@cloud-copilot/iam-data 0.18.202603241 → 0.18.202603261
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/data/actions/lightsail.json +16 -1
- package/data/actions/route53profiles.json +25 -5
- package/data/actions/securityagent.json +139 -273
- package/data/conditionKeys/route53profiles.json +30 -0
- package/data/conditionKeys/securityagent.json +17 -1
- package/data/resourceTypes/lightsail.json +4 -1
- package/data/resourceTypes/securityagent.json +23 -36
- package/package.json +2 -2
|
@@ -170,7 +170,10 @@
|
|
|
170
170
|
"description": "Grants permission to create an email or SMS text message contact method",
|
|
171
171
|
"accessLevel": "Write",
|
|
172
172
|
"resourceTypes": [],
|
|
173
|
-
"conditionKeys": [
|
|
173
|
+
"conditionKeys": [
|
|
174
|
+
"aws:RequestTag/${TagKey}",
|
|
175
|
+
"aws:TagKeys"
|
|
176
|
+
],
|
|
174
177
|
"dependentActions": []
|
|
175
178
|
},
|
|
176
179
|
"createcontainerservice": {
|
|
@@ -1738,6 +1741,12 @@
|
|
|
1738
1741
|
"conditionKeys": [],
|
|
1739
1742
|
"dependentActions": []
|
|
1740
1743
|
},
|
|
1744
|
+
{
|
|
1745
|
+
"name": "ContactMethod",
|
|
1746
|
+
"required": false,
|
|
1747
|
+
"conditionKeys": [],
|
|
1748
|
+
"dependentActions": []
|
|
1749
|
+
},
|
|
1741
1750
|
{
|
|
1742
1751
|
"name": "ContainerService",
|
|
1743
1752
|
"required": false,
|
|
@@ -1857,6 +1866,12 @@
|
|
|
1857
1866
|
"conditionKeys": [],
|
|
1858
1867
|
"dependentActions": []
|
|
1859
1868
|
},
|
|
1869
|
+
{
|
|
1870
|
+
"name": "ContactMethod",
|
|
1871
|
+
"required": false,
|
|
1872
|
+
"conditionKeys": [],
|
|
1873
|
+
"dependentActions": []
|
|
1874
|
+
},
|
|
1860
1875
|
{
|
|
1861
1876
|
"name": "ContainerService",
|
|
1862
1877
|
"required": false,
|
|
@@ -6,7 +6,8 @@
|
|
|
6
6
|
"resourceTypes": [],
|
|
7
7
|
"conditionKeys": [
|
|
8
8
|
"aws:RequestTag/${TagKey}",
|
|
9
|
-
"aws:TagKeys"
|
|
9
|
+
"aws:TagKeys",
|
|
10
|
+
"route53profiles:ResourceIds"
|
|
10
11
|
],
|
|
11
12
|
"dependentActions": [
|
|
12
13
|
"ec2:DescribeVpcs"
|
|
@@ -17,7 +18,13 @@
|
|
|
17
18
|
"description": "Grants permission to associates a resource, such as DNS Firewall rule group, private hosted zone, resolver rule, etc. to a specified Profile",
|
|
18
19
|
"accessLevel": "Write",
|
|
19
20
|
"resourceTypes": [],
|
|
20
|
-
"conditionKeys": [
|
|
21
|
+
"conditionKeys": [
|
|
22
|
+
"route53profiles:ResourceTypes",
|
|
23
|
+
"route53profiles:HostedZoneDomains",
|
|
24
|
+
"route53profiles:ResolverRuleDomains",
|
|
25
|
+
"route53profiles:FirewallRuleGroupPriority",
|
|
26
|
+
"route53profiles:ResourceArns"
|
|
27
|
+
],
|
|
21
28
|
"dependentActions": []
|
|
22
29
|
},
|
|
23
30
|
"createprofile": {
|
|
@@ -44,7 +51,9 @@
|
|
|
44
51
|
"description": "Grants permission to delete an association between a customer VPC and the specified Profile",
|
|
45
52
|
"accessLevel": "Write",
|
|
46
53
|
"resourceTypes": [],
|
|
47
|
-
"conditionKeys": [
|
|
54
|
+
"conditionKeys": [
|
|
55
|
+
"route53profiles:ResourceIds"
|
|
56
|
+
],
|
|
48
57
|
"dependentActions": []
|
|
49
58
|
},
|
|
50
59
|
"disassociateresourcefromprofile": {
|
|
@@ -52,7 +61,13 @@
|
|
|
52
61
|
"description": "Grants permission to delete the asoociation between the resource. such as DNS Firewall rule group, private hosted zone, resolver rule, etc. and the specified Profile",
|
|
53
62
|
"accessLevel": "Write",
|
|
54
63
|
"resourceTypes": [],
|
|
55
|
-
"conditionKeys": [
|
|
64
|
+
"conditionKeys": [
|
|
65
|
+
"route53profiles:ResourceTypes",
|
|
66
|
+
"route53profiles:HostedZoneDomains",
|
|
67
|
+
"route53profiles:ResolverRuleDomains",
|
|
68
|
+
"route53profiles:FirewallRuleGroupPriority",
|
|
69
|
+
"route53profiles:ResourceArns"
|
|
70
|
+
],
|
|
56
71
|
"dependentActions": []
|
|
57
72
|
},
|
|
58
73
|
"getprofile": {
|
|
@@ -195,7 +210,12 @@
|
|
|
195
210
|
"description": "Grants permission to update the Profile resource association name or the resource properties or both, if both name and resource properties are null, the api returns the existing Profile resource association",
|
|
196
211
|
"accessLevel": "Write",
|
|
197
212
|
"resourceTypes": [],
|
|
198
|
-
"conditionKeys": [
|
|
213
|
+
"conditionKeys": [
