Update docs

deepfence · Dec 2, 2024 · c518ce1 · c518ce1
1 parent fd076a5
commit c518ce1
Show file tree

Hide file tree

Showing 3 changed files with 15 additions and 10 deletions.
diff --git a/deepfence_agent/plugins/cloud-scanner b/deepfence_agent/plugins/cloud-scanner
diff --git a/deepfence_agent/plugins/yara-rules b/deepfence_agent/plugins/yara-rules
diff --git a/docs/docs/cloudscanner/aws.md b/docs/docs/cloudscanner/aws.md
@@ -94,9 +94,10 @@ module "deepfence-cloud-scanner_example_single-account" {
   # AWS Account Name (Optional, for easy identification)
   account_name                  = ""
   image                         = "quay.io/deepfenceio/cloud_scanner_ce:THREATMAPPER_VERSION"
-  # Disabled regions: List of cloud regions which should not be scanned
+  # Enabled regions (Optional): List of regions which should be scanned. All other regions will be disabled.
+  # All regions enabled by default
   # Example: ["us-east-1", "us-east-2"]
-  disabled_cloud_regions        = []
+  enabled_cloud_regions         = []
   # Task CPU Units (Default: 4 vCPU)
   cpu                           = "4096"
   # Task Memory (Default: 8 GB)
@@ -189,8 +190,10 @@ For full details, refer to the GitHub repository: https://github.com/deepfence/t
       # AWS region
       region: "us-east-1"
 
-      # Optional: Comma separated list of cloud regions which should not be scanned
-      disabledCloudRegions: ""
+      # Optional: Comma separated list of regions which should be scanned. All other regions will be disabled.
+      # All regions enabled by default
+      # Example: enabledCloudRegions: "us-east-1,us-east-2"
+      enabledCloudRegions: ""
 
       # Policy set for Cloud Scanner in CloudFormation / terraform
       # arn:aws:iam::aws:policy/ReadOnlyAccess / arn:aws:iam::aws:policy/SecurityAudit
@@ -259,8 +262,10 @@ For full details, refer to the GitHub repository: https://github.com/deepfence/t
       # AWS region
       region: "us-east-1"
 
-      # Optional: Comma separated list of cloud regions which should not be scanned
-      disabledCloudRegions: ""
+      # Optional: Comma separated list of regions which should be scanned. All other regions will be disabled.
+      # All regions enabled by default
+      # Example: enabledCloudRegions: "us-east-1,us-east-2"
+      enabledCloudRegions: ""
 
       # Policy set for Cloud Scanner in CloudFormation / terraform
       # arn:aws:iam::aws:policy/ReadOnlyAccess / arn:aws:iam::aws:policy/SecurityAudit
@@ -338,7 +343,7 @@ For full details, refer to the GitHub repository: https://github.com/deepfence/t
       DEEPFENCE_KEY: "<DEEPFENCE_KEY>"
       CLOUD_PROVIDER: "aws"
       CLOUD_REGION: "<REGION>"
-      DISABLED_CLOUD_REGIONS: ""
+      ENABLED_CLOUD_REGIONS: ""
       CLOUD_ACCOUNT_ID: "<ACCOUNT_ID>"
       DEPLOYED_ACCOUNT_ID: ""
       CLOUD_ACCOUNT_NAME: ""
@@ -379,7 +384,7 @@ For full details, refer to the GitHub repository: https://github.com/deepfence/t
       DEEPFENCE_KEY: "<DEEPFENCE_KEY>"
       CLOUD_PROVIDER: "aws"
       CLOUD_REGION: "<REGION>"
-      DISABLED_CLOUD_REGIONS: ""
+      ENABLED_CLOUD_REGIONS: ""
       CLOUD_ACCOUNT_ID: "<ROOT_ACCOUNT_ID>"
       DEPLOYED_ACCOUNT_ID: ""
       CLOUD_ACCOUNT_NAME: ""
+8 −0		cloudformation/self-hosted/organization-deployment/deepfence-cloud-scanner-org-common.template
+57 −69		cloudformation/self-hosted/organization-deployment/deepfence-cloud-scanner-org-ecs.template
+9 −9		cloudformation/self-hosted/single-account-deployment/deepfence-cloud-scanner.template
+4 −2		docker-compose.yaml
+2 −2		helm-chart/deepfence-cloud-scanner/templates/deployment.yaml
+4 −2		helm-chart/deepfence-cloud-scanner/values.yaml
+3 −3		helm-chart/index.yaml
+6 −7		service/service.go
+1 −1		util/type.go