Skip to content
tflint

tflint #14

Sign in to view logs

tflint

tflint #14

GitHub Actions / tfsec failed Oct 24, 2024 in 1s

reviewdog [tfsec] report

reported by reviewdog 🐶

Findings (4)

main.tf|96| Launch configuration does not require IMDS access to require a token
groups.tf|19| Security group rule allows egress to multiple public internet addresses.
elb.tf|30| Security group rule allows ingress from public internet.
elb.tf|63| Application load balancer is not set to drop invalid headers.

Filtered Findings (0)

Annotations

Check failure on line 96 in main.tf

See this annotation in the file changed.

@github-actions github-actions / tfsec

[tfsec] main.tf#L96 <AVD-AWS-0130>(https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/enforce-launch-config-http-token-imds/) 

Launch configuration does not require IMDS access to require a token
Raw output 
message:"Launch configuration does not require IMDS access to require a token"  location:{path:"/home/runner/work/terraform-aws-nexus/terraform-aws-nexus/main.tf"  range:{start:{line:96}}}  severity:ERROR  source:{name:"tfsec"  url:"https://github.com/aquasecurity/tfsec"}  code:{value:"AVD-AWS-0130"  url:"https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/enforce-launch-config-http-token-imds/"}

Check failure on line 19 in groups.tf

See this annotation in the file changed.

@github-actions github-actions / tfsec

[tfsec] groups.tf#L19 <AVD-AWS-0104>(https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/no-public-egress-sgr/) 

Security group rule allows egress to multiple public internet addresses.
Raw output 
message:"Security group rule allows egress to multiple public internet addresses."  location:{path:"/home/runner/work/terraform-aws-nexus/terraform-aws-nexus/groups.tf"  range:{start:{line:19}}}  severity:ERROR  source:{name:"tfsec"  url:"https://github.com/aquasecurity/tfsec"}  code:{value:"AVD-AWS-0104"  url:"https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/no-public-egress-sgr/"}

Check failure on line 30 in elb.tf

See this annotation in the file changed.

@github-actions github-actions / tfsec

[tfsec] elb.tf#L30 <AVD-AWS-0107>(https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/no-public-ingress-sgr/) 

Security group rule allows ingress from public internet.
Raw output 
message:"Security group rule allows ingress from public internet."  location:{path:"/home/runner/work/terraform-aws-nexus/terraform-aws-nexus/elb.tf"  range:{start:{line:30}}}  severity:ERROR  source:{name:"tfsec"  url:"https://github.com/aquasecurity/tfsec"}  code:{value:"AVD-AWS-0107"  url:"https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/ec2/no-public-ingress-sgr/"}

Check failure on line 63 in elb.tf

See this annotation in the file changed.

@github-actions github-actions / tfsec

[tfsec] elb.tf#L63 <AVD-AWS-0052>(https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/elb/drop-invalid-headers/) 

Application load balancer is not set to drop invalid headers.
Raw output 
message:"Application load balancer is not set to drop invalid headers."  location:{path:"/home/runner/work/terraform-aws-nexus/terraform-aws-nexus/elb.tf"  range:{start:{line:63}}}  severity:ERROR  source:{name:"tfsec"  url:"https://github.com/aquasecurity/tfsec"}  code:{value:"AVD-AWS-0052"  url:"https://aquasecurity.github.io/tfsec/v1.28.11/checks/aws/elb/drop-invalid-headers/"}
View more details on GitHub Actions