Stack Without Template
- Query id: 91bea7b8-0c31-4863-adc9-93f6177266c4
- Query name: Stack Without Template
- Platform: Terraform
- Severity: Medium
- Category: Build Process
- URL: Github
Description¶
AWS CloudFormation should have a template defined through the attribute template_url or attribute template_body
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - tf file
resource "aws_cloudformation_stack" "positive1" {
name = "networking-stack"
parameters = {
VPCCidr = "10.0.0.0/16"
}
}
Code samples without security vulnerabilities¶
Negative test num. 1 - tf file
resource "aws_cloudformation_stack" "negative1" {
name = "networking-stack"
parameters = {
VPCCidr = "10.0.0.0/16"
}
template_url = "sometemplateurl"
}
resource "aws_cloudformation_stack" "negative2" {
name = "networking-stack"
parameters = {
VPCCidr = "10.0.0.0/16"
}
template_body = "sometemplatebody"
}