cdk-validator-cfnguard icon indicating copy to clipboard operation
cdk-validator-cfnguard copied to clipboard

Published 20 hours ago verified publisher icon cdklabs

Metadata

Results 19 cdk-validator-cfnguard issues
Sort by recently updated
recently updated
newest added

Broken links for rules

The links on the front page to the Bundled Control Tower Rules are broken. Eg: CT.SQS.PR.1 goes to https://docs.aws.amazon.com/controltower/latest/userguide/sqs-rules.html#ct-sqs-pr-1-description when it should go to: https://docs.aws.amazon.com/controltower/latest/controlreference/sqs-rules.html#ct-sqs-pr-1-description And the link in the...

richardgroves avatar richardgroves

Add the option to suppress a Rule for a single construct

I'm evaluating to move from CDK_NAG to this library, but found some missing functionalities. In CDK_NAG is possible to suppress a rule for a given construct (or path): ` NagSuppressions.addResourceSuppressions(test,...

gianlucb avatar gianlucb

Error: Error: spawnSync /Users/ahammond/Documents/ClickUp/infratest-service-cdk/node_modules/@cdklabs/cdk-validator-cfnguard/bin/macos/cfn-guard ENOBUFS

4 comment

I tried ``` const app = new App({ policyValidationBeta1: [new CfnGuardValidator()] }); ``` after adding the lib and got ``` ❯ npx cdk list Performing Policy Validations Validation Report -----------------...

ahammond avatar ahammond

Validation failure

5 comment

Hello, I'm having issues to run the Validator when running `cdk synth`. ``` Here is the output: Validation Report ----------------- ╔════════════════════════════════════╗ ║ Plugin Report ║ ║ Plugin: cdk-validator-cfnguard ║ ║...

amouly avatar amouly

Use cdk metadata to selectively disable a control

3 comment

For making fine graned exceptions: I saw the usage in the [AWS Guard Rules Registry](https://github.com/aws-cloudformation/aws-guard-rules-registry/blob/main/rules/aws/api_gateway/api_gw_endpoint_type_check.guard) They just add a condition to the resource selectors: ```guard # # Select all API...

Jacco avatar Jacco

Support for Windows

When running the `cdk synth` on windows machine we are getting the below error. Looks like `cdk-validator-cfnguard` is not supported as yet. Can run `cdk synth` using WSL. OS details...

joostejustin avatar joostejustin

Support location for non-TypeScript languages (e.g. Python)

1 comment

For example, in a [Python-based AWS CDK application](https://github.com/alexpulver/usermanagement-backend/tree/bd7b324f854c2e844d9b9484ec7917a2ed749ee6), CfnGuardValidator doesn't show the location of the [Ingress custom construct](https://github.com/alexpulver/usermanagement-backend/blob/bd7b324f854c2e844d9b9484ec7917a2ed749ee6/service/ingress.py#L7), but an AWS CDK internal module. ``` api_gw_v2_access_logs_enabled_check (1 occurrences) Occurrences: -...

alexpulver avatar alexpulver

Publish Go version

Can we release a go version?

corymhall avatar corymhall

Error: TypeError: Cannot read properties of undefined (reading 'to')

When I run a `cdk synth` with the `controlTowerRulesEnabled` enabled I run into the following error. ``` Performing Policy Validations Validation Report ----------------- ╔════════════════════════════════════╗ ║ Plugin Report ║ ║ Plugin:...

thijsdev avatar thijsdev

Disabled rules are ignored

We are using aws-cdk version 2.92.0, Python 3.8 and cdklabs.cdk-validator-cfnguard 0.0.54 After defining the app stack the following way: ``` python app = cdk.App( policy_validation_beta1=[ CfnGuardValidator( control_tower_rules_enabled=True, disabled_rules=["ct-lambda-pr-3"] ) ]...

ukrainiansteak avatar ukrainiansteak

Metadata

62
Stars
4
Forks
Watchers

Owner

verified publisher icon cdklabs

Metadata

Back