You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The description of AWS.RDS.DataSecurity.High.0414.json doesn't match what the associated rego policies does. This policy is checking weather the database instance has been encrypted, but the message is indicating that automated backups aren't enabled.
Here's the error message from Terrascan but as you can see above "backup_retention_period" was specified. What's missing is "kms_key_id".
$ terrascan scan -t aws .
Violation Details -
Description : Ensure that your RDS database instances have automated backups enabled for point-in-time recovery. To back up your database instances, AWS RDS take automatically a full daily snapshot of your data (with transactions logs) during the specified backup window and keeps the backups for a limited period of time (known as retention period) defined by the instance owner.
File : aws_db_instance.tf
Line : 5
Severity : HIGH
-----------------------------------------------------------------------
Scan Summary -
File/Folder : /Users/therasec/programming/test_dirs/success
IaC Type : terraform
Scanned At : 2021-02-04 03:04:00.301155 +0000 UTC
Policies Validated : 149
Violated Policies : 1
Low : 0
Medium : 0
High : 1
The text was updated successfully, but these errors were encountered:
Description
The description of AWS.RDS.DataSecurity.High.0414.json doesn't match what the associated rego policies does. This policy is checking weather the database instance has been encrypted, but the message is indicating that automated backups aren't enabled.
What I Did
Example terraform:
Here's the error message from Terrascan but as you can see above "backup_retention_period" was specified. What's missing is "kms_key_id".
The text was updated successfully, but these errors were encountered: