UNPKG

@pulumi/aws-compliance-policies

Version:

This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.

41 lines (40 loc) 1.43 kB
import { ResourceValidationPolicy } from "@pulumi/policy"; declare namespace LoadBalancer { /** * Check that ELB Load Balancers uses access logging. * * @severity medium * @frameworks hitrust, iso27001, pcidss * @topics logging, network * @link none */ const configureAccessLogging: ResourceValidationPolicy; /** * Check that ELB Load Balancers uses more than one availability zone. * * @severity high * @frameworks hitrust * @topics availability, network * @link https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/enable-disable-az.html */ const configureMultiAvailabilityZone: ResourceValidationPolicy; /** * Check that ELB Load Balancers do not allow unencrypted (HTTP) traffic. * * @severity critical * @frameworks hitrust, iso27001, pcidss * @topics network * @link https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-https-load-balancers.html */ const disallowUnencryptedTraffic: ResourceValidationPolicy; /** * Check that ELB Load Balancers have a health check enabled. * * @severity high * @frameworks hitrust * @topics availability, network * @link https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-healthchecks.html */ const enableHealthCheck: ResourceValidationPolicy; } export { LoadBalancer };