github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/require_mfa_delete.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/s3/require_mfa_delete.tf.go (about)

     1  package s3
     2  
     3  var terraformRequireMFADeleteGoodExamples = []string{
     4  	`
     5  resource "aws_s3_bucket" "example" {
     6  	bucket = "bucket"
     7  }
     8  
     9  resource "aws_s3_bucket_versioning" "good_example" {
    10   	bucket = aws_s3_bucket.example.id
    11     
    12  	versioning_configuration {
    13  		status = "Enabled"
    14  		mfa_delete = "Enabled"
    15  	}
    16  }
    17   `,
    18  }
    19  
    20  var terraformRequireMFADeleteBadExamples = []string{
    21  	`
    22  resource "aws_s3_bucket" "example" {
    23  	bucket = "bucket"
    24  }
    25  
    26  resource "aws_s3_bucket_versioning" "good_example" {
    27   	bucket = aws_s3_bucket.example.id
    28     
    29  	versioning_configuration {
    30  		status = "Enabled"
    31  		mfa_delete = "Disabled"
    32  	}
    33  }
    34   `,
    35  }
    36  
    37  var terraformRequireMFADeleteLinks = []string{
    38  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_versioning`,
    39  }
    40  
    41  var terraformRequireMFADeleteRemediationMarkdown = ``