-
Notifications
You must be signed in to change notification settings - Fork 1.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(aws): Add new kafka service #4001
feat(aws): Add new kafka service #4001
Conversation
"Code": { | ||
"CLI": "aws kafka update-cluster-configuration --cluster-arn <arn_cluster> --current-version <current_version> --target-version <latest_version>", | ||
"NativeIaC": "", | ||
"Other": "", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"Other": "", | |
"Other": "https://www.trendmicro.com/cloudoneconformity/knowledge-base/aws/MSK/enable-apache-kafka-latest-security-features.html", |
}, | ||
"Recommendation": { | ||
"Text": "Change the database to private mode.", | ||
"Url": "https://www.trendmicro.com/cloudoneconformity/knowledge-base/aws/MSK/enable-apache-kafka-latest-security-features.html" |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"Url": "https://www.trendmicro.com/cloudoneconformity/knowledge-base/aws/MSK/enable-apache-kafka-latest-security-features.html" | |
"Url": "https://docs.aws.amazon.com/msk/latest/developerguide/version-support.html#version-upgrades" |
|
||
for page in cluster_paginator.paginate(): | ||
for cluster in page["ClusterInfoList"]: | ||
self.clusters[cluster.get("ClusterArn", "")] = Cluster( |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please use the resource filter:
if not self.audit_resources or (
is_resource_filtered(arn, self.audit_resources)
):
if cluster.kafka_version != getattr( | ||
kafka_client.kafka_versions[-1], "version", "" | ||
): |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
getattr
is not needed here ;)
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## master #4001 +/- ##
=======================================
Coverage 86.51% 86.52%
=======================================
Files 768 771 +3
Lines 23899 23971 +72
=======================================
+ Hits 20677 20741 +64
- Misses 3222 3230 +8 ☔ View full report in Codecov by Sentry. |
"Terraform": "" | ||
}, | ||
"Recommendation": { | ||
"Text": "Change the database to private mode.", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please, verify this.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please, review my comments!
Use arn variable Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>
Use arn variable Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>
…a-MSK-Checks' of github.com:puchy22/prowler into PRWLR-2756-OSS-Amazon-Managed-Streaming-for-Apache-Kafka-MSK-Checks
@@ -0,0 +1,32 @@ | |||
{ | |||
"Provider": "aws", | |||
"CheckID": "kafka_cluster_use_latest_version", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"CheckID": "kafka_cluster_use_latest_version", | |
"CheckID": "kafka_cluster_uses_latest_version", |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good job!!
Context
Add new Kafka service with one basic check.
Description
It adds new service code, basic check code to ensure using the latest version of Kafka and their respective unit tests.
License
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.