Revoking Network access #6108 #6190

SteveLinden · 2024-02-12T15:41:10Z

A reference to the issue / Description of it

Initial list of items to change for #6108

How does this PR fix the problem?

Ways of stopping access

github-actions · 2024-02-12T15:43:09Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/templates/modernisation-platform-environments

Running Trivy in terraform/templates/modernisation-platform-environments
Skipping folder as path name contains templates

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/templates/modernisation-platform-environments

*****************************

Running Checkov in terraform/templates/modernisation-platform-environments
Skipping folder as path name contains *templates*

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:
terraform/templates/modernisation-platform-environments

*****************************

Running tflint in terraform/templates/modernisation-platform-environments
Skipping folder as path name contains *templates*
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/templates/modernisation-platform-environments

*****************************

Running Trivy in terraform/templates/modernisation-platform-environments
Skipping folder as path name contains *templates*

github-actions · 2024-02-13T16:59:06Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

github-actions · 2024-02-13T17:08:16Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

github-actions · 2024-02-16T17:01:02Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

source/runbooks/disabling-network-connections-if-needed.html.md.erb

davidkelliott

A good start, this looks to be focused on how to stop internally routed traffic, how would we prevent traffic from attacking an external service?

source/runbooks/disabling-network-connections-if-needed.html.md.erb

github-actions · 2024-02-19T13:57:56Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

github-actions · 2024-02-19T16:06:40Z

`Trivy Scan` Failed

Show Output

```hcl

Trivy will check the following folders:
terraform/environments/core-network-services

Running Trivy in terraform/environments/core-network-services
2024-02-19T16:06:30.615Z �[34mINFO�[0m Need to update DB
2024-02-19T16:06:30.615Z �[34mINFO�[0m DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-19T16:06:30.615Z �[34mINFO�[0m Downloading DB...
2024-02-19T16:06:32.508Z �[34mINFO�[0m Vulnerability scanning is enabled
2024-02-19T16:06:32.508Z �[34mINFO�[0m Misconfiguration scanning is enabled
2024-02-19T16:06:32.508Z �[34mINFO�[0m Need to update the built-in policies
2024-02-19T16:06:32.508Z �[34mINFO�[0m Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-19T16:06:32.726Z �[34mINFO�[0m Secret scanning is enabled
2024-02-19T16:06:32.726Z �[34mINFO�[0m If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-19T16:06:32.726Z �[34mINFO�[0m Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-19T16:06:35.169Z �[34mINFO�[0m Number of language-specific files: 1
2024-02-19T16:06:35.169Z �[34mINFO�[0m Detecting gomod vulnerabilities...
2024-02-19T16:06:35.176Z �[34mINFO�[0m Detected config files: 8

test/go.mod (gomod)

Total: 1 (HIGH: 1, CRITICAL: 0)

┌─────────────────┬────────────────┬──────────┬────────┬─────────────────────────────────────────────┬────────────────┬──────────────────────────────────────────────────────────────┐
│ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version │ Title │
├─────────────────┼────────────────┼──────────┼────────┼─────────────────────────────────────────────┼────────────────┼──────────────────────────────────────────────────────────────┤
│ go.etcd.io/etcd │ CVE-2020-15114 │ HIGH │ fixed │ 0.5.0-alpha.5.0.20200910180754-dd1b699fc489 │ 3.4.10, 3.3.23 │ etcd: gateway can include itself as an endpoint resulting in │
│ │ │ │ │ │ │ resource exhaustion... │
│ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2020-15114 │
└─────────────────┴────────────────┴──────────┴────────┴─────────────────────────────────────────────┴────────────────┴──────────────────────────────────────────────────────────────┘
trivy_exitcode=1

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/environments/core-network-services

*****************************

Running Checkov in terraform/environments/core-network-services
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
2024-02-19 16:06:37,422 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-terraform-pagerduty-integration?ref=0179859e6fafc567843cd55c0b05d325d5012dc4:None (for external modules, the --download-external-modules flag is required)
terraform scan results:

Passed checks: 214, Failed checks: 0, Skipped checks: 88


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:
terraform/environments/core-network-services

*****************************

Running tflint in terraform/environments/core-network-services
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Failed

Show Output

*****************************

Trivy will check the following folders:
terraform/environments/core-network-services

*****************************

Running Trivy in terraform/environments/core-network-services
2024-02-19T16:06:30.615Z	�[34mINFO�[0m	Need to update DB
2024-02-19T16:06:30.615Z	�[34mINFO�[0m	DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-19T16:06:30.615Z	�[34mINFO�[0m	Downloading DB...
2024-02-19T16:06:32.508Z	�[34mINFO�[0m	Vulnerability scanning is enabled
2024-02-19T16:06:32.508Z	�[34mINFO�[0m	Misconfiguration scanning is enabled
2024-02-19T16:06:32.508Z	�[34mINFO�[0m	Need to update the built-in policies
2024-02-19T16:06:32.508Z	�[34mINFO�[0m	Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-19T16:06:32.726Z	�[34mINFO�[0m	Secret scanning is enabled
2024-02-19T16:06:32.726Z	�[34mINFO�[0m	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-19T16:06:32.726Z	�[34mINFO�[0m	Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-19T16:06:35.169Z	�[34mINFO�[0m	Number of language-specific files: 1
2024-02-19T16:06:35.169Z	�[34mINFO�[0m	Detecting gomod vulnerabilities...
2024-02-19T16:06:35.176Z	�[34mINFO�[0m	Detected config files: 8

test/go.mod (gomod)
===================
Total: 1 (HIGH: 1, CRITICAL: 0)

┌─────────────────┬────────────────┬──────────┬────────┬─────────────────────────────────────────────┬────────────────┬──────────────────────────────────────────────────────────────┐
│     Library     │ Vulnerability  │ Severity │ Status │              Installed Version              │ Fixed Version  │                            Title                             │
├─────────────────┼────────────────┼──────────┼────────┼─────────────────────────────────────────────┼────────────────┼──────────────────────────────────────────────────────────────┤
│ go.etcd.io/etcd │ CVE-2020-15114 │ HIGH     │ fixed  │ 0.5.0-alpha.5.0.20200910180754-dd1b699fc489 │ 3.4.10, 3.3.23 │ etcd: gateway can include itself as an endpoint resulting in │
│                 │                │          │        │                                             │                │ resource exhaustion...                                       │
│                 │                │          │        │                                             │                │ https://avd.aquasec.com/nvd/cve-2020-15114                   │
└─────────────────┴────────────────┴──────────┴────────┴─────────────────────────────────────────────┴────────────────┴──────────────────────────────────────────────────────────────┘
trivy_exitcode=1

github-actions · 2024-02-19T16:09:23Z

`Trivy Scan` Failed

Show Output

