Skip to content

v0.25.0
Compare
Choose a tag to compare
@cloudpossebot cloudpossebot released this 17 May 18:30
0.25.0
18d7992
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Fix: Bridgecrew Failed Policies @korenyoni (#85)

what

  • Disable bridgecrew check for VPC Flow Logs on VPC, because CloudPosse has modules in place to handle VPC Flow Log enablement.
  • Skip Bridgecrew check on aws_default_security_group ingresses/egresses as the default security group implementation does not include any ingress/egress rules and is inherently secure.

why

  • Bridgecrew benchmarks are being failed as a result of BC_AWS_LOGGING_9 and BC_AWS_NETWORKING_4 failing.

references

Assets 2
Loading