@pulumi/aws-compliance-policies
Version:
This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.
44 lines (43 loc) • 1.64 kB
TypeScript
import { ResourceValidationPolicy } from "@pulumi/policy";
declare namespace DomainName {
/**
* Checks that any ApiGatewayV2 Domain Name Security Policy uses secure/modern TLS encryption.
*
* @severity high
* @frameworks hitrust, iso27001, pcidss
* @topics encryption, network
* @link https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-custom-domain-tls-version.html
*/
const configureDomainNameSecurityPolicy: ResourceValidationPolicy;
/**
* Checks that any ApiGatewayV2 Domain Name Configuration is enabled.
*
* @severity high
* @frameworks hitrust, iso27001, pcidss
* @topics network
* @link https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-custom-domain-tls-version.html
*/
const enableDomainNameConfiguration: ResourceValidationPolicy;
}
export { DomainName };
declare namespace Stage {
/**
* Checks that any ApiGatewayV2 Stages have access logging configured.
*
* @severity medium
* @frameworks hitrust, iso27001, pcidss
* @topics logging, network
* @link https://docs.aws.amazon.com/apigateway/latest/developerguide/set-up-logging.html
*/
const configureAccessLogging: ResourceValidationPolicy;
/**
* Checks that any ApiGatewayV2 Stages have access logging enabled.
*
* @severity medium
* @frameworks hitrust, iso27001, pcidss
* @topics logging, network
* @link https://docs.aws.amazon.com/apigateway/latest/developerguide/set-up-logging.html
*/
const enableAccessLogging: ResourceValidationPolicy;
}
export { Stage };