Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create aaa.tf #14

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Create aaa.tf #14

wants to merge 2 commits into from

Conversation

PavelLinearB
Copy link
Member

No description provided.

orca-security-us[bot]
orca-security-us bot reviewed Feb 28, 2024
View reviewed changes
Copy link

@orca-security-us orca-security-us bot left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Orca Security Scan Summary

Status Check Issues by priority
Passed Passed Infrastructure as Code high 0   medium 0   low 3   info 3 View in Orca
Passed Passed Secrets high 0   medium 0   low 0   info 0 View in Orca
Passed Passed Vulnerabilities high 0   medium 0   low 0   info 0 View in Orca
🛡️ The following IaC misconfigurations have been detected
NAME FILE
low S3 Bucket Object Versioning not Enabled aaa.tf View in code
low AWS S3 Bucket Without "MFA Delete" Enabled aaa.tf View in code
low AWS S3 Bucket Without "MFA Delete" Enabled aaa.tf View in code
info Customer Master Key Rotation is Disabled aaa.tf View in code
info IAM Access Analyzer Is Not Enabled aaa.tf View in code
info S3 Bucket Server Access Logging is Disabled aaa.tf View in code

jit-ci[bot]
jit-ci bot reviewed Feb 28, 2024
View reviewed changes
Copy link

@jit-ci jit-ci bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❌ Jit has detected 1 important finding in this PR that you should review.
The finding is detailed below as a comment.
It’s highly recommended that you fix this security issue before merge.

aaa.tf
}
}

resource "aws_kms_key" "testkey" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Security control: Iac Misconfig Detection Terraform

Type: Customer Master Keys (Cmk) Must Have Rotation Enabled, Which Means The Attribute 'Enable Key Rotation' Must Be Set To 'True' When The Key Is Enabled.

Description: Customer Master Keys (CMK) must have rotation enabled, which means the attribute 'enable_key_rotation' must be set to 'true' when the key is enabled.

Severity: HIGH

Learn more about this issue

Jit Bot commands and options (e.g., ignore issue)

You can trigger Jit actions by commenting on this PR review:

  • #jit_ignore_fp Ignore and mark this specific single instance of finding as “False Positive”
  • #jit_ignore_accept Ignore and mark this specific single instance of finding as “Accept Risk”
  • #jit_undo_ignore Undo ignore command

@gitstream-cm gitStream.cm
Copy link

gitstream-cm bot commented Feb 28, 2024
edited by PavelLinearB
Loading

This PR failed due to A severity vulnerability finding, if you don't fix it, please select:

  • I need help with that fix. Assign to security champion
  • I want to accept the risk, please approve. Assign the PR to the security team
  • This is a false positive, please approve. Assign the PR to the security team
  • This is a test/simulator environment, please exclude. Assign to Team lead

@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Feb 28, 2024

Quality Gate Failed Quality Gate failed

Failed conditions
4 Security Hotspots

See analysis details on SonarCloud

@gitstream-cm gitStream.cm
Copy link

gitstream-cm bot commented Feb 28, 2024

comments: {"infrastructure_as_code":{"count":6,"priority":{"high":0,"medium":0,"low":3,"info":3}},"vulnerabilities":{"count":0,"priority":{"high":0,"medium":0,"low":0,"info":0}},"secrets":{"count":0,"priority":{"high":0,"medium":0,"low":0,"info":0}}}

@PavelLinearB
Copy link
Member Author

.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jit-ci Jit CI jit-ci left review comments

@orca-security-us Orca Security (US) orca-security-us left review comments

Assignees
No one assigned
Labels
1 min review 1 Unresolved Thread(s)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@PavelLinearB