Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Look for externally shared DynamoDB Tables #3867

Closed
jchrisfarris opened this issue Apr 28, 2024 · 1 comment · Fixed by #3932
Closed

Look for externally shared DynamoDB Tables #3867

jchrisfarris opened this issue Apr 28, 2024 · 1 comment · Fixed by #3932
Assignees
@sergargar
Labels
feature-request New feature request for Prowler. provider/aws Issues/PRs related with the AWS provider

Comments

@jchrisfarris
Copy link
Contributor

New feature motivation

On march 20th, AWS announced Amazon DynamoDB now supports resource-based policies. It would be good to have a Prowler check to look for DDB tables that have been shared to other accounts (note: it's not possible to share a table publicly, so this is good).

Solution Proposed

Boto3 call for the solution
https://boto3.amazonaws.com/v1/documentation/api/latest/reference/services/dynamodb/client/get_resource_policy.html

Describe alternatives you've considered

None, this is a new feature release.

Additional context

No response
@jchrisfarris jchrisfarris added feature-request New feature request for Prowler. status/needs-triage Issue pending triage labels Apr 28, 2024
@sergargar sergargar self-assigned this May 6, 2024
@sergargar sergargar added work-in-progress provider/aws Issues/PRs related with the AWS provider and removed status/needs-triage Issue pending triage labels May 6, 2024
@sergargar
Copy link
Member

Thanks for letting us know this new change @jchrisfarris !
I'm working on this new check 💪🏼

@sergargar sergargar linked a pull request May 6, 2024 that will close this issue
feat(aws): new dynamodb_table_cross_account_access check #3932
Merged
@sergargar sergargar mentioned this issue May 6, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sergargar sergargar

Labels
feature-request New feature request for Prowler. provider/aws Issues/PRs related with the AWS provider
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(aws): new dynamodb_table_cross_account_access check prowler-cloud/prowler
3 participants
@jchrisfarris @jfagoagas @sergargar