github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/neptune/encryption_customer_key.tf.go (about)

     1  package neptune
     2  
     3  var terraformCheckEncryptionCustomerKeyGoodExamples = []string{
     4  	`
     5   resource "aws_neptune_cluster" "good_example" {
     6     cluster_identifier                  = "neptune-cluster-demo"
     7     engine                              = "neptune"
     8     backup_retention_period             = 5
     9     preferred_backup_window             = "07:00-09:00"
    10     skip_final_snapshot                 = true
    11     iam_database_authentication_enabled = true
    12     apply_immediately                   = true
    13     storage_encrypted                   = true
    14     kms_key_arn                         = true
    15   }
    16   `,
    17  }
    18  
    19  var terraformCheckEncryptionCustomerKeyBadExamples = []string{
    20  	`
    21   resource "aws_neptune_cluster" "bad_example" {
    22     cluster_identifier                  = "neptune-cluster-demo"
    23     engine                              = "neptune"
    24     backup_retention_period             = 5
    25     preferred_backup_window             = "07:00-09:00"
    26     skip_final_snapshot                 = true
    27     iam_database_authentication_enabled = true
    28     apply_immediately                   = true
    29     storage_encrypted                   = false
    30   }
    31   `,
    32  }
    33  
    34  var terraformCheckEncryptionCustomerKeyLinks = []string{
    35  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/neptune_cluster#storage_encrypted`,
    36  }
    37  
    38  var terraformCheckEncryptionCustomerKeyRemediationMarkdown = ``