npm - @critiq/rules - Versions diffs - 0.1.0 → 0.3.0 - Mend

@critiq/rules 0.1.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (495) hide show

package/rules/cfn/cfn.maintainability.check-if-a-list-that-allows-duplicates-has-any-duplicates.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-a-list-that-allows-duplicates-has-any-duplicates
+  title: Check if a list that allows duplicates has any duplicates
+  summary: Check if a list that allows duplicates has any duplicates
+  rationale: cfn-lint reports I3037 when Check if a list that allows duplicates has any duplicates.
+  aliases:
+    - CFLIN-I3037
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - i3037
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: I3037
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: low
+    confidence: 0.8
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if a list that allows duplicates has any duplicates
+    summary: "${captures.finding.text} matches cfn-lint I3037."
+  remediation:
+    summary: Resolve the cfn-lint I3037 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-conditions-are-used.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-conditions-are-used
+  title: Check if conditions are used
+  summary: Check if conditions are used
+  rationale: cfn-lint reports W8001 when Check if conditions are used.
+  aliases:
+    - CFLIN-W8001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w8001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W8001
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if conditions are used
+    summary: "${captures.finding.text} matches cfn-lint W8001."
+  remediation:
+    summary: Resolve the cfn-lint W8001 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-eol-lambda-function-runtimes-are-used-w2531.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-eol-lambda-function-runtimes-are-used-w2531
+  title: Check if eol lambda function runtimes are used
+  summary: Check if eol lambda function runtimes are used
+  rationale: cfn-lint reports W2531 when Check if eol lambda function runtimes are used.
+  aliases:
+    - CFLIN-W2531
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2531
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2531
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if eol lambda function runtimes are used
+    summary: "${captures.finding.text} matches cfn-lint W2531."
+  remediation:
+    summary: Resolve the cfn-lint W2531 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-imageid-parameters-have-the-correct-type.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-imageid-parameters-have-the-correct-type
+  title: Check if imageid parameters have the correct type
+  summary: Check if imageid parameters have the correct type
+  rationale: cfn-lint reports W2506 when Check if imageid parameters have the correct type.
+  aliases:
+    - CFLIN-W2506
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2506
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2506
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if imageid parameters have the correct type
+    summary: "${captures.finding.text} matches cfn-lint W2506."
+  remediation:
+    summary: Resolve the cfn-lint W2506 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-mappings-are-used.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-mappings-are-used
+  title: Check if mappings are used
+  summary: Check if mappings are used
+  rationale: cfn-lint reports W7001 when Check if mappings are used.
+  aliases:
+    - CFLIN-W7001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w7001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W7001
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if mappings are used
+    summary: "${captures.finding.text} matches cfn-lint W7001."
+  remediation:
+    summary: Resolve the cfn-lint W7001 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-parameters-are-used.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-parameters-are-used
+  title: Check if parameters are used
+  summary: Check if parameters are used
+  rationale: cfn-lint reports W2001 when Check if parameters are used.
+  aliases:
+    - CFLIN-W2001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2001
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if parameters are used
+    summary: "${captures.finding.text} matches cfn-lint W2001."
+  remediation:
+    summary: Resolve the cfn-lint W2001 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-parameters-have-a-valid-value-based-on-an-allowed-pattern.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-parameters-have-a-valid-value-based-on-an-allowed-pattern
+  title: Check if parameters have a valid value based on an allowed pattern
+  summary: Check if parameters have a valid value based on an allowed pattern
+  rationale: cfn-lint reports W2031 when Check if parameters have a valid value based on an allowed pattern.
+  aliases:
+    - CFLIN-W2031
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2031
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2031
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if parameters have a valid value based on an allowed pattern
+    summary: "${captures.finding.text} matches cfn-lint W2031."
+  remediation:
+    summary: Resolve the cfn-lint W2031 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-if-parameters-have-a-valid-value.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-if-parameters-have-a-valid-value
+  title: Check if parameters have a valid value
+  summary: Check if parameters have a valid value
+  rationale: cfn-lint reports W2030 when Check if parameters have a valid value.
+  aliases:
+    - CFLIN-W2030
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2030
