forms-terraform
forms-terraform copied to clipboard
cds-snc
Infrastructure as Code for the GC Forms environment
Implement resources to resolve following checkov policy "Ensure IAM policies does not allow write access without constraints" Search for "CKV_AWS_111" in the infra repository in order to see places that...
Implement resources to resolve following checkov policy "Ensure that the Execution Role ARN and the Task Role ARN are different in ECS Task definitions" Search for "CKV_AWS_249" in the infra...
Implement resources to resolve following checkov policy "Ensure no IAM policies documents allow "*" as a statement's resource for restrictable actions" Search for "CKV_AWS_356" in the infra repository in order...
Implement resources to resolve following checkov policy "Ensure RDS Clusters are encrypted using KMS CMKs" Search for "CKV_AWS_327" in the infra repository in order to see places that requires modifications.
Implement resources to resolve following checkov policy "Ensure Domain Name System (DNS) query logging is enabled for Amazon Route 53 hosted zones" Search for "CKV2_AWS_39" in the infra repository in...
Implement resources to resolve following checkov policy "Ensure Domain Name System Security Extensions (DNSSEC) signing is enabled for Amazon Route 53 public hosted zones" Search for "CKV2_AWS_38" in the infra...
Leverage the ability of the WAF to inject headers into a request so that the Application is aware the request is from outside the country and can trigger alerts as...
Add a general rate-limiting rule to complement our post-request rate-limiting rule. Investigation is required to determine an appropriate cutoff value.
Hi! I saw that you're using tfswitch. It does not support Terragrunt and OpenTofu, so, I suggest you to switch to tool that can manage all of these tools together:...
# Summary Currently we only have health checks from the [CDS status checker](https://status-statut.cds-snc.ca/), which performs a health check every 10-15 minutes. We should add Route53 health checks and CloudWatch alarms...
