Pattern: RDS encryption has not been enabled at a DB Instance level
Issue: -
Encryption should be enabled for an RDS Database instances.
When enabling encryption by setting the kms_key_id.
Resolution: Enable encryption for RDS clusters and instances.
Example of incorrect code:
resource "aws_db_instance" "bad_example" {
}
Example of correct code:
resource "aws_db_instance" "good_example" {
storage_encrypted = true
}