Skip to content

Commit

Permalink
update dependencies for security findings
Browse files Browse the repository at this point in the history
  • Loading branch information
Plork committed Sep 10, 2024
1 parent 1dc26aa commit 4e465b2
Show file tree
Hide file tree
Showing 3 changed files with 18 additions and 6 deletions.
4 changes: 3 additions & 1 deletion config.tf
Original file line number Diff line number Diff line change
Expand Up @@ -170,7 +170,9 @@ module "aws_config_s3" {
#checkov:skip=CKV_AWS_145: False positive, KMS key is used by default https://github.com/bridgecrewio/checkov/issues/3847
providers = { aws = aws.logging }

source = "github.com/schubergphilis/terraform-aws-mcaf-s3?ref=v0.8.0"
source = "schubergphilis/mcaf-s3/aws"
version = "~> 0.14.1"

name = local.aws_config_s3_name
kms_key_arn = module.kms_key_logging.arn
policy = data.aws_iam_policy_document.aws_config_s3.json
Expand Down
12 changes: 9 additions & 3 deletions datadog.tf
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,9 @@ module "datadog_audit" {
count = try(var.datadog.enable_integration, false) == true ? 1 : 0
providers = { aws = aws.audit }

source = "github.com/schubergphilis/terraform-aws-mcaf-datadog?ref=v0.7.0"
source = "schubergphilis/mcaf-datadog/aws"
version = "~> 0.8.2"

api_key = try(var.datadog.api_key, null)
cspm_resource_collection_enabled = var.datadog.cspm_resource_collection_enabled
excluded_regions = var.datadog_excluded_regions
Expand All @@ -21,7 +23,9 @@ module "datadog_master" {
#checkov:skip=CKV_AWS_124: since this is managed by terraform, we reason that this already provides feedback and a seperate SNS topic is therefore not required
count = try(var.datadog.enable_integration, false) == true ? 1 : 0

source = "github.com/schubergphilis/terraform-aws-mcaf-datadog?ref=v0.7.0"
source = "schubergphilis/mcaf-datadog/aws"
version = "~> 0.8.2"

api_key = try(var.datadog.api_key, null)
cspm_resource_collection_enabled = var.datadog.cspm_resource_collection_enabled
excluded_regions = var.datadog_excluded_regions
Expand All @@ -40,7 +44,9 @@ module "datadog_logging" {
count = try(var.datadog.enable_integration, false) == true ? 1 : 0
providers = { aws = aws.logging }

source = "github.com/schubergphilis/terraform-aws-mcaf-datadog?ref=v0.7.0"
source = "schubergphilis/mcaf-datadog/aws"
version = "~> 0.8.2"

api_key = try(var.datadog.api_key, null)
cspm_resource_collection_enabled = var.datadog.cspm_resource_collection_enabled
excluded_regions = var.datadog_excluded_regions
Expand Down
8 changes: 6 additions & 2 deletions ses_accounts_mail_alias.tf
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,9 @@ module "ses-root-accounts-mail-alias" {
count = var.ses_root_accounts_mail_forward != null ? 1 : 0
providers = { aws = aws, aws.route53 = aws }

source = "github.com/schubergphilis/terraform-aws-mcaf-ses?ref=v0.1.3"
source = "schubergphilis/mcaf-ses/aws"
version = "~> 0.1.4"

dmarc = var.ses_root_accounts_mail_forward.dmarc
domain = var.ses_root_accounts_mail_forward.domain
kms_key_id = module.kms_key.id
Expand All @@ -17,7 +19,9 @@ module "ses-root-accounts-mail-forward" {
count = var.ses_root_accounts_mail_forward != null ? 1 : 0
providers = { aws = aws, aws.lambda = aws }

source = "github.com/schubergphilis/terraform-aws-mcaf-ses-forwarder?ref=v0.2.5"
source = "schubergphilis/mcaf-ses-forwarder/aws"
version = "~> 0.3.0"

bucket_name = "ses-forwarder-${replace(var.ses_root_accounts_mail_forward.domain, ".", "-")}"
from_email = var.ses_root_accounts_mail_forward.from_email
kms_key_arn = module.kms_key.arn
Expand Down

0 comments on commit 4e465b2

Please sign in to comment.