Specifying CIDR as regex for security group

[pontinjx]

Hi,

I'm trying to write a rule that will fail a security group if it has an ingress rule with prefix less than /8 except on ports 443 or 80. I've tried the following but get an TerraformComplianceInvalidData: is not a valid CIDR error. I'm not sure if this is the right way to go about it or if this is even possible?

Feature: FNoPublicPorts A security group should not have less than /8 for a port other than 80 or 443   
    Scenario Outline: FNoPublicPorts A security group not have less than /8 for a port other than 80 or 443  
        Given I have aws_security_group defined
        When it contains ingress
        Then it must not have <proto> protocol and port <portRange> for "([0-9]{1,3}\.){3}[0-9]{1,3}\/[0-7]$"

        Examples:
            |proto|portRange|
            |tcp|0-79|
            |tcp|81-442|
            |tcp|444-65535|

Thanks very much

[eerkunt]

Thanks for reporting this @pontinjx. Just released 1.2.0 and it hasn't has this fix. Will have a look on this after finishing some bug fixes waiting for a long time :)

[eerkunt]

Fixed in 1.2.2 release, could you please have a try ?

Thanks 🎉

[pontinjx]

Thank you, that's working now 🎉

[ghost]

This issue's conversation is now locked. If you want to continue this discussion please open a new issue.