@jjrawlins/cdk-ami-builder 0.0.19 → 0.0.21

package/node_modules/cdk-iam-floyd/lib/generated/policy-statements/inspector2.d.ts

@@ -16,6 +16,22 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_AssociateMember.html
      */
     toAssociateMember(): this;
+    /**
+     * Grants permission to associate multiple code repositories with an Amazon Inspector code security scan configuration
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_BatchAssociateCodeSecurityScanConfiguration.html
+     */
+    toBatchAssociateCodeSecurityScanConfiguration(): this;
+    /**
+     * Grants permission to disassociate multiple code repositories from an Amazon Inspector code security scan configuration
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_BatchDisassociateCodeSecurityScanConfiguration.html
+     */
+    toBatchDisassociateCodeSecurityScanConfiguration(): this;
     /**
      * Grants permission to retrieve information about Amazon Inspector accounts for an account
      *
@@ -93,6 +109,30 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_CreateCisScanConfiguration.html
      */
     toCreateCisScanConfiguration(): this;
+    /**
+     * Grants permission to create a code security integration with a source code repository provider
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsTagKeys()
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_CreateCodeSecurityIntegration.html
+     */
+    toCreateCodeSecurityIntegration(): this;
+    /**
+     * Grants permission to create a scan configuration for code security scanning
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsRequestTag()
+     * - .ifAwsTagKeys()
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_CreateCodeSecurityScanConfiguration.html
+     */
+    toCreateCodeSecurityScanConfiguration(): this;
     /**
      * Grants permission to create and define the settings for a findings filter
      *
@@ -132,6 +172,22 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_DeleteCisScanConfiguration.html
      */
     toDeleteCisScanConfiguration(): this;
+    /**
+     * Grants permission to delete a code security integration
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_DeleteCodeSecurityIntegration.html
+     */
+    toDeleteCodeSecurityIntegration(): this;
+    /**
+     * Grants permission to delete a code security scan configuration
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_DeleteCodeSecurityScanConfiguration.html
+     */
+    toDeleteCodeSecurityScanConfiguration(): this;
     /**
      * Grants permission to delete a findings filter
      *
@@ -204,6 +260,38 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_GetCisScanResultDetails.html
      */
     toGetCisScanResultDetails(): this;
+    /**
+     * Grants permission to get cluster information for a given a continuously scanned amazon Ecr image
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_GetClustersForImage.html
+     */
+    toGetClustersForImage(): this;
+    /**
+     * Grants permission to retrieve information about a code security integration
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_GetCodeSecurityIntegration.html
+     */
+    toGetCodeSecurityIntegration(): this;
+    /**
+     * Grants permission to retrieve information about a specific code security scan
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_GetCodeSecurityScan.html
+     */
+    toGetCodeSecurityScan(): this;
+    /**
+     * Grants permission to retrieve information about a code security scan configuration
+     *
+     * Access Level: Read
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_GetCodeSecurityScanConfiguration.html
+     */
+    toGetCodeSecurityScanConfiguration(): this;
     /**
      * Grants permission to retrieve information about the Amazon Inspector configuration settings for an AWS account
      *
@@ -300,6 +388,30 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListCisScans.html
      */
     toListCisScans(): this;
+    /**
+     * Grants permission to list all code security integrations in your account
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListCodeSecurityIntegrations.html
+     */
+    toListCodeSecurityIntegrations(): this;
+    /**
+     * Grants permission to list the associations between code repositories and Amazon Inspector code security scan configurations
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListCodeSecurityScanConfigurationAssociations.html
+     */
+    toListCodeSecurityScanConfigurationAssociations(): this;
+    /**
+     * Grants permission to list all code security scan configurations in your account
+     *
+     * Access Level: List
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_ListCodeSecurityScanConfigurations.html
