AWS RDS cluster delete protection is disabled

Description

Enabling deletion protection on Amazon Relational Database Service (RDS) clusters and instances can help to prevent accidental deletion. When deletion protection is enabled, you cannot delete the RDS cluster or instance using the AWS Management Console, the AWS CLI, or the RDS API. This can be helpful if you want to ensure that your RDS resources are not deleted accidentally, either by yourself or by someone else with access to your AWS account.

Code Example

resource "aws_rds_cluster" "default" {
  ...
+ deletion_protection = true
}

Remediation

Terraform

Resource: aws_rds_cluster
Arguments: deletion_protection

Rule Details

Field	Value
ID	IAC-0189
Severity	INFO
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_AWS_139

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

AWS RDS cluster delete protection is disabled

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

AWS RDS cluster delete protection is disabled ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

AWS RDS cluster delete protection is disabled

Description

Code Example

Remediation

Rule Details

References