cdk-nag icon indicating copy to clipboard operation
cdk-nag copied to clipboard

Published 20 hours ago verified publisher icon cdklabs

feat: nag pack that covers all of AWS FSBP

Open anentropic opened this issue 1 year ago • 1 comments

Description

Current "AWS Solutions" nag pack is incomplete compared to the full set of validations in FSBP https://docs.aws.amazon.com/securityhub/latest/userguide/fsbp-standard.html

Use Case

Our platform team are running some other tool to validate deployed resources against AWS FSBP policies

I would like to catch these issues with cdk-nag before the infra is deployed

Proposed Solution

Implement the missing checks in a new "AWS FSBP" nag pack

Other information

Acknowledge

  • [ ] I may be able to implement this feature request
  • [ ] This feature might incur a breaking change

anentropic avatar Nov 24 '23 09:11 anentropic

Happy to help with any PRs for this 😄

dontirun avatar Dec 05 '23 17:12 dontirun