fix: ignore terminated instance

2025-01-06 10:21:52 +09:00
parent 2b0b862345
commit b73bccfe1b
6 changed files with 18 additions and 0 deletions
--- a/src/bpsets/ec2/EC2Imdsv2Check.ts
+++ b/src/bpsets/ec2/EC2Imdsv2Check.ts
@ -73,6 +73,9 @@ export class EC2Imdsv2Check implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+
        if (instance.MetadataOptions?.HttpTokens === 'required') {
          compliantResources.push(instance.InstanceId!);
        } else {
--- a/src/bpsets/ec2/EC2InstanceDetailedMonitoringEnabled.ts
+++ b/src/bpsets/ec2/EC2InstanceDetailedMonitoringEnabled.ts
@ -74,6 +74,9 @@ export class EC2InstanceDetailedMonitoringEnabled implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+        
        if (instance.Monitoring?.State === 'enabled') {
          compliantResources.push(instance.InstanceId!);
        } else {
--- a/src/bpsets/ec2/EC2InstanceManagedBySystemsManager.ts
+++ b/src/bpsets/ec2/EC2InstanceManagedBySystemsManager.ts
@ -84,6 +84,9 @@ export class EC2InstanceManagedBySystemsManager implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+
        if (managedInstanceIds?.includes(instance.InstanceId!)) {
          compliantResources.push(instance.InstanceId!);
        } else {
--- a/src/bpsets/ec2/EC2InstanceProfileAttached.ts
+++ b/src/bpsets/ec2/EC2InstanceProfileAttached.ts
@ -81,6 +81,9 @@ export class EC2InstanceProfileAttached implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+        
        if (instance.IamInstanceProfile) {
          compliantResources.push(instance.InstanceId!);
        } else {
--- a/src/bpsets/ec2/EC2NoAmazonKeyPair.ts
+++ b/src/bpsets/ec2/EC2NoAmazonKeyPair.ts
@ -68,6 +68,9 @@ export class EC2NoAmazonKeyPair implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+        
        if (instance.KeyName) {
          nonCompliantResources.push(instance.InstanceId!);
        } else {
--- a/src/bpsets/ec2/EC2TokenHopLimitCheck.ts
+++ b/src/bpsets/ec2/EC2TokenHopLimitCheck.ts
@ -75,6 +75,9 @@ export class EC2TokenHopLimitCheck implements BPSet {

    for (const reservation of response.Reservations || []) {
      for (const instance of reservation.Instances || []) {
+        if (instance.State?.Name === 'terminated')
+          continue
+
        if (
          instance.MetadataOptions?.HttpPutResponseHopLimit &&
          instance.MetadataOptions.HttpPutResponseHopLimit < 2