EFS Without Tags

  • Query id: b8a9852c-9943-4973-b8d5-77dae9352851
  • Query name: EFS Without Tags
  • Platform: Ansible
  • Severity: Low
  • Category: Build Process
  • URL: Github

Description

Amazon Elastic Filesystem should have filesystem tags associated
Documentation

Code samples

Code samples with security vulnerabilities

Postitive test num. 1 - yaml file
- name: EFS provisioning without tags
  community.aws.efs:
    state: present
    name: myTestEFS
    targets:
      - subnet_id: subnet-748c5d03
        security_groups: [ "sg-1a2b3c4d" ]

Code samples without security vulnerabilities

Negative test num. 1 - yaml file
- name: EFS provisioning
  community.aws.efs:
    state: present
    name: myTestEFS
    tags:
      Name: myTestNameTag
      purpose: file-storage
    targets:
      - subnet_id: subnet-748c5d03
        security_groups: [ "sg-1a2b3c4d" ]