From d44f6bf20fab17f4f54a10d47ffb0a5c598ec498 Mon Sep 17 00:00:00 2001
From: xxxMinoo <62087466+NMuee@users.noreply.github.com>
Date: Tue, 8 Mar 2022 21:09:20 +0800
Subject: [PATCH] fix: extra7167 Advanced Shield and CloudFront bug parsing
 None output without distributions (#1062)

* fix: not to flag as finding for account without cloudfront distributions

* fix: output empty for None from cloudfront list-distributions

* fix: extra7167 Advanced Shield and CloudFront bug parsing None output without distributions

Co-authored-by: moo.xin.foo <moo.xin.foo@accenture.com>
---
 checks/check_extra7167 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/checks/check_extra7167 b/checks/check_extra7167
index 18ce6209..c349c352 100644
--- a/checks/check_extra7167
+++ b/checks/check_extra7167
@@ -26,7 +26,7 @@ CHECK_CAF_EPIC_extra7167='Infrastructure security'
 
 extra7167() {
   if [[ "$($AWSCLI $PROFILE_OPT shield get-subscription-state --output text)" == "ACTIVE" ]]; then
-    LIST_OF_CLOUDFRONT_DISTRIBUTIONS=$($AWSCLI cloudfront list-distributions $PROFILE_OPT --query 'DistributionList.Items[*].[Id,ARN]' --output text)
+    LIST_OF_CLOUDFRONT_DISTRIBUTIONS=$($AWSCLI cloudfront list-distributions $PROFILE_OPT --query 'DistributionList.Items[*].[Id,ARN]' --output text  | grep -v None)
     if [[ $LIST_OF_CLOUDFRONT_DISTRIBUTIONS ]]; then
       while read -r distribution; do
         DISTRIBUTION_ID=$(echo $distribution | awk '{ print $1; }')