Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Migrating resources and filters from the EPAM repository #9156

Open
dmytro-afanasiev opened this issue Nov 17, 2023 · 0 comments
Open

Migrating resources and filters from the EPAM repository #9156

dmytro-afanasiev opened this issue Nov 17, 2023 · 0 comments
Assignees
@dmytro-afanasiev

Comments

@dmytro-afanasiev
Copy link
Collaborator

dmytro-afanasiev commented Nov 17, 2023
edited
Loading

GCP

AWS

  • aws.account.filters.analyzer-findings-filter
  • aws.account.filters.account-iam-role-light-filter
  • aws.account.filters.cloudtrail-event-selector-filter
  • aws.account.filters.cloudtrail-value
  • aws.account.filters.cloudtrails
  • aws.account.filters.config-recorder-filter
  • aws.account.filters.configuration-changes-alarm-exists
  • aws.account.filters.event-rule-filter
  • aws.account.filters.rds-sns-subscription-filter
  • aws.account.filters.status
  • aws.api-stage (already exists)
  • aws.api-stage.filters.tag-count
  • aws.app-elb.filters.appelb-acm-filter
  • aws.app-elb.filters.cidrip-security-group-appelb-filter
  • aws.app-elb.filters.security-group-appelb-filter
  • aws.app-flow.filters.appflow-kms-key-filter Add kms-key filter to app-flow #9456
  • aws.app-flow.filters.value (surely exists)
  • aws.appsync-graphql-api - not used
  • aws.appsync-graphql-api.filters.api-cache-appsync - not used
  • aws.cache-cluster.filters.redis-memcache-filter
  • aws.cache-cluster.filters.vpc-elastic-cache-filter
  • aws.cfn.filters.subscription
  • aws.cloudsearch.filters.available-options-filter
  • aws.cloudtrail.filters.cloudtrail-get-event-selectors-filter (not used)
  • aws.cloudtrail.filters.cloudtrail-s3-filter
  • aws.cloudtrail.filters.cloudtrail-s3-logging
  • aws.cloudtrail.filters.configuration-changes-alarm-exists
  • aws.codedeploy-group.filters.deployment-config-filter
  • aws.dynamodb-table.filters.auto-scaling Add autoscaling filter for dynamodb table #9476
  • aws.ebs.filters.snapshot-age - Add snapshots filter for aws.ebs #9451
  • aws.ec2.filters.cidrip-security-group-ec2-filter
  • aws.ec2.filters.security-group-ec2
  • aws.ecs.filters.encryption-instance-id-ecs-filter
  • aws.ecs.filters.include-settings-ecs
  • aws.ecs-service.filters.ecs-task-definition-filter
  • aws.eks.filters.cidr-egress-port-range-eks-filter
  • aws.elasticbeanstalk-environment.filters.describe-configuration-settings-filter - we should workaround
  • aws.elasticbeanstalk-environment.filters.elasticbeanstalk-configuration-settings-filter - Add elasticbeanstalk configuration-settings filter #9448 (renamed and changed)
  • aws.elasticsearch.filters.elasticsearch-domain-filter Value filter mod operator #9497
  • aws.elb.filters.cidr-egress-port-range-elb-filter
  • aws.emr.filters.cluster-security-configuration
  • aws.emr-serverless-app
  • aws.fsx.filters.attached-volume-filter
  • aws.fsx.filters.volumes-fsx
  • aws.iam-certificate.filters.if-tags-exist-in-server-certificate
  • aws.iam-policy-all - Apply query over extra_args #9449
  • aws.iam-role-light
  • aws.iam-user.filters.creation-time-aws-iam-user
  • aws.kinesis.filters.kms-key-kinesis-filter
  • aws.lambda.filters.awslambda-iam-role-policy-filter
  • aws.lambda.filters.awslambda-signing-config-filter Add lambda signing config #9477
  • aws.network-acl.filters.cidr-egress-port-range
  • aws.rds.filters.endpoint-port
  • aws.rds.filters.option-group-validation-rds-filter
  • aws.rds.filters.rds-vpc-filter
  • aws.rds.filters.vpc-security-group-inbound-ports
  • aws.rds-cluster.filters.rds-cluster-parameter-filter
  • aws.rest-api-v2
  • aws.s3.filters.exist-action (seems like not used)
  • aws.s3.filters.lock-configuration-filter Add object lock configuration to augment table #9532
  • aws.s3-light
  • aws.sqs.filters.redrive-policy-sqs-filter (can be implemented without filter)
  • aws.ssm-service-setting (not used)
  • aws.timestream-database (not used)
  • aws.timestream-table (not used)
  • aws.user-pool.filters.marked-for-op
  • aws.vpc-endpoint-service
  • aws.vpc-endpoint-service.filters.vpc-endpoint-service-configurations-filter
  • aws.waf-rule-groups
  • aws.workspaces.filters.security-group-workspace-filter
  • aws.workspaces-directory.filters.check-vpc-endpoints-availability
  • aws.workspaces-directory.filters.radius-settings

Azure

All resources

Resource Filters Actions
aws.account account-iam-role-light-filter
analyzer-findings-filter
cloudtrail-event-selector-filter
cloudtrail-value
cloudtrails
config-recorder-filter
configuration-changes-alarm-exists
event-rule-filter
rds-sns-subscription-filter
status
aws.api-stage tag-count
aws.app-elb appelb-acm-filter
cidrip-security-group-appelb-filter
security-group-appelb-filter
aws.app-flow appflow-kms-key-filter
value
aws.appsync-graphql-api api-cache-appsync
aws.cache-cluster redis-memcache-filter
vpc-elastic-cache-filter
aws.cfn subscription
aws.cloudsearch available-options-filter
aws.cloudtrail cloudtrail-get-event-selectors-filter
cloudtrail-s3-filter
cloudtrail-s3-logging
configuration-changes-alarm-exists
aws.codedeploy-group deployment-config-filter
aws.dynamodb-table auto-scaling
aws.ebs snapshot-age
aws.ec2 cidrip-security-group-ec2-filter
security-group-ec2
aws.ecs encryption-instance-id-ecs-filter
include-settings-ecs
aws.ecs-service ecs-task-definition-filter
aws.eks cidr-egress-port-range-eks-filter
aws.elasticbeanstalk-environment describe-configuration-settings-filter
elasticbeanstalk-configuration-settings-filter
aws.elasticsearch elasticsearch-domain-filter
aws.elb cidr-egress-port-range-elb-filter
aws.emr cluster-security-configuration
aws.emr-serverless-app
aws.fsx attached-volume-filter
volumes-fsx
aws.iam-certificate if-tags-exist-in-server-certificate
aws.iam-policy-all
aws.iam-role-light
aws.iam-user creation-time-aws-iam-user
aws.kinesis kms-key-kinesis-filter
aws.lambda awslambda-iam-role-policy-filter
awslambda-signing-config-filter
aws.network-acl cidr-egress-port-range
aws.rds endpoint-port
option-group-validation-rds-filter
rds-vpc-filter
vpc-security-group-inbound-ports
aws.rds-cluster rds-cluster-parameter-filter
aws.rest-api-v2
aws.s3 exist-action
lock-configuration-filter
aws.s3-light
aws.secrets-manager delete
remove-statements
set-encryption
aws.sqs redrive-policy-sqs-filter
aws.ssm-service-setting
aws.timestream-database
aws.timestream-table
aws.user-pool auto-tag-user
copy-related-tag
mark-for-op
remove-tag
tag
marked-for-op
aws.vpc-endpoint-service vpc-endpoint-service-configurations-filter
aws.waf-rule-groups
aws.workspaces security-group-workspace-filter
aws.workspaces-directory check-vpc-endpoints-availability
radius-settings
azure.alert-logs
azure.app-configuration
azure.automation-account variable-value
azure.container-group diagnostic-settings
azure.containerservice diagnostic-settings
azure.databricks diagnostic-settings
azure.datalake-analytics
azure.diagnostic-settings
azure.disk snapshots
azure.dnszone diagnostic-settings
azure.event-grid-domain
azure.event-grid-topic
azure.eventhub private-endpoint-connections
azure.front-door web-application-firewall-policies
azure.image diagnostic-settings
azure.keyvault-by-subscription
azure.keyvault-secret
azure.kusto
azure.machine-learning-workspace
azure.mariadb-server
azure.mysql-server mysql-server-security-alert-policies-filter
server-parameters
azure.namespace
azure.network-watcher
azure.networksecuritygroup flow-analytics-logging
flow-logs
azure.policyassignments diagnostic-settings
azure.postgresql-server firewall-bypass
server-configuration
server-security-alert-policies-filter
azure.redis redis-firewall-filter
azure.resourcegroup diagnostic-settings
azure.routetable diagnostic-settings
azure.security-assessments
azure.security-auto-provisioning-settings
azure.security-contacts
azure.security-jit-policies security-jit-policies-filter
azure.security-pricing
azure.security-settings
azure.signalr
azure.spring-cloud
azure.sql-auditing-settings
azure.sql-database data-encryption
azure.sql-managed-instance encryption-protector
managed-server-security-alert-policies
vulnerability-assessments
azure.sql-server diagnostic-settings
failover-group-filter
sql-server-ad-admin
sql-server-security-alert-policies
transparent-data-encryption
vulnerability-assessments
azure.sql-server-vulnerability-assessments
azure.storage activity-log
diagnostic-settings
single-log-profile
azure.storage-container storage-single-log-profile
azure.stream-job
azure.subscription activity-log-alert
diagnostic-settings
network-watcher-filter
azure.synapse
azure.vm backup-status
security-jit-policy
azure.vmss diagnostic-settings
azure.vnet diagnostic-settings
network-interface-assignment
subnet-application-gateway-vnet-filter
azure.webapp-auth-settings
gcp.artifactregistry-repository gcp-iam-policy-filter
gcp.audit-config
gcp.bigtable-instance
gcp.bigtable-instance-cluster
gcp.bigtable-instance-cluster-backup time-range
gcp.bigtable-instance-table gcp-iam-policy-filter
gcp.bq-dataset-extended
gcp.bq-table encryption-configuration-bigquery-filter
gcp.bucket gcp-iam-policy-filter
gcp.bucket-access-control-list
gcp.bucket-iam-policy
gcp.datafusion-instance
gcp.dataproc-clusters gcp-iam-policy-filter
gcp.dns-managed-zone dns-zone-records-sets-filter
gcp.dns-resource-records-sets
gcp.firewall attached-to-cluster
port-range
gcp.function gcp-iam-policy-filter
gcp.gce-project
gcp.gcp-apikeys time-range
gcp.gcp-regions
gcp.gcp-secret
gcp.gcp-zones
gcp.gke-cluster-beta-api
gcp.gke-nodepool iam-gke-nodepool-filter
gcp.image gcp-iam-policy-filter
gcp.instance instance-iam-policy-filter
gcp.instance-group-managers
gcp.kms-keyring gcp-iam-policy-filter
gcp.kms-keyring-iam-policy-bindings
gcp.kms-location kms-keyring
gcp.liens
gcp.loadbalancer-backend-frontend
gcp.loadbalancer-backend-frontend-ssl
gcp.loadbalancer-target-https-proxy-ssl-policy
gcp.log-project-metric alerts
gcp.logging-alert-policy
gcp.logging-metrics
gcp.logging-sink
gcp.logging-sink-bucket
gcp.namespace-revision namespace-revision-iam-policy-filter
gcp.namespace-service namespace-service-iam-filter
gcp.notebook-instance
gcp.patch-deployment
gcp.project access-approval-filter
audit-config-project-filter
log-project-sink-filter
logging-metrics-filter
precondition-check-filter
security-policy-filter
service-vuln-scanning-filter
gcp.project-iam-policy-bindings
gcp.project-iam-policy-bindings-by-members new-roles-filter
gcp.pubsub-topic gcp-iam-policy-filter
gcp.redis-instance
gcp.security-policy
gcp.service-account-bindings new-roles-iam-filter
gcp.service-account-key-user
gcp.snapshot disk-availability
gcp.spanner-database-instance gcp-iam-policy-filter
gcp.spanner-instance gcp-iam-policy-filter
gcp.spanner-instance-backup gcp-iam-policy-filter
time-range
gcp.vpc vpc-dns-policy-filter
vpc-firewall-filter
gcp.web-security-scanner
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dmytro-afanasiev dmytro-afanasiev

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@dmytro-afanasiev