Query: rds_db_cluster_aurora_mysql_audit_logging_enabled

select
  arn as resource,
  case
    when engine not ilike '%aurora-mysql%' then 'skip'
    when enabled_cloudwatch_logs_exports @> '["audit"]' then 'ok'
    else 'alarm'
  end as status,
  case
    when engine not ilike '%aurora-mysql%' then title || ' is not Aurora MySQL-compatible edition.'
    when enabled_cloudwatch_logs_exports @> '["audit"]' then title || ' audit logging enabled.'
    else title || ' audit logging disabled.'
  end as reason,
  region,
  account_id
from
  aws_rds_db_cluster;