Severity Framework
CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Snyk CCSS
Rule category
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
Network/ Network
Is your environment affected by this misconfiguration?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsFrameworks
CIS-ControlsCIS-GoogleCSA-CCMISO-27001NIST-800-53PCI-DSSSOC-2
- Snyk IDSNYK-CC-00403
- creditSnyk Research Team
Description
DNSSEC extension is not enabled on managed zone.
How to fix?
Set dnssec_config.state attribute to on.
Example Configuration
resource "google_dns_managed_zone" "allowed" {
name = "example-zone4031"
dns_name = "example-snyk.com."
description = "Example DNS zone"
dnssec_config {
state = "on"
}
labels = {
foo = "bar"
}
}