Output Without Description

• Query id: 59312e8a-a64e-41e7-a252-618533dd1ea8
• Query name: Output Without Description
• Platform: Terraform
• Severity: Info
• Category: Best Practices
• URL: Github

Description

All outputs should contain a valid description.
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - tf file

output "cluster_name" {
  value = "example"
}

resource "aws_eks_cluster" "positive1" {
  depends_on = [aws_cloudwatch_log_group.example]
}

Positive test num. 2 - tf file

output "cluster_name" {
  value = "example"
  description = " "
}

resource "aws_eks_cluster" "positive1" {
  depends_on = [aws_cloudwatch_log_group.example]
}

Positive test num. 3 - tf file

output "cluster_name" {
  value = "example"
  description = ""
}

resource "aws_eks_cluster" "positive1" {
  depends_on = [aws_cloudwatch_log_group.example]
}

Code samples without security vulnerabilities

Negative test num. 1 - tf file

output "cluster_name" {
  value = "example"
  description = "cluster name"
}

resource "aws_eks_cluster" "negative1" {
  depends_on = [aws_cloudwatch_log_group.example]

  enabled_cluster_log_types = ["api", "audit", "authenticator", "controllerManager", "scheduler"]
}