Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CKV2_AWS_5 fails to identify opensearch attachment #6760

Open
coilysiren opened this issue Oct 10, 2024 · 1 comment
Open

CKV2_AWS_5 fails to identify opensearch attachment #6760

coilysiren opened this issue Oct 10, 2024 · 1 comment
Labels
checks Check additions or changes

Comments

@coilysiren
Copy link

Describe the issue

checkov does not detect when a security group is attached to an AWS OpenSearch instance.

The check ID is CKV2_AWS_5

Examples

Here's an example of a PR with the failing checkout configuration in question.

Version:

Additional context

I suspect that the problem is that aws_opensearch_domain needs to be added to this list: https://github.com/bridgecrewio/checkov/blob/main/checkov/terraform/checks/graph_checks/aws/SGAttachedToResource.yaml
@coilysiren coilysiren added the checks Check additions or changes label Oct 10, 2024
@coilysiren coilysiren mentioned this issue Oct 10, 2024
Merged
@coilysiren
Copy link
Author

Linking the PR instead of the diff: HHS/simpler-grants-gov#2341

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
checks Check additions or changes
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@coilysiren