|
|
214
|
+
"route53profiles:ResourceTypes",
|
|
215
|
+
"route53profiles:HostedZoneDomains",
|
|
216
|
+
"route53profiles:ResolverRuleDomains",
|
|
217
|
+
"route53profiles:FirewallRuleGroupPriority"
|
|
218
|
+
],
|
|
199
219
|
"dependentActions": []
|
|
200
220
|
}
|
|
201
221
|
}
|
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
{
|
|
2
2
|
"addartifact": {
|
|
3
3
|
"name": "AddArtifact",
|
|
4
|
-
"description": "Grants permission to add an Artifact for the given Agent
|
|
4
|
+
"description": "Grants permission to add an Artifact for the given Agent Space",
|
|
5
5
|
"accessLevel": "Write",
|
|
6
6
|
"resourceTypes": [
|
|
7
7
|
{
|
|
@@ -14,21 +14,6 @@
|
|
|
14
14
|
"conditionKeys": [],
|
|
15
15
|
"dependentActions": []
|
|
16
16
|
},
|
|
17
|
-
"addcontrol": {
|
|
18
|
-
"name": "AddControl",
|
|
19
|
-
"description": "Grants permission to add a customer managed Control",
|
|
20
|
-
"accessLevel": "Write",
|
|
21
|
-
"resourceTypes": [
|
|
22
|
-
{
|
|
23
|
-
"name": "Application",
|
|
24
|
-
"required": true,
|
|
25
|
-
"conditionKeys": [],
|
|
26
|
-
"dependentActions": []
|
|
27
|
-
}
|
|
28
|
-
],
|
|
29
|
-
"conditionKeys": [],
|
|
30
|
-
"dependentActions": []
|
|
31
|
-
},
|
|
32
17
|
"batchdeletepentests": {
|
|
33
18
|
"name": "BatchDeletePentests",
|
|
34
19
|
"description": "Grants permission to delete multiple penetration tests in a single request",
|
|
@@ -44,21 +29,6 @@
|
|
|
44
29
|
"conditionKeys": [],
|
|
45
30
|
"dependentActions": []
|
|
46
31
|
},
|
|
47
|
-
"batchgetagentinstances": {
|
|
48
|
-
"name": "BatchGetAgentInstances",
|
|
49
|
-
"description": "Grants permission to retrieve multiple agent instances in a single request",
|
|
50
|
-
"accessLevel": "Read",
|
|
51
|
-
"resourceTypes": [
|
|
52
|
-
{
|
|
53
|
-
"name": "AgentInstance",
|
|
54
|
-
"required": true,
|
|
55
|
-
"conditionKeys": [],
|
|
56
|
-
"dependentActions": []
|
|
57
|
-
}
|
|
58
|
-
],
|
|
59
|
-
"conditionKeys": [],
|
|
60
|
-
"dependentActions": []
|
|
61
|
-
},
|
|
62
32
|
"batchgetagentspaces": {
|
|
63
33
|
"name": "BatchGetAgentSpaces",
|
|
64
34
|
"description": "Grants permission to retrieve multiple agent spaces in a single request",
|
|
@@ -76,7 +46,7 @@
|
|
|
76
46
|
},
|
|
77
47
|
"batchgetartifactmetadata": {
|
|
78
48
|
"name": "BatchGetArtifactMetadata",
|
|
79
|
-
"description": "Grants permission to retrieve one or more Artifact Metadata records for the given Agent
|
|
49
|
+
"description": "Grants permission to retrieve one or more Artifact Metadata records for the given Agent Space",
|
|
80
50
|
"accessLevel": "Read",
|
|
81
51
|
"resourceTypes": [
|
|
82
52
|
{
|
|
@@ -209,27 +179,15 @@
|
|
|
209
179
|
"conditionKeys": [],
|
|
210
180
|
"dependentActions": []
|
|
211
181
|
},
|
|
212
|
-
"createagentinstance": {
|
|
213
|
-
"name": "CreateAgentInstance",
|
|
214
|
-
"description": "Grants permission to create an agent instance record",
|
|
215
|
-
"accessLevel": "Write",
|
|
216
|
-
"resourceTypes": [
|
|
217
|
-
{
|
|
218
|
-
"name": "Application",
|
|
219
|
-
"required": true,
|
|
220
|
-
"conditionKeys": [],
|
|
221
|
-
"dependentActions": []
|
|
222
|
-
}
|
|
223
|
-
],
|
|
224
|
-
"conditionKeys": [],
|
|
225
|
-
"dependentActions": []
|
|
226
|
-
},
|
|
227
182
|
"createagentspace": {
|
|
228
183
|
"name": "CreateAgentSpace",
|
|
229
184
|
"description": "Grants permission to create an agent space record",
|
|
230
185
|
"accessLevel": "Write",
|
|
231
186
|
"resourceTypes": [],
|
|
232
|
-
"conditionKeys": [
|
|
187
|
+
"conditionKeys": [
|
|
188
|
+
"aws:RequestTag/${TagKey}",
|
|
189
|
+
"aws:TagKeys"
|
|
190
|
+
],
|
|
233
191
|
"dependentActions": []
|
|
234
192
|
},
|
|
235
193
|
"createapplication": {
|
|
@@ -237,7 +195,10 @@
|
|
|
237
195
|
"description": "Grants permission to create a new application",
|
|
238
196
|
"accessLevel": "Write",
|
|
239
197
|
"resourceTypes": [],
|
|
240
|
-
"conditionKeys": [
|
|
198
|
+
"conditionKeys": [
|
|
199
|
+
"aws:RequestTag/${TagKey}",
|
|
200
|
+
"aws:TagKeys"
|
|
201
|
+
],
|
|
241
202
|
"dependentActions": [
|
|
242
203
|
"iam:PassRole",
|
|
243
204
|
"sso:CreateApplication"
|
|
@@ -258,21 +219,6 @@
|
