@infrascan/aws-ecs-scanner
Version:
Infrascan scanner definition for AWS ECS
427 lines (425 loc) • 13.2 kB
JavaScript
"use strict";
var __create = Object.create;
var __defProp = Object.defineProperty;
var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
var __getOwnPropNames = Object.getOwnPropertyNames;
var __getProtoOf = Object.getPrototypeOf;
var __hasOwnProp = Object.prototype.hasOwnProperty;
var __export = (target, all) => {
for (var name in all)
__defProp(target, name, { get: all[name], enumerable: true });
};
var __copyProps = (to, from, except, desc) => {
if (from && typeof from === "object" || typeof from === "function") {
for (let key of __getOwnPropNames(from))
if (!__hasOwnProp.call(to, key) && key !== except)
__defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
}
return to;
};
var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
// If the importer is in node compatibility mode or this is not an ESM
// file that has been converted to a CommonJS file using a Babel-
// compatible transform (i.e. "__esModule" has not been set), then set
// "default" to the CommonJS "module.exports" for node compatibility.
isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
mod
));
var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
// src/generated/getters.ts
var getters_exports = {};
__export(getters_exports, {
DescribeClusters: () => DescribeClusters,
DescribeServices: () => DescribeServices,
DescribeTaskDefinition: () => DescribeTaskDefinition,
DescribeTasks: () => DescribeTasks,
ListClusters: () => ListClusters,
ListServices: () => ListServices,
ListTasks: () => ListTasks,
getIamRoles: () => getIamRoles
});
module.exports = __toCommonJS(getters_exports);
var import_core = require("@infrascan/core");
var import_client_ecs = require("@aws-sdk/client-ecs");
var import_debug = __toESM(require("debug"));
async function ListClusters(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:ListClusters");
const state = [];
getterDebug("ListClusters");
const preparedParams = {};
try {
const cmd = new import_client_ecs.ListClustersCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"ListClusters",
state
);
}
async function DescribeClusters(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:DescribeClusters");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{
Key: "clusters",
Selector: "ECS|ListClusters|[]._result.clusterArns | [?length(@)>`0`]"
},
{
Key: "include",
Value: [
"ATTACHMENTS",
"SETTINGS",
"CONFIGURATIONS",
"STATISTICS",
"TAGS"
]
}
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.DescribeClustersCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"DescribeClusters",
state
);
}
async function ListServices(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:ListServices");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{ Key: "cluster", Selector: "ECS|ListClusters|[]._result.clusterArns[]" },
{ Key: "maxResults", Value: 100 }
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.ListServicesCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"ListServices",
state
);
}
async function DescribeServices(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:DescribeServices");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{ Key: "cluster", Selector: "ECS|ListServices|[]._parameters.cluster" },
{
Key: "services",
Selector: "ECS|ListServices|[]._result.serviceArns | [?length(@)>`0`]"
},
{ Key: "include", Value: ["TAGS"] }
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.DescribeServicesCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"DescribeServices",
state
);
}
async function ListTasks(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:ListTasks");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{ Key: "cluster", Selector: "ECS|ListClusters|[]._result.clusterArns[]" }
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.ListTasksCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"ListTasks",
state
);
}
async function DescribeTasks(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:DescribeTasks");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{ Key: "cluster", Selector: "ECS|ListTasks|[]._parameters.cluster" },
{
Key: "tasks",
Selector: "ECS|ListTasks|[]._result.taskArns | [?length(@)>`0`]"
}
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.DescribeTasksCommand(preparedParams);
const result = await client.send(cmd);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"DescribeTasks",
state
);
}
async function DescribeTaskDefinition(client, stateConnector, context) {
const getterDebug = (0, import_debug.default)("ecs:DescribeTaskDefinition");
const state = [];
getterDebug("Fetching state");
const resolvers = [
{
Key: "taskDefinition",
Selector: "ECS|DescribeTasks|[]._result.tasks[].taskDefinitionArn"
},
{ Key: "include", Value: ["TAGS"] }
];
const parameterQueue = await (0, import_core.resolveFunctionCallParameters)(
context.account,
context.region,
resolvers,
stateConnector
);
for (const parameters of parameterQueue) {
const preparedParams = parameters;
try {
const cmd = new import_client_ecs.DescribeTaskDefinitionCommand(preparedParams);
const result = await client.send(
cmd
);
state.push({
_metadata: {
account: context.account,
region: context.region,
timestamp: Date.now()
},
_parameters: preparedParams,
_result: result
});
} catch (err) {
if (err instanceof import_client_ecs.ECSServiceException) {
if (err?.$retryable) {
console.log("Encountered retryable error", err);
} else {
console.log("Encountered unretryable error", err);
}
} else {
console.log("Encountered unexpected error", err);
}
}
}
getterDebug("Recording state");
await stateConnector.onServiceScanCompleteCallback(
context.account,
context.region,
"ECS",
"DescribeTaskDefinition",
state
);
}
async function getIamRoles(stateConnector) {
const iamDebug = (0, import_debug.default)("ecs:iam");
iamDebug("Pulling IAM roles from state");
const state = [];
const DescribeTaskDefinitionRoleState = await (0, import_core.evaluateSelectorGlobally)(
"ECS|DescribeTaskDefinition|[]._result.taskDefinition | [].{roleArn:taskRoleArn,executor:taskDefinitionArn}",
stateConnector
);
state.push(...DescribeTaskDefinitionRoleState);
const DescribeTaskDefinitionRoleState1 = await (0, import_core.evaluateSelectorGlobally)(
"ECS|DescribeTaskDefinition|[]._result.taskDefinition | [].{roleArn:executionRoleArn,executor:taskDefinitionArn}",
stateConnector
);
state.push(...DescribeTaskDefinitionRoleState1);
return state;
}
// Annotate the CommonJS export names for ESM import in node:
0 && (module.exports = {
DescribeClusters,
DescribeServices,
DescribeTaskDefinition,
DescribeTasks,
ListClusters,
ListServices,
ListTasks,
getIamRoles
});