HIGH
Source
Trivy
ID
AVD-AWS-0009

Launch configuration should not have a public IP address.

You should limit the provision of public IP addresses for resources. Resources should not be exposed on the public internet, but should have access limited to consumers required for the function of your application.

Impact

The instance or configuration is publicly accessible

Follow the appropriate remediation steps below to resolve the issue.

Set the instance to not be publicly accessible

1
2
3
4
5
6
7
Resources:
  GoodExample:
    Properties:
      ImageId: ami-123456
      InstanceType: t2.small
    Type: AWS::AutoScaling::LaunchConfiguration

Set the instance to not be publicly accessible

1
2
3
4
 resource "aws_launch_configuration" "good_example" {
 	associate_public_ip_address = false
 }