github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0029/CloudFormation.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0029/CloudFormation.md (about)

     1  
     2  Remove sensitive data from the EC2 instance user-data
     3  
     4  ```yaml---
     5  Resources:
     6    GoodExample:
     7      Type: AWS::EC2::Instance
     8      Properties:
     9        ImageId: "ami-79fd7eee"
    10        KeyName: "testkey"
    11        UserData: export SSM_PATH=/database/creds
    12        BlockDeviceMappings:
    13          - DeviceName: "/dev/sdm"
    14            Ebs:
    15              VolumeType: "io1"
    16              Iops: "200"
    17              DeleteOnTermination: "false"
    18              VolumeSize: "20"
    19          - DeviceName: "/dev/sdk"
    20  
    21  
    22  ```
    23  
    24