class DynamoDBEncryptionRule
Public Instance Methods
audit_impl(cfn_model)
click to toggle source
# File lib/cfn-nag/custom_rules/DynamoDBEncryptionRule.rb, line 20 def audit_impl(cfn_model) violating_ddb_tables = cfn_model.resources_by_type('AWS::DynamoDB::Table').select do |table| table.sSESpecification.nil? || !truthy?(table.sSESpecification['SSEEnabled'].to_s) end violating_ddb_tables.map(&:logical_resource_id) end
rule_id()
click to toggle source
# File lib/cfn-nag/custom_rules/DynamoDBEncryptionRule.rb, line 16 def rule_id 'W74' end
rule_text()
click to toggle source
# File lib/cfn-nag/custom_rules/DynamoDBEncryptionRule.rb, line 8 def rule_text 'DynamoDB table should have encryption enabled using a CMK stored in KMS' end
rule_type()
click to toggle source
# File lib/cfn-nag/custom_rules/DynamoDBEncryptionRule.rb, line 12 def rule_type Violation::WARNING end