Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type Rule ¶
type Rule struct {
ID string
Documentation RuleDocumentation
Provider provider.Provider
RequiredTypes []string
RequiredLabels []string
CheckFunc func(result.Set, *block.Block, *hclcontext.Context)
}
Rule is a targeted security test which can be applied to terraform templates. It includes the types to run on e.g. "resource", and the labels to run on e.g. "aws_s3_bucket".
type RuleDocumentation ¶
type RuleDocumentation struct {
// Summary is a brief description of the check, e.g. "Unencrypted S3 Bucket"
Summary string
// Explanation (markdown) contains reasoning for the check, details on it's value, and remediation info
Explanation string
// Impact contains a brief summary of the impact of failing the check
Impact string
// Resolution contains a brief summary of the resolution for the failing check
Resolution string
// BadExample (hcl) contains Terraform code which would cause the check to fail
BadExample string
// GoodExample (hcl) modifies the BadExample content to cause the check to pass
GoodExample string
// Links are URLs which contain further reading related to the check
Links []string
}
Source Files
Click to show internal directories.
Click to hide internal directories.