diff --git a/src/aws/cis-1.2.0/rules/aws-cis-1.2.0-2.4.ts b/src/aws/cis-1.2.0/rules/aws-cis-1.2.0-2.4.ts index 79cae70c..94e2d62b 100644 --- a/src/aws/cis-1.2.0/rules/aws-cis-1.2.0-2.4.ts +++ b/src/aws/cis-1.2.0/rules/aws-cis-1.2.0-2.4.ts @@ -75,10 +75,10 @@ export default { resource: 'queryawsCloudtrail[*]', severity: 'medium', conditions: { - or: [ + and: [ { path: '@.cloudWatchLogsLogGroupArn', - equal: null, + notEqual: null, }, { value: { diff --git a/src/aws/cis-1.2.0/tests/aws-cis-1.2.0-2.x.test.ts b/src/aws/cis-1.2.0/tests/aws-cis-1.2.0-2.x.test.ts index 4fd4655c..9112f49a 100644 --- a/src/aws/cis-1.2.0/tests/aws-cis-1.2.0-2.x.test.ts +++ b/src/aws/cis-1.2.0/tests/aws-cis-1.2.0-2.x.test.ts @@ -360,7 +360,7 @@ describe('CIS Amazon Web Services Foundations: 1.2.0', () => { expect(processedRule.result).toBe(Result.FAIL) }) - test('Should pass when a trail does not have cloudwatch logs integrated', async () => { + test('Should fail when a trail does not have cloudwatch logs integrated', async () => { const data = { queryawsCloudtrail: [ { @@ -375,7 +375,7 @@ describe('CIS Amazon Web Services Foundations: 1.2.0', () => { { ...data } as any ) - expect(processedRule.result).toBe(Result.PASS) + expect(processedRule.result).toBe(Result.FAIL) }) }) diff --git a/src/aws/nist-800-53-rev4/rules/aws-nist-800-53-rev4-6.7.ts b/src/aws/nist-800-53-rev4/rules/aws-nist-800-53-rev4-6.7.ts index bed91c5c..4e239594 100644 --- a/src/aws/nist-800-53-rev4/rules/aws-nist-800-53-rev4-6.7.ts +++ b/src/aws/nist-800-53-rev4/rules/aws-nist-800-53-rev4-6.7.ts @@ -76,10 +76,10 @@ export default { resource: 'queryawsCloudtrail[*]', severity: 'medium', conditions: { - or: [ + and: [ { path: '@.cloudWatchLogsLogGroupArn', - equal: null, + notEqual: null, }, { value: {