Dynamodb point in time recovery is not enabled for global tables

Description

Enabling point-in-time recovery (PITR) for Amazon DynamoDB global tables can help to protect against data loss due to accidental write or delete operations, or due to data corruption. With PITR enabled, you can restore a global table to any point in time within the specified recovery window (typically up to 35 days). This can be helpful if you need to undo unintended changes or recover from data corruption.

Code Example

yaml

Resources:
  MyCloudFrontDistribution:
    Type: AWS::DynamoDB::GlobalTable
    Properties: 
            ...
      Replicas: 
+       - PointInTimeRecoverySpecification: 
+           - PointInTimeRecoveryEnabled

Remediation

CloudFormation

Resource: AWS::DynamoDB::GlobalTable
Arguments: Properties.DistributionConfig.Logging/Bucket

Rule Details

Field	Value
ID	IAC-0214
Severity	MEDIUM
IaC Type	Cloudformation
Frameworks	CloudFormation, Terraform, TerraformPlan, Serverless
Checkov ID	CKV_AWS_165

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Dynamodb point in time recovery is not enabled for global tables

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Dynamodb point in time recovery is not enabled for global tables ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Dynamodb point in time recovery is not enabled for global tables

Description

Code Example

Remediation

Rule Details

References