Update aws_access_keys_rotated_x_days.yaml

acx1729 · web-flow · commit 49c6cfe387ae · 2025-01-06T12:05:31.000-05:00
diff --git a/compliance/controls/baseline/aws/IAM/aws_access_keys_rotated_x_days.yaml b/compliance/controls/baseline/aws/IAM/aws_access_keys_rotated_x_days.yaml
@@ -7,27 +7,7 @@ parameters:
   - key: awsIamAccessKeyAge
     value: '180'
 policy:
-    language: sql
-    primary_resource: aws_iam_access_key
-    definition: |
-        SELECT
-          access_key_id AS resource,
-          platform_integration_id AS platform_integration_id,
-          platform_resource_id AS platform_resource_id,
-          CASE
-            WHEN status <> 'Active' THEN 'skip'
-            WHEN create_date + ('{{.awsIamAccessKeyAge}}' || ' days')::interval < NOW() THEN 'alarm'
-            ELSE 'ok'
-          END AS status,
-          CASE
-            WHEN status <> 'Active' THEN 'key is not activated'
-            WHEN create_date + ('{{.awsIamAccessKeyAge}}' || ' days')::interval < NOW() THEN 'key is too old'
-            ELSE 'key is not old yet'
-          END AS reason,
-          region,
-          account_id
-        FROM
-          aws_iam_access_key v
+    "@ref" : "aws_iam_access_keys_policy"
 severity: medium
 tags:
     platform_score_cloud_service_name:
