etc)

Thanks

markl11 avatar Feb 08 '22 09:02 markl11

I can only agree. Asked me the same question...

Poweranimal avatar Feb 09 '22 20:02 Poweranimal

Please check out the AWS Guard Rules Registry which was recently open sourced: https://github.com/aws-cloudformation/aws-guard-rules-registry

razcloud avatar Aug 15 '22 21:08 razcloud