cfn-nag 0.5.38 → 0.5.39
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: ec7d8d27f98a3b91a29dcf6742afa35e59028574d97070dcbf55b4ca52546aef
|
|
4
|
+
data.tar.gz: 3310dced6ff484dd9c09daa123c5cd84bb19f934809bc9c43cd7a8a68ce7031e
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: d1780b364a9de150a12d2ab4468cd87b11a700c3ea2ebd4a0e5e61c43598538cf724296d592648a95ea91f9a926510b85ae0bac52de0cdf336d4989af5b7c0bd
|
|
7
|
+
data.tar.gz: d4fde022b80ffacc2f2df7b11a950e51d07ac7d10978cf28e2fe5121b0135c4fab5ab1064e2e738e317c972d56df8abb2827fee47d92b7b5b93bb48afbf8d640
|
|
@@ -19,7 +19,11 @@ class BatchJobDefinitionContainerPropertiesPrivilegedRule < BaseRule
|
|
|
19
19
|
def audit_impl(cfn_model)
|
|
20
20
|
violating_job_definitions = cfn_model.resources_by_type('AWS::Batch::JobDefinition')
|
|
21
21
|
.select do |job_definition|
|
|
22
|
-
|
|
22
|
+
if job_definition.containerProperties
|
|
23
|
+
truthy?(job_definition.containerProperties['Privileged'])
|
|
24
|
+
else
|
|
25
|
+
false
|
|
26
|
+
end
|
|
23
27
|
end
|
|
24
28
|
|
|
25
29
|
violating_job_definitions.map(&:logical_resource_id)
|