Ensure Secret Manager secret is encrypted using KMS

Error: Unencrypted Secret Manager secret

Bridgecrew Policy ID: BC_AWS_GENERAL_58
Checkov Check ID: CKV_AWS_152
Severity: LOW

Unencrypted Secret Manager secret

Description

We recommend that you ensure your Secret Manager Secret is Encrypted Using KMS.

Fix - Buildtime

Terraform

  • Resource: aws_secretsmanager_secret
  • Argument: kms_key_id
resource "aws_secretsmanager_secret" "example" {
              name = "example"
 +            kms_key_id = "arn:kuku:kisi"
            }

Did this page help you?