You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/rules/README.md.tmpl
+9Lines changed: 9 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -80,6 +80,15 @@ These rules enforce best practices and naming conventions:
80
80
|[aws_security_group_rule_deprecated](aws_security_group_rule_deprecated.md)|Disallow using `aws_security_group_rule` resource||
81
81
|[aws_provider_missing_default_tags](aws_provider_missing_default_tags.md)|Require specific tags for all AWS providers default tags||
82
82
83
+
### Removing secrets from state
84
+
85
+
These rules recommend best practices to keep sensitive information from state:
86
+
87
+
|Rule|Description|Enabled by default|
88
+
| --- | --- | --- |
89
+
|[aws_ephemeral_resources](aws_ephemeral_resources.md)|Recommends using available ephemeral resources instead of the original data source. This is only valid for Terraform v1.10+.||
90
+
|[aws_write_only_arguments](aws_write_only_arguments.md)|Recommends using available write-only arguments instead of the original sensitive attribute. This is only valid for Terraform v1.11+.||
91
+
83
92
### SDK-based Validations
84
93
85
94
700+ rules based on the aws-sdk validations are also available:
0 commit comments