npm - @critiq/rules - Versions diffs - 0.2.0 → 0.3.0 - Mend

@critiq/rules 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (199) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@critiq/rules",
-  "version": "0.2.0",
+  "version": "0.3.0",
   "private": false,
   "description": "Public OSS Critiq rule catalog with catalog metadata, shipped rule YAML files, and preset membership.",
   "license": "Apache-2.0",

package/rules/cfn/cfn.correctness.attributedefinitions-keyschemas-mismatch.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.attributedefinitions-keyschemas-mismatch
+  title: Attributedefinitions / keyschemas mismatch
+  summary: Attributedefinitions / keyschemas mismatch
+  rationale: cfn-lint reports E3039 when Attributedefinitions / keyschemas mismatch.
+  aliases:
+    - CFLIN-E3039
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3039
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3039
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Attributedefinitions / keyschemas mismatch
+    summary: "${captures.finding.text} matches cfn-lint E3039."
+  remediation:
+    summary: Resolve the cfn-lint E3039 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.base64-validation-of-parameters.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.base64-validation-of-parameters
+  title: Base64 validation of parameters
+  summary: Base64 validation of parameters
+  rationale: cfn-lint reports E1021 when Base64 validation of parameters.
+  aliases:
+    - CFLIN-E1021
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e1021
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E1021
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Base64 validation of parameters
+    summary: "${captures.finding.text} matches cfn-lint E1021."
+  remediation:
+    summary: Resolve the cfn-lint E1021 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.basic-cloudformation-resource-check.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.basic-cloudformation-resource-check
+  title: Basic cloudformation resource check
+  summary: Basic cloudformation resource check
+  rationale: cfn-lint reports E3001 when Basic cloudformation resource check.
+  aliases:
+    - CFLIN-E3001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3001
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Basic cloudformation resource check
+    summary: "${captures.finding.text} matches cfn-lint E3001."
+  remediation:
+    summary: Resolve the cfn-lint E3001 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.basic-cloudformation-template-configuration.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.basic-cloudformation-template-configuration
+  title: Basic cloudformation template configuration
+  summary: Basic cloudformation template configuration
+  rationale: cfn-lint reports E1001 when Basic cloudformation template configuration.
+  aliases:
+    - CFLIN-E1001
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e1001
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E1001
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Basic cloudformation template configuration
+    summary: "${captures.finding.text} matches cfn-lint E1001."
+  remediation:
+    summary: Resolve the cfn-lint E1001 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.cannot-reference-resources-in-the-conditions-block-of-the-template.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.cannot-reference-resources-in-the-conditions-block-of-the-template
+  title: Cannot reference resources in the conditions block of the template
+  summary: Cannot reference resources in the conditions block of the template
+  rationale: cfn-lint reports E1026 when Cannot reference resources in the conditions block of the template.
+  aliases:
+    - CFLIN-E1026
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e1026
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E1026
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Cannot reference resources in the conditions block of the template
+    summary: "${captures.finding.text} matches cfn-lint E1026."
+  remediation:
+    summary: Resolve the cfn-lint E1026 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-at-least-one-essential-container-is-specified.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-at-least-one-essential-container-is-specified
+  title: Check at least one essential container is specified
+  summary: Check at least one essential container is specified
+  rationale: cfn-lint reports E3042 when Check at least one essential container is specified.
+  aliases:
+    - CFLIN-E3042
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3042
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3042
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check at least one essential container is specified
+    summary: "${captures.finding.text} matches cfn-lint E3042."
+  remediation:
+    summary: Resolve the cfn-lint E3042 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-deletionpolicy-values-for-resources.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-deletionpolicy-values-for-resources
+  title: Check deletionpolicy values for resources
+  summary: Check deletionpolicy values for resources
+  rationale: cfn-lint reports E3035 when Check deletionpolicy values for resources.
+  aliases:
+    - CFLIN-E3035
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3035
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3035
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check deletionpolicy values for resources
+    summary: "${captures.finding.text} matches cfn-lint E3035."
+  remediation:
+    summary: Resolve the cfn-lint E3035 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-dependson-values-for-resources.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-dependson-values-for-resources
+  title: Check dependson values for resources
+  summary: Check dependson values for resources
+  rationale: cfn-lint reports E3005 when Check dependson values for resources.
+  aliases:
+    - CFLIN-E3005
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3005
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3005
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check dependson values for resources
+    summary: "${captures.finding.text} matches cfn-lint E3005."
+  remediation:
+    summary: Resolve the cfn-lint E3005 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-ec2-ebs-properties.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-ec2-ebs-properties
+  title: Check ec2 ebs properties
+  summary: Check ec2 ebs properties
+  rationale: cfn-lint reports E2504 when Check ec2 ebs properties.
+  aliases:
+    - CFLIN-E2504
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e2504
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E2504
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check ec2 ebs properties
+    summary: "${captures.finding.text} matches cfn-lint E2504."
+  remediation:
+    summary: Resolve the cfn-lint E2504 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-elastic-cache-redis-cluster-settings.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-elastic-cache-redis-cluster-settings
+  title: Check elastic cache redis cluster settings
+  summary: Check elastic cache redis cluster settings
+  rationale: cfn-lint reports E3026 when Check elastic cache redis cluster settings.
+  aliases:
+    - CFLIN-E3026
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3026
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3026
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check elastic cache redis cluster settings
+    summary: "${captures.finding.text} matches cfn-lint E3026."
+  remediation:
+    summary: Resolve the cfn-lint E3026 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-events-rule-targets-are-less-than-or-equal-to-5.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-events-rule-targets-are-less-than-or-equal-to-5
+  title: Check events rule targets are less than or equal to 5
+  summary: Check events rule targets are less than or equal to 5
+  rationale: cfn-lint reports E3021 when Check events rule targets are less than or equal to 5.
+  aliases:
+    - CFLIN-E3021
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3021
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3021
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check events rule targets are less than or equal to 5
+    summary: "${captures.finding.text} matches cfn-lint E3021."
+  remediation:
+    summary: Resolve the cfn-lint E3021 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-fargate-service-scheduling-strategy.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-fargate-service-scheduling-strategy
+  title: Check fargate service scheduling strategy
+  summary: Check fargate service scheduling strategy
+  rationale: cfn-lint reports E3044 when Check fargate service scheduling strategy.
+  aliases:
+    - CFLIN-E3044
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e3044
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E3044
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: Check fargate service scheduling strategy
+    summary: "${captures.finding.text} matches cfn-lint E3044."
+  remediation:
+    summary: Resolve the cfn-lint E3044 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-fn-and-structure-for-validity.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-fn-and-structure-for-validity
+  title: "Check fn::and structure for validity"
+  summary: "Check fn::and structure for validity"
+  rationale: "cfn-lint reports E8004 when Check fn::and structure for validity."
+  aliases:
+    - CFLIN-E8004
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e8004
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E8004
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: "Check fn::and structure for validity"
+    summary: "${captures.finding.text} matches cfn-lint E8004."
+  remediation:
+    summary: Resolve the cfn-lint E8004 finding in this CloudFormation template.