```hcl

Trivy will check the following folders:
terraform/environments/core-network-services

Running Trivy in terraform/environments/core-network-services
2024-02-19T16:09:13.718Z �[34mINFO�[0m Need to update DB
2024-02-19T16:09:13.718Z �[34mINFO�[0m DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-19T16:09:13.718Z �[34mINFO�[0m Downloading DB...
2024-02-19T16:09:15.660Z �[34mINFO�[0m Vulnerability scanning is enabled
2024-02-19T16:09:15.660Z �[34mINFO�[0m Misconfiguration scanning is enabled
2024-02-19T16:09:15.660Z �[34mINFO�[0m Need to update the built-in policies
2024-02-19T16:09:15.660Z �[34mINFO�[0m Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-19T16:09:15.914Z �[34mINFO�[0m Secret scanning is enabled
2024-02-19T16:09:15.914Z �[34mINFO�[0m If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-19T16:09:15.914Z �[34mINFO�[0m Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-19T16:09:18.034Z �[34mINFO�[0m Number of language-specific files: 1
2024-02-19T16:09:18.034Z �[34mINFO�[0m Detecting gomod vulnerabilities...
2024-02-19T16:09:18.045Z �[34mINFO�[0m Detected config files: 8

test/go.mod (gomod)

Total: 1 (HIGH: 1, CRITICAL: 0)

┌─────────────────┬────────────────┬──────────┬────────┬─────────────────────────────────────────────┬────────────────┬──────────────────────────────────────────────────────────────┐
│ Library │ Vulnerability │ Severity │ Status │ Installed Version │ Fixed Version │ Title │
├─────────────────┼────────────────┼──────────┼────────┼─────────────────────────────────────────────┼────────────────┼──────────────────────────────────────────────────────────────┤
│ go.etcd.io/etcd │ CVE-2020-15114 │ HIGH │ fixed │ 0.5.0-alpha.5.0.20200910180754-dd1b699fc489 │ 3.4.10, 3.3.23 │ etcd: gateway can include itself as an endpoint resulting in │
│ │ │ │ │ │ │ resource exhaustion... │
│ │ │ │ │ │ │ https://avd.aquasec.com/nvd/cve-2020-15114 │
└─────────────────┴────────────────┴──────────┴────────┴─────────────────────────────────────────────┴────────────────┴──────────────────────────────────────────────────────────────┘
trivy_exitcode=1

