diff --git a/prowler/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec.py b/prowler/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec.py index 01d55fcf..73928192 100644 --- a/prowler/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec.py +++ b/prowler/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec.py @@ -12,14 +12,14 @@ class codebuild_project_user_controlled_buildspec(Check): report.region = project.region report.resource_id = project.name report.resource_arn = "" - report.status = "FAIL" - report.status_extended = f"CodeBuild project {project.name} does not use a user controlled buildspec" + report.status = "PASS" + report.status_extended = f"CodeBuild project {project.name} does not use an user controlled buildspec" if project.buildspec: if search(r".*\.yaml$", project.buildspec) or search( r".*\.yml$", project.buildspec ): - report.status = "PASS" - report.status_extended = f"CodeBuild project {project.name} uses a user controlled buildspec" + report.status = "FAIL" + report.status_extended = f"CodeBuild project {project.name} uses an user controlled buildspec" findings.append(report) diff --git a/tests/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec_test.py b/tests/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec_test.py index 436a4390..f6c645c6 100644 --- a/tests/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec_test.py +++ b/tests/providers/aws/services/codebuild/codebuild_project_user_controlled_buildspec/codebuild_project_user_controlled_buildspec_test.py @@ -27,9 +27,9 @@ class Test_codebuild_project_user_controlled_buildspec: result = check.execute() assert len(result) == 1 - assert result[0].status == "FAIL" + assert result[0].status == "PASS" assert search( - "does not use a user controlled buildspec", + "does not use an user controlled buildspec", result[0].status_extended, ) assert result[0].resource_id == "test" @@ -57,9 +57,9 @@ class Test_codebuild_project_user_controlled_buildspec: result = check.execute() assert len(result) == 1 - assert result[0].status == "FAIL" + assert result[0].status == "PASS" assert search( - "does not use a user controlled buildspec", + "does not use an user controlled buildspec", result[0].status_extended, ) assert result[0].resource_id == "test" @@ -87,8 +87,10 @@ class Test_codebuild_project_user_controlled_buildspec: result = check.execute() assert len(result) == 1 - assert result[0].status == "PASS" - assert search("uses a user controlled buildspec", result[0].status_extended) + assert result[0].status == "FAIL" + assert search( + "uses an user controlled buildspec", result[0].status_extended + ) assert result[0].resource_id == "test" assert result[0].resource_arn == "" @@ -114,9 +116,9 @@ class Test_codebuild_project_user_controlled_buildspec: result = check.execute() assert len(result) == 1 - assert result[0].status == "FAIL" + assert result[0].status == "PASS" assert search( - "does not use a user controlled buildspec", + "does not use an user controlled buildspec", result[0].status_extended, ) assert result[0].resource_id == "test"