Decouple Agentless Scanning from CSPM

DataDog · Oct 30, 2024 · c276e4f · c276e4f
1 parent ee56371
commit c276e4f
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 11 deletions.
diff --git a/aws_quickstart/datadog_agentless_scanning.yaml b/aws_quickstart/datadog_agentless_scanning.yaml
@@ -22,7 +22,7 @@ Parameters:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of host vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of host vulnerabilities.
     Default: false
 
   AgentlessContainerScanning:
@@ -31,7 +31,7 @@ Parameters:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of container vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of container vulnerabilities.
     Default: false
 
   AgentlessLambdaScanning:
@@ -40,7 +40,7 @@ Parameters:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of Lambda vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of Lambda vulnerabilities.
     Default: false
 
   AgentlessSensitiveDataScanning:
@@ -49,7 +49,7 @@ Parameters:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of datastores (S3 buckets). "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of datastores (S3 buckets).
     Default: false
 
   DatadogAPIKeySecretArn:

diff --git a/aws_quickstart/main_extended.yaml b/aws_quickstart/main_extended.yaml
@@ -83,31 +83,31 @@ Parameters:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of host vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of host vulnerabilities.
     Default: false
   AgentlessContainerScanning:
     Type: String
     AllowedValues:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of container vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of container vulnerabilities.
     Default: false
   AgentlessLambdaScanning:
     Type: String
     AllowedValues:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of Lambda vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of Lambda vulnerabilities.
     Default: false
   AgentlessSensitiveDataScanning:
     Type: String
     AllowedValues:
       - true
       - false
     Description: >-
-      Enable Agentless Scanning of datastores (S3 buckets). "CloudSecurityPostureManagement" must be set to 'true'.
+      Enable Agentless Scanning of datastores (S3 buckets).
     Default: false
 Conditions:
   InstallForwarder:
@@ -124,9 +124,6 @@ Conditions:
         - Fn::Equals:
           - !Ref DatadogSite
           - ddog-gov.com
-      - Fn::Equals:
-        - !Ref CloudSecurityPostureManagement
-        - true
       - Fn::Or:
         - Fn::Equals:
           - !Ref AgentlessHostScanning