class Outliers::Resources::Aws::Ec2::SecurityGroup

Public Instance Methods

no_public_internet_ingress?() click to toggle source
# File lib/outliers/resources/aws/ec2/security_group.rb, line 6
def no_public_internet_ingress?
  logger.debug "Verifying '#{id}'."
  source.ip_permissions.select do |i|
    if !i.egress? && (i.ip_ranges.include? "0.0.0.0/0")
      logger.debug "Security Group '#{id}' is open to '#{i.ip_ranges.join(', ')}' via '#{i.protocol}'."
      false
    else
      true
    end
  end.any?
end