Devolutions.CIEM

0.3.28

Checks/Aws/Test-IamInlinePolicyNoFullAccessToCloudtrail.ps1

                                function Test-IamInlinePolicyNoFullAccessToCloudtrail {

    <#

    .SYNOPSIS

        Inline IAM policy does not allow 'cloudtrail:*' privileges

    .DESCRIPTION

        **IAM inline policies** are evaluated for statements that grant **full CloudTrail permissions** (`cloudtrail:*`) to all resources.

        The finding flags identity policies that provide unrestricted control over CloudTrail operations.

    .PARAMETER Check

        CIEMCheck object containing check metadata.

    #>

    [CmdletBinding()]

    [OutputType([PSCustomObject[]])]

    param(

        [Parameter(Mandatory)]

        [CIEMCheck]$Check

    )

    $ErrorActionPreference = 'Stop'

    # TODO: Implement check logic based on Prowler check: iam_inline_policy_no_full_access_to_cloudtrail

    [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check iam_inline_policy_no_full_access_to_cloudtrail for reference.', 'N/A', 'iam Resources')

}