UNPKG

@pulumi/google-compliance-policies

Version:

This repository contains a growing set of Compliance Policies to validate your infrastructure using Pulumi's Crossguard Policy-as-Code framework.

55 lines (54 loc) 2.58 kB
"use strict"; // Copyright 2016-2024, Pulumi Corporation. // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. // // ------------------------------- WARNING ------------------------------------- // This file was programmatically generated. Do not edit unless you know what // you're doing. // ------------------------------- WARNING ------------------------------------- Object.defineProperty(exports, "__esModule", { value: true }); exports.ScanConfig = void 0; const policy_1 = require("@pulumi/policy"); const compliance_policy_manager_1 = require("@pulumi/compliance-policy-manager"); const v1beta_1 = require("@pulumi/google-native/websecurityscanner/v1beta"); var ScanConfig; (function (ScanConfig) { /** * Disallow the use of non-stable (Beta) resouces (websecurityscanner.v1beta.ScanConfig). * * @severity medium * @frameworks none * @topics api, beta, unstable * @link https://cloud.google.com/apis/design/versioning */ ScanConfig.disallowBetaResource = compliance_policy_manager_1.policyManager.registerPolicy({ resourceValidationPolicy: { name: "googlenative-websecurityscanner-v1beta-scanconfig-disallow-beta-resource", description: "Disallow the use of non-stable (Beta) resouces (websecurityscanner.v1beta.ScanConfig).", configSchema: compliance_policy_manager_1.policyManager.policyConfigSchema, enforcementLevel: "advisory", validateResource: (0, policy_1.validateResourceOfType)(v1beta_1.ScanConfig, (_, args, reportViolation) => { if (!compliance_policy_manager_1.policyManager.shouldEvalPolicy(args)) { return; } reportViolation("Websecurityscanner ScanConfig shouldn't use an unstable API (websecurityscanner.v1beta.ScanConfig)."); }), }, vendors: ["google"], services: ["websecurityscanner"], severity: "medium", topics: ["api", "unstable", "beta"], }); })(ScanConfig || (ScanConfig = {})); exports.ScanConfig = ScanConfig;