You should limit the provision of public IP addresses for resources. Resources should not be exposed on the public internet, but should have access limited to consumers required for the function of your application.
The instance or configuration is publicly accessible
Set the instance to not be publicly accessible
The following example will fail the AVD-AWS-0009 check.
--- Resources: BadExample: Properties: AssociatePublicIpAddress: true ImageId: ami-123456 InstanceType: t2.small Type: AWS::AutoScaling::LaunchConfiguration
The following example will pass the AVD-AWS-0009 check.
--- Resources: GoodExample: Properties: ImageId: ami-123456 InstanceType: t2.small Type: AWS::AutoScaling::LaunchConfiguration