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/environments/core-network-services

*****************************

Running Checkov in terraform/environments/core-network-services
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
2024-02-19 16:09:20,254 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-terraform-pagerduty-integration?ref=0179859e6fafc567843cd55c0b05d325d5012dc4:None (for external modules, the --download-external-modules flag is required)
terraform scan results:

Passed checks: 214, Failed checks: 0, Skipped checks: 88


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:
terraform/environments/core-network-services

*****************************

Running tflint in terraform/environments/core-network-services
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Failed

Show Output

*****************************

Trivy will check the following folders:
terraform/environments/core-network-services

*****************************

Running Trivy in terraform/environments/core-network-services
2024-02-19T16:09:13.718Z	�[34mINFO�[0m	Need to update DB
2024-02-19T16:09:13.718Z	�[34mINFO�[0m	DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-19T16:09:13.718Z	�[34mINFO�[0m	Downloading DB...
2024-02-19T16:09:15.660Z	�[34mINFO�[0m	Vulnerability scanning is enabled
2024-02-19T16:09:15.660Z	�[34mINFO�[0m	Misconfiguration scanning is enabled
2024-02-19T16:09:15.660Z	�[34mINFO�[0m	Need to update the built-in policies
2024-02-19T16:09:15.660Z	�[34mINFO�[0m	Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-19T16:09:15.914Z	�[34mINFO�[0m	Secret scanning is enabled
2024-02-19T16:09:15.914Z	�[34mINFO�[0m	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-19T16:09:15.914Z	�[34mINFO�[0m	Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-19T16:09:18.034Z	�[34mINFO�[0m	Number of language-specific files: 1
2024-02-19T16:09:18.034Z	�[34mINFO�[0m	Detecting gomod vulnerabilities...
2024-02-19T16:09:18.045Z	�[34mINFO�[0m	Detected config files: 8

test/go.mod (gomod)
===================
Total: 1 (HIGH: 1, CRITICAL: 0)

┌─────────────────┬────────────────┬──────────┬────────┬─────────────────────────────────────────────┬────────────────┬──────────────────────────────────────────────────────────────┐
│     Library     │ Vulnerability  │ Severity │ Status │              Installed Version              │ Fixed Version  │                            Title                             │
├─────────────────┼────────────────┼──────────┼────────┼─────────────────────────────────────────────┼────────────────┼──────────────────────────────────────────────────────────────┤
│ go.etcd.io/etcd │ CVE-2020-15114 │ HIGH     │ fixed  │ 0.5.0-alpha.5.0.20200910180754-dd1b699fc489 │ 3.4.10, 3.3.23 │ etcd: gateway can include itself as an endpoint resulting in │
│                 │                │          │        │                                             │                │ resource exhaustion...                                       │
│                 │                │          │        │                                             │                │ https://avd.aquasec.com/nvd/cve-2020-15114                   │
└─────────────────┴────────────────┴──────────┴────────┴─────────────────────────────────────────────┴────────────────┴──────────────────────────────────────────────────────────────┘
trivy_exitcode=1

source/runbooks/disabling-network-connections-if-needed.html.md.erb

…reation

github-actions · 2024-02-20T10:26:03Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:
terraform/environments/bootstrap/member-bootstrap

Running Trivy in terraform/environments/bootstrap/member-bootstrap
2024-02-20T10:25:52.096Z �[34mINFO�[0m Need to update DB
2024-02-20T10:25:52.096Z �[34mINFO�[0m DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-20T10:25:52.096Z �[34mINFO�[0m Downloading DB...
2024-02-20T10:25:54.040Z �[34mINFO�[0m Vulnerability scanning is enabled
2024-02-20T10:25:54.040Z �[34mINFO�[0m Misconfiguration scanning is enabled
2024-02-20T10:25:54.040Z �[34mINFO�[0m Need to update the built-in policies
2024-02-20T10:25:54.040Z �[34mINFO�[0m Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-20T10:25:54.274Z �[34mINFO�[0m Secret scanning is enabled
2024-02-20T10:25:54.274Z �[34mINFO�[0m If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-20T10:25:54.274Z �[34mINFO�[0m Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-20T10:25:58.882Z �[34mINFO�[0m Number of language-specific files: 0
2024-02-20T10:25:58.882Z �[34mINFO�[0m Detected config files: 3
trivy_exitcode=0

