github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/google/compute/enable_shielded_vm_im.tf.go (about) 1 package compute 2 3 var terraformEnableShieldedVmImGoodExamples = []string{ 4 ` 5 resource "google_compute_instance" "good_example" { 6 name = "test" 7 machine_type = "e2-medium" 8 zone = "us-central1-a" 9 10 tags = ["foo", "bar"] 11 12 boot_disk { 13 initialize_params { 14 image = "debian-cloud/debian-9" 15 } 16 } 17 18 // Local SSD disk 19 scratch_disk { 20 interface = "SCSI" 21 } 22 23 shielded_instance_config { 24 enable_integrity_monitoring = true 25 } 26 } 27 `, 28 } 29 30 var terraformEnableShieldedVmImBadExamples = []string{ 31 ` 32 resource "google_compute_instance" "bad_example" { 33 name = "test" 34 machine_type = "e2-medium" 35 zone = "us-central1-a" 36 37 tags = ["foo", "bar"] 38 39 boot_disk { 40 initialize_params { 41 image = "debian-cloud/debian-9" 42 } 43 } 44 45 // Local SSD disk 46 scratch_disk { 47 interface = "SCSI" 48 } 49 50 shielded_instance_config { 51 enable_integrity_monitoring = false 52 } 53 } 54 `, 55 } 56 57 var terraformEnableShieldedVmImLinks = []string{ 58 `https://registry.terraform.io/providers/hashicorp/google/latest/docs/resources/compute_instance#enable_vtpm`, 59 } 60 61 var terraformEnableShieldedVmImRemediationMarkdown = ``