github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ecs/AVD-AWS-0035/CloudFormation.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ecs/AVD-AWS-0035/CloudFormation.md (about)

     1  
     2  Enable in transit encryption when using efs
     3  
     4  ```yaml---
     5  Resources:
     6    GoodExample:
     7      Type: 'AWS::ECS::Cluster'
     8      Properties:
     9        ClusterName: MyCluster
    10        ClusterSettings:
    11          - Name: containerInsights
    12            Value: enabled
    13    GoodTask:
    14      Type: AWS::ECS::TaskDefinition
    15      Properties:
    16        Family: "CFSec scan"
    17        Cpu: 512
    18        Memory: 1024
    19        NetworkMode: awsvpc
    20        RequiresCompatibilities:
    21          - FARGATE
    22          - EC2
    23        ContainerDefinitions:
    24          - Name: cfsec
    25            Image: cfsec/cfsec:latest
    26            MountPoints:
    27              - SourceVolume: src
    28                ContainerPath: /src
    29            LogConfiguration:
    30              LogDriver: awslogs
    31              Options:
    32                awslogs-group: "cfsec-logs"
    33                awslogs-region: !Ref AWS::Region
    34                awslogs-stream-prefix: "cfsec"
    35        Volumes:
    36          - Name: jenkins-home
    37            EFSVolumeConfiguration:
    38              FilesystemId: "fs1"
    39              TransitEncryption: ENABLED
    40  
    41  ```
    42  
    43