github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/eks/encrypt_secrets.cf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/eks/encrypt_secrets.cf.go (about)

     1  package eks
     2  
     3  var cloudFormationEncryptSecretsGoodExamples = []string{
     4  	`---
     5  Resources:
     6    GoodExample:
     7      Type: 'AWS::EKS::Cluster'
     8      Properties:
     9        Name: goodExample
    10        Version: '1.14'
    11        RoleArn: >-
    12          arn:aws:iam::012345678910:role/eks-service-role-good-example
    13        EncryptionConfig:
    14          Provider:
    15            KeyArn: alias/eks-kms
    16          Resources:
    17          - secrets
    18        ResourcesVpcConfig:
    19          SecurityGroupIds:
    20            - sg-6979fe18
    21          SubnetIds:
    22            - subnet-6782e71e
    23            - subnet-e7e761ac
    24  `,
    25  }
    26  
    27  var cloudFormationEncryptSecretsBadExamples = []string{
    28  	`---
    29  Resources:
    30    BadExample:
    31      Type: 'AWS::EKS::Cluster'
    32      Properties:
    33        Name: badExample
    34        Version: '1.14'
    35        RoleArn: >-
    36          arn:aws:iam::012345678910:role/eks-service-role-bad-example
    37        ResourcesVpcConfig:
    38          SecurityGroupIds:
    39            - sg-6979fe18
    40          SubnetIds:
    41            - subnet-6782e71e
    42            - subnet-e7e761ac
    43  `,
    44  }
    45  
    46  var cloudFormationEncryptSecretsLinks = []string{}
    47  
    48  var cloudFormationEncryptSecretsRemediationMarkdown = ``