Skip to content

Commit

Permalink
Merge pull request #6 from schubergphilis/update-iam-activity-filter
Browse files Browse the repository at this point in the history 
Update IAM activity filter
  • Loading branch information
@wvanheerde
wvanheerde authored Sep 9, 2021
2 parents 7b8dd74 + 8b3b17f commit c6785c4
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/terraform.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -46,4 +46,4 @@ jobs:
- name: Check out code
uses: actions/checkout@master
- name: Terraform security scan
uses: triat/terraform-security-scan@v2.1.0
uses: triat/terraform-security-scan@v3.0.0
2 changes: 1 addition & 1 deletion locals.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,7 @@ locals {

iam_activity = merge(
{
Root = "{ $.userIdentity.type = \"Root\" }"
Root = "{ $.userIdentity.type=\"Root\" && $.userIdentity.invokedBy NOT EXISTS && $.eventType != \"AwsServiceEvent\" }"
},
var.monitor_iam_activity_sso == true ? {
SSO = "{ $.readOnly IS FALSE && $.userIdentity.sessionContext.sessionIssuer.userName = \"AWSReservedSSO_*\" && $.eventName != \"ConsoleLogin\" }"
Expand Down

0 comments on commit c6785c4

Please sign in to comment.