fix: missing verifySSL parameter in CloudScanning (#37)

Author: airadier

templates/CloudScanning.yaml

@@ -21,6 +21,12 @@ Parameters:
   SysdigSecureAPITokenSsm:
     Type: AWS::SSM::Parameter::Name
     Description: "Name of the parameter in SSM containing the Sysdig Secure API Token"
+  VerifySSL:
+    Type: String
+    AllowedValues:
+      - "Yes"
+      - "No"
+    Default: "Yes"
   ECRDeployed:
     Type: String
     AllowedValues:
@@ -39,6 +45,7 @@ Parameters:
     Description: ARN of the SNS Topic to subscribe
 
 Conditions:
+  VerifySSL: !Equals [!Ref VerifySSL, "Yes"]
   ECRDeployed: !Equals [!Ref ECRDeployed, "Yes"]
   ECSDeployed: !Equals [!Ref ECSDeployed, "Yes"]
 
@@ -197,6 +204,8 @@ Resources:
       ContainerDefinitions:
         - Name: CloudScanning
           Environment:
+            - Name: VERIFY_SSL
+              Value: !If [ VerifySSL, "true", "false" ]
             - Name: SQS_QUEUE_URL
               Value: !Ref CloudTrailQueue
             - Name: SQS_QUEUE_INTERVAL

templates/CloudVision.yaml

@@ -200,6 +200,7 @@ Resources:
         Subnets: !If [ DeployNewECSCluster, !GetAtt ["ECSFargateClusterStack", "Outputs.PrivateSubnets"], !Join [",", !Ref ExistentECSClusterPrivateSubnets] ]
         SysdigSecureEndpointSsm: !Ref SysdigSecureEndpointParameter
         SysdigSecureAPITokenSsm: !Ref SysdigSecureAPITokenParameter
+        VerifySSL: !If [ EndpointIsSaas, "Yes", "No" ]
         ECRDeployed: !Ref ECRImageScanningDeploy
         ECSDeployed: !Ref ECSImageScanningDeploy
         BuildProject: !GetAtt [ "ScanningCodeBuildStack", "Outputs.BuildProject" ]