On October 13, 2022, Aqua will release and activate the following new plugins. They can be tested ahead of time using the "Live Run" tool and optionally suppressed if required. If you have selected the "Suppress All New Plugins" option from the "Account Settings" page, then no action is required, and they will be pre-suppressed in your account prior to release. 


Hot Fixes/Enhancements:

AWS

Cloud Trail Bucket Access Logging

Added the settings where regex can be used to whitelist the buckets.

Cloud Trail Bucket Delete

Added the settings where regex can be used to whitelist the buckets.

Cloud Trail Bucket Private

Added the settings where regex can be used to whitelist the buckets.

Sender Policy Framework In Use

Fixed a bug in plugin where it was generating false negative results.

KMS Duplicate Grants

Fixed a bug in plugin where it was generating false negative results.


Regions:

Oracle

Added support for new Mexico mx-queretaro-1 region.


New Plugins:

AWS

Enable Detail Monitoring

Ensure that EC2 instances have detailed monitoring featured enabled.

Container Insights Enabled

Ensure that ECS clusters have CloudWatch Container Insights feature enabled.

Security Group has Tags

Ensure that AWS Security Groups have tags associated.

Lambda has Tags

Ensure that AWS Lambda functions have tags associated.

EFS has Tags

Ensure that AWS EFS file system have tags associated.

EC2 has Tags

Ensure that AWS EC2 Instances have tags associated.

S3 Bucket Has tags

Ensure that AWS S3 Bucket have tags associated.

RDS Instance Has tags

Ensure that AWS RDS instance have tags associated.

VPS Has Tags

Ensure that AWS VPC have tags associated.

ECS Cluster Has Tags

Ensure that AWS ECS Clusters have tags associated.

EKS Cluster Has Tags

Ensure that AWS EKS Clusters have tags associated.

ElastiCache Cluster Has Tags

Ensure that ElastiCache clusters have tags associated.

IAM Role Has Tags

Ensure that AWS IAM Roles have tags associated.

IAM User Has Tags

Ensure that AWS IAM Users have tags associated.


Google

Snapshot Labels Added

Ensure that Compute disk snapshots have labels added.

Disk Labels Added

Ensure that all Compute Disks have labels added.

Image Labels Added

Ensure that all VM disk images have labels added.

Cloud Function Labels Added

Ensure that all Cloud Functions have labels added.

Instance Labels Added

Ensure that all Virtual Machine instances have labels added.

Bucket Labels Added

Ensure that all Cloud Storage buckets have labels added.

Topic Labels Added

Ensure that all Pub/Sub topics have labels added.

Dataset Labels Added

Ensure that all BigQuery datasets have labels added.

SQL Instance Labels Added

Ensures SQL database instances have labels added.

DNS Zone Labels Added

Ensure Cloud DNS zones have labels added.