bug(cloudformation): False Positive detection for AVD-AWS-0088 #6024
Labels
kind/bug
Categorizes issue or PR as related to a bug.
scan/misconfiguration
Issues relating to misconfiguration scanning
Milestone
We should not warn about
AVD-AWS-0088
if theKMSMasterKeyID
attribute references an ARN, id or key alias.Example:
Ref:
Discussed in #6022
Originally posted by yama-6 January 31, 2024
IDs
AVD-AWS-0088
Description
I enabled Server side Encryption on S3 bucket, but trivy detected "AVD-AWS-0088"
similar discussion: #5262
Reproduction Steps
trivy config cdk_template.yaml
thenAVD-AWS-0088
is detecedTarget
AWS
Scanner
Misconfiguration
Target OS
M1 macOS 14.1.2
Debug Output
Version
Checklist
-f json
that shows data sources and confirmed that the security advisory in data sources was correctThe text was updated successfully, but these errors were encountered: