Loading controls...
Control: EC2 instance IAM role should not allow write permission on critical s3 configuration
Description
This control ensures that EC2 instance IAM roles do not allow write permission on critical s3 configuration.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.ec2_instance_no_iam_role_with_write_permission_on_critical_s3_configuration
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.ec2_instance_no_iam_role_with_write_permission_on_critical_s3_configuration --share
SQL
This control uses a named query:
ec2_instance_no_iam_role_with_write_permission_on_critical_s3_configuration