Control: SQS queues should be configured with a dead-letter queue.
Description
Ensure SQS queue is configured with a dead-letter queue. Dead-letter queues are useful for debugging your application or messaging system because they let you isolate problematic messages to determine why their processing didn't succeed.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.sqs_queue_dead_letter_queue_configured
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.sqs_queue_dead_letter_queue_configured --share
SQL
This control uses a named query:
select queue_arn as resource, case when redrive_policy is not null then 'ok' else 'alarm' end as status, case when redrive_policy is not null then title || ' configured with dead-letter queue.' else title || ' not configured with dead-letter queue.' end as reason , region, account_idfrom aws_sqs_queue;