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:
terraform/environments/bootstrap/member-bootstrap

*****************************

Running Checkov in terraform/environments/bootstrap/member-bootstrap
Excluding the following checks: CKV_GIT_1,CKV_AWS_126,CKV2_AWS_38,CKV2_AWS_39
2024-02-20 10:26:01,115 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-terraform-cross-account-access?ref=6819b090bce6d3068d55c7c7b9b3fd18c9dca648:None (for external modules, the --download-external-modules flag is required)
2024-02-20 10:26:01,116 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-github-oidc-role?ref=c3bde7c787038ff5536bfb1b73781072edbb74da:None (for external modules, the --download-external-modules flag is required)
2024-02-20 10:26:01,116 [MainThread  ] [WARNI]  Failed to download module github.com/ministryofjustice/modernisation-platform-github-oidc-provider?ref=82f546bd5f002674138a2ccdade7d7618c6758b3:None (for external modules, the --download-external-modules flag is required)
2024-02-20 10:26:01,116 [MainThread  ] [WARNI]  Failed to download module terraform-aws-modules/iam/aws//modules/iam-assumable-role:~> 5 (for external modules, the --download-external-modules flag is required)
2024-02-20 10:26:01,116 [MainThread  ] [WARNI]  Failed to download module terraform-aws-modules/iam/aws//modules/iam-assumable-roles:~> 5 (for external modules, the --download-external-modules flag is required)
terraform scan results:

Passed checks: 121, Failed checks: 0, Skipped checks: 50


checkov_exitcode=0

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:
terraform/environments/bootstrap/member-bootstrap

*****************************

Running tflint in terraform/environments/bootstrap/member-bootstrap
Excluding the following checks: terraform_unused_declarations
tflint_exitcode=0

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:
terraform/environments/bootstrap/member-bootstrap

*****************************

Running Trivy in terraform/environments/bootstrap/member-bootstrap
2024-02-20T10:25:52.096Z	�[34mINFO�[0m	Need to update DB
2024-02-20T10:25:52.096Z	�[34mINFO�[0m	DB Repository: ghcr.io/aquasecurity/trivy-db
2024-02-20T10:25:52.096Z	�[34mINFO�[0m	Downloading DB...
2024-02-20T10:25:54.040Z	�[34mINFO�[0m	Vulnerability scanning is enabled
2024-02-20T10:25:54.040Z	�[34mINFO�[0m	Misconfiguration scanning is enabled
2024-02-20T10:25:54.040Z	�[34mINFO�[0m	Need to update the built-in policies
2024-02-20T10:25:54.040Z	�[34mINFO�[0m	Downloading the built-in policies...
45.79 KiB / 45.79 KiB [-----------------------------------------------------------] 100.00% ? p/s 0s2024-02-20T10:25:54.274Z	�[34mINFO�[0m	Secret scanning is enabled
2024-02-20T10:25:54.274Z	�[34mINFO�[0m	If your scanning is slow, please try '--scanners vuln' to disable secret scanning
2024-02-20T10:25:54.274Z	�[34mINFO�[0m	Please see also https://aquasecurity.github.io/trivy/v0.49/docs/scanner/secret/#recommendation for faster secret detection
2024-02-20T10:25:58.882Z	�[34mINFO�[0m	Number of language-specific files: 0
2024-02-20T10:25:58.882Z	�[34mINFO�[0m	Detected config files: 3
trivy_exitcode=0

github-actions · 2024-02-21T11:33:40Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

github-actions · 2024-02-21T16:36:14Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

source/runbooks/disabling-network-connections-if-needed.html.md.erb

github-actions · 2024-02-23T11:38:20Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

github-actions · 2024-02-23T16:41:18Z

`Trivy Scan` Success

Show Output

```hcl

Trivy will check the following folders:

</details> #### `Checkov Scan` Success
<details><summary>Show Output</summary>

```hcl

*****************************

Checkov will check the following folders:

