cfn-nag 0.4.68 → 0.4.69
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/cfn-nag/custom_rules/PinpointAPNSChannelPrivateKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSChannelTokenKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSSandboxChannelPrivateKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSSandboxChannelTokenKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSVoipChannelPrivateKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSVoipChannelTokenKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSVoipSandboxChannelPrivateKeyRule.rb +27 -0
- data/lib/cfn-nag/custom_rules/PinpointAPNSVoipSandboxChannelTokenKeyRule.rb +27 -0
- metadata +9 -1
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: b82485e14e76a4a11526a38def11fa31ab9aefa0a2af63bca6e2b856783d6820
|
|
4
|
+
data.tar.gz: e4340288aea5019332ade98880939f8e797fdd9f04e13f6618d5f2a53d7bfac7
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: f690578bce184b9b10bfca8f259ad2a8222408c8d618426af73c6be6f75d3c28ae04561a9dac36c7f8151617f8624a8c2f4c7b200a69982aa69df49ae3a0cc52
|
|
7
|
+
data.tar.gz: 47d66afbe48347ddaf3d6a770f0e3ae7f96841960741d72f193f12d7c4532060fbedf2569d19e3814641c0dce67fecd37f2f717997f8c9bc4d6bf7a58f24203b
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSChannelPrivateKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSChannel PrivateKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F57'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:privateKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSChannelTokenKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSChannel TokenKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F56'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:tokenKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSSandboxChannelPrivateKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSSandboxChannel PrivateKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F42'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSSandboxChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:privateKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSSandboxChannelTokenKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSSandboxChannel TokenKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F43'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSSandboxChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:tokenKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSVoipChannelPrivateKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSVoipChannel PrivateKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F48'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSVoipChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:privateKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSVoipChannelTokenKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSChannel TokenKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F49'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSVoipChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:tokenKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSVoipSandboxChannelPrivateKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSVoipSandboxChannel PrivateKey must not be a plaintext ' \
|
|
9
|
+
'string or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F46'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSVoipSandboxChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:privateKey
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'cfn-nag/violation'
|
|
4
|
+
require_relative 'password_base_rule'
|
|
5
|
+
|
|
6
|
+
class PinpointAPNSVoipSandboxChannelTokenKeyRule < PasswordBaseRule
|
|
7
|
+
def rule_text
|
|
8
|
+
'Pinpoint APNSVoipSandboxChannel TokenKey must not be a plaintext string ' \
|
|
9
|
+
'or a Ref to a NoEcho Parameter with a Default value.'
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def rule_type
|
|
13
|
+
Violation::FAILING_VIOLATION
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def rule_id
|
|
17
|
+
'F47'
|
|
18
|
+
end
|
|
19
|
+
|
|
20
|
+
def resource_type
|
|
21
|
+
'AWS::Pinpoint::APNSVoipSandboxChannel'
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
def password_property
|
|
25
|
+
:tokenKey
|
|
26
|
+
end
|
|
27
|
+
end
|
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: cfn-nag
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.4.
|
|
4
|
+
version: 0.4.69
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Eric Kascic
|
|
@@ -222,6 +222,14 @@ files:
|
|
|
222
222
|
- lib/cfn-nag/custom_rules/OpsWorksAppSslConfigurationPrivateKeyRule.rb
|
|
223
223
|
- lib/cfn-nag/custom_rules/OpsWorksStackCustomCookbooksSourcePasswordRule.rb
|
|
224
224
|
- lib/cfn-nag/custom_rules/OpsWorksStackRdsDbInstancesDbPasswordRule.rb
|
|
225
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSChannelPrivateKeyRule.rb
|
|
226
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSChannelTokenKeyRule.rb
|
|
227
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSSandboxChannelPrivateKeyRule.rb
|
|
228
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSSandboxChannelTokenKeyRule.rb
|
|
229
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSVoipChannelPrivateKeyRule.rb
|
|
230
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSVoipChannelTokenKeyRule.rb
|
|
231
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSVoipSandboxChannelPrivateKeyRule.rb
|
|
232
|
+
- lib/cfn-nag/custom_rules/PinpointAPNSVoipSandboxChannelTokenKeyRule.rb
|
|
225
233
|
- lib/cfn-nag/custom_rules/PolicyOnUserRule.rb
|
|
226
234
|
- lib/cfn-nag/custom_rules/RDSDBClusterMasterUserPasswordRule.rb
|
|
227
235
|
- lib/cfn-nag/custom_rules/RDSDBClusterStorageEncryptedRule.rb
|