query(terraform): unrestricted_security_group_ingress

[chrisisbeef]

Platform

Terraform

Provider

AWS

Description

It seems like this query is a bit too broad which makes it noisy, for http/https ports specifically I don't think this should report, especially not as a high severity. That being said, sensitive ports like telnet, ssh, database, etc should definitely report for unrestricted ingress rules. Should we update the rule to not report on ports 80/443 specifically, or allow configuration to declare "non-sensitive ports" that this query could use to be tuned and reduce noise?