ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-11 15:25:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore(security hub): improve securityhub_enabled check logic (#1851)

Browse Source 
Co-authored-by: sergargar <sergargar@users.noreply.github.com>
This commit is contained in:
Sergio Garcia
2023-02-07 11:29:39 +01:00
committed by GitHub
parent 28a978acc2
commit 54c16e3cdb
4 changed files with 147 additions and 78 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
prowler/providers/aws/services/securityhub/securityhub_enabled/securityhub_enabled.py
View File

@@ -12,9 +12,13 @@ class securityhub_enabled(Check):
report.region = securityhub.region
if securityhub.status == "ACTIVE":
report.status = "PASS"
report.status_extended = (
f"Security Hub is enabled with standards {securityhub.standards}"
)
if securityhub.standards:
report.status_extended = f"Security Hub is enabled with standards: {securityhub.standards}"
elif securityhub.integrations:
report.status_extended = f"Security Hub is enabled without standards but with integrations: {securityhub.integrations}"
else:
report.status = "FAIL"
report.status_extended = "Security Hub is enabled but without any standard or integration"
else:
report.status = "FAIL"
report.status_extended = "Security Hub is not enabled"