Skip to main content

🧠 AWS EC2 Image is publicly accessible - prod.logic.yaml🟢

Uses

Test Results 🟢

Generated at: 2025-12-27T12:01:48.216197955Z Open

ResultIdCondition IndexCondition TextRuntime Error
🟢001✔️ 99✔️ isDisappeared(CA10__disappearanceTime__c)✔️ null
🟢003✔️ 199✔️ extract('CA10__public__c') == true✔️ null
🟢004✔️ 299✔️ extract('CA10__public__c') == false✔️ null

Generation Bundle

FileMD5
Open/ce/ca/aws/ec2/image-public/policy.yaml855AC06F7DDB8C6158B16148D4C1EFEF
Open/ce/ca/aws/ec2/image-public/prod.logic.yaml5B2D9553A4973C91D039C2BE0DAAB4ED
Open/ce/ca/aws/ec2/image-public/test-data.jsonBE5ACA9A6D53615EF42A6649C1ADA03A
Open/types/CA10__CaAwsImage__c/object.extracts.yamlC8CCEBD443D124E5F81FD189F4E6E404

Available Commands

repo-manager policies generate FULL /ce/ca/aws/ec2/image-public/prod.logic.yaml
repo-manager policies generate DEBUG /ce/ca/aws/ec2/image-public/prod.logic.yaml
repo-manager policies generate CAPTURE_TEST_DATA /ce/ca/aws/ec2/image-public/prod.logic.yaml
repo-manager policies generate TESTS /ce/ca/aws/ec2/image-public/prod.logic.yaml
# Execute tests
repo-manager policies test /ce/ca/aws/ec2/image-public/prod.logic.yaml

Content

Open File

inputType: "CA10__CaAwsImage__c"
testData:
  - file: "test-data.json"
importExtracts:
  - file: /types/CA10__CaAwsImage__c/object.extracts.yaml
conditions:
  - status: "INCOMPLIANT"
    currentStateMessage: "The EC2 Image is publicly accessible."
    remediationMessage: "Consider restricting the image access to private or sharing only with specific AWS accounts."
    check:
      IS_EQUAL:
        left:
          EXTRACT: "CA10__public__c"
        right:
          BOOLEAN: true
  - status: "COMPLIANT"
    currentStateMessage: "The EC2 Image is not publicly accessible."
    check:
      IS_EQUAL:
        left:
          EXTRACT: "CA10__public__c"
        right:
          BOOLEAN: false
otherwise:
  status: "UNDETERMINED"
  currentStateMessage: "Unexpected values in the field."