CloudTrail SNS Topic Name Undefined

Query id: 482b7d26-0bdb-4b5f-bf6f-545826c0a3dd
Query name: CloudTrail SNS Topic Name Undefined
Platform: Terraform
Severity: Low
Category: Observability
URL: Github

Description¶

Check if SNS topic name is set for CloudTrail
Documentation

Code samples¶

Code samples with security vulnerabilities¶

Positive test num. 1 - tf file

resource "aws_cloudtrail" "positive1" {
  # ... other configuration ...
}

resource "aws_cloudtrail" "positive2" {
  # ... other configuration ...

  sns_topic_name = null
}

Code samples without security vulnerabilities¶

Negative test num. 1 - tf file

resource "aws_cloudtrail" "negative1" {
  # ... other configuration ...

  sns_topic_name = "some-topic"
}