cfn-nag 0.7.6 → 0.7.7
Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: ad2861d55fc444c4f16cba45a818e6d755124fe97f66ff2d3c9f138f2187b48b
|
4
|
+
data.tar.gz: c7af2ff8b96f46bb610303b546a1c8f62250c7e11af74f48bb1cabd7632e1d1d
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: f4e8d41c2622ca328127c8baef0f34bd921b98239eaca3653e871db500cfb9e35cf107ffe50151ae3972f0874f8227d6a17767b325f9e1e38a66335d69f935a0
|
7
|
+
data.tar.gz: b5be427253e61a463d0fefa7477e5f426176a37abd85ba955a18f42b61ffe12ef15bcf9c09f23197df0274ff4405c510f4ee4771b9ae55b01108128afe2eb9f3
|
@@ -0,0 +1,26 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
require 'cfn-nag/violation'
|
4
|
+
require_relative 'base'
|
5
|
+
|
6
|
+
class ElasticsearchDomainInsideVPCRule < BaseRule
|
7
|
+
def rule_text
|
8
|
+
'ElasticsearchcDomain should be inside vpc, should specify VPCOptions'
|
9
|
+
end
|
10
|
+
|
11
|
+
def rule_type
|
12
|
+
Violation::WARNING
|
13
|
+
end
|
14
|
+
|
15
|
+
def rule_id
|
16
|
+
'W90'
|
17
|
+
end
|
18
|
+
|
19
|
+
def audit_impl(cfn_model)
|
20
|
+
violating_domains = cfn_model.resources_by_type('AWS::Elasticsearch::Domain').select do |domain|
|
21
|
+
domain.vPCOptions.nil?
|
22
|
+
end
|
23
|
+
|
24
|
+
violating_domains.map(&:logical_resource_id)
|
25
|
+
end
|
26
|
+
end
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: cfn-nag
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.7.
|
4
|
+
version: 0.7.7
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Eric Kascic
|
@@ -247,6 +247,7 @@ files:
|
|
247
247
|
- lib/cfn-nag/custom_rules/ElasticLoadBalancerV2ListenerProtocolRule.rb
|
248
248
|
- lib/cfn-nag/custom_rules/ElasticLoadBalancerV2ListenerSslPolicyRule.rb
|
249
249
|
- lib/cfn-nag/custom_rules/ElasticsearchDomainEncryptionAtRestOptionsRule.rb
|
250
|
+
- lib/cfn-nag/custom_rules/ElasticsearchDomainInsideVPCRule.rb
|
250
251
|
- lib/cfn-nag/custom_rules/ElasticsearchDomainNodeToNodeEncryptionOptionsRule.rb
|
251
252
|
- lib/cfn-nag/custom_rules/GameLiftFleetInboundPortRangeRule.rb
|
252
253
|
- lib/cfn-nag/custom_rules/IAMUserLoginProfilePasswordRule.rb
|