Mods

turbot/terraform_aws_compliance

GitHub
Overview
68Dashboards
349Controls
349Queries
2Variables
GitHub
Loading controls...
On This Page
Description
Usage
SQL
Tags
Get Involved
Edit on GitHub
Discuss on Slack

Control: Ensure CloudWatch Logs destination policy has no wildcards

Description

Amazon CloudWatch Logs destination policy should avoid wildcard in 'principals' and 'actions'.

Usage

Run the control in your terminal:

steampipe check terraform_aws_compliance.control.cloudwatch_destination_policy_wildcards

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share terraform_aws_compliance.control.cloudwatch_destination_policy_wildcards

SQL

This control uses a named query:

cloudwatch_destination_policy_wildcards

Tags

category = Compliance
plugin = terraform
service = AWS/CloudWatch