cfn-nag 0.7.6 → 0.7.7

Sign up to get free protection for your applications and to get access to all the features.
Files changed (3) hide show
  1. checksums.yaml +4 -4
  2. data/lib/cfn-nag/custom_rules/ElasticsearchDomainInsideVPCRule.rb +26 -0
  3. metadata +2 -1
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 59c999774eab0a7ebd00d06aa55d9080218683d60a8a6a0eed160ffe5171617b
4
- data.tar.gz: 4eb14549c72fe44b27941a90793c8a52271f5fcf4a9c7799b29c0800be2fd815
3
+ metadata.gz: ad2861d55fc444c4f16cba45a818e6d755124fe97f66ff2d3c9f138f2187b48b
4
+ data.tar.gz: c7af2ff8b96f46bb610303b546a1c8f62250c7e11af74f48bb1cabd7632e1d1d
5
5
  SHA512:
6
- metadata.gz: ff895bb892baaae4b1143daeac5c1dde170635e7c627ec3cd09249b28bfdc7b1eb37c71da271306552b03cfae080e4cf272d006536441531328a40c98f73f10c
7
- data.tar.gz: 56289bf3957389c76477eb1b9fb32d44262b1bf98d711812f8f44bd078b93e5efe6d216cc519711a0a0303bc88bd90526f9e244a76f3e752af24d60ac8dee805
6
+ metadata.gz: f4e8d41c2622ca328127c8baef0f34bd921b98239eaca3653e871db500cfb9e35cf107ffe50151ae3972f0874f8227d6a17767b325f9e1e38a66335d69f935a0
7
+ data.tar.gz: b5be427253e61a463d0fefa7477e5f426176a37abd85ba955a18f42b61ffe12ef15bcf9c09f23197df0274ff4405c510f4ee4771b9ae55b01108128afe2eb9f3
data/lib/cfn-nag/custom_rules/ElasticsearchDomainInsideVPCRule.rb ADDED
@@ -0,0 +1,26 @@
1
+ # frozen_string_literal: true
2
+
3
+ require 'cfn-nag/violation'
4
+ require_relative 'base'
5
+
6
+ class ElasticsearchDomainInsideVPCRule < BaseRule
7
+ def rule_text
8
+ 'ElasticsearchcDomain should be inside vpc, should specify VPCOptions'
9
+ end
10
+
11
+ def rule_type
12
+ Violation::WARNING
13
+ end
14
+
15
+ def rule_id
16
+ 'W90'
17
+ end
18
+
19
+ def audit_impl(cfn_model)
20
+ violating_domains = cfn_model.resources_by_type('AWS::Elasticsearch::Domain').select do |domain|
21
+ domain.vPCOptions.nil?
22
+ end
23
+
24
+ violating_domains.map(&:logical_resource_id)
25
+ end
26
+ end
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: cfn-nag
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.7.6
4
+ version: 0.7.7
5
5
  platform: ruby
6
6
  authors:
7
7
  - Eric Kascic
@@ -247,6 +247,7 @@ files:
247
247
  - lib/cfn-nag/custom_rules/ElasticLoadBalancerV2ListenerProtocolRule.rb
248
248
  - lib/cfn-nag/custom_rules/ElasticLoadBalancerV2ListenerSslPolicyRule.rb
249
249
  - lib/cfn-nag/custom_rules/ElasticsearchDomainEncryptionAtRestOptionsRule.rb
250
+ - lib/cfn-nag/custom_rules/ElasticsearchDomainInsideVPCRule.rb
250
251
  - lib/cfn-nag/custom_rules/ElasticsearchDomainNodeToNodeEncryptionOptionsRule.rb
251
252
  - lib/cfn-nag/custom_rules/GameLiftFleetInboundPortRangeRule.rb
252
253
  - lib/cfn-nag/custom_rules/IAMUserLoginProfilePasswordRule.rb