feat: enable guard duty control in the ui

This control should depend upon the Cloudwatch Alarm check for email purposes.

dashboard/src/components/ProvisionerSettings.tsx

@@ -1131,18 +1131,8 @@ const ProvisionerSettings: React.FC<Props> = (props) => {
                     }
                   >
                     <Text color="helper">
-                      Install AWS GuardDuty agent on this cluster (see details
-                      to fully enable)
+                      Install AWS GuardDuty agent on this cluster
                     </Text>
-                    <Spacer x={0.5} inline />
-                    <Tooltip
-                      content={
-                        "In addition to installing the agent, you must enable GuardDuty through your AWS Console and enable EKS Protection in the EKS Protection tab of the GuardDuty console."
-                      }
-                      position="right"
-                    >
-                      <Icon src={info} />
-                    </Tooltip>
                   </Checkbox>
                 </FlexCenter>
                 <Spacer y={1} />

dashboard/src/main/home/cluster-dashboard/dashboard/Compliance.tsx

@@ -90,6 +90,14 @@ const soc2DataDefault: Soc2Data = {
       status: "",
       email: [], // this is a special case for email
     },
+    "Intrusion Detection": {
+      message:
+        "Amazon GuardDuty is a threat detection service offered by AWS that continuously monitors and analyzes your AWS account for malicious activity and unauthorized behavior. By leveraging machine learning, anomaly detection, and threat intelligence, GuardDuty provides real-time alerts, helping you proactively identify and respond to security threats, ultimately enhancing the overall security posture of your AWS environment.",
+      link: "https://docs.aws.amazon.com/guardduty/latest/ug/what-is-guardduty.html",
+      enabled: false,
+      info: "",
+      status: "",
+    },
   },
 };
 
@@ -179,6 +187,7 @@ const Compliance: React.FC<Props> = (props) => {
       soc2Data.soc2_checks["Cloudwatch Alarm Creation"].enabled;
     const snsMonitoringEmails =
       soc2Data.soc2_checks["Cloudwatch Alarm Creation"].email;
+    const enableGuardDuty = soc2Data.soc2_checks["Intrusion Detection"].enabled;
 
     const contractData = JSON.parse(atob(base64Contract));
     const latestCluster: Cluster = Cluster.fromJson(contractData.cluster, {
@@ -195,6 +204,8 @@ const Compliance: React.FC<Props> = (props) => {
             ecrScanningEnabled ||
             value.enableEcrScanning ||
             false,
+          enableGuardDuty:
+            soc2Enabled || enableGuardDuty || value.enableGuardDuty || false,
           logging: new EKSLogging({
             enableApiServerLogs: soc2Enabled || cloudTrailEnabled || false,
             enableAuditLogs: soc2Enabled || cloudTrailEnabled || false,
@@ -361,6 +372,11 @@ const Compliance: React.FC<Props> = (props) => {
               ),
               email: eksValues.cloudwatchAlarm?.emails || [],
             },
+            "Intrusion Detection": {
+              ...prevSoc2Data.soc2_checks["Intrusion Detection"],
+              enabled: eksValues.enableGuardDuty,
+              status: determineStatus(eksValues.enableGuardDuty),
+            },
           },
         };
       });