Skip to content

Commit

Permalink
fix(checks): correctly check the addresses count in the AVD-NIF-0001 …
Browse files Browse the repository at this point in the history 
…rule
  • Loading branch information
@aokumasan @simar7
aokumasan authored and simar7 committed Oct 10, 2024
1 parent e0baac7 commit ae293f3
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion checks/cloud/nifcloud/computing/no_public_ingress_sgr.rego
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,6 @@ deny contains res if {
some sg in input.nifcloud.computing.securitygroups
some rule in sg.ingressrules
cidr.is_public(rule.cidr.value)
cidr.count_addresses(rule.cidr.value) > 0
cidr.count_addresses(rule.cidr.value) > 1
res := result.new("Security group rule allows ingress from public internet.", rule.cidr)
}

0 comments on commit ae293f3

Please sign in to comment.