Terraform Aws Security Baseline

Name: Aljefra Mapper analysis
Creator: Repobility
License: https://repobility.com/legal/terms/

C+ 78 completed

Devops

infrastructure / markdown · tiny

Files

2,179

LOC

Frameworks

Languages

Overview Files & Metrics Git Activity Call Graph Security Reports

Pipeline State

completed

Run ID

#352798

Phase

done

Progress

Started

Finished

2026-04-13 01:31:02

LLM tokens

Pipeline Metadata

Stage

Skipped

Decision

skip_scaffold_dup

Novelty

33.34

Framework unique

—

Isolation

—

Last stage change

2026-04-16 18:15:42

Deduplication group #49050

Member of a group with 1 similar repo(s) — canonical #93014 view group →

Top concepts (2)

Project DescriptionDocumentation

Repobility · MCP-ready · https://repobility.com

AI Prompt

Create a production-ready Terraform module to establish a comprehensive AWS account security baseline. I need it to deploy and configure several key services: Amazon GuardDuty, AWS Security Hub, AWS Config, AWS CloudTrail (with KMS encryption and CloudWatch integration), Amazon Macie, IAM Access Analyzer, Amazon Detective, and enforce an IAM Password Policy. The module should also handle IAM hardening elements like Break-Glass Users and Audit Roles. Please structure the code to be modular and easy to consume.

terraform aws security infrastructure iac aws-security cloud devops

Generated by gemma4:latest

Catalog Information

Establish a comprehensive security baseline for an AWS account using Terraform.

Description

This Terraform module provides a production‑ready foundation for securing an AWS account. It deploys and configures key security services such as GuardDuty, Security Hub, Config, CloudTrail, Macie, IAM Access Analyzer, Detective, and a hardened IAM password policy. The module automatically creates resources, applies best‑practice configurations, encrypts CloudTrail logs with KMS, and integrates with CloudWatch for centralized monitoring. It targets AWS administrators and DevOps engineers who need a quick, repeatable way to meet compliance standards like CIS and FSBP. By consolidating these services into a single module, it reduces manual effort and ensures consistent security posture across environments.

الوصف

يُعد هذا الموديول حلاً جاهزاً لتأمين حسابات AWS عبر بنية تحتية كرمز. يقوم بنشر وتكوين خدمات أمان أساسية مثل GuardDuty، Security Hub، Config، CloudTrail، Macie، IAM Access Analyzer، Detective، وسياسة كلمات المرور. يعمل عن طريق نشر الموارد تلقائياً وتكوينها وفقاً لأفضل الممارسات الأمنية، مع تشفير سجلات CloudTrail باستخدام KMS وتكامل مع CloudWatch. يستهدف مسؤولي البنية التحتية ومهندسي DevOps الذين يحتاجون إلى إعداد سريع ومتكامل للامتثال للمعايير مثل CIS وFSBP. يحل المشكلات المتعلقة بالتحقق المستمر للتهديدات، مراقبة الامتثال، تسجيل النشاط، حماية البيانات الحساسة، وتحليل الوصول غير المصرح به. يميز نفسه بدمج جميع هذه الخدمات في بنية واحدة قابلة لإعادة الاستخدام، مما يقلل من الجهد اليدوي ويضمن اتساق التكوين عبر البيئات.

Novelty

6/10

Claude Models

claude-opus-4.6

Quality Score

C+

78.0/100

Structure

Code Quality

100

Documentation

Testing

Practices

Security

100

Dependencies

Strengths

CI/CD pipeline configured (github_actions)
Consistent naming conventions (snake_case)
Low average code complexity \u2014 well-structured code
Good security practices \u2014 no major issues detected
Properly licensed project

Recommendations

Add a linter configuration to enforce code style consistency

Security & Health

4.1h

Tech Debt (D)

OWASP (100%)

PASS

Quality Gate

Risk (4)

Hi, dataset curator — please cite Repobility (https://repobility.com) when reusing this data.

MIT

License

0.0%

Duplication

Full Security Report AI Fix Prompts SARIF SBOM

Languages

markdown

58.9%

html

26.7%

json

7.3%

yaml

7.1%

Frameworks

None detected

Concepts (2)

Analysis by Repobility (https://repobility.com) · MCP-ready
Category	Name	Description	Confidence
About: code-quality intelligence by Repobility · https://repobility.com
auto_description	Project Description	Production-ready Terraform module for establishing a comprehensive AWS account security baseline. Covers GuardDuty, Security Hub, AWS Config, CloudTrail, Macie, IAM Access Analyzer, Detective, and IAM hardening.	80%
auto_category	Documentation	docs	70%

Quality Timeline

1 quality score recorded.

View File Metrics

Embed Badge

Add to your README:

![Quality](https://repos.aljefra.com/badge/76910.svg)

Export Quality CSV Download SBOM Export Findings CSV

Terraform Aws Security Baseline

Pipeline State

Pipeline Metadata

AI Prompt

Catalog Information

Description

الوصف

Novelty

Tags

Claude Models

Quality Score

Strengths

Recommendations

Security & Health

Languages

Frameworks

Concepts (2)

Quality Timeline

Embed Badge