AWS RDS Aurora Terraform module

Log group retention period should be at least 365 days

Log group encryption at rest should be enabled

Aurora MySQL DB clusters should have audit logging enabled

IAM authentication should be configured for RDS clusters

VPC Security groups should only allow unrestricted incoming traffic for authorized ports