Stack Notifications Disabled

  • Query id: b72d0026-f649-4c91-a9ea-15d8f681ac09
  • Query name: Stack Notifications Disabled
  • Platform: Terraform
  • Severity: Medium
  • Category: Observability
  • URL: Github

Description

AWS CloudFormation should have stack notifications enabled to be notified when an event occurs
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - tf file
resource "aws_cloudformation_stack" "positive1" {

  name = "networking-stack"

  parameters = {
    VPCCidr = "10.0.0.0/16"
  }


}

Code samples without security vulnerabilities

Negative test num. 1 - tf file
resource "aws_cloudformation_stack" "negative1" {

  name = "networking-stack"

  parameters = {
    VPCCidr = "10.0.0.0/16"
  }


  notification_arns = ["a","b"]

}