How to use the checkov.terraform.models.enums.CheckCategories.ENCRYPTION function in checkov

To help you get started, we’ve selected a few checkov examples, based on popular ways it is used in public projects.

Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.

github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / SQSQueueEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the SQS queue  is encrypted"
        id = "CKV_AWS_27"
        supported_resources = ['aws_sqs_queue']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / RDSEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the RDS is securely encrypted at rest"
        id = "CKV_AWS_16"
        supported_resources = ['aws_db_instance']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / gcp / GoogleComputeMinTLSVersion.py View on Github external
def __init__(self):
        name = "Ensure Google SSL policy minimal TLS version is TLS_1_2"
        id = "CKV_GCP_4"
        supported_resources = ['google_compute_ssl_policy']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / ElasticsearchNodeToNodeEncryption.py View on Github external
def __init__(self):
        name = "Ensure all Elasticsearch has node-to-node encryption enabled"
        id = "CKV_AWS_6"
        supported_resources = ['aws_elasticsearch_domain']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / SagemakerEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the Sagemaker is securely encrypted at rest"
        id = "CKV_AWS_22"
        supported_resources = ['aws_sagemaker_notebook_instance']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / S3Encryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the S3 bucket is securely encrypted at rest"
        id = "CKV_AWS_19"
        supported_resources = ['aws_s3_bucket']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / azure / StorageAccountsTransportEncryption.py View on Github external
def __init__(self):
        name = "Ensure that 'Secure transfer required' is set to 'Enabled'"
        id = "CKV_AZURE_3"
        supported_resources = ['azurerm_storage_account']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / EBSEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the EBS is securely encrypted "
        id = "CKV_AWS_3"
        supported_resources = ['aws_ebs_volume']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / LaunchConfigurationEBSEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the Launch configuration EBS is securely encrypted "
        id = "CKV_AWS_8"
        supported_resources = ['aws_launch_configuration','aws_instance']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)
github bridgecrewio / checkov / checkov / terraform / checks / resource / aws / EBSSnapshotEncryption.py View on Github external
def __init__(self):
        name = "Ensure all data stored in the EBS Snapshot is securely encrypted "
        id = "CKV_AWS_4"
        supported_resources = ['aws_ebs_snapshot']
        categories = [CheckCategories.ENCRYPTION]
        super().__init__(name=name, id=id, categories=categories, supported_resources=supported_resources)

checkov

Infrastructure as code static analysis

Apache-2.0
Latest version published 15 hours ago

Package Health Score

97 / 100
Full package analysis