@cloud-copilot/iam-data 0.9.202507241 → 0.9.202507291

package/data/actions/appstream.json

@@ -572,7 +572,7 @@
   "describeappblockbuilderappblockassociations": {
     "name": "DescribeAppBlockBuilderAppBlockAssociations",
     "description": "Grants permission to retrieve the associations that are associated with the specified app block builder or app block",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [
       {
         "name": "app-block",
@@ -593,37 +593,23 @@
   "describeappblockbuilders": {
     "name": "DescribeAppBlockBuilders",
     "description": "Grants permission to retrieve a list that describes one or more specified app block builders, if the app block builder names are provided. Otherwise, all app block builders in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "app-block-builder",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
   "describeappblocks": {
     "name": "DescribeAppBlocks",
     "description": "Grants permission to retrieve a list that describes one or more specified app blocks, if the app block arns are provided. Otherwise, all app blocks in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "app-block",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
   "describeapplicationfleetassociations": {
     "name": "DescribeApplicationFleetAssociations",
     "description": "Grants permission to retrieve the associations that are associated with the specified application or fleet",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [
       {
         "name": "application",
@@ -644,22 +630,15 @@
   "describeapplications": {
     "name": "DescribeApplications",
     "description": "Grants permission to retrieve a list that describes one or more specified applications, if the application arns are provided. Otherwise, all applications in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "application",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
   "describedirectoryconfigs": {
     "name": "DescribeDirectoryConfigs",
     "description": "Grants permission to retrieve a list that describes one or more specified Directory Config objects for AppStream 2.0, if the names for these objects are provided. Otherwise, all Directory Config objects in the account are described. This object includes the configuration information required to join fleets and image builders to Microsoft Active Directory domains",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
@@ -667,7 +646,7 @@
   "describeentitlements": {
     "name": "DescribeEntitlements",
     "description": "Grants permission to retrieve one or all entitlements for the specified stack",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [
       {
         "name": "stack",
@@ -682,30 +661,16 @@
   "describefleets": {
     "name": "DescribeFleets",
     "description": "Grants permission to retrieve a list that describes one or more specified fleets, if the fleet names are provided. Otherwise, all fleets in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "fleet",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
   "describeimagebuilders": {
     "name": "DescribeImageBuilders",
     "description": "Grants permission to retrieve a list that describes one or more specified image builders, if the image builder names are provided. Otherwise, all image builders in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "image-builder",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
@@ -727,22 +692,15 @@
   "describeimages": {
     "name": "DescribeImages",
     "description": "Grants permission to retrieve a list that describes one or more specified images, if the image names or image ARNs are provided. Otherwise, all images in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "image",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
   "describesessions": {
     "name": "DescribeSessions",
     "description": "Grants permission to retrieve a list that describes the streaming sessions for the specified stack and fleet. If a user ID is provided for the stack and fleet, only the streaming sessions for that user are described",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [
       {
         "name": "fleet",
@@ -763,15 +721,8 @@
   "describestacks": {
     "name": "DescribeStacks",
     "description": "Grants permission to retrieve a list that describes one or more specified stacks, if the stack names are provided. Otherwise, all stacks in the account are described",
-    "accessLevel": "Read",
-    "resourceTypes": [
-      {
-        "name": "stack",
-        "required": false,
-        "conditionKeys": [],
-        "dependentActions": []
-      }
-    ],
+    "accessLevel": "List",
+    "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
   },
@@ -793,7 +744,7 @@
   "describeusagereportsubscriptions": {
     "name": "DescribeUsageReportSubscriptions",
     "description": "Grants permission to retrieve a list that describes one or more usage report subscriptions",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []
@@ -801,7 +752,7 @@
   "describeuserstackassociations": {
     "name": "DescribeUserStackAssociations",
     "description": "Grants permission to retrieve a list that describes the UserStackAssociation objects",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [
       {
         "name": "stack",
@@ -816,7 +767,7 @@
   "describeusers": {
     "name": "DescribeUsers",
     "description": "Grants permission to retrieve a list that describes users in the user pool",
-    "accessLevel": "Read",
+    "accessLevel": "List",
     "resourceTypes": [],
     "conditionKeys": [],
     "dependentActions": []

package/data/actions/cur.json

@@ -102,7 +102,11 @@
         "dependentActions": []
       }
     ],
-    "conditionKeys": [],
+    "conditionKeys": [
+      "aws:TagKeys",
+      "aws:RequestTag/${TagKey}",
+      "aws:ResourceTag/${TagKey}"
+    ],
     "dependentActions": []
   },
   "tagresource": {

package/data/actions/inspector2.json

@@ -7,6 +7,22 @@
     "conditionKeys": [],
     "dependentActions": []
   },
+  "batchassociatecodesecurityscanconfiguration": {
+    "name": "BatchAssociateCodeSecurityScanConfiguration",
+    "description": "Grants permission to associate multiple code repositories with an Amazon Inspector code security scan configuration",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "batchdisassociatecodesecurityscanconfiguration": {
+    "name": "BatchDisassociateCodeSecurityScanConfiguration",
+    "description": "Grants permission to disassociate multiple code repositories from an Amazon Inspector code security scan configuration",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
   "batchgetaccountstatus": {
     "name": "BatchGetAccountStatus",
     "description": "Grants permission to retrieve information about Amazon Inspector accounts for an account",
@@ -90,6 +106,42 @@
     ],
     "dependentActions": []
   },
+  "createcodesecurityintegration": {
+    "name": "CreateCodeSecurityIntegration",
+    "description": "Grants permission to create a code security integration with a source code repository provider",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Integration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
+  "createcodesecurityscanconfiguration": {
+    "name": "CreateCodeSecurityScanConfiguration",
+    "description": "Grants permission to create a scan configuration for code security scanning",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Scan Configuration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:RequestTag/${TagKey}",
+      "aws:TagKeys"
+    ],
+    "dependentActions": []
+  },
   "createfilter": {
     "name": "CreateFilter",
     "description": "Grants permission to create and define the settings for a findings filter",
@@ -141,6 +193,36 @@
     ],
     "dependentActions": []
   },
+  "deletecodesecurityintegration": {
+    "name": "DeleteCodeSecurityIntegration",
+    "description": "Grants permission to delete a code security integration",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Integration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "deletecodesecurityscanconfiguration": {
+    "name": "DeleteCodeSecurityScanConfiguration",
+    "description": "Grants permission to delete a code security scan configuration",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Scan Configuration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
   "deletefilter": {
     "name": "DeleteFilter",
     "description": "Grants permission to delete a findings filter",
@@ -228,6 +310,30 @@
     "conditionKeys": [],
     "dependentActions": []
   },
+  "getcodesecurityintegration": {
+    "name": "GetCodeSecurityIntegration",
+    "description": "Grants permission to retrieve information about a code security integration",
+    "accessLevel": "Read",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getcodesecurityscan": {
+    "name": "GetCodeSecurityScan",
+    "description": "Grants permission to retrieve information about a specific code security scan",
+    "accessLevel": "Read",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "getcodesecurityscanconfiguration": {
+    "name": "GetCodeSecurityScanConfiguration",
+    "description": "Grants permission to retrieve information about a code security scan configuration",
+    "accessLevel": "Read",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
   "getconfiguration": {
     "name": "GetConfiguration",
     "description": "Grants permission to retrieve information about the Amazon Inspector configuration settings for an AWS account",
@@ -324,6 +430,30 @@
     "conditionKeys": [],
     "dependentActions": []
   },
+  "listcodesecurityintegrations": {
+    "name": "ListCodeSecurityIntegrations",
+    "description": "Grants permission to list all code security integrations in your account",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listcodesecurityscanconfigurationassociations": {
+    "name": "ListCodeSecurityScanConfigurationAssociations",
+    "description": "Grants permission to list the associations between code repositories and Amazon Inspector code security scan configurations",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
+  "listcodesecurityscanconfigurations": {
+    "name": "ListCodeSecurityScanConfigurations",
+    "description": "Grants permission to list all code security scan configurations in your account",
+    "accessLevel": "List",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
   "listcoverage": {
     "name": "ListCoverage",
     "description": "Grants permission to retrieve the types of statistics Amazon Inspector can generate for resources Inspector monitors",
@@ -436,6 +566,14 @@
     "conditionKeys": [],
     "dependentActions": []
   },
+  "startcodesecurityscan": {
+    "name": "StartCodeSecurityScan",
+    "description": "Grants permission to initiate a code security scan on a specified repository",
+    "accessLevel": "Write",
+    "resourceTypes": [],
+    "conditionKeys": [],
+    "dependentActions": []
+  },
   "stopcissession": {
     "name": "StopCisSession",
     "description": "Grants permission to stop a CIS scan session",
@@ -455,6 +593,18 @@
         "conditionKeys": [],
         "dependentActions": []
       },
+      {
+        "name": "Code Security Integration",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "Code Security Scan Configuration",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
       {
         "name": "Filter",
         "required": false,
@@ -480,6 +630,18 @@
         "conditionKeys": [],
         "dependentActions": []
       },
+      {
+        "name": "Code Security Integration",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
+      {
+        "name": "Code Security Scan Configuration",
+        "required": false,
+        "conditionKeys": [],
+        "dependentActions": []
+      },
       {
         "name": "Filter",
         "required": false,
@@ -510,6 +672,40 @@
     ],
     "dependentActions": []
   },
+  "updatecodesecurityintegration": {
+    "name": "UpdateCodeSecurityIntegration",
+    "description": "Grants permission to update an existing code security integration",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Integration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:ResourceTag/${TagKey}"
+    ],
+    "dependentActions": []
+  },
+  "updatecodesecurityscanconfiguration": {
+    "name": "UpdateCodeSecurityScanConfiguration",
+    "description": "Grants permission to update an existing code security scan configuration",
+    "accessLevel": "Write",
+    "resourceTypes": [
+      {
+        "name": "Code Security Scan Configuration",
+        "required": true,
+        "conditionKeys": [],
+        "dependentActions": []
+      }
+    ],
+    "conditionKeys": [
+      "aws:ResourceTag/${TagKey}"
+    ],
+    "dependentActions": []
+  },
   "updateconfiguration": {
     "name": "UpdateConfiguration",
     "description": "Grants permission to update information about the Amazon Inspector configuration settings for an AWS account",

package/data/resourceTypes/inspector2.json

@@ -16,5 +16,19 @@
     "conditionKeys": [
       "aws:ResourceTag/${TagKey}"
     ]
+  },
+  "code security scan configuration": {
+    "key": "Code Security Scan Configuration",
+    "arn": "arn:${Partition}:inspector2:${Region}:${Account}:owner/${OwnerId}/codesecurity-configuration/${CodeSecurityScanConfigurationId}",
+    "conditionKeys": [
+      "aws:ResourceTag/${TagKey}"
+    ]
+  },
+  "code security integration": {
+    "key": "Code Security Integration",
+    "arn": "arn:${Partition}:inspector2:${Region}:${Account}:codesecurity-integration/${CodeSecurityIntegrationId}",
+    "conditionKeys": [
+      "aws:ResourceTag/${TagKey}"
+    ]
   }
 }

package/package.json

@@ -1,9 +1,9 @@
 {
   "name": "@cloud-copilot/iam-data",
-  "version": "0.9.202507241",
+  "version": "0.9.202507291",
   "description": "AWS IAM Data",
   "repository": "github:cloud-copilot/iam-data",
-  "updatedAt": "2025-07-24T05:01:44.481Z",
+  "updatedAt": "2025-07-29T05:06:26.745Z",
   "exports": {
     ".": {
       "import": "./dist/esm/index.js",