diff --git a/.github/actions/spelling/expect.txt b/.github/actions/spelling/expect.txt index 01cc0b112..91e885cb4 100644 --- a/.github/actions/spelling/expect.txt +++ b/.github/actions/spelling/expect.txt @@ -66,6 +66,7 @@ classname clientid cloudlinux cloudtrails +Clusterwide Clw cmek cnames @@ -134,6 +135,7 @@ Fwa Fwc Fxo gcfs +gcs geomatchstatement GFj GGJXG diff --git a/docs/mql/resources/aws-pack/aws.ec2.image.md b/docs/mql/resources/aws-pack/aws.ec2.image.md index b38ffe4d3..992d96b9f 100644 --- a/docs/mql/resources/aws-pack/aws.ec2.image.md +++ b/docs/mql/resources/aws-pack/aws.ec2.image.md @@ -28,3 +28,4 @@ The `aws.ec2.image` resource provides fields for assessing AMIs within an accoun | architecture | string | Architecture associated with the image | | ownerId | string | AWS account ID of the image owner | | ownerAlias | string | Alias for the image owner | +| createdAt | time | Date the image was created | diff --git a/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md b/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md index 5f0c22b2e..46460ac7e 100644 --- a/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md +++ b/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md @@ -20,19 +20,19 @@ The `aws.elb.loadbalancer` resource provides fields for assessing the configurat **Fields** -| ID | TYPE | DESCRIPTION | -| -------------------- | ----------------------------------------------------------- | --------------------------------------------------------------------------- | -| arn | string | ARN for the load balancer | -| dnsName | string | DNS name for the load balancer | -| listenerDescriptions | []dict | List of listener configurations for the load balancer | -| name | string | User-specified name for the load balancer | -| scheme | string | Scheme for the load balancer: internet-facing or internal | -| attributes | []dict | A list of attributes for the load balancer | -| vpcId | string | Deprecated. Use vpc instead | -| createdTime | time | Date and time when the load balancer was created | -| availabilityZones | []string | Availability zone where the load balancer runs | -| securityGroups | [][aws.ec2.securitygroup](aws.ec2.securitygroup.md) | VPC security groups for the load balancer | -| hostedZoneId | string | The ID of the Amazon Route 53 hosted zone associated with the load balancer | -| region | string | Region where the load balancer exists | -| elbType | string | The type of ELB. Possible values are `network`, `application`, or `gateway` | -| vpc | [aws.vpc](aws.vpc.md) | VPC where the load balancer is located | +| ID | TYPE | DESCRIPTION | +| -------------------- | ----------------------------------------------------------- | -------------------------------------------------------------------------------------- | +| arn | string | ARN for the load balancer | +| dnsName | string | DNS name for the load balancer | +| listenerDescriptions | []dict | List of listener configurations for the load balancer | +| name | string | User-specified name for the load balancer | +| scheme | string | Scheme for the load balancer: internet-facing or internal | +| attributes | []dict | A list of attributes for the load balancer | +| vpcId | string | Deprecated. Use vpc instead | +| createdTime | time | Date and time when the load balancer was created | +| availabilityZones | []string | Availability zone where the load balancer runs | +| securityGroups | [][aws.ec2.securitygroup](aws.ec2.securitygroup.md) | VPC security groups for the load balancer | +| hostedZoneId | string | The ID of the Amazon Route 53 hosted zone associated with the load balancer | +| region | string | Region where the load balancer exists | +| elbType | string | The type of ELB. Possible values are `network`, `application`, `gateway`, or `classic` | +| vpc | [aws.vpc](aws.vpc.md) | VPC where the load balancer is located | diff --git a/docs/mql/resources/aws-pack/aws.vpc.endpoint.md b/docs/mql/resources/aws-pack/aws.vpc.endpoint.md index 26b909b40..5140b6c8a 100644 --- a/docs/mql/resources/aws-pack/aws.vpc.endpoint.md +++ b/docs/mql/resources/aws-pack/aws.vpc.endpoint.md @@ -23,7 +23,7 @@ Amazon Virtual Private Cloud (VPC) endpoint | id | string | Unique ID of the endpoint | | type | string | Type of the endpoint | | vpc | string | VPC in which the endpoint exists | -| region | string | Region in which the VPC exists | +| region | string | Region in which the VPC endpoint exists | | serviceName | string | The name of the endpoint service | | policyDocument | string | The policy document associated with the endpoint, if applicable | | subnets | []string | The subnets for the (interface) endpoint | diff --git a/docs/mql/resources/aws-pack/aws.vpc.flowlog.md b/docs/mql/resources/aws-pack/aws.vpc.flowlog.md index bffc4a840..796255fb1 100644 --- a/docs/mql/resources/aws-pack/aws.vpc.flowlog.md +++ b/docs/mql/resources/aws-pack/aws.vpc.flowlog.md @@ -22,7 +22,7 @@ Amazon Virtual Private Cloud (VPC) flow log | ---------------------- | ----------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | id | string | Unique ID of the flow log | | vpc | string | VPC in which the flow log exists | -| region | string | Region in which the flow log exists | +| region | string | Region in which the VPC flow log exists | | status | string | Status of the flow log | | tags | map[string]string | Tags on the flow log | | createdAt | time | Creation timestamp | diff --git a/docs/mql/resources/aws-pack/aws.vpc.subnet.md b/docs/mql/resources/aws-pack/aws.vpc.subnet.md index 9dc451611..cf1e748a6 100644 --- a/docs/mql/resources/aws-pack/aws.vpc.subnet.md +++ b/docs/mql/resources/aws-pack/aws.vpc.subnet.md @@ -28,3 +28,4 @@ Amazon Virtual Private Cloud (VPC) subnet | defaultForAvailabilityZone | bool | Whether this is the default subnet for the availability zone | | assignIpv6AddressOnCreation | bool | Whether a network interface created in this subnet (including a network interface created by RunInstances ) receives an IPv6 address | | state | string | The state of the subnet: pending or available | +| region | string | Region in which the VPC subnet exists | diff --git a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.addonsconfig.md b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.addonsconfig.md index 4c14e341c..49599ecdf 100644 --- a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.addonsconfig.md +++ b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.addonsconfig.md @@ -31,3 +31,5 @@ Google Kubernetes Engine (GKE) cluster addons config | gcePersistentDiskCsiDriverConfig | dict | Configuration for the Compute Engine Persistent Disk CSI driver | | gcpFilestoreCsiDriverConfig | dict | Configuration for the GCP Filestore CSI driver | | gkeBackupAgentConfig | dict | Configuration for the backup for GKE agent addon | +| gcsFuseCsiDriverConfig | dict | Configuration for the Cloud Storage Fuse CSI driver | +| statefulHaConfig | dict | Configuration for the StatefulHA add-on. | diff --git a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.md b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.md index 6f19958b9..1fc7b045f 100644 --- a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.md +++ b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.md @@ -52,6 +52,11 @@ Google Kubernetes Engine (GKE) cluster | masterAuthorizedNetworksConfig | dict | Master authorized networks configuration | | privateClusterConfig | dict | Private cluster configuration | | databaseEncryption | dict | Etcd encryption configuration | +| shieldedNodesConfig | dict | Configuration for Shielded Nodes feature | +| costManagementConfig | dict | Configuration for the fine-grained cost management feature | +| confidentialNodesConfig | dict | Configuration of Confidential Nodes | +| identityServiceConfig | dict | Configuration for Identity Service component | +| networkPolicyConfig | dict | Configuration options for the NetworkPolicy feature | **References** diff --git a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.networkconfig.md b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.networkconfig.md index 6f738cd9c..d3c393cae 100644 --- a/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.networkconfig.md +++ b/docs/mql/resources/gcp-pack/gcp.project.gkeservice.cluster.networkconfig.md @@ -18,20 +18,23 @@ Google Kubernetes Engine (GKE) cluster network config **Fields** -| ID | TYPE | DESCRIPTION | -| ------------------------- | --------------------------------------------------------------------------------- | ---------------------------------------------------------------------------- | -| id | string | Internal ID | -| networkPath | string | Relative path of the network to which the cluster is connected | -| network | [gcp.project.computeService.network](gcp.project.computeservice.network.md) | Network to which the cluster is connected | -| subnetworkPath | string | Relative path of the subnetwork to which the cluster is connected | -| subnetwork | [gcp.project.computeService.subnetwork](gcp.project.computeservice.subnetwork.md) | Subnetwork to which the cluster is connected | -| enableIntraNodeVisibility | bool | Whether intra-node visibility is enabled for this cluster | -| defaultSnatStatus | dict | Whether the cluster disables default in-node sNAT rules | -| enableL4IlbSubsetting | bool | Whether L4ILB subsetting is enabled for this cluster | -| datapathProvider | string | Desired datapath provider for this cluster | -| privateIpv6GoogleAccess | string | Desired state of IPv6 connectivity to Google Services | -| dnsConfig | dict | Cluster DNS configuration | -| serviceExternalIpsConfig | dict | Configuration specifying whether services with externalIPs field are blocked | +| ID | TYPE | DESCRIPTION | +| ------------------------------------ | --------------------------------------------------------------------------------- | ---------------------------------------------------------------------------- | +| id | string | Internal ID | +| networkPath | string | Relative path of the network to which the cluster is connected | +| network | [gcp.project.computeService.network](gcp.project.computeservice.network.md) | Network to which the cluster is connected | +| subnetworkPath | string | Relative path of the subnetwork to which the cluster is connected | +| subnetwork | [gcp.project.computeService.subnetwork](gcp.project.computeservice.subnetwork.md) | Subnetwork to which the cluster is connected | +| enableIntraNodeVisibility | bool | Whether intra-node visibility is enabled for this cluster | +| defaultSnatStatus | dict | Whether the cluster disables default in-node sNAT rules | +| enableL4IlbSubsetting | bool | Whether L4ILB subsetting is enabled for this cluster | +| datapathProvider | string | Desired datapath provider for this cluster | +| privateIpv6GoogleAccess | string | Desired state of IPv6 connectivity to Google Services | +| dnsConfig | dict | Cluster DNS configuration | +| serviceExternalIpsConfig | dict | Configuration specifying whether services with externalIPs field are blocked | +| enableMultiNetworking | bool | Whether multi-networking is enabled for this cluster. | +| enableFqdnNetworkPolicy | bool | Whether FQDN Network Policy is enabled on this cluster. | +| enableCiliumClusterwideNetworkPolicy | bool | Whether CiliumClusterwideNetworkPolicy is enabled on this cluster. | **References** diff --git a/docs/mql/resources/os-pack/sshd.config.md b/docs/mql/resources/os-pack/sshd.config.md index 156c6c52d..2e8334f17 100644 --- a/docs/mql/resources/os-pack/sshd.config.md +++ b/docs/mql/resources/os-pack/sshd.config.md @@ -18,18 +18,18 @@ sshd.config(path string) **Fields** -| ID | TYPE | DESCRIPTION | -| --------------- | ------------------------------------------------------------- | ----------------------------------------------------------------------- | -| file | [file](file.md) | File of this SSH server configuration | -| files | [][file](file.md) | A list of lexically sorted files making up the SSH server configuration | -| content | string | Raw content of this SSH server config | -| params | map[string]string | Configuration values of this SSH server | -| blocks | [][sshd.config.matchBlock](sshd.config.matchblock.md) | Blocks with match conditions in this SSH server config | -| ciphers | []string | Ciphers configured for this SSH server | -| macs | []string | MACs configured for this SSH server | -| kexs | []string | Key exchange algorithms configured for this SSH server | -| hostkeys | []string | Host keys configured for this SSH server | -| permitRootLogin | []string | PermitRootLogin setting in SSH server | +| ID | TYPE | DESCRIPTION | +| --------------- | ------------------------------------------------------------- | ----------------------------------------------------------------------------------------------------- | +| file | [file](file.md) | File of this SSH server configuration | +| files | [][file](file.md) | A list of lexically sorted files making up the SSH server configuration | +| content | string | Deprecated: Please use `file.content` or `files{content}` instead. This field will be removed in v12. | +| params | map[string]string | Configuration values of this SSH server | +| blocks | [][sshd.config.matchBlock](sshd.config.matchblock.md) | Blocks with match conditions in this SSH server config | +| ciphers | []string | Ciphers configured for this SSH server | +| macs | []string | MACs configured for this SSH server | +| kexs | []string | Key exchange algorithms configured for this SSH server | +| hostkeys | []string | Host keys configured for this SSH server | +| permitRootLogin | []string | PermitRootLogin setting in SSH server | **Examples** diff --git a/yarn.lock b/yarn.lock index 13a6eff11..b545c6cd7 100644 --- a/yarn.lock +++ b/yarn.lock @@ -3005,9 +3005,9 @@ caniuse-api@^3.0.0: lodash.uniq "^4.5.0" caniuse-lite@^1.0.0, caniuse-lite@^1.0.30001587, caniuse-lite@^1.0.30001599: - version "1.0.30001612" - resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001612.tgz#d34248b4ec1f117b70b24ad9ee04c90e0b8a14ae" - integrity sha512-lFgnZ07UhaCcsSZgWW0K5j4e69dK1u/ltrL9lTUiFOwNHs12S3UMIEYgBV0Z6C6hRDev7iRnMzzYmKabYdXF9g== + version "1.0.30001614" + resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001614.tgz#f894b4209376a0bf923d67d9c361d96b1dfebe39" + integrity sha512-jmZQ1VpmlRwHgdP1/uiKzgiAuGOfLEJsYFP4+GBou/QQ4U6IOJCB4NP1c+1p9RGLpwObcT94jA5/uO+F1vBbog== ccount@^2.0.0: version "2.0.1" @@ -3834,9 +3834,9 @@ ee-first@1.1.1: integrity sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow== electron-to-chromium@^1.4.668: - version "1.4.748" - resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.4.748.tgz#aa7d4f2f3eac3a6a863cd1779bd4682b4bb68ed5" - integrity sha512-VWqjOlPZn70UZ8FTKUOkUvBLeTQ0xpty66qV0yJcAGY2/CthI4xyW9aEozRVtuwv3Kpf5xTesmJUcPwuJmgP4A== + version "1.4.750" + resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.4.750.tgz#d278a619af727ed069de1317115187282b1131ee" + integrity sha512-9ItEpeu15hW5m8jKdriL+BQrgwDTXEL9pn4SkillWFu73ZNNNQ2BKKLS+ZHv2vC9UkNhosAeyfxOf/5OSeTCPA== emoji-regex@^8.0.0: version "8.0.0" @@ -3906,9 +3906,9 @@ es-errors@^1.3.0: integrity sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw== es-module-lexer@^1.2.1: - version "1.5.0" - resolved "https://registry.yarnpkg.com/es-module-lexer/-/es-module-lexer-1.5.0.tgz#4878fee3789ad99e065f975fdd3c645529ff0236" - integrity sha512-pqrTKmwEIgafsYZAGw9kszYzmagcE/n4dbgwGWLEXg7J4QFJVQRBld8j3Q3GNez79jzxZshq0bcT962QHOghjw== + version "1.5.2" + resolved "https://registry.yarnpkg.com/es-module-lexer/-/es-module-lexer-1.5.2.tgz#00b423304f2500ac59359cc9b6844951f372d497" + integrity sha512-l60ETUTmLqbVbVHv1J4/qj+M8nq7AwMzEcg3kmJDt9dCNrTk+yHcYFf/Kw75pMDwd9mPcIGCG5LcS20SxYRzFA== escalade@^3.1.1: version "3.1.2" @@ -7152,9 +7152,9 @@ react-is@^16.13.1, react-is@^16.6.0, react-is@^16.7.0: integrity sha512-24e6ynE2H+OKt4kqsOvNd8kBpV65zoxbA4BVsEOB3ARVWQki/DHzaUoC5KuON/BiccDaCCTZBuOcfZs70kR8bQ== react-json-view-lite@^1.2.0: - version "1.3.0" - resolved "https://registry.yarnpkg.com/react-json-view-lite/-/react-json-view-lite-1.3.0.tgz#1f1feee6f1b1d75cc498cd57812f441b88b51e21" - integrity sha512-aN1biKC5v4DQkmQBlZjuMFR09MKZGMPtIg+cut8zEeg2HXd6gl2gRy0n4HMacHf0dznQgo0SVXN7eT8zV3hEuQ== + version "1.3.1" + resolved "https://registry.yarnpkg.com/react-json-view-lite/-/react-json-view-lite-1.3.1.tgz#29135f389361cecbacc7ece5e0f9d392983b9322" + integrity sha512-zvnfdUW6sL+4FfiwbYnYdwfxKZum0MbbXcMN5XhxhG405QpTW20ILIUjwJ/AXPg8V7BFUoNZKXopPxCcGR/Dhw== react-loadable-ssr-addon-v5-slorber@^1.0.1: version "1.0.1"