Description of issue:

This doc: https://github.com/Netflix/security_monkey/blob/develop/docs/update.md
states the required libraries/modules needed in order to pull data from GCP, however after installing the latest version I was unable to receive any data from GCP, while monitoring the workers I noticed some errors (which were marked as INFO for some reason) , these errors stated the lack

Any good docs on the code structure on how to add new providers there ? Code is slightly convoluted and it's quite hard to see what changes are required to add one - ideally, they'd be plugin-like structure bundled in one dir, aren't they yet ?

OAI ensures the contents of the S3 bucket remain private and prevent people from bypassing CloudFront to access content

Checkov may need to do a multiple resource check for this… (Both the CFN Distro and backing S3 bucket)

At the moment EC2 audit is raising an issue that I cannot investigate because of the lack of detail:

Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has en exposed enpoint
Warning: VPC has an exposed enpoint
Warning: VPC has en exposed enpoint
Warni

It looks like during the below change to asynchronous API, docs/pages/* weren't updated to cover a new required parameter in config.json for all the playbooks. dowjones/hammer@d07b202

Relatedly one might consider the architecture diagram out of date based on this change.

Description

Currently add_failure takes the values required to create a failure, creates it then adds it to the Result object's failed_rules
On the other hand add_warning takes a Failure object directly.

Proposed solution

The methods should be updated so that they both have the same behavior (or maybe even just add an add_finding method which takes a type that can be either Failure o

https://docs.python.org/3/library/logging.html#logging.Logger.debug

Instead of, for example,

https://github.com/servian/aws-auto-remediate/blob/b4ea0b0938d358b607716285b0ba641127d954ed/auto_remediate/lambda_handler.py#L163-L167

The following achieves the same:

self.logging.error( 
         f"Could not read DynamoDB table '{os.environ['SETTINGSTABLE']}'.",
         exc_inf

Story
As a user of ElectricEye, I want to be able to run security scans against my Amazon LightSail Virtual Private Servers (VPS) so that I can know their security posture and/or fulfill regulatory or compliance requirements

Definition of Done

• New Auditor created for LightSail
• IAM Policies update in CFN, TF and standalone
• Readme list updated with new Auditor checks
• Total co