From 12c51f11c6aa0857f402aff8e6a9520e7005f631 Mon Sep 17 00:00:00 2001 From: Tim Smith Date: Wed, 29 May 2024 09:59:06 -0700 Subject: [PATCH 1/3] Add new AWS resources Also bump all deps to the latest Signed-off-by: Tim Smith --- .github/actions/spelling/expect.txt | 3 + docs/cnquery/cnquery-supported.md | 2 +- docs/mql/resources/aws-pack/README.md | 3 + .../resources/aws-pack/aws.ec2.instance.md | 75 ++++++++++--------- .../aws-pack/aws.ec2.networkinterface.md | 35 +++++++++ .../mql/resources/aws-pack/aws.eks.cluster.md | 31 ++++---- .../resources/aws-pack/aws.eks.nodegroup.md | 35 +++++++++ .../aws-pack/aws.elb.loadbalancer.md | 1 + .../resources/aws-pack/aws.elb.targetgroup.md | 39 ++++++++++ .../resources/aws-pack/aws.vpc.natgateway.md | 1 + yarn.lock | 12 +-- 11 files changed, 178 insertions(+), 59 deletions(-) create mode 100644 docs/mql/resources/aws-pack/aws.ec2.networkinterface.md create mode 100644 docs/mql/resources/aws-pack/aws.eks.nodegroup.md create mode 100644 docs/mql/resources/aws-pack/aws.elb.targetgroup.md diff --git a/.github/actions/spelling/expect.txt b/.github/actions/spelling/expect.txt index c2e57546a..969d6fde6 100644 --- a/.github/actions/spelling/expect.txt +++ b/.github/actions/spelling/expect.txt @@ -229,11 +229,13 @@ natgateway NDdh NDgz netsh +networkinterface networkservice newkey nginx Nlcy noarch +nodegroup nodepool NSIs NSUl @@ -319,6 +321,7 @@ Stupakov sudolog suki SXp +targetgroup Tdej teamsmeetingpolicyconfig tenantfederationconfig diff --git a/docs/cnquery/cnquery-supported.md b/docs/cnquery/cnquery-supported.md index 8898abd14..5f0e5b379 100644 --- a/docs/cnquery/cnquery-supported.md +++ b/docs/cnquery/cnquery-supported.md @@ -13,7 +13,7 @@ cnquery can request information from: | Target | Provider | Example | | ----------------------------- | -------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------- | | AWS accounts | `aws` | `cnquery shell aws` | -| AWS CloudFormation templates | `cloudformation` | `cnquery shell cloudformation cloudformation_file.json` | +| AWS CloudFormation templates | `cloudformation` | `cnquery shell cloudformation cloudformation_file.json` | | AWS EC2 EBS snapshot | `aws ec2 ebs snapshot` | `cnquery shell aws ec2 ebs snapshot SNAPSHOTID` | | AWS EC2 EBS volume | `aws ec2 ebs volume` | `cnquery shell aws ec2 ebs volume VOLUMEID` | | AWS EC2 Instance Connect | `aws ec2 instance-connect` | `cnquery shell aws ec2 instance-connect ec2-user@INSTANCEID` | diff --git a/docs/mql/resources/aws-pack/README.md b/docs/mql/resources/aws-pack/README.md index c50762706..6fbe62908 100644 --- a/docs/mql/resources/aws-pack/README.md +++ b/docs/mql/resources/aws-pack/README.md @@ -67,6 +67,7 @@ Resources included in this pack: | [aws.ec2.networkacl.association](aws.ec2.networkacl.association.md) | | | [aws.ec2.networkacl.entry](aws.ec2.networkacl.entry.md) | Amazon EC2 network ACL entry | | [aws.ec2.networkacl.entry.portrange](aws.ec2.networkacl.entry.portrange.md) | Amazon EC2 network ACL entry port range | +| [aws.ec2.networkinterface](aws.ec2.networkinterface.md) | AWS EC2 network interface | | [aws.ec2.securitygroup](aws.ec2.securitygroup.md) | Amazon EC2 security group | | [aws.ec2.securitygroup.ippermission](aws.ec2.securitygroup.ippermission.md) | Amazon EC2 security group IP permission | | [aws.ec2.snapshot](aws.ec2.snapshot.md) | Amazon EC2 (EBS) snapshot | @@ -85,10 +86,12 @@ Resources included in this pack: | [aws.efs.filesystem](aws.efs.filesystem.md) | AWS Elastic File System (EFS) file system | | [aws.eks](aws.eks.md) | Amazon Elastic Kubernetes Service (EKS) | | [aws.eks.cluster](aws.eks.cluster.md) | Amazon EKS cluster | +| [aws.eks.nodegroup](aws.eks.nodegroup.md) | Amazon EKS managed node group | | [aws.elasticache](aws.elasticache.md) | Amazon ElastiCache | | [aws.elasticache.cluster](aws.elasticache.cluster.md) | Amazon ElastiCache cluster | | [aws.elb](aws.elb.md) | AWS Elastic Load Balancing | | [aws.elb.loadbalancer](aws.elb.loadbalancer.md) | AWS Elastic Load Balancing load balancer | +| [aws.elb.targetgroup](aws.elb.targetgroup.md) | AWS Elastic Load Balancer (ELB) Target Group | | [aws.emr](aws.emr.md) | Amazon EMR | | [aws.emr.cluster](aws.emr.cluster.md) | Amazon EMR cluster | | [aws.es](aws.es.md) | AWS Elasticsearch service | diff --git a/docs/mql/resources/aws-pack/aws.ec2.instance.md b/docs/mql/resources/aws-pack/aws.ec2.instance.md index a3ef72415..7fd5828b3 100644 --- a/docs/mql/resources/aws-pack/aws.ec2.instance.md +++ b/docs/mql/resources/aws-pack/aws.ec2.instance.md @@ -20,40 +20,41 @@ The `aws.ec2.instance` resource provides fields for assessing the configuration **Fields** -| ID | TYPE | DESCRIPTION | -| --------------------- | --------------------------------------------------------------- | ------------------------------------------------------------------------------------------- | -| arn | string | ARN for the instance | -| instanceId | string | Instance ID for the instance | -| detailedMonitoring | string | Whether detailed monitoring is enabled | -| region | string | Region where the instance exists | -| publicIp | string | Public IP for instance | -| ssm | dict | Amazon Systems Manager information for the instance | -| vpc | [aws.vpc](aws.vpc.md) | VPC associated with the instance | -| httpTokens | string | A value of "optional" denotes IMDSv1 server compatibility; "required" denotes IMDSv2 | -| httpEndpoint | string | Status of the IMDS endpoint enabled on the instance | -| patchState | dict | Patch state information about the instance | -| state | string | State of the instance: pending, running, stopping, stopped, rebooting, or terminated | -| deviceMappings | [][aws.ec2.instance.device](aws.ec2.instance.device.md) | List of devices attached to the instance (such as EBS volume) | -| securityGroups | [][aws.ec2.securitygroup](aws.ec2.securitygroup.md) | List of security groups (IDs) associated with the instance | -| platformDetails | string | Platform details | -| publicDnsName | string | Public DNS name for the instance | -| instanceStatus | dict | The status of the specified instance | -| stateReason | dict | Reason for the most recent state transition | -| stateTransitionReason | string | Reason for the most recent state transition | -| ebsOptimized | bool | Whether the instance has EBS optimization turned on | -| enaSupported | bool | Whether enhanced networking with ENA is enabled | -| instanceType | string | Instance type, such as t2.micro | -| tags | map[string]string | Tags on the instance | -| image | [aws.ec2.image](aws.ec2.image.md) | Image that was used for the instance | -| launchTime | time | Launch time of the instance | -| privateIp | string | Private IP address for the instance | -| privateDnsName | string | Private DNS name for the instance | -| keypair | [aws.ec2.keypair](aws.ec2.keypair.md) | Key pair associated with the instance | -| stateTransitionTime | time | Time when the last state transition occurred | -| vpcArn | string | The ARN of the VPC associated with the instance | -| hypervisor | string | The hypervisor type of the instance: ovm or xen | -| instanceLifecycle | string | Whether this is a Spot Instance or a Scheduled Instance: spot, scheduled, or capacity-block | -| rootDeviceType | string | The root device type used by the AMI: ebs or instance-store | -| rootDeviceName | string | The device name of the root device volume, such as /dev/sda1 | -| architecture | string | The architecture of the instance | -| tpmSupport | string | The TPM version supported. NitroTPM is enabled if this value is `2.0` | +| ID | TYPE | DESCRIPTION | +| --------------------- | ----------------------------------------------------------------- | ------------------------------------------------------------------------------------------- | +| arn | string | ARN for the instance | +| instanceId | string | Instance ID for the instance | +| detailedMonitoring | string | Whether detailed monitoring is enabled | +| region | string | Region where the instance exists | +| publicIp | string | Public IP for instance | +| ssm | dict | Amazon Systems Manager information for the instance | +| vpc | [aws.vpc](aws.vpc.md) | VPC associated with the instance | +| httpTokens | string | A value of "optional" denotes IMDSv1 server compatibility; "required" denotes IMDSv2 | +| httpEndpoint | string | Status of the IMDS endpoint enabled on the instance | +| patchState | dict | Patch state information about the instance | +| state | string | State of the instance: pending, running, stopping, stopped, rebooting, or terminated | +| deviceMappings | [][aws.ec2.instance.device](aws.ec2.instance.device.md) | List of devices attached to the instance (such as EBS volume) | +| securityGroups | [][aws.ec2.securitygroup](aws.ec2.securitygroup.md) | List of security groups (IDs) associated with the instance | +| platformDetails | string | Platform details | +| publicDnsName | string | Public DNS name for the instance | +| instanceStatus | dict | The status of the specified instance | +| stateReason | dict | Reason for the most recent state transition | +| stateTransitionReason | string | Reason for the most recent state transition | +| ebsOptimized | bool | Whether the instance has EBS optimization turned on | +| enaSupported | bool | Whether enhanced networking with ENA is enabled | +| instanceType | string | Instance type, such as t2.micro | +| tags | map[string]string | Tags on the instance | +| image | [aws.ec2.image](aws.ec2.image.md) | Image that was used for the instance | +| launchTime | time | Launch time of the instance | +| privateIp | string | Private IP address for the instance | +| privateDnsName | string | Private DNS name for the instance | +| keypair | [aws.ec2.keypair](aws.ec2.keypair.md) | Key pair associated with the instance | +| stateTransitionTime | time | Time when the last state transition occurred | +| vpcArn | string | The ARN of the VPC associated with the instance | +| hypervisor | string | The hypervisor type of the instance: ovm or xen | +| instanceLifecycle | string | Whether this is a Spot Instance or a Scheduled Instance: spot, scheduled, or capacity-block | +| rootDeviceType | string | The root device type used by the AMI: ebs or instance-store | +| rootDeviceName | string | The device name of the root device volume, such as /dev/sda1 | +| architecture | string | The architecture of the instance | +| tpmSupport | string | The TPM version supported. NitroTPM is enabled if this value is `2.0` | +| networkInterfaces | [][aws.ec2.networkinterface](aws.ec2.networkinterface.md) | List of network interfaces for the instance | diff --git a/docs/mql/resources/aws-pack/aws.ec2.networkinterface.md b/docs/mql/resources/aws-pack/aws.ec2.networkinterface.md new file mode 100644 index 000000000..6d81a48a3 --- /dev/null +++ b/docs/mql/resources/aws-pack/aws.ec2.networkinterface.md @@ -0,0 +1,35 @@ +--- +title: aws.ec2.networkinterface +id: aws.ec2.networkinterface +sidebar_label: aws.ec2.networkinterface +displayed_sidebar: MQL +description: AWS EC2 network interface +--- + +# aws.ec2.networkinterface + +**Supported platform** + +- aws + +**Description** + +AWS EC2 network interface + +**Fields** + +| ID | TYPE | DESCRIPTION | +| ---------------- | ----------------------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | +| id | string | The ID of the network interface | +| description | string | The description of the network interface | +| subnet | [aws.vpc.subnet](aws.vpc.subnet.md) | The subnet of the network interface | +| vpc | [aws.vpc](aws.vpc.md) | The VPC of the network interface | +| status | string | The status of the network interface. If the network interface is not attached to an instance, the status is available; if a network interface is attached to an instance the status is in-use | +| sourceDestCheck | bool | Indicates whether the network interface performs source/destination checking. A value of true means checking is enabled, and false means checking is disabled. The value must be false for the network interface to perform network address translation (NAT) in your VPC. | +| requesterManaged | bool | Indicates whether the network interface is being managed by an AWS service (for example, AWS Management Console, Auto Scaling, and so on) | +| tags | map[string]string | Tags set on the interface | +| availabilityZone | string | The availability zone of the network interface | +| securityGroups | [][aws.ec2.securitygroup](aws.ec2.securitygroup.md) | Security groups associated with the network interface | +| ipv6Native | bool | Indicates whether this is an IPv6 only network interface | +| macAddress | string | The MAC address of the network interface | +| privateDnsName | string | The private DNS name of the network interface (IPv4) | diff --git a/docs/mql/resources/aws-pack/aws.eks.cluster.md b/docs/mql/resources/aws-pack/aws.eks.cluster.md index 5c71eb076..44f209443 100644 --- a/docs/mql/resources/aws-pack/aws.eks.cluster.md +++ b/docs/mql/resources/aws-pack/aws.eks.cluster.md @@ -18,18 +18,19 @@ Amazon EKS cluster **Fields** -| ID | TYPE | DESCRIPTION | -| ------------------ | ----------------- | ----------------------------------------- | -| name | string | Name of the cluster | -| arn | string | ARN of the cluster | -| region | string | Region for the cluster | -| tags | map[string]string | A map of tags associated with the cluster | -| endpoint | string | The endpoint of Kubernetes API server | -| version | string | Kubernetes server version | -| platformVersion | string | Amazon EKS cluster version | -| status | string | Cluster status | -| encryptionConfig | []dict | Encryption configuration for the cluster | -| logging | dict | Cluster logging configuration | -| networkConfig | dict | Kubernetes network configuration | -| resourcesVpcConfig | dict | VPC configuration | -| createdAt | time | Cluster creation timestamp | +| ID | TYPE | DESCRIPTION | +| ------------------ | --------------------------------------------------- | ----------------------------------------- | +| name | string | Name of the cluster | +| arn | string | ARN of the cluster | +| region | string | Region for the cluster | +| tags | map[string]string | A map of tags associated with the cluster | +| endpoint | string | The endpoint of Kubernetes API server | +| version | string | Kubernetes server version | +| platformVersion | string | Amazon EKS cluster version | +| status | string | Cluster status | +| encryptionConfig | []dict | Encryption configuration for the cluster | +| logging | dict | Cluster logging configuration | +| networkConfig | dict | Kubernetes network configuration | +| resourcesVpcConfig | dict | VPC configuration | +| createdAt | time | Cluster creation timestamp | +| nodeGroups | [][aws.eks.nodegroup](aws.eks.nodegroup.md) | List of EKS node groups | diff --git a/docs/mql/resources/aws-pack/aws.eks.nodegroup.md b/docs/mql/resources/aws-pack/aws.eks.nodegroup.md new file mode 100644 index 000000000..4d26bc000 --- /dev/null +++ b/docs/mql/resources/aws-pack/aws.eks.nodegroup.md @@ -0,0 +1,35 @@ +--- +title: aws.eks.nodegroup +id: aws.eks.nodegroup +sidebar_label: aws.eks.nodegroup +displayed_sidebar: MQL +description: Amazon EKS managed node group +--- + +