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2030
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check if parameters have a valid value
+    summary: "${captures.finding.text} matches cfn-lint W2030."
+  remediation:
+    summary: Resolve the cfn-lint W2030 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-obsolete-dependson-configuration-for-resources.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-obsolete-dependson-configuration-for-resources
+  title: Check obsolete dependson configuration for resources
+  summary: Check obsolete dependson configuration for resources
+  rationale: cfn-lint reports W3005 when Check obsolete dependson configuration for resources.
+  aliases:
+    - CFLIN-W3005
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w3005
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W3005
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check obsolete dependson configuration for resources
+    summary: "${captures.finding.text} matches cfn-lint W3005."
+  remediation:
+    summary: Resolve the cfn-lint W3005 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-outputs-using-importvalue.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-outputs-using-importvalue
+  title: Check outputs using importvalue
+  summary: Check outputs using importvalue
+  rationale: cfn-lint reports W6001 when Check outputs using importvalue.
+  aliases:
+    - CFLIN-W6001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w6001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W6001
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check outputs using importvalue
+    summary: "${captures.finding.text} matches cfn-lint W6001."
+  remediation:
+    summary: Resolve the cfn-lint W6001 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-required-properties-for-lambda-if-the-deployment-package-is-a-zip-file.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-required-properties-for-lambda-if-the-deployment-package-is-a-zip-file
+  title: Check required properties for lambda if the deployment package is a .zip file
+  summary: Check required properties for lambda if the deployment package is a .zip file
+  rationale: cfn-lint reports W2533 when Check required properties for lambda if the deployment package is a .zip file.
+  aliases:
+    - CFLIN-W2533
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w2533
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W2533
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check required properties for lambda if the deployment package is a .zip file
+    summary: "${captures.finding.text} matches cfn-lint W2533."
+  remediation:
+    summary: Resolve the cfn-lint W2533 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-resources-with-auto-expiring-content-have-explicit-retention-period.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-resources-with-auto-expiring-content-have-explicit-retention-period
+  title: Check resources with auto expiring content have explicit retention period
+  summary: Check resources with auto expiring content have explicit retention period
+  rationale: cfn-lint reports I3013 when Check resources with auto expiring content have explicit retention period.
+  aliases:
+    - CFLIN-I3013
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - i3013
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: I3013
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: low
+    confidence: 0.8
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check resources with auto expiring content have explicit retention period
+    summary: "${captures.finding.text} matches cfn-lint I3013."
+  remediation:
+    summary: Resolve the cfn-lint I3013 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-resources-with-updatereplacepolicy-deletionpolicy-have-both.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-resources-with-updatereplacepolicy-deletionpolicy-have-both
+  title: Check resources with updatereplacepolicy/deletionpolicy have both
+  summary: Check resources with updatereplacepolicy/deletionpolicy have both
+  rationale: cfn-lint reports W3011 when Check resources with updatereplacepolicy/deletionpolicy have both.
+  aliases:
+    - CFLIN-W3011
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - w3011
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: W3011
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: medium
+    confidence: 0.85
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check resources with updatereplacepolicy/deletionpolicy have both
+    summary: "${captures.finding.text} matches cfn-lint W3011."
+  remediation:
+    summary: Resolve the cfn-lint W3011 finding in this CloudFormation template.

package/rules/cfn/cfn.maintainability.check-stateful-resources-have-a-set-updatereplacepolicy-deletionpolicy.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.maintainability.check-stateful-resources-have-a-set-updatereplacepolicy-deletionpolicy
+  title: Check stateful resources have a set updatereplacepolicy/deletionpolicy
+  summary: Check stateful resources have a set updatereplacepolicy/deletionpolicy
+  rationale: cfn-lint reports I3011 when Check stateful resources have a set updatereplacepolicy/deletionpolicy.
+  aliases:
+    - CFLIN-I3011
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - i3011
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: I3011
+emit:
+  finding:
+    category: maintainability.configuration
+    severity: low
+    confidence: 0.8
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check stateful resources have a set updatereplacepolicy/deletionpolicy
+    summary: "${captures.finding.text} matches cfn-lint I3011."
+  remediation:
+    summary: Resolve the cfn-lint I3011 finding in this CloudFormation template.