test: testing powerpipe workflow

[nileshgadgi]

oioeioei

[github-actions]

Terraform Compliance Report

EC2

	TOTAL	20
✅	OK	0
⇨	Skip	0
ℹ	Info	0
❌	Alarm	0
❗	Error	20

EC2 AMI copy should be encrypted with KMS CMK

This control checks whether EC2 AMI copy is encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI copy should be encrypted

This control checks whether EC2 AMI copy has encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI should be encrypted

This control checks whether EC2 AMI has encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder components should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder components are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder distribution configurations should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder distribution configurations are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder image recipes should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder image recipes are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI launch permission should be restricted

This control checks whether EC2 AMI launch permission is restrictive in nature.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EBS default encryption should be enabled

To help protect data at rest, ensure that encryption is enabled for your Amazon Elastic Block Store (Amazon EBS) volumes.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance detailed monitoring should be enabled

Enable this rule to help improve Amazon Elastic Compute Cloud (Amazon EC2) instance monitoring on the Amazon EC2 console, which displays monitoring graphs with a one minute period for the instance.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance EBS encryption should be enabled

This control checks whether EC2 instances have EBS encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance should have EBS optimization enabled

An optimized instance in Amazon Elastic Block Store (Amazon EBS) provides additional, dedicated capacity for Amazon EBS I/O operations.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not have a public IP address

Manage access to the AWS Cloud by ensuring Amazon Elastic Compute Cloud (Amazon EC2) instances cannot be publicly accessed.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

Ensure EC2 instances do not use default VPC

One of the best practices when using EC2s in AWS is not to deploy any resources to the default VPC.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not use multiple ENIs

This control checks whether an EC2 instance uses multiple Elastic Network Interfaces (ENIs) or Elastic Fabric Adapters (EFAs). This control passes if a single network adapter is used. The control includes an optional parameter list to identify the allowed ENIs.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances termination protection should be enabled

To prevent your instance from being accidentally terminated using Amazon EC2, you can enable termination protection for the instance.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not contain secrets in user data

To help protect sensitive information, ensure that Amazon Elastic Compute Cloud (Amazon EC2) instances do not contain secrets in user data.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should use IMDSv2

Ensure the Instance Metadata Service Version 2 (IMDSv2) method is enabled to help protect access and control of Amazon Elastic Compute Cloud (Amazon EC2) instance metadata.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch configuration EBS encryption should be enabled

This control checks whether EC2 launch configurations have EBS encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch configuration should not have a metadata response hop limit greater than 1

This control checks whether EC2 launch configurations have a metadata response hop limit less than 1.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch template should not have a metadata response hop limit greater than 1

This control checks whether EC2 launch templates have a metadata response hop limit less than 1.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

Report run at 2024-11-08 22:30:50 using Powerpipe 1.0.0 in dir /home/runner/work/github-powerpipe/github-powerpipe.

[github-actions]

Terraform Compliance Report

EC2

	TOTAL	20
✅	OK	0
⇨	Skip	0
ℹ	Info	0
❌	Alarm	0
❗	Error	20

EC2 AMI copy should be encrypted with KMS CMK

This control checks whether EC2 AMI copy is encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI copy should be encrypted

This control checks whether EC2 AMI copy has encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI should be encrypted

This control checks whether EC2 AMI has encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder components should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder components are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder distribution configurations should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder distribution configurations are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI image builder image recipes should be encrypted with KMS CMK

This control checks whether EC2 AMI image builder image recipes are encrypted with KMS CMK.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 AMI launch permission should be restricted

This control checks whether EC2 AMI launch permission is restrictive in nature.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EBS default encryption should be enabled

To help protect data at rest, ensure that encryption is enabled for your Amazon Elastic Block Store (Amazon EBS) volumes.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance detailed monitoring should be enabled

Enable this rule to help improve Amazon Elastic Compute Cloud (Amazon EC2) instance monitoring on the Amazon EC2 console, which displays monitoring graphs with a one minute period for the instance.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance EBS encryption should be enabled

This control checks whether EC2 instances have EBS encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instance should have EBS optimization enabled

An optimized instance in Amazon Elastic Block Store (Amazon EBS) provides additional, dedicated capacity for Amazon EBS I/O operations.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not have a public IP address

Manage access to the AWS Cloud by ensuring Amazon Elastic Compute Cloud (Amazon EC2) instances cannot be publicly accessed.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

Ensure EC2 instances do not use default VPC

One of the best practices when using EC2s in AWS is not to deploy any resources to the default VPC.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not use multiple ENIs

This control checks whether an EC2 instance uses multiple Elastic Network Interfaces (ENIs) or Elastic Fabric Adapters (EFAs). This control passes if a single network adapter is used. The control includes an optional parameter list to identify the allowed ENIs.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances termination protection should be enabled

To prevent your instance from being accidentally terminated using Amazon EC2, you can enable termination protection for the instance.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should not contain secrets in user data

To help protect sensitive information, ensure that Amazon Elastic Compute Cloud (Amazon EC2) instances do not contain secrets in user data.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 instances should use IMDSv2

Ensure the Instance Metadata Service Version 2 (IMDSv2) method is enabled to help protect access and control of Amazon Elastic Compute Cloud (Amazon EC2) instance metadata.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch configuration EBS encryption should be enabled

This control checks whether EC2 launch configurations have EBS encryption enabled.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch configuration should not have a metadata response hop limit greater than 1

This control checks whether EC2 launch configurations have a metadata response hop limit less than 1.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

EC2 launch template should not have a metadata response hop limit greater than 1

This control checks whether EC2 launch templates have a metadata response hop limit less than 1.

OK	Skip	Info	Alarm	Error	Total
0	0	0	0	1	1

Error: relation "terraform_resource" does not exist (SQLSTATE 42P01)

Report run at 2024-11-11 22:42:56 using Powerpipe 1.0.0 in dir /home/runner/work/github-powerpipe/github-powerpipe.