-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathinspec.yml
45 lines (37 loc) · 1.07 KB
/
inspec.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
name: aws-s3-baseline
title: aws-s3-baseline
maintainer: MITRE Security Automation Framework Team
copyright: The MITRE Corporation, 2024
copyright_email: [email protected]
license: Apache-2.0
summary: "Example inspec profile to test for any public s3 buckets or buckets with public objects and use of a local support library to speed up testing using concurrent-ruby"
version: 2.0.0
inspec_version: ">= 5.0"
supports:
- platform: aws
depends:
- name: inspec-aws
git: https://github.com/inspec/inspec-aws.git
gems:
- name: concurrent-ruby
inputs:
- name: single_bucket
description: "The name of the single bucket you wish to scan"
type: String
value: ""
- name: exempt_buckets
description: "List of buckets that should be exempted from review"
type: Array
value: []
- name: test_buckets
description: "List of buckets to test"
type: Array
value: []
- name: list_public_s3_objects_params
description: "Parameters for the list_public_s3_objects function"
type: Hash
value:
thread_pool_size: 20
batch_size: 100
max_retries: 1
retry_delay: 0.5