package/rules/cfn/cfn.correctness.check-fn-equals-structure-for-validity.rule.yaml ADDED Viewed

@@ -0,0 +1,49 @@
+apiVersion: critiq.dev/v1alpha1
+kind: Rule
+metadata:
+  id: cfn.correctness.check-fn-equals-structure-for-validity
+  title: "Check fn::equals structure for validity"
+  summary: "Check fn::equals structure for validity"
+  rationale: "cfn-lint reports E8003 when Check fn::equals structure for validity."
+  aliases:
+    - CFLIN-E8003
+  tags:
+    - cfn
+    - cfn-lint
+    - cloudformation
+    - e8003
+    - rules-catalog
+  stability: stable
+  appliesTo: file
+  detection:
+    kind: pattern
+scope:
+  languages:
+    - all
+  paths:
+    include:
+      - "**/*.yaml"
+      - "**/*.yml"
+      - "**/*.json"
+    exclude:
+      - "**/node_modules/**"
+match:
+  fact:
+    kind: cfn.lint.finding
+    bind: finding
+    where:
+      - path: ruleId
+        equals: E8003
+emit:
+  finding:
+    category: correctness.configuration
+    severity: high
+    confidence: 0.9
+    tags:
+      - cfn
+      - cloudformation
+  message:
+    title: "Check fn::equals structure for validity"
+    summary: "${captures.finding.text} matches cfn-lint E8003."
+  remediation:
+    summary: Resolve the cfn-lint E8003 finding in this CloudFormation template.