Control: EC2 instances should not be attached to 'launch wizard' security groups
Description
Ensure EC2 instances provisioned in your AWS account are not associated with security groups that have their name prefixed with 'launch-wizard', in order to enforce using secure and custom security groups that exercise the principle of least privilege.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.ec2_instance_no_launch_wizard_security_groupSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.ec2_instance_no_launch_wizard_security_group --shareSQL
This control uses a named query:
ec2_instance_no_launch_wizard_security_group