@pulumi/aws-compliance-policies
Version:
This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.
23 lines (22 loc) • 770 B
TypeScript
import { ResourceValidationPolicy } from "@pulumi/policy";
declare namespace Volume {
/**
* Check that encrypted EBS volumes use a customer-managed KMS key.
*
* @severity low
* @frameworks hitrust, iso27001, pcidss
* @topics encryption, storage
* @link https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html
*/
const configureCustomerManagedKey: ResourceValidationPolicy;
/**
* Checks that EBS volumes are encrypted.
*
* @severity high
* @frameworks hitrust, iso27001, pcidss
* @topics encryption, storage
* @link https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSEncryption.html
*/
const disallowUnencryptedVolume: ResourceValidationPolicy;
}
export { Volume };