class RDSInstancePubliclyAccessibleRule

Public Instance Methods

audit_impl(cfn_model) click to toggle source
# File lib/cfn-nag/custom_rules/RDSInstancePubliclyAccessibleRule.rb, line 19
def audit_impl(cfn_model)
  rds_dbinstances = cfn_model.resources_by_type('AWS::RDS::DBInstance')

  violating_rdsinstances = rds_dbinstances.select do |instance|
    instance.publiclyAccessible.nil? || instance.publiclyAccessible.to_s.casecmp('true').zero?
  end

  violating_rdsinstances.map(&:logical_resource_id)
end
rule_id() click to toggle source
# File lib/cfn-nag/custom_rules/RDSInstancePubliclyAccessibleRule.rb, line 15
def rule_id
  'F22'
end
rule_text() click to toggle source
# File lib/cfn-nag/custom_rules/RDSInstancePubliclyAccessibleRule.rb, line 7
def rule_text
  'RDS instance should not be publicly accessible'
end
rule_type() click to toggle source
# File lib/cfn-nag/custom_rules/RDSInstancePubliclyAccessibleRule.rb, line 11
def rule_type
  Violation::FAILING_VIOLATION
end