Checks/Aws/Test-RdsSnapshotsPublicAccess.ps1
|
function Test-RdsSnapshotsPublicAccess { <# .SYNOPSIS RDS snapshot is not publicly shared .DESCRIPTION **RDS DB snapshots** and **DB cluster snapshots** with **public visibility** (shared with `all` AWS accounts) are detected. Snapshots limited to specific accounts or kept private are identified as restricted. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: rds_snapshots_public_access [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check rds_snapshots_public_access for reference.', 'N/A', 'rds Resources') } |