Bump Regula dependency to latest git. #42

evan-fugue · 2021-09-24T13:36:21Z

This is so we make use of HuJSON to parse the JSON in Rego metadoc
blocks, which allows trailing commas and comments.

For example, you can test with the rule:

__rego__metadoc__ := {
  "id": "FG_R00011",
  "title": "CloudFront viewer protocol policy should be set to https-only or redirect-to-https",
  "description": "CloudFront viewer protocol policy should be set to https-only or redirect-to-https. CloudFront connections should be encrypted during transmission over networks that can be accessed by malicious individuals. A CloudFront distribution should only use HTTPS or Redirect HTTP to HTTPS for communication between viewers and CloudFront.",
  "custom": {
    "severity": "Medium",
    "families": [
      "More rules",
      "e6f9b788-1841-4466-8db7-28d2f08da2ff"
    ],
    "provider": "AWS",
  }
}

resource_type = "AWS.EC2.Instance"

approved_amis = {
  "ami-04b762b4289fba92b"
}

allow {
    ami = input.ami  # Pull out AMIs
    approved_amis[ami]  # Assert
}

Note the comma after "provider": "AWS" at the end of the metadoc block.

This is so we make use of HuJSON to parse the JSON in Rego metadoc blocks, which allows trailing commas and comments.

Bump Regula dependency to latest git.

e46c98f

This is so we make use of HuJSON to parse the JSON in Rego metadoc blocks, which allows trailing commas and comments.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump Regula dependency to latest git. #42

Bump Regula dependency to latest git. #42

evan-fugue commented Sep 24, 2021

Bump Regula dependency to latest git. #42

Are you sure you want to change the base?

Bump Regula dependency to latest git. #42

Conversation

evan-fugue commented Sep 24, 2021