You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
EC2 Instance Using API Keys finds False positive result in line 288 as non-existent API keys were flagged.
{
"query_name": "EC2 Instance Using API Keys",
"query_id": "0b93729a-d882-4803-bdc3-ac429a21f158",
"query_url": "https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/instance#iam_instance_profile",
"severity": "LOW",
"platform": "Terraform",
"cloud_provider": "AWS",
"category": "Access Control",
"description": "EC2 instances should use roles to be granted access to other AWS services",
"description_id": "ffd8ce80",
"files": [
{
"file_name": "../../path/main.tf",
"similarity_id": "f4b07a02b8eb707fd322f4d0a25a366ec6caa55f496b6ab57aebed9c3310eb30",
"line": 288,
"resource_type": "aws_instance",
"resource_name": "web-app-instance",
"issue_type": "MissingAttribute",
"search_key": "aws_instance[web-app-instance]",
"search_line": 0,
"search_value": "",
"expected_value": "aws_instance[web-app-instance] should be using iam_instance_profile to assign a role with permissions",
"actual_value": "aws_instance[web-app-instance].user_data is being used to configure AWS API keys"
}
]
},
Steps to Reproduce the Problem
Run KICS Scan command docker run -v /path/to/folder:/path checkmarx/kics:v1.6.1 scan -p /path/sample.tf
Fix user_data in aws_instance reporting false positive, even when API
keys are not present in string.
Closes#5890
Co-authored-by: Patrick Pichler <git@patrickpichler.dev>
Actual Behavior
EC2 Instance Using API Keys
finds False positive result in line 288 as non-existent API keys were flagged.Steps to Reproduce the Problem
docker run -v /path/to/folder:/path checkmarx/kics:v1.6.1 scan -p /path/sample.tf
Sample to reproduce the problem:
The text was updated successfully, but these errors were encountered: