├── LICENSE
├── README.md
└── policies
    ├── README.md
    ├── ami-deregister-old-unused.yml
    ├── asg-off-hours-enforcement.yml
    ├── asg-off-hours.yml
    ├── aws-cis-benchmarks.yml
    ├── aws-service-limit-increase.yml
    ├── ebs-volume-delete-unattached.yml
    ├── ebs-volume-delete-unencrypted-on-creation.yml
    ├── ebs-volume-missing-recent-snapshot.yml
    ├── ebs-volume-notify-if-unencrypted.yml
    ├── ebs-volume-tag-enforcement.yml
    ├── ec2-off-hours-enforcement.yml
    ├── ec2-off-hours.yml
    ├── ec2-tag-enforcement.yml
    ├── iam-basic-deny.yml
    ├── log-group-missing-retention-days.yml
    ├── rds-off-hours-enforcement.yml
    ├── rds-off-hours.yml
    ├── rds-tag-enforcement.yml
    ├── rds-terminate-publicly-available-on-creation.yml
    ├── s3-delete-unencrypted-on-creation.yml
    ├── s3-global-grants.yml
    ├── s3-tag-enforcement.yml
    ├── security-group-default-deny.yml
    └── security-group-restrict-admin-ingress.yml


/LICENSE:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/LICENSE


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/README.md


--------------------------------------------------------------------------------
/policies/README.md:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/README.md


--------------------------------------------------------------------------------
/policies/ami-deregister-old-unused.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ami-deregister-old-unused.yml


--------------------------------------------------------------------------------
/policies/asg-off-hours-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/asg-off-hours-enforcement.yml


--------------------------------------------------------------------------------
/policies/asg-off-hours.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/asg-off-hours.yml


--------------------------------------------------------------------------------
/policies/aws-cis-benchmarks.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/aws-cis-benchmarks.yml


--------------------------------------------------------------------------------
/policies/aws-service-limit-increase.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/aws-service-limit-increase.yml


--------------------------------------------------------------------------------
/policies/ebs-volume-delete-unattached.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ebs-volume-delete-unattached.yml


--------------------------------------------------------------------------------
/policies/ebs-volume-delete-unencrypted-on-creation.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ebs-volume-delete-unencrypted-on-creation.yml


--------------------------------------------------------------------------------
/policies/ebs-volume-missing-recent-snapshot.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ebs-volume-missing-recent-snapshot.yml


--------------------------------------------------------------------------------
/policies/ebs-volume-notify-if-unencrypted.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ebs-volume-notify-if-unencrypted.yml


--------------------------------------------------------------------------------
/policies/ebs-volume-tag-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ebs-volume-tag-enforcement.yml


--------------------------------------------------------------------------------
/policies/ec2-off-hours-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ec2-off-hours-enforcement.yml


--------------------------------------------------------------------------------
/policies/ec2-off-hours.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ec2-off-hours.yml


--------------------------------------------------------------------------------
/policies/ec2-tag-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/ec2-tag-enforcement.yml


--------------------------------------------------------------------------------
/policies/iam-basic-deny.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/iam-basic-deny.yml


--------------------------------------------------------------------------------
/policies/log-group-missing-retention-days.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/log-group-missing-retention-days.yml


--------------------------------------------------------------------------------
/policies/rds-off-hours-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/rds-off-hours-enforcement.yml


--------------------------------------------------------------------------------
/policies/rds-off-hours.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/rds-off-hours.yml


--------------------------------------------------------------------------------
/policies/rds-tag-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/rds-tag-enforcement.yml


--------------------------------------------------------------------------------
/policies/rds-terminate-publicly-available-on-creation.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/rds-terminate-publicly-available-on-creation.yml


--------------------------------------------------------------------------------
/policies/s3-delete-unencrypted-on-creation.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/s3-delete-unencrypted-on-creation.yml


--------------------------------------------------------------------------------
/policies/s3-global-grants.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/s3-global-grants.yml


--------------------------------------------------------------------------------
/policies/s3-tag-enforcement.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/s3-tag-enforcement.yml


--------------------------------------------------------------------------------
/policies/security-group-default-deny.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/security-group-default-deny.yml


--------------------------------------------------------------------------------
/policies/security-group-restrict-admin-ingress.yml:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/code42/cloud-c7n-policy-examples/HEAD/policies/security-group-restrict-admin-ingress.yml


--------------------------------------------------------------------------------