Sagemaker Endpoint Configuration Encryption Disabled
- Query id: 58b35504-0287-4154-bf69-02c0573deab8
- Query name: Sagemaker Endpoint Configuration Encryption Disabled
- Platform: Terraform
- Severity: High
- Category: Encryption
- URL: Github
Description¶
Sagemaker endpoint configuration should encrypt data
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - tf file
resource "aws_sagemaker_endpoint_configuration" "positive" {
name = "my-endpoint-config"
production_variants {
variant_name = "variant-1"
model_name = aws_sagemaker_model.m.name
initial_instance_count = 1
instance_type = "ml.t2.medium"
}
tags = {
Name = "foo"
}
}
Code samples without security vulnerabilities¶
Negative test num. 1 - tf file
resource "aws_sagemaker_endpoint_configuration" "negative" {
name = "my-endpoint-config"
production_variants {
variant_name = "variant-1"
model_name = aws_sagemaker_model.m.name
initial_instance_count = 1
instance_type = "ml.t2.medium"
}
tags = {
Name = "foo"
}
kms_key_arn = "aws_kms_key.example.arn"
}