From 5c4b01b83912a8d7060e7744cd0e7e4eb8b77928 Mon Sep 17 00:00:00 2001 From: "prisma-cloud-devsecops[bot]" <89982750+prisma-cloud-devsecops[bot]@users.noreply.github.com> Date: Wed, 26 Jul 2023 05:17:12 +0000 Subject: [PATCH] Prisma Cloud [bot] commented --- cfn/cfngoat.yaml | 9 ++++++++- serverless/serverless.yml | 2 ++ terraform/iam-test.tf | 4 ++-- terraform/main.tf | 4 ++-- terraform/modules/iam/main.tf | 2 +- terraform/modules/storage/main.tf | 20 ++++++++++---------- terraform/modules/subnet/main.tf | 4 ++-- terraform/modules/vpc/main.tf | 8 ++++---- 8 files changed, 31 insertions(+), 22 deletions(-) diff --git a/cfn/cfngoat.yaml b/cfn/cfngoat.yaml index 5573bf3..3a05925 100644 --- a/cfn/cfngoat.yaml +++ b/cfn/cfngoat.yaml @@ -43,6 +43,10 @@ Resources: Tags: - Key: Name Value: !Sub "${AWS::AccountId}-${CompanyName}-${Environment}-ec2" + - Key: git_repo + Value: codegoat + - Key: git_org + Value: ghouldaemon UserData: Fn::Base64: | #!/bin/bash @@ -59,7 +63,6 @@ Resources: ############ ### S3 ### ############ - DataBucket: # Public, not encrypted, no access logs, no versioning # checkov:skip=CKV_AWS_56: not needed @@ -71,6 +74,10 @@ Resources: Tags: - Key: Name Value: !Sub "${AWS::AccountId}-${CompanyName}-${Environment}-data" + - Key: git_repo + Value: codegoat + - Key: git_org + Value: ghouldaemon Outputs: EC2PublicDNS: diff --git a/serverless/serverless.yml b/serverless/serverless.yml index 89c92c0..70c41da 100644 --- a/serverless/serverless.yml +++ b/serverless/serverless.yml @@ -20,6 +20,8 @@ functions: tags: RESOURCE: lambda PUBLIC: false + git_org: ghouldaemon + git_repo: codegoat iamRoleStatements: - Effect: Allow Action: diff --git a/terraform/iam-test.tf b/terraform/iam-test.tf index 02b96b3..2967e91 100644 --- a/terraform/iam-test.tf +++ b/terraform/iam-test.tf @@ -28,7 +28,7 @@ resource "aws_iam_policy" "policy_resource_fail" { git_last_modified_at = "2022-10-26 12:53:34" git_last_modified_by = "mroberts@paloaltonetworks.com" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "5c3c5011-041d-487a-a6e6-3072edc7b5e6" } @@ -64,7 +64,7 @@ resource "aws_iam_policy" "policy_resource_pass" { git_last_modified_at = "2022-10-26 12:53:34" git_last_modified_by = "mroberts@paloaltonetworks.com" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "e56108da-6d0e-4e78-8fc5-f3f2567ffed9" } diff --git a/terraform/main.tf b/terraform/main.tf index 5f5343c..479af94 100644 --- a/terraform/main.tf +++ b/terraform/main.tf @@ -67,7 +67,7 @@ module "instance" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "a5ffaaa3-e604-4f84-934e-ff1877ca74e0" } @@ -83,7 +83,7 @@ resource "aws_ebs_volume" "i" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "1c06a9c0-4d81-4137-8d86-24cf1260ca17" } diff --git a/terraform/modules/iam/main.tf b/terraform/modules/iam/main.tf index bb3a920..b50ffb8 100644 --- a/terraform/modules/iam/main.tf +++ b/terraform/modules/iam/main.tf @@ -15,7 +15,7 @@ resource "aws_iam_role" "admin-role" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "6b7b8033-6e0a-482d-acc4-05584f723771" } diff --git a/terraform/modules/storage/main.tf b/terraform/modules/storage/main.tf index 297bc1c..6e6c9c6 100644 --- a/terraform/modules/storage/main.tf +++ b/terraform/modules/storage/main.tf @@ -10,7 +10,7 @@ resource "aws_db_subnet_group" "example_rds_subnet_grp" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "f2a1cfe5-e3d1-4f3e-8934-4d6114ead100" }) @@ -28,7 +28,7 @@ resource "aws_security_group" "example_rds_sg" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "a135de5a-372b-4b70-98ad-3775ef91c7fb" }) @@ -61,7 +61,7 @@ resource "aws_kms_key" "example_db_kms_key" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "988b0096-39e5-4077-99dd-120eb990cd1d" }) @@ -91,7 +91,7 @@ resource "aws_db_instance" "example_db" { git_last_modified_at = "2022-09-26 18:17:07" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "402cb8e8-703c-4778-af81-f322be4fc5d9" }) @@ -109,7 +109,7 @@ resource "aws_ssm_parameter" "example_ssm_db_host" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "4fbfdb10-f5bf-424b-af46-ab69cbb0df3c" }) @@ -127,7 +127,7 @@ resource "aws_ssm_parameter" "example_ssm_db_password" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "d066cbee-4067-495c-8377-3294ec8f5509" }) @@ -145,7 +145,7 @@ resource "aws_ssm_parameter" "example_ssm_db_user" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "218214f1-78c9-49f0-bef6-b65b3da80461" }) @@ -164,7 +164,7 @@ resource "aws_ssm_parameter" "example_ssm_db_name" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "f6cfbef0-a5d1-4630-a933-52adf04af603" }) @@ -181,7 +181,7 @@ resource "aws_s3_bucket" "my-private-bucket" { git_last_modified_at = "2022-09-26 20:54:59" git_last_modified_by = "mroberts@paloaltonetworks.com" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "26ecaeea-c233-4e1f-a4ae-a8bcb8854244" }) @@ -198,7 +198,7 @@ resource "aws_s3_bucket" "public-bucket-oops" { git_last_modified_at = "2022-09-26 20:54:59" git_last_modified_by = "mroberts@paloaltonetworks.com" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "7ecefeab-6519-4a8e-a3f6-8c849f9eff19" }) diff --git a/terraform/modules/subnet/main.tf b/terraform/modules/subnet/main.tf index 7ee3a62..b799428 100644 --- a/terraform/modules/subnet/main.tf +++ b/terraform/modules/subnet/main.tf @@ -8,7 +8,7 @@ resource "aws_subnet" "primary" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "de17a83e-d2cf-41c2-833f-c959687ccca6" } @@ -24,7 +24,7 @@ resource "aws_subnet" "secondary" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "7c0c6cf6-3882-483b-937c-801545bb27f0" } diff --git a/terraform/modules/vpc/main.tf b/terraform/modules/vpc/main.tf index beb56b8..6683d21 100644 --- a/terraform/modules/vpc/main.tf +++ b/terraform/modules/vpc/main.tf @@ -6,7 +6,7 @@ resource "aws_vpc" "example" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "595c04ed-9f1f-4884-9d0c-d9e81b3d45de" } @@ -27,7 +27,7 @@ resource "aws_default_security_group" "default" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "ea82ec59-36e8-4723-8e71-e3dcac8779c6" } @@ -50,7 +50,7 @@ resource "aws_security_group" "allow_all_ssh" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "dc774db6-b43d-473c-81bc-e56179320756" } @@ -73,7 +73,7 @@ resource "aws_security_group" "allow_ssh_from_valid_cidr" { git_last_modified_at = "2022-09-22 19:07:11" git_last_modified_by = "mroberts@m-c02ff1nqml85.paloaltonetworks.local" git_modifiers = "mroberts" - git_org = "try-bridgecrew" + git_org = "ghouldaemon" git_repo = "codegoat" yor_trace = "fc4802fc-f95c-474e-bb7f-821f148741cb" }