github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/documentdb/enable_storage_encryption.cf.go (about) 1 package documentdb 2 3 var cloudFormationEnableStorageEncryptionGoodExamples = []string{ 4 `--- 5 Resources: 6 GoodExample: 7 Type: "AWS::DocDB::DBCluster" 8 Properties: 9 BackupRetentionPeriod : 8 10 DBClusterIdentifier : "sample-cluster" 11 DBClusterParameterGroupName : "default.docdb3.6" 12 KmsKeyId : "your-kms-key-id" 13 StorageEncrypted: true 14 EnableCloudwatchLogsExports: 15 - audit 16 - profiler 17 InstanceInstanceExample: 18 Type: "AWS::DocDB::DBInstance" 19 Properties: 20 AutoMinorVersionUpgrade: true 21 AvailabilityZone: "us-east-1c" 22 DBClusterIdentifier: "sample-cluster" 23 DBInstanceClass: "db.r5.large" 24 DBInstanceIdentifier: "sample-cluster-instance-0" 25 PreferredMaintenanceWindow: "sat:06:54-sat:07:24" 26 `, 27 } 28 29 var cloudFormationEnableStorageEncryptionBadExamples = []string{ 30 `--- 31 Resources: 32 BadExample: 33 Type: "AWS::DocDB::DBCluster" 34 Properties: 35 BackupRetentionPeriod: 8 36 DBClusterIdentifier: sample-cluster 37 DBClusterParameterGroupName: default.docdb3.6 38 BadInstanceExample: 39 Type: "AWS::DocDB::DBInstance" 40 Properties: 41 AutoMinorVersionUpgrade: true 42 AvailabilityZone: us-east-1c 43 DBClusterIdentifier: sample-cluster 44 DBInstanceClass: db.r5.large 45 DBInstanceIdentifier: sample-cluster-instance-0 46 PreferredMaintenanceWindow: 'sat:06:54-sat:07:24' 47 `, 48 } 49 50 var cloudFormationEnableStorageEncryptionLinks = []string{} 51 52 var cloudFormationEnableStorageEncryptionRemediationMarkdown = ``