Control: Kubernetes clusters should use type ephemeral OS disk
Description
Ensure Kubernetes clusters use ephemeral type OS disk. This control is non-compliant if Kubernetes clusters do not use ephemeral type OS disk.
Usage
Run the control in your terminal:
powerpipe control run terraform_azure_compliance.control.kubernetes_cluster_os_disk_ephemeralSnapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run terraform_azure_compliance.control.kubernetes_cluster_os_disk_ephemeral --shareSQL
This control uses a named query:
select address as resource, case when (attributes_std -> 'default_node_pool' ->> 'os_disk_type') = 'Ephemeral' then 'ok' else 'alarm' end status, split_part(address, '.', 2) || case when (attributes_std -> 'default_node_pool' ->> 'os_disk_type') = 'Ephemeral' then ' use ephemeral OS disks' else ' does not use ephemeral OS disks' end || '.' reason , path || ':' || start_linefrom terraform_resourcewhere type = 'azurerm_kubernetes_cluster';