File tree Expand file tree Collapse file tree 2 files changed +1
-8
lines changed
Expand file tree Collapse file tree 2 files changed +1
-8
lines changed Original file line number Diff line number Diff line change @@ -39,10 +39,10 @@ data "aws_security_group" "existing" {
3939# # Below resources will create SECURITY-GROUP-RULE and its components.
4040# #----------------------------------------------------------------------------------
4141# tfsec:ignore:aws-ec2-no-public-egress-sgr
42+ # tfsec:ignore:aws-ec2-add-description-to-security-group-rule
4243resource "aws_security_group_rule" "egress" {
4344 count = . enable_security_group == true && length (var. sg_ids ) < 1 && var. is_external == false && var. egress_rule == true ) ? 1 : 0
4445
45- description = . sg_egress_description
4646 type = " egress"
4747 from_port = 0
4848 to_port = 65535
@@ -55,7 +55,6 @@ resource "aws_security_group_rule" "egress" {
5555resource "aws_security_group_rule" "egress_ipv6" {
5656 count = . enable_security_group == true && length (var. sg_ids ) < 1 && var. is_external == false ) && var. egress_rule == true ? 1 : 0
5757
58- description = . sg_egress_description
5958 type = " egress"
6059 from_port = 0
6160 to_port = 65535
@@ -67,7 +66,6 @@ resource "aws_security_group_rule" "egress_ipv6" {
6766resource "aws_security_group_rule" "ingress" {
6867 count = length (var. allowed_ip ) > 0 == true && length (var. sg_ids ) < 1 ? length (compact (var. allowed_ports )) : 0
6968
70- description = . sg_egress_description
7169 type = " ingress"
7270 from_port = element (var. allowed_ports , count. index )
7371 to_port = element (var. allowed_ports , count. index )
Original file line number Diff line number Diff line change @@ -358,11 +358,6 @@ variable "egress_rule" {
358358 default = true
359359 description = " Enable to create egress rule"
360360}
361- variable "sg_egress_description" {
362- type = string
363- default = " "
364- description = " Description of the egress rule."
365- }
366361
367362variable "is_external" {
368363 type = bool
You can’t perform that action at this time.
0 commit comments