github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/neptune/enable_log_export.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/neptune/enable_log_export.tf.go (about)

     1  package neptune
     2  
     3  var terraformEnableLogExportGoodExamples = []string{
     4  	`
     5   resource "aws_neptune_cluster" "good_example" {
     6     cluster_identifier                  = "neptune-cluster-demo"
     7     engine                              = "neptune"
     8     backup_retention_period             = 5
     9     preferred_backup_window             = "07:00-09:00"
    10     skip_final_snapshot                 = true
    11     iam_database_authentication_enabled = true
    12     apply_immediately                   = true
    13     enable_cloudwatch_logs_exports      = ["audit"]
    14   }
    15   `,
    16  }
    17  
    18  var terraformEnableLogExportBadExamples = []string{
    19  	`
    20   resource "aws_neptune_cluster" "bad_example" {
    21     cluster_identifier                  = "neptune-cluster-demo"
    22     engine                              = "neptune"
    23     backup_retention_period             = 5
    24     preferred_backup_window             = "07:00-09:00"
    25     skip_final_snapshot                 = true
    26     iam_database_authentication_enabled = true
    27     apply_immediately                   = true
    28     enable_cloudwatch_logs_exports      = []
    29   }
    30   `,
    31  }
    32  
    33  var terraformEnableLogExportLinks = []string{
    34  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/neptune_cluster#enable_cloudwatch_logs_exports`,
    35  }
    36  
    37  var terraformEnableLogExportRemediationMarkdown = ``