Checks/Aws/Test-EfsMountTargetNotPubliclyAccessible.ps1
|
function Test-EfsMountTargetNotPubliclyAccessible { <# .SYNOPSIS EFS file system has no publicly accessible mount targets .DESCRIPTION **EFS mount targets** associated with VPC subnets that auto-assign public IPv4 addresses (`mapPublicIpOnLaunch=true`) are identified per file system. The evaluation focuses on the subnet attribute linked to each mount target. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: efs_mount_target_not_publicly_accessible [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check efs_mount_target_not_publicly_accessible for reference.', 'N/A', 'efs Resources') } |