Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Bug] Gc06_check_encryption_at_rest_part2 domain reporting incorrectly #25

Open
dutt0 opened this issue Mar 12, 2024 · 0 comments
Open
Labels
bug Something isn't working v1.0 Iteration for Policy v1.0

Comments

@dutt0
Copy link
Collaborator

dutt0 commented Mar 12, 2024

Description of the bug/Issue
gc06_check_encryption_at_rest_part2 lambda function is finding OpenSearch domains in accounts even if they were deleted and flagging them as non-compliant.

Resources that are affected
OpenSearch and ElasticSearch domains

Screenshots
In the following screenshot, we can see that there is only on OpenSearch domain
image

But in AWS config, we can see that we have another one marked as non-compliant, even though this one was already deleted
image

Current behavior
In the gc06_check_encryption_at_rest_part2 lambda function, doesn't find the deleted domain. But its showing up in the aws config.

Expected behavior
To report on the actual resources that are present in the account and exclude older resources that no longer exist.

Additional context
Originally reported in the old repo

@dutt0 dutt0 added the bug Something isn't working label Mar 12, 2024
@dutt0 dutt0 added the v1.0 Iteration for Policy v1.0 label Oct 28, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Something isn't working v1.0 Iteration for Policy v1.0
Projects
None yet
Development

No branches or pull requests

1 participant