v1.0.1

Improvements

• Added the ACL check for the Cloudtrail logs s3 bucket should not be public in #15
• Added more test cases in IAM policies in #16
• Added a versioning disabled test in s3-require-mfa-delete policy in #17

Full Changelog: v1.0.0...v1.0.1

v1.0.0

Initial Release

Initial Commit / Repository Setup

• Created a new repository: policy-library-CIS-Policy-Set-for-AWS-Terraform.
• Added directory structure for:
  • docs/policies: Documentation for the included CIS policies.
  • modules: Potential modules or supporting code for policy usage.
  • policies: Sentinel policy files enforcing CIS benchmarks.
• Included sentinel.hcl for configuring and managing policy sets.

CIS Policies (Versions 1.2, 1.4 and 3.0)

• Pre-written Sentinel policies are ready to use compliance checks for CIS AWS Foundations Benchmarking v1.2, v1.4 and v3.0 to help enable AWS resources meet industry security standards. CIS policies covering 8 AWS resources (link), aligned with the specified CIS benchmark versions.
• This repository contains several policies designed to accelerate the adoption of the CIS AWS Foundations Benchmark within HCP Terraform. These policies can be utilized to enforce best practices and security standards across the AWS environments.

Supporting Files

• Added README.md to provide an overview and usage instructions.
• Added LICENSE and CONTRIBUTING.md to clarify project licensing and contribution guidelines.
• Included Makefile to streamline any build or testing processes.