Add Description To Security Group Rule | Vulnerability Database

Missing description for security group rule.

Security group rules should include a description for auditing purposes.

Simplifies auditing, debugging, and managing security groups.

Impact

Recommended Actions

Follow the appropriate remediation steps below to resolve the issue.

Add descriptions for all security groups rules

1
2
3
4
5
6
7
8


resource "nifcloud_security_group_rule" "good_example" {
  type        = "IN"
  description = "HTTP from VPC"
  from_port   = 80
  to_port     = 80
  protocol    = "TCP"
  cidr_ip     = nifcloud_private_lan.main.cidr_block
}

Remediation Links

https://registry.terraform.io/providers/nifcloud/nifcloud/latest/docs/resources/security_group_rule#description