Using the AWS CLI, manually review routing tables for VPC peering to ensure they are "least access"

Details

Center for Internet Security (CIS) Recommendation 4.5 is to Ensure routing tables for VPC peering are “least access.” https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=141

This is a check that must be performed manually as there are either no appropriate API calls or it may require an account-specific judgement call.