UNPKG

@pulumi/aws-compliance-policies

Version:

This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.

44 lines (43 loc) 1.64 kB
import { ResourceValidationPolicy } from "@pulumi/policy"; declare namespace DomainName { /** * Checks that any ApiGatewayV2 Domain Name Security Policy uses secure/modern TLS encryption. * * @severity high * @frameworks hitrust, iso27001, pcidss * @topics encryption, network * @link https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-custom-domain-tls-version.html */ const configureDomainNameSecurityPolicy: ResourceValidationPolicy; /** * Checks that any ApiGatewayV2 Domain Name Configuration is enabled. * * @severity high * @frameworks hitrust, iso27001, pcidss * @topics network * @link https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-custom-domain-tls-version.html */ const enableDomainNameConfiguration: ResourceValidationPolicy; } export { DomainName }; declare namespace Stage { /** * Checks that any ApiGatewayV2 Stages have access logging configured. * * @severity medium * @frameworks hitrust, iso27001, pcidss * @topics logging, network * @link https://docs.aws.amazon.com/apigateway/latest/developerguide/set-up-logging.html */ const configureAccessLogging: ResourceValidationPolicy; /** * Checks that any ApiGatewayV2 Stages have access logging enabled. * * @severity medium * @frameworks hitrust, iso27001, pcidss * @topics logging, network * @link https://docs.aws.amazon.com/apigateway/latest/developerguide/set-up-logging.html */ const enableAccessLogging: ResourceValidationPolicy; } export { Stage };