Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Secret explicitly uses the default key. #21

Open
robg-test opened this issue Feb 10, 2023 · 3 comments
Open

Secret explicitly uses the default key. #21

robg-test opened this issue Feb 10, 2023 · 3 comments
Labels
low module:rds_serverless_cluster security

Comments

@robg-test
Copy link
Collaborator

https://aquasecurity.github.io/tfsec/v1.28.1/checks/aws/ssm/secret-use-customer-key/
@robg-test
Copy link
Collaborator Author

Has cost, and is a low impact issue - Going to ignore this one.

@robg-test
Copy link
Collaborator Author

robg-test commented Feb 13, 2023
edited

FIxed in #24
Note this needs to also possibly enable the key for the RDS database too.

We'll need to encrypt storage in the DB for this first - See #19

@robg-test
Copy link
Collaborator Author

#24 abandoned. deal with #19 first

@robg-test robg-test changed the title rds_serverless_cluster - Secret explicitly uses the default key. Secret explicitly uses the default key. Feb 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
low module:rds_serverless_cluster security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cmbuckley @robg-test