Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bug(cloudformation): dynamoDB Table Not Encrypted #7071

Open
kylos101 opened this issue May 21, 2024 · 0 comments
Open

bug(cloudformation): dynamoDB Table Not Encrypted #7071

kylos101 opened this issue May 21, 2024 · 0 comments
Labels
aws PR related with AWS Cloud bug Something isn't working cloudformation CloudFormation query community Community contribution query New query feature

Comments

@kylos101
Copy link

kylos101 commented May 21, 2024
edited
Loading

Expected Behavior

A Cloud Formation template containing a DynamoDB table including the following JSON should not result in this vulnerability

    "SSESpecification": {
     "SSEEnabled": false
    },

Why? A value of false means an AWS Owned key is used for encryption. (ref)

Actual Behavior

It manifests as a High severity issue.

Steps to Reproduce the Problem

Create a DynamoDB table using CloudFormation

Specifications

  • Version: 2.0.1
  • Platform: Linux
@kylos101 kylos101 added bug Something isn't working community Community contribution labels May 21, 2024
@github-actions github-actions bot added query New query feature cloudformation CloudFormation query aws PR related with AWS Cloud labels May 21, 2024
@kylos101 kylos101 changed the title bug(Cloud Formation): DynamoDB Table Not Encrypted bug(Cloud Formation): dynamoDB Table Not Encrypted May 21, 2024
@kylos101 kylos101 changed the title bug(Cloud Formation): dynamoDB Table Not Encrypted bug(cloudformation): dynamoDB Table Not Encrypted May 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
aws PR related with AWS Cloud bug Something isn't working cloudformation CloudFormation query community Community contribution query New query feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kylos101