|
|
258
219
|
"conditionKeys": [],
|
|
259
220
|
"dependentActions": []
|
|
260
221
|
},
|
|
261
|
-
"createdocumentreview": {
|
|
262
|
-
"name": "CreateDocumentReview",
|
|
263
|
-
"description": "Grants permission to create a document review",
|
|
264
|
-
"accessLevel": "Write",
|
|
265
|
-
"resourceTypes": [
|
|
266
|
-
{
|
|
267
|
-
"name": "AgentSpace",
|
|
268
|
-
"required": true,
|
|
269
|
-
"conditionKeys": [],
|
|
270
|
-
"dependentActions": []
|
|
271
|
-
}
|
|
272
|
-
],
|
|
273
|
-
"conditionKeys": [],
|
|
274
|
-
"dependentActions": []
|
|
275
|
-
},
|
|
276
222
|
"createintegration": {
|
|
277
223
|
"name": "CreateIntegration",
|
|
278
224
|
"description": "Grants permission to create a security testing integration",
|
|
@@ -285,12 +231,15 @@
|
|
|
285
231
|
"dependentActions": []
|
|
286
232
|
}
|
|
287
233
|
],
|
|
288
|
-
"conditionKeys": [
|
|
234
|
+
"conditionKeys": [
|
|
235
|
+
"aws:RequestTag/${TagKey}",
|
|
236
|
+
"aws:TagKeys"
|
|
237
|
+
],
|
|
289
238
|
"dependentActions": []
|
|
290
239
|
},
|
|
291
240
|
"createmembership": {
|
|
292
241
|
"name": "CreateMembership",
|
|
293
|
-
"description": "Grants permission to add a single member to a agent
|
|
242
|
+
"description": "Grants permission to add a single member to a agent space with specified role",
|
|
294
243
|
"accessLevel": "Write",
|
|
295
244
|
"resourceTypes": [
|
|
296
245
|
{
|
|
@@ -339,7 +288,7 @@
|
|
|
339
288
|
"accessLevel": "Write",
|
|
340
289
|
"resourceTypes": [
|
|
341
290
|
{
|
|
342
|
-
"name": "
|
|
291
|
+
"name": "SecurityRequirementPack",
|
|
343
292
|
"required": true,
|
|
344
293
|
"conditionKeys": [],
|
|
345
294
|
"dependentActions": []
|
|
@@ -356,21 +305,6 @@
|
|
|
356
305
|
"conditionKeys": [],
|
|
357
306
|
"dependentActions": []
|
|
358
307
|
},
|
|
359
|
-
"deleteagentinstance": {
|
|
360
|
-
"name": "DeleteAgentInstance",
|
|
361
|
-
"description": "Grants permission to delete an agent instance record",
|
|
362
|
-
"accessLevel": "Write",
|
|
363
|
-
"resourceTypes": [
|
|
364
|
-
{
|
|
365
|
-
"name": "AgentInstance",
|
|
366
|
-
"required": true,
|
|
367
|
-
"conditionKeys": [],
|
|
368
|
-
"dependentActions": []
|
|
369
|
-
}
|
|
370
|
-
],
|
|
371
|
-
"conditionKeys": [],
|
|
372
|
-
"dependentActions": []
|
|
373
|
-
},
|
|
374
308
|
"deleteagentspace": {
|
|
375
309
|
"name": "DeleteAgentSpace",
|
|
376
310
|
"description": "Grants permission to delete an agent space record",
|
|
@@ -416,21 +350,6 @@
|
|
|
416
350
|
"conditionKeys": [],
|
|
417
351
|
"dependentActions": []
|
|
418
352
|
},
|
|
419
|
-
"deletecontrol": {
|
|
420
|
-
"name": "DeleteControl",
|
|
421
|
-
"description": "Grants permission to delete a customer managed Control",
|
|
422
|
-
"accessLevel": "Write",
|
|
423
|
-
"resourceTypes": [
|
|
424
|
-
{
|
|
425
|
-
"name": "Control",
|
|
426
|
-
"required": true,
|
|
427
|
-
"conditionKeys": [],
|
|
428
|
-
"dependentActions": []
|
|
429
|
-
}
|
|
430
|
-
],
|
|
431
|
-
"conditionKeys": [],
|
|
432
|
-
"dependentActions": []
|
|
433
|
-
},
|
|
434
353
|
"deletedesignreview": {
|
|
435
354
|
"name": "DeleteDesignReview",
|
|
436
355
|
"description": "Grants permission to delete a design review",
|
|
@@ -446,21 +365,6 @@
|
|
|
446
365
|
"conditionKeys": [],
|
|
447
366
|
"dependentActions": []
|
|
448
367
|
},
|
|
449
|
-
"deletedocumentreview": {
|
|
450
|
-
"name": "DeleteDocumentReview",
|
|
451
|
-
"description": "Grants permission to delete a document review",
|
|
452
|
-
"accessLevel": "Write",
|
|
453
|
-
"resourceTypes": [
|
|
454
|
-
{
|
|
455
|
-
"name": "AgentSpace",
|
|
456
|
-
"required": true,
|
|
457
|
-
"conditionKeys": [],
|
|
458
|
-
"dependentActions": []
|
|
459
|
-
}
|
|
460
|
-
],
|
|
461
|
-
"conditionKeys": [],
|
|
462
|
-
"dependentActions": []
|
|
463
|
-
},
|
|
464
368
|
"deleteintegration": {
|
|
465
369
|
"name": "DeleteIntegration",
|
|
466
370
|
"description": "Grants permission to delete the integration of an application",
|
|
@@ -478,7 +382,7 @@
|
|
|
478
382
|
},
|
|
479
383
|
"deletemembership": {
|
|
480
384
|
"name": "DeleteMembership",
|
|
481
|
-
"description": "Grants permission to remove a single member associated to an agent
|
|
385
|
+
"description": "Grants permission to remove a single member associated to an agent space",
|
|
482
386
|
"accessLevel": "Write",
|
|
483
387
|
"resourceTypes": [
|
|
484
388
|
{
|
|
@@ -497,7 +401,7 @@
|
|
|
497
401
|
"accessLevel": "Write",
|
|
498
402
|
"resourceTypes": [
|
|
499
403
|
{
|
|
500
|
-
"name": "
|
|
404
|
+
"name": "SecurityRequirementPack",
|
|
501
405
|
"required": true,
|
|
502
406
|
"conditionKeys": [],
|
|
503
407
|
"dependentActions": []
|
|
@@ -553,7 +457,7 @@
|
|
|
553
457
|
},
|
|
554
458
|
"getartifact": {
|
|
555
459
|
"name": "GetArtifact",
|
|
556
|
-
"description": "Grants permission to retrieve an Artifact for the given Agent
|
|
460
|
+
"description": "Grants permission to retrieve an Artifact for the given Agent Space",
|
|
557
461
|
"accessLevel": "Read",
|
|
558
462
|
"resourceTypes": [
|
|
559
463
|
{
|
|
@@ -581,21 +485,6 @@
|
|
|
581
485
|
"conditionKeys": [],
|
|
582
486
|
"dependentActions": []
|
|
583
487
|
},
|
|
584
|
-
"getcontrol": {
|
|
585
|
-
"name": "GetControl",
|
|
586
|
-
"description": "Grants permission to retrieve a Control",
|
|
587
|
-
"accessLevel": "Read",
|
|
588
|
-
"resourceTypes": [
|
|
589
|
-
{
|
|
590
|
-
"name": "Control",
|
|
591
|
-
"required": true,
|
|
592
|
-
"conditionKeys": [],
|
|
593
|
-
"dependentActions": []
|
|
594
|
-
}
|
|
595
|
-
],
|
|
596
|
-
"conditionKeys": [],
|
|
597
|
-
"dependentActions": []
|
|
598
|
-
},
|
|
599
488
|
"getdesignreview": {
|
|
600
489
|
"name": "GetDesignReview",
|
|
601
490
|
"description": "Grants permission to get the status of the associated agent space design review",
|
|
@@ -656,36 +545,6 @@
|
|
|
656
545
|
"conditionKeys": [],
|
|
657
546
|
"dependentActions": []
|
|
658
547
|
},
|
|
659
|
-
"getdocumentreview": {
|
|
660
|
-
"name": "GetDocumentReview",
|
|
661
|
-
"description": "Grants permission to get the status of the associated agent instance document review",
|
|
662
|
-
"accessLevel": "Read",
|
|
663
|
-
"resourceTypes": [
|
|
664
|
-
{
|
|
665
|
-
"name": "AgentSpace",
|
|
666
|
-
"required": true,
|
|
667
|
-
"conditionKeys": [],
|
|
668
|
-
"dependentActions": []
|
|
669
|
-
}
|
|
670
|
-
],
|
|
671
|
-
"conditionKeys": [],
|
|
672
|
-
"dependentActions": []
|
|
673
|
-
},
|
|
674
|
-
"getdocumentreviewartifact": {
|
|
675
|
-
"name": "GetDocumentReviewArtifact",
|
|
676
|
-
"description": "Grants permission to get document review artifact for a specific document",
|
|
677
|
-
"accessLevel": "Read",
|
|
678
|
-
"resourceTypes": [
|
|
679
|
-
{
|
|
680
|
-
"name": "AgentSpace",
|
|
681
|
-
"required": true,
|
|
682
|
-
"conditionKeys": [],
|
|
683
|
-
"dependentActions": []
|
|
684
|
-
}
|
|
685
|
-
],
|
|
686
|
-
"conditionKeys": [],
|
|
687
|
-
"dependentActions": []
|
|
688
|
-
},
|
|
689
548
|
"getintegration": {
|
|
690
549
|
"name": "GetIntegration",
|
|
691
550
|
"description": "Grants permission to get the integration metadata by ID",
|
|
@@ -701,21 +560,13 @@
|
|
|
701
560
|
"conditionKeys": [],
|
|
702
561
|
"dependentActions": []
|
|
703
562
|
},
|
|
704
|
-
"getloginsessioncredentials": {
|
|
705
|
-
"name": "GetLoginSessionCredentials",
|
|
706
|
-
"description": "Grants permission to retrieve credentials for a one time login session",
|
|
707
|
-
"accessLevel": "Read",
|
|
708
|
-
"resourceTypes": [],
|
|
709
|
-
"conditionKeys": [],
|
|
710
|
-
"dependentActions": []
|
|
711
|
-
},
|
|
712
563
|
"getsecurityrequirement": {
|
|
713
564
|
"name": "GetSecurityRequirement",
|
|
714
565
|
"description": "Grants permission to retrieve a Security Requirement",
|
|
715
566
|
"accessLevel": "Read",
|
|
716
567
|
"resourceTypes": [
|
|
717
568
|
{
|
|
718
|
-
"name": "
|
|
569
|
+
"name": "SecurityRequirementPack",
|
|
719
570
|
"required": true,
|
|
720
571
|
"conditionKeys": [],
|
|
721
572
|
"dependentActions": []
|
|
@@ -724,14 +575,6 @@
|
|
|
724
575
|
"conditionKeys": [],
|
|
725
576
|
"dependentActions": []
|
|
726
577
|
},
|
|
727
|
-
"handleonetimeloginsession": {
|
|
728
|
-
"name": "HandleOneTimeLoginSession",
|
|
729
|
-
"description": "Grants permission to process and invalidate a one time login session",
|
|
730
|
-
"accessLevel": "Write",
|
|
731
|
-
"resourceTypes": [],
|
|
732
|
-
"conditionKeys": [],
|
|
733
|
-
"dependentActions": []
|
|
734
|
-
},
|
|
735
578
|
"initiateproviderregistration": {
|
|
736
579
|
"name": "InitiateProviderRegistration",
|
|
737
580
|
"description": "Grants permission to initiate the registration of Security Agent App for the given provider (eg: GitHub)",
|
|
@@ -747,29 +590,6 @@
|
|
|
747
590
|
"conditionKeys": [],
|
|
748
591
|
"dependentActions": []
|
|
749
592
|
},
|
|
750
|
-
"listagentinstancetasks": {
|
|
751
|
-
"name": "ListAgentInstanceTasks",
|
|
752
|
-
"description": "Grants permission to list tasks for a specific agent instance",
|
|
753
|
-
"accessLevel": "List",
|
|
754
|
-
"resourceTypes": [
|
|
755
|
-
{
|
|
756
|
-
"name": "AgentInstance",
|
|
757
|
-
"required": true,
|
|
758
|
-
"conditionKeys": [],
|
|
759
|
-
"dependentActions": []
|
|
760
|
-
}
|
|
761
|
-
],
|
|
762
|
-
"conditionKeys": [],
|
|
763
|
-
"dependentActions": []
|
|
764
|
-
},
|
|
765
|
-
"listagentinstances": {
|
|
766
|
-
"name": "ListAgentInstances",
|
|
767
|
-
"description": "Grants permission to list agent instances",
|
|
768
|
-
"accessLevel": "List",
|
|
769
|
-
"resourceTypes": [],
|
|
770
|
-
"conditionKeys": [],
|
|
771
|
-
"dependentActions": []
|
|
772
|
-
},
|
|
773
593
|
"listagentspaces": {
|
|
774
594
|
"name": "ListAgentSpaces",
|
|
775
595
|
"description": "Grants permission to list agent spaces",
|
|
@@ -801,14 +621,6 @@
|
|
|
801
621
|
"conditionKeys": [],
|
|
802
622
|
"dependentActions": []
|
|
803
623
|
},
|
|
804
|
-
"listcontrols": {
|
|
805
|
-
"name": "ListControls",
|
|
806
|
-
"description": "Grants permission to list all Controls",
|
|
807
|
-
"accessLevel": "List",
|
|
808
|
-
"resourceTypes": [],
|
|
809
|
-
"conditionKeys": [],
|
|
810
|
-
"dependentActions": []
|
|
811
|
-
},
|
|
812
624
|
"listdesignreviewcomments": {
|
|
813
625
|
"name": "ListDesignReviewComments",
|
|
814
626
|
"description": "Grants permission to list design review comments",
|
|
@@ -854,36 +666,6 @@
|
|
|
854
666
|
"conditionKeys": [],
|
|
855
667
|
"dependentActions": []
|
|
856
668
|
},
|
|
857
|
-
"listdocumentreviewcomments": {
|
|
858
|
-
"name": "ListDocumentReviewComments",
|
|
859
|
-
"description": "Grants permission to list document review comments",
|
|
860
|
-
"accessLevel": "List",
|
|
861
|
-
"resourceTypes": [
|
|
862
|
-
{
|
|
863
|
-
"name": "AgentSpace",
|
|
864
|
-
"required": true,
|
|
865
|
-
"conditionKeys": [],
|
|
866
|
-
"dependentActions": []
|
|
867
|
-
}
|
|
868
|
-
],
|
|
869
|
-
"conditionKeys": [],
|
|
870
|
-
"dependentActions": []
|
|
871
|
-
},
|
|
872
|
-
"listdocumentreviews": {
|
|
873
|
-
"name": "ListDocumentReviews",
|
|
874
|
-
"description": "Grants permission to list all document reviews for the given project",
|
|
875
|
-
"accessLevel": "List",
|
|
876
|
-
"resourceTypes": [
|
|
877
|
-
{
|
|
878
|
-
"name": "AgentSpace",
|
|
879
|
-
"required": true,
|
|
880
|
-
"conditionKeys": [],
|
|
881
|
-
"dependentActions": []
|
|
882
|
-
}
|
|
883
|
-
],
|
|
884
|
-
"conditionKeys": [],
|
|
885
|
-
"dependentActions": []
|
|
886
|
-
},
|
|
887
669
|
"listfindings": {
|
|
888
670
|
"name": "ListFindings",
|
|
889
671
|
"description": "Grants permission to list findings with filtering and pagination support",
|
|
@@ -901,7 +683,7 @@
|
|
|
901
683
|
},
|
|
902
684
|
"listintegratedresources": {
|
|
903
685
|
"name": "ListIntegratedResources",
|
|
904
|
-
"description": "Grants permission to list integrated resources for an agent
|
|
686
|
+
"description": "Grants permission to list integrated resources for an agent space",
|
|
905
687
|
"accessLevel": "List",
|
|
906
688
|
"resourceTypes": [
|
|
907
689
|
{
|
|
@@ -924,7 +706,7 @@
|
|
|
924
706
|
},
|
|
925
707
|
"listmemberships": {
|
|
926
708
|
"name": "ListMemberships",
|
|
927
|
-
"description": "Grants permission to list all members associated to an agent
|
|
709
|
+
"description": "Grants permission to list all members associated to an agent space with pagination support",
|
|
928
710
|
"accessLevel": "List",
|
|
929
711
|
"resourceTypes": [
|
|
930
712
|
{
|
|
@@ -1001,7 +783,53 @@
|
|
|
1001
783
|
"name": "ListSecurityRequirements",
|
|
1002
784
|
"description": "Grants permission to list all Security Requirements",
|
|
1003
785
|
"accessLevel": "List",
|
|
1004
|
-
"resourceTypes": [
|
|
786
|
+
"resourceTypes": [
|
|
787
|
+
{
|
|
788
|
+
"name": "SecurityRequirementPack",
|
|
789
|
+
"required": true,
|
|
790
|
+
"conditionKeys": [],
|
|
791
|
+
"dependentActions": []
|
|
792
|
+
}
|
|
793
|
+
],
|
|
794
|
+
"conditionKeys": [],
|
|
795
|
+
"dependentActions": []
|
|
796
|
+
},
|
|
797
|
+
"listtagsforresource": {
|
|
798
|
+
"name": "ListTagsForResource",
|
|
799
|
+
"description": "Grants permission to list the tags for a resource",
|
|
800
|
+
"accessLevel": "Read",
|
|
801
|
+
"resourceTypes": [
|
|
802
|
+
{
|
|
803
|
+
"name": "AgentSpace",
|
|
804
|
+
"required": false,
|
|
805
|
+
"conditionKeys": [],
|
|
806
|
+
"dependentActions": []
|
|
807
|
+
},
|
|
808
|
+
{
|
|
809
|
+
"name": "Application",
|
|
810
|
+
"required": false,
|
|
811
|
+
"conditionKeys": [],
|
|
812
|
+
"dependentActions": []
|
|
813
|
+
},
|
|
814
|
+
{
|
|
815
|
+
"name": "Integration",
|
|
816
|
+
"required": false,
|
|
817
|
+
"conditionKeys": [],
|
|
818
|
+
"dependentActions": []
|
|
819
|
+
},
|
|
820
|
+
{
|
|
821
|
+
"name": "SecurityRequirementPack",
|
|
822
|
+
"required": false,
|
|
823
|
+
"conditionKeys": [],
|
|
824
|
+
"dependentActions": []
|
|
825
|
+
},
|
|
826
|
+
{
|
|
827
|
+
"name": "TargetDomain",
|
|
828
|
+
"required": false,
|
|
829
|
+
"conditionKeys": [],
|
|
830
|
+
"dependentActions": []
|
|
831
|
+
}
|
|
832
|
+
],
|
|
1005
833
|
"conditionKeys": [],
|
|
1006
834
|
"dependentActions": []
|
|
1007
835
|
},
|
|
@@ -1118,19 +946,46 @@
|
|
|
1118
946
|
"conditionKeys": [],
|
|
1119
947
|
"dependentActions": []
|
|
1120
948
|
},
|
|
1121
|
-
"
|
|
1122
|
-
"name": "
|
|
1123
|
-
"description": "Grants permission to
|
|
1124
|
-
"accessLevel": "
|
|
949
|
+
"tagresource": {
|
|
950
|
+
"name": "TagResource",
|
|
951
|
+
"description": "Grants permission to add tags to a resource",
|
|
952
|
+
"accessLevel": "Tagging",
|
|
1125
953
|
"resourceTypes": [
|
|
1126
954
|
{
|
|
1127
|
-
"name": "
|
|
1128
|
-
"required":
|
|
955
|
+
"name": "AgentSpace",
|
|
956
|
+
"required": false,
|
|
957
|
+
"conditionKeys": [],
|
|
958
|
+
"dependentActions": []
|
|
959
|
+
},
|
|
960
|
+
{
|
|
961
|
+
"name": "Application",
|
|
962
|
+
"required": false,
|
|
963
|
+
"conditionKeys": [],
|
|
964
|
+
"dependentActions": []
|
|
965
|
+
},
|
|
966
|
+
{
|
|
967
|
+
"name": "Integration",
|
|
968
|
+
"required": false,
|
|
969
|
+
"conditionKeys": [],
|
|
970
|
+
"dependentActions": []
|
|
971
|
+
},
|
|
972
|
+
{
|
|
973
|
+
"name": "SecurityRequirementPack",
|
|
974
|
+
"required": false,
|
|
975
|
+
"conditionKeys": [],
|
|
976
|
+
"dependentActions": []
|
|
977
|
+
},
|
|
978
|
+
{
|
|
979
|
+
"name": "TargetDomain",
|
|
980
|
+
"required": false,
|
|
1129
981
|
"conditionKeys": [],
|
|
1130
982
|
"dependentActions": []
|
|
1131
983
|
}
|
|
1132
984
|
],
|
|
1133
|
-
"conditionKeys": [
|
|
985
|
+
"conditionKeys": [
|
|
986
|
+
"aws:RequestTag/${TagKey}",
|
|
987
|
+
"aws:TagKeys"
|
|
988
|
+
],
|
|
1134
989
|
"dependentActions": []
|
|
1135
990
|
},
|
|
1136
991
|
"togglemanagedsecurityrequirement": {
|
|
@@ -1139,7 +994,7 @@
|
|
|
1139
994
|
"accessLevel": "Write",
|
|
1140
995
|
"resourceTypes": [
|
|
1141
996
|
{
|
|
1142
|
-
"name": "
|
|
997
|
+
"name": "SecurityRequirementPack",
|
|
1143
998
|
"required": true,
|
|
1144
999
|
"conditionKeys": [],
|
|
1145
1000
|
"dependentActions": []
|
|
@@ -1148,19 +1003,45 @@
|
|
|
1148
1003
|
"conditionKeys": [],
|
|
1149
1004
|
"dependentActions": []
|
|
1150
1005
|
},
|
|
1151
|
-
"
|
|
1152
|
-
"name": "
|
|
1153
|
-
"description": "Grants permission to
|
|
1154
|
-
"accessLevel": "
|
|
1006
|
+
"untagresource": {
|
|
1007
|
+
"name": "UntagResource",
|
|
1008
|
+
"description": "Grants permission to remove tags from a resource",
|
|
1009
|
+
"accessLevel": "Tagging",
|
|
1155
1010
|
"resourceTypes": [
|
|
1156
1011
|
{
|
|
1157
|
-
"name": "
|
|
1158
|
-
"required":
|
|
1012
|
+
"name": "AgentSpace",
|
|
1013
|
+
"required": false,
|
|
1014
|
+
"conditionKeys": [],
|
|
1015
|
+
"dependentActions": []
|
|
1016
|
+
},
|
|
1017
|
+
{
|
|
1018
|
+
"name": "Application",
|
|
1019
|
+
"required": false,
|
|
1020
|
+
"conditionKeys": [],
|
|
1021
|
+
"dependentActions": []
|
|
1022
|
+
},
|
|
1023
|
+
{
|
|
1024
|
+
"name": "Integration",
|
|
1025
|
+
"required": false,
|
|
1026
|
+
"conditionKeys": [],
|
|
1027
|
+
"dependentActions": []
|
|
1028
|
+
},
|
|
1029
|
+
{
|
|
1030
|
+
"name": "SecurityRequirementPack",
|
|
1031
|
+
"required": false,
|
|
1032
|
+
"conditionKeys": [],
|
|
1033
|
+
"dependentActions": []
|
|
1034
|
+
},
|
|
1035
|
+
{
|
|
1036
|
+
"name": "TargetDomain",
|
|
1037
|
+
"required": false,
|
|
1159
1038
|
"conditionKeys": [],
|
|
1160
1039
|
"dependentActions": []
|
|
1161
1040
|
}
|
|
1162
1041
|
],
|
|
1163
|
-
"conditionKeys": [
|
|
1042
|
+
"conditionKeys": [
|
|
1043
|
+
"aws:TagKeys"
|
|
1044
|
+
],
|
|
1164
1045
|
"dependentActions": []
|
|
1165
1046
|
},
|
|
1166
1047
|
"updateagentspace": {
|
|
@@ -1195,21 +1076,6 @@
|
|
|
1195
1076
|
"iam:PassRole"
|
|
1196
1077
|
]
|
|
1197
1078
|
},
|
|
1198
|
-
"updatecontrol": {
|
|
1199
|
-
"name": "UpdateControl",
|
|
1200
|
-
"description": "Grants permission to update a customer managed Control",
|
|
1201
|
-
"accessLevel": "Write",
|
|
1202
|
-
"resourceTypes": [
|
|
1203
|
-
{
|
|
1204
|
-
"name": "Control",
|
|
1205
|
-
"required": true,
|
|
1206
|
-
"conditionKeys": [],
|
|
1207
|
-
"dependentActions": []
|
|
1208
|
-
}
|
|
1209
|
-
],
|
|
1210
|
-
"conditionKeys": [],
|
|
1211
|
-
"dependentActions": []
|
|
1212
|
-
},
|
|
1213
1079
|
"updatefinding": {
|
|
1214
1080
|
"name": "UpdateFinding",
|
|
1215
1081
|
"description": "Grants permission to update an existing security finding with new details or status",
|
|
@@ -1227,7 +1093,7 @@
|
|
|
1227
1093
|
},
|
|
1228
1094
|
"updateintegratedresources": {
|
|
1229
1095
|
"name": "UpdateIntegratedResources",
|
|
1230
|
-
"description": "Grants permission to update integrated resources for an agent
|
|
1096
|
+
"description": "Grants permission to update integrated resources for an agent space",
|
|
1231
1097
|
"accessLevel": "Write",
|
|
1232
1098
|
"resourceTypes": [
|
|
1233
1099
|
{
|
|
@@ -1261,7 +1127,7 @@
|
|
|
1261
1127
|
"accessLevel": "Write",
|
|
1262
1128
|
"resourceTypes": [
|
|
1263
1129
|
{
|
|
1264
|
-
"name": "
|
|
1130
|
+
"name": "SecurityRequirementPack",
|
|
1265
1131
|
"required": true,
|
|
1266
1132
|
"conditionKeys": [],
|
|
1267
1133
|
"dependentActions": []
|
|
@@ -13,5 +13,35 @@
|
|
|
13
13
|
"key": "aws:TagKeys",
|
|
14
14
|
"description": "Filters access by the presence of tag keys in the request",
|
|
15
15
|
"type": "ArrayOfString"
|
|
16
|
+
},
|
|
17
|
+
"route53profiles:firewallrulegrouppriority": {
|
|
18
|
+
"key": "route53profiles:FirewallRuleGroupPriority",
|
|
19
|
+
"description": "Filters access by priority range of a Firewall Rule Group",
|
|
20
|
+
"type": "Numeric"
|
|
21
|
+
},
|
|
22
|
+
"route53profiles:hostedzonedomains": {
|
|
23
|
+
"key": "route53profiles:HostedZoneDomains",
|
|
24
|
+
"description": "Filters access by Hosted Zone domains",
|
|
25
|
+
"type": "String"
|
|
26
|
+
},
|
|
27
|
+
"route53profiles:resolverruledomains": {
|
|
28
|
+
"key": "route53profiles:ResolverRuleDomains",
|
|
29
|
+
"description": "Filters access by Resolver Rule domains",
|
|
30
|
+
"type": "String"
|
|
31
|
+
},
|
|
32
|
+
"route53profiles:resourcearns": {
|
|
33
|
+
"key": "route53profiles:ResourceArns",
|
|
34
|
+
"description": "Filters access by specific resource ARNs",
|
|
35
|
+
"type": "ARN"
|
|
36
|
+
},
|
|
37
|
+
"route53profiles:resourceids": {
|
|
38
|
+
"key": "route53profiles:ResourceIds",
|
|
39
|
+
"description": "Filters access by given VPCs",
|
|
40
|
+
"type": "String"
|
|
41
|
+
},
|
|
42
|
+
"route53profiles:resourcetypes": {
|
|
43
|
+
"key": "route53profiles:ResourceTypes",
|
|
44
|
+
"description": "Filters access by specific resource type. Possible options include 'HostedZone', 'FirewallRuleGroup', 'ResolverQueryLoggingConfig', 'ResolverRule', and 'VpcEndpoint'",
|
|
45
|
+
"type": "String"
|
|
16
46
|
}
|
|
17
47
|
}
|
|
@@ -1 +1,17 @@
|
|
|
1
|
-
{
|
|
1
|
+
{
|
|
2
|
+
