Report from the scan performed on 2020-05-24 at 00:11:11 for https://github.com/nccgroup/sadcloud
This report was generated by ShiftLeft from the SAST Scan invocation on 2020-05-24 at 00:11:11. The scan used the tool Terraform static analysis to scan the source code repository https://github.com/nccgroup/sadcloud.
Below is a summary of the issues identified:
Severity | Count |
---|---|
CRITICAL | 1 |
HIGH | 17 |
MEDIUM | 9 |
LOW | 0 |
TOTAL | 27 |
ShiftLeft recommends immediate remediation of the key issues identified before using this application in a live environment.
resource "aws_sns_topic" "main" {
name = var.name
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
resource "aws_s3_bucket" "access_logging" {
bucket_prefix = var.name
resource "aws_s3_bucket" "main" {
bucket_prefix = var.name
resource "aws_s3_bucket" "logging" {
resource "aws_s3_bucket" "getonly" {
resource "aws_s3_bucket" "public" {
resource "aws_s3_bucket" "logging" {
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = -1
cidr_blocks = ["0.0.0.0/0"]
protocol = "icmp"
cidr_blocks = ["0.0.0.0/0"]
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]
protocol = "tcp"
cidr_blocks = ["0.0.0.0/0"]