+     */
+    toListCodeSecurityScanConfigurations(): this;
     /**
      * Grants permission to retrieve the types of statistics Amazon Inspector can generate for resources Inspector monitors
      *
@@ -412,6 +524,14 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_StartCisSession.html
      */
     toStartCisSession(): this;
+    /**
+     * Grants permission to initiate a code security scan on a specified repository
+     *
+     * Access Level: Write
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_StartCodeSecurityScan.html
+     */
+    toStartCodeSecurityScan(): this;
     /**
      * Grants permission to stop a CIS scan session
      *
@@ -456,6 +576,28 @@ export declare class Inspector2 extends PolicyStatement {
      * https://docs.aws.amazon.com/inspector/v2/APIReference/API_UpdateCisScanConfiguration.html
      */
     toUpdateCisScanConfiguration(): this;
+    /**
+     * Grants permission to update an existing code security integration
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_UpdateCodeSecurityIntegration.html
+     */
+    toUpdateCodeSecurityIntegration(): this;
+    /**
+     * Grants permission to update an existing code security scan configuration
+     *
+     * Access Level: Write
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
+     *
+     * https://docs.aws.amazon.com/inspector/v2/APIReference/API_UpdateCodeSecurityScanConfiguration.html
+     */
+    toUpdateCodeSecurityScanConfiguration(): this;
     /**
      * Grants permission to update information about the Amazon Inspector configuration settings for an AWS account
      *
@@ -550,6 +692,35 @@ export declare class Inspector2 extends PolicyStatement {
      * - .ifAwsResourceTag()
      */
     onCISScanConfiguration(ownerId: string, cISScanConfigurationId: string, account?: string, region?: string, partition?: string): this;
+    /**
+     * Adds a resource of type Code Security Scan Configuration to the statement
+     *
+     * https://docs.aws.amazon.com/inspector/latest/user/what-is-inspector.html
+     *
+     * @param ownerId - Identifier for the ownerId.
+     * @param codeSecurityScanConfigurationId - Identifier for the codeSecurityScanConfigurationId.
+     * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
+     * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
+     * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
+     */
+    onCodeSecurityScanConfiguration(ownerId: string, codeSecurityScanConfigurationId: string, account?: string, region?: string, partition?: string): this;
+    /**
+     * Adds a resource of type Code Security Integration to the statement
+     *
+     * https://docs.aws.amazon.com/inspector/latest/user/what-is-inspector.html
+     *
+     * @param codeSecurityIntegrationId - Identifier for the codeSecurityIntegrationId.
+     * @param account - Account of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's account.
+     * @param region - Region of the resource; defaults to `*`, unless using the CDK, where the default is the current Stack's region.
+     * @param partition - Partition of the AWS account [aws, aws-cn, aws-us-gov]; defaults to `aws`, unless using the CDK, where the default is the current Stack's partition.
+     *
+     * Possible conditions:
+     * - .ifAwsResourceTag()
+     */
+    onCodeSecurityIntegration(codeSecurityIntegrationId: string, account?: string, region?: string, partition?: string): this;
     /**
      * Filters access by the presence of tag key-value pairs in the request
      *
@@ -557,6 +728,8 @@ export declare class Inspector2 extends PolicyStatement {
      *
      * Applies to actions:
      * - .toCreateCisScanConfiguration()
+     * - .toCreateCodeSecurityIntegration()
+     * - .toCreateCodeSecurityScanConfiguration()
      * - .toCreateFilter()
      * - .toTagResource()
      * - .toUpdateFilter()
@@ -577,10 +750,14 @@ export declare class Inspector2 extends PolicyStatement {
      * - .toTagResource()
      * - .toUntagResource()
      * - .toUpdateCisScanConfiguration()
+     * - .toUpdateCodeSecurityIntegration()
+     * - .toUpdateCodeSecurityScanConfiguration()
      *
      * Applies to resource types:
      * - Filter
      * - CIS Scan Configuration
+     * - Code Security Scan Configuration
+     * - Code Security Integration
      *
      * @param tagKey The tag key to check
      * @param value The value(s) to check
@@ -594,6 +771,8 @@ export declare class Inspector2 extends PolicyStatement {
      *
      * Applies to actions:
      * - .toCreateCisScanConfiguration()
+     * - .toCreateCodeSecurityIntegration()
+     * - .toCreateCodeSecurityScanConfiguration()
      * - .toCreateFilter()
      * - .toTagResource()
      * - .toUntagResource()