Skip to content

reflexivesecurity/reflex-aws-rds-public-snapshot

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

172 Commits
.github
.github
 
 
source
source
 
 
terraform
terraform
 
 
test/resources
test/resources
 
 
.gitignore
.gitignore
 
 
.pylintrc
.pylintrc
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

reflex-aws-rds-public-snapshot

Rule that detects when an RDS snapshot is set to be public.

To learn more about RDS snapshots, see the AWS Documentation.

Getting Started

To get started using Reflex, check out the Reflex Documentation.

Usage

To use this rule either add it to your reflex.yaml configuration file:

rules:
  aws:
    - rds-public-snapshot:
        version: latest

or add it directly to your Terraform:

module "rds-public-snapshot" {
  source            = "git::https://github.com/reflexivesecurity/reflex-aws-rds-public-snapshot.git?ref=latest"
  sns_topic_arn     = module.central-sns-topic.arn
  reflex_kms_key_id = module.reflex-kms-key.key_id
}

Note: The sns_topic_arn and reflex_kms_key_id example values shown here assume you generated resources with reflex build. If you are using the Terraform on its own you need to provide your own valid values.

Configuration

This rule has no configuration options.

Contributing

If you are interested in contributing, please review our contribution guide.

License

This Reflex rule is made available under the MPL 2.0 license. For more information view the LICENSE

About

Rule to detect the sharing of an RDS snapshot with the public.

Topics

rules aws rds remediate

Resources

Readme

License

MPL-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 11

v2.1.1 Latest
Dec 29, 2020
+ 10 releases

Packages

No packages published

Contributors 7

Languages