github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/ecr/enforce_immutable_repository.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/ecr/enforce_immutable_repository.tf.go (about)

     1  package ecr
     2  
     3  var terraformEnforceImmutableRepositoryGoodExamples = []string{
     4  	`
     5   resource "aws_ecr_repository" "good_example" {
     6     name                 = "bar"
     7     image_tag_mutability = "IMMUTABLE"
     8   
     9     image_scanning_configuration {
    10       scan_on_push = true
    11     }
    12   }
    13   `,
    14  }
    15  
    16  var terraformEnforceImmutableRepositoryBadExamples = []string{
    17  	`
    18   resource "aws_ecr_repository" "bad_example" {
    19     name                 = "bar"
    20     image_tag_mutability = "MUTABLE"
    21   
    22     image_scanning_configuration {
    23       scan_on_push = true
    24     }
    25   }
    26   `,
    27  }
    28  
    29  var terraformEnforceImmutableRepositoryLinks = []string{
    30  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecr_repository`,
    31  }
    32  
    33  var terraformEnforceImmutableRepositoryRemediationMarkdown = ``