github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/ec2/encryption_customer_key.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/ec2/encryption_customer_key.tf.go (about)

     1  package ec2
     2  
     3  var terraformEncryptionCustomerKeyGoodExamples = []string{
     4  	`
     5   resource "aws_kms_key" "ebs_encryption" {
     6   	enable_key_rotation = true
     7   }
     8   
     9   resource "aws_ebs_volume" "example" {
    10     availability_zone = "us-west-2a"
    11     size              = 40
    12   
    13     kms_key_id = aws_kms_key.ebs_encryption.arn
    14   
    15     tags = {
    16       Name = "HelloWorld"
    17     }
    18   }
    19   `,
    20  }
    21  
    22  var terraformEncryptionCustomerKeyBadExamples = []string{
    23  	`
    24   resource "aws_ebs_volume" "example" {
    25     availability_zone = "us-west-2a"
    26     size              = 40
    27   
    28     tags = {
    29       Name = "HelloWorld"
    30     }
    31   }
    32   `,
    33  }
    34  
    35  var terraformEncryptionCustomerKeyLinks = []string{
    36  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ebs_volume#kms_key_id`,
    37  }
    38  
    39  var terraformEncryptionCustomerKeyRemediationMarkdown = ``