Skip to content

[Feature] enable table encryption #14

New issue
New issue
Closed
Closed
[Feature] enable table encryption#14
Assignees
sblack4
Labels
enhancementNew feature or request
@sblack4

Description

@sblack4
sblack4
opened on Dec 22, 2022

tfsec complains

Result #1 HIGH Table encryption is not enabled. 
────────────────────────────────────────────────────────────────────────────────
  git::https:/github.com/rhythmictech/terraform-aws-backend?ref=v4.0.0/Users/..../account/.terraform/modules/org_backend/main.tf:103-116
   via backend-setup.tf:20-34 (module.org_backend)
────────────────────────────────────────────────────────────────────────────────
  103  ┌ resource "aws_dynamodb_table" "this" {
  104  │   name         = var.dynamo_locktable_name
  105  │   billing_mode = "PAY_PER_REQUEST"
  106  │   hash_key     = "LockID"
  107  │ 
  108  │   tags = merge(var.tags, {
  109  │     "Name" = var.dynamo_locktable_name
  110  │   })
  111  └ 
  ...  
────────────────────────────────────────────────────────────────────────────────
          ID aws-dynamodb-enable-at-rest-encryption
      Impact Data can be freely read if compromised
  Resolution Enable encryption at rest for DAX Cluster

  More Information
  - https://aquasecurity.github.io/tfsec/v1.28.1/checks/aws/dynamodb/enable-at-rest-encryption/
  - https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/dax_cluster#server_side_encryption
  - ```

Metadata

Metadata

Assignees

Labels

enhancementNew feature or request

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions