steampipe-mod-aws-compliance
steampipe-mod-aws-compliance copied to clipboard
turbot
Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
**Describe the bug** A clear and concise description of what the bug is. **Steampipe version (`steampipe -v`)** steampipe version 0.15.4 **Plugin version (`steampipe plugin list`)** hub.steampipe.io/plugins/turbot/aws@latest | 0.71.0 | aws...
**Describe the bug** A clear and concise description of what the bug is. Currently, the following controls use **`cloudtrail_enabled_all_regions.sql`** instead of `cloudtrail_multi_region_trail_enabled.sql` ( as per AWS config rule) - gdpr...
**Is your feature request related to a problem? Please describe.** PCI DSS v4.0 has been released. It can be downloaded from - https://www.pcisecuritystandards.org/document_library/?category=pcidss&document=pci_dss **Describe the solution you'd like** Add the...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] [AutoScaling.6] Auto Scaling groups...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] Audit Manager - https://docs.aws.amazon.com/audit-manager/latest/userguide/gramm-leach-bliley-act.html...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] [AWS Config Template](https://docs.aws.amazon.com/config/latest/developerguide/operational-best-practices-for-wa-Reliability-Pillar.html) https://aws.amazon.com/architecture/well-architected/...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] **Describe the solution you'd...
**Describe the bug** This query checks the opposite of what it should. It passes the condition when **alias/aws/secretsmanager** is being used and this is an **AWS managed key** and not...
### Checklist - [ ] Issue(s) linked
The Grant http://acs.amazonaws.com/groups/global/AuthenticatedUsers represents _all_ AWS Customers and is another form of "Public Bucket". Additionally the WRITE and READ acls were missing from the `query/s3/s3_bucket_restrict_public_write_access.sql` and `query/s3/s3_bucket_restrict_public_read_access.sql `queries
