Table: aws_ec2_ebs_volumes
This table shows data for Amazon Elastic Compute Cloud (EC2) Amazon Elastic Block Store (EBS) Volumes.
https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_Volume.html (opens in a new tab)
The primary key for this table is arn.
Columns
| Name | Type |
|---|---|
| _cq_id | uuid |
| _cq_parent_id | uuid |
| account_id | utf8 |
| region | utf8 |
| arn (PK) | utf8 |
| tags | json |
| attachments | json |
| availability_zone | utf8 |
| create_time | timestamp[us, tz=UTC] |
| encrypted | bool |
| fast_restored | bool |
| iops | int64 |
| kms_key_id | utf8 |
| multi_attach_enabled | bool |
| outpost_arn | utf8 |
| size | int64 |
| snapshot_id | utf8 |
| sse_type | utf8 |
| state | utf8 |
| throughput | int64 |
| volume_id | utf8 |
| volume_type | utf8 |
Example Queries
These SQL queries are sampled from CloudQuery policies and are compatible with PostgreSQL.
Detached EBS volume
SELECT
'Detached EBS volume' AS title,
account_id,
arn AS resource_id,
'fail' AS status
FROM
aws_ec2_ebs_volumes
WHERE
COALESCE(jsonb_array_length(attachments), 0) = 0;Attached EBS volumes should be encrypted at rest
SELECT
'Attached EBS volumes should be encrypted at rest' AS title,
account_id,
arn AS resource_id,
CASE WHEN encrypted IS false THEN 'fail' ELSE 'pass' END AS status
FROM
aws_ec2_ebs_volumes;