`CTFLint Scan` Success

Show Output

*****************************

Setting default tflint config...
Running tflint --init...
Installing "terraform" plugin...
Installed "terraform" (source: github.com/terraform-linters/tflint-ruleset-terraform, version: 0.5.0)
tflint will check the following folders:

`Trivy Scan` Success

Show Output

*****************************

Trivy will check the following folders:

Change made

Initial version of documentation for Revoking User Access #6109

87b3e79

github-actions bot added the documentation label Feb 12, 2024

SteveLinden changed the title ~~Initial version of documentation for Revoking User Access #6109~~ Initial version of documentation for Revoking User Access #6108 Feb 12, 2024

SteveLinden changed the title ~~Initial version of documentation for Revoking User Access #6108~~ Initial version of documentation Revoking Network access #6108 Feb 12, 2024

Changes to add some screen shots

9296b1c

Tidying mistakes made by the markdown file

438f564

Amenments to the documentation to add another screenshot

a31e916

SteveLinden changed the title ~~Initial version of documentation Revoking Network access #6108~~ Revoking Network access #6108 Feb 16, 2024

davidkelliott reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

davidkelliott reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Show resolved Hide resolved

davidkelliott reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

davidkelliott reviewed Feb 19, 2024

View reviewed changes

ewastempel reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

ewastempel reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

Removed the screenshots as suggested by Dave E

ce879bc

Amending notes based on comments in the review

f8d9f93

Amending notes based on comments in the review. Amended a spelling error

ab01b07

ewastempel reviewed Feb 19, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

Additional chages to cover discussions and show a link to blackhole c…

6e93298

…reation

May cover all the suggestions from #6108

a77d860

A little tidying and moving document to runbooks

01a39ef

SteveLinden marked this pull request as ready for review February 23, 2024 08:09

SteveLinden requested a review from a team as a code owner February 23, 2024 08:09

ep-93 previously requested changes Feb 23, 2024

View reviewed changes

source/runbooks/disabling-network-connections-if-needed.html.md.erb Outdated Show resolved Hide resolved

source/runbooks/disabling-network-connections-if-needed.html.md.erb Show resolved Hide resolved

Amendmens following comments by Edd

5589729

Attempted to put quotes around the buttons/menus to pick

999335b

SteveLinden closed this Feb 26, 2024

dms1981 deleted the documentation/block-network-access branch April 30, 2024 13:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Revoking Network access #6108 #6190

Revoking Network access #6108 #6190

SteveLinden commented Feb 12, 2024 •

edited

Loading

github-actions bot commented Feb 12, 2024

github-actions bot commented Feb 13, 2024

github-actions bot commented Feb 13, 2024

github-actions bot commented Feb 16, 2024

davidkelliott left a comment

github-actions bot commented Feb 19, 2024

github-actions bot commented Feb 19, 2024

test/go.mod (gomod)

github-actions bot commented Feb 19, 2024

test/go.mod (gomod)

github-actions bot commented Feb 20, 2024

github-actions bot commented Feb 21, 2024

github-actions bot commented Feb 21, 2024

github-actions bot commented Feb 23, 2024

github-actions bot commented Feb 23, 2024

Revoking Network access #6108 #6190

Revoking Network access #6108 #6190

Conversation

SteveLinden commented Feb 12, 2024 • edited Loading

A reference to the issue / Description of it

How does this PR fix the problem?

github-actions bot commented Feb 12, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 13, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 13, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 16, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

davidkelliott left a comment

Choose a reason for hiding this comment

github-actions bot commented Feb 19, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 19, 2024

Trivy Scan Failed

test/go.mod (gomod)

CTFLint Scan Success

Trivy Scan Failed

github-actions bot commented Feb 19, 2024

Trivy Scan Failed

test/go.mod (gomod)

CTFLint Scan Success

Trivy Scan Failed

github-actions bot commented Feb 20, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 21, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 21, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 23, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

github-actions bot commented Feb 23, 2024

Trivy Scan Success

CTFLint Scan Success

Trivy Scan Success

SteveLinden commented Feb 12, 2024 •

edited

Loading

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Failed

`CTFLint Scan` Success

`Trivy Scan` Failed

`Trivy Scan` Failed

`CTFLint Scan` Success

`Trivy Scan` Failed

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success

`Trivy Scan` Success

`CTFLint Scan` Success

`Trivy Scan` Success