Checks/Aws/Test-SsmManagedCompliantPatching.ps1
|
function Test-SsmManagedCompliantPatching { <# .SYNOPSIS EC2 managed instance is compliant with Systems Manager patching requirements .DESCRIPTION **SSM-managed EC2 instances** report **patch compliance** against defined baselines. This evaluates each managed node's compliance status from Patch Manager to determine whether required security updates are applied according to policy. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: ssm_managed_compliant_patching [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check ssm_managed_compliant_patching for reference.', 'N/A', 'ssm Resources') } |