Checks/Aws/Test-EventbridgeSchemaRegistryCrossAccountAccess.ps1
|
function Test-EventbridgeSchemaRegistryCrossAccountAccess { <# .SYNOPSIS AWS EventBridge schema registry does not allow cross-account access .DESCRIPTION **EventBridge schema registry** resource policies are assessed for **cross-account access**. It identifies statements that grant external or public principals (e.g., `Principal: *` or other accounts) permissions to interact with the registry and its schemas. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: eventbridge_schema_registry_cross_account_access [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check eventbridge_schema_registry_cross_account_access for reference.', 'N/A', 'eventbridge Resources') } |