HIGH
Source
Trivy
ID
AVD-AWS-0053

Load balancer is exposed to the internet.

There are many scenarios in which you would want to expose a load balancer to the wider internet, but this check exists as a warning to prevent accidental exposure of internal assets. You should ensure that this resource should be exposed publicly.

Impact

The load balancer is exposed on the internet

Follow the appropriate remediation steps below to resolve the issue.

Switch to an internal load balancer or add a tfsec ignore

1
2
3
resource "aws_alb" "good_example" {
  internal = true
}