"aws:requesttag/${tagkey}": {
|
|
3
|
+
"key": "aws:RequestTag/${TagKey}",
|
|
4
|
+
"description": "Filters access by the tags that are passed in the request",
|
|
5
|
+
"type": "String"
|
|
6
|
+
},
|
|
7
|
+
"aws:resourcetag/${tagkey}": {
|
|
8
|
+
"key": "aws:ResourceTag/${TagKey}",
|
|
9
|
+
"description": "Filters access by the tags associated with the resource",
|
|
10
|
+
"type": "String"
|
|
11
|
+
},
|
|
12
|
+
"aws:tagkeys": {
|
|
13
|
+
"key": "aws:TagKeys",
|
|
14
|
+
"description": "Filters access by the tag keys that are passed in the request",
|
|
15
|
+
"type": "ArrayOfString"
|
|
16
|
+
}
|
|
17
|
+
}
|
|
@@ -94,7 +94,10 @@
|
|
|
94
94
|
},
|
|
95
95
|
"contactmethod": {
|
|
96
96
|
"key": "ContactMethod",
|
|
97
|
-
"arn": "arn:${Partition}:lightsail:${Region}:${Account}:ContactMethod/${Id}"
|
|
97
|
+
"arn": "arn:${Partition}:lightsail:${Region}:${Account}:ContactMethod/${Id}",
|
|
98
|
+
"conditionKeys": [
|
|
99
|
+
"aws:ResourceTag/${TagKey}"
|
|
100
|
+
]
|
|
98
101
|
},
|
|
99
102
|
"containerservice": {
|
|
100
103
|
"key": "ContainerService",
|
|
@@ -1,50 +1,37 @@
|
|
|
1
1
|
{
|
|
2
2
|
"application": {
|
|
3
3
|
"key": "Application",
|
|
4
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:application/${ApplicationId}"
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
"
|
|
12
|
-
"
|
|
4
|
+
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:application/${ApplicationId}",
|
|
5
|
+
"conditionKeys": [
|
|
6
|
+
"aws:ResourceTag/${TagKey}"
|
|
7
|
+
]
|
|
8
|
+
},
|
|
9
|
+
"securityrequirementpack": {
|
|
10
|
+
"key": "SecurityRequirementPack",
|
|
11
|
+
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:security-requirement-pack/${SecurityRequirementPackId}",
|
|
12
|
+
"conditionKeys": [
|
|
13
|
+
"aws:ResourceTag/${TagKey}"
|
|
14
|
+
]
|
|
13
15
|
},
|
|
14
16
|
"integration": {
|
|
15
17
|
"key": "Integration",
|
|
16
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:integration/${IntegrationId}"
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-instance/${AgentId}"
|
|
18
|
+
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:integration/${IntegrationId}",
|
|
19
|
+
"conditionKeys": [
|
|
20
|
+
"aws:ResourceTag/${TagKey}"
|
|
21
|
+
]
|
|
21
22
|
},
|
|
22
23
|
"agentspace": {
|
|
23
24
|
"key": "AgentSpace",
|
|
24
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}"
|
|
25
|
+
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}",
|
|
26
|
+
"conditionKeys": [
|
|
27
|
+
"aws:ResourceTag/${TagKey}"
|
|
28
|
+
]
|
|
25
29
|
},
|
|
26
30
|
"targetdomain": {
|
|
27
31
|
"key": "TargetDomain",
|
|
28
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:target-domain/${TargetDomainId}"
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}/artifact/${ArtifactId}"
|
|
33
|
-
},
|
|
34
|
-
"pentest": {
|
|
35
|
-
"key": "Pentest",
|
|
36
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}/pentest/${PentestId}"
|
|
37
|
-
},
|
|
38
|
-
"pentestjob": {
|
|
39
|
-
"key": "PentestJob",
|
|
40
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}/pentest-job/${JobId}"
|
|
41
|
-
},
|
|
42
|
-
"pentesttask": {
|
|
43
|
-
"key": "PentestTask",
|
|
44
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}/pentest-task/${TaskId}"
|
|
45
|
-
},
|
|
46
|
-
"finding": {
|
|
47
|
-
"key": "Finding",
|
|
48
|
-
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:agent-space/${AgentId}/finding/${FindingId}"
|
|
32
|
+
"arn": "arn:${Partition}:securityagent:${Region}:${Account}:target-domain/${TargetDomainId}",
|
|
33
|
+
"conditionKeys": [
|
|
34
|
+
"aws:ResourceTag/${TagKey}"
|
|
35
|
+
]
|
|
49
36
|
}
|
|
50
37
|
}
|
package/package.json
CHANGED
|
@@ -1,12 +1,12 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cloud-copilot/iam-data",
|
|
3
|
-
"version": "0.18.
|
|
3
|
+
"version": "0.18.202603261",
|
|
4
4
|
"description": "AWS IAM Data",
|
|
5
5
|
"repository": {
|
|
6
6
|
"type": "git",
|
|
7
7
|
"url": "git+https://github.com/cloud-copilot/iam-data.git"
|
|
8
8
|
},
|
|
9
|
-
"updatedAt": "2026-03-
|
|
9
|
+
"updatedAt": "2026-03-26T05:19:19.192Z",
|
|
10
10
|
"exports": {
|
|
11
11
|
".": {
|
|
12
12
|
"import": "./dist/esm/index.js",
|