CloudTrail Logging Disabled

Query id: d4a73c49-cbaa-4c6f-80ee-d6ef5a3a26f5
Query name: CloudTrail Logging Disabled
Platform: Ansible
Severity: Medium
Category: Observability
CWE: <a href="https://cwe.mitre.org/data/definitions/778.html" onclick="newWindowOpenerSafe(event, 'https://cwe.mitre.org/data/definitions/778.html')">778
URL: <a href="https://github.com/Checkmarx/kics/tree/master/assets/queries/ansible/aws/cloudtrail_logging_disabled">Github

Checks if logging is enabled for CloudTrail.
Documentation

Positive test num. 1 - yaml file

- name: example
  community.aws.cloudtrail:
    state: present
    name: default
    enable_logging: false

Negative test num. 1 - yaml file

- name: example
  community.aws.cloudtrail:
    state: present
    name: default
    enable_logging: true