github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/eks/no_public_cluster_access_to_cidr.tf.go (about) 1 package eks 2 3 var terraformNoPublicClusterAccessToCidrGoodExamples = []string{ 4 ` 5 resource "aws_eks_cluster" "good_example" { 6 // other config 7 8 name = "good_example_cluster" 9 role_arn = var.cluster_arn 10 vpc_config { 11 endpoint_public_access = true 12 public_access_cidrs = ["10.2.0.0/8"] 13 } 14 } 15 `, 16 } 17 18 var terraformNoPublicClusterAccessToCidrBadExamples = []string{ 19 ` 20 resource "aws_eks_cluster" "bad_example" { 21 // other config 22 23 name = "bad_example_cluster" 24 role_arn = var.cluster_arn 25 vpc_config { 26 endpoint_public_access = true 27 } 28 } 29 `, 30 } 31 32 var terraformNoPublicClusterAccessToCidrLinks = []string{ 33 `https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/eks_cluster#vpc_config`, 34 } 35 36 var terraformNoPublicClusterAccessToCidrRemediationMarkdown = ``