Skip to content

Commit

Permalink
Merge pull request #473 from ministryofjustice/DSOS-2885/fix-dso-stat…
Browse files Browse the repository at this point in the history 
…ic-analysis-scans

add Static analysis scan exception for module
  • Loading branch information
@robertsweetman
robertsweetman authored Jul 4, 2024
2 parents cb05228 + 2771fe4 commit 7b2b75c
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions main.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -137,6 +137,7 @@ resource "aws_s3_bucket_policy" "default" {
}
# AWS-provided KMS acceptable compromise in absence of customer provided key
# tfsec:ignore:aws-s3-encryption-customer-key
#tfsec:ignore:avd-aws-0132 S3 encryption should use Custom Managed Keys, KMS is acceptable compromise
resource "aws_s3_bucket_server_side_encryption_configuration" "default" {
#checkov:skip=CKV2_AWS_67: "Ensure AWS S3 bucket encrypted with Customer Managed Key (CMK) has regular rotation"

Expand Down

0 comments on commit 7b2b75c

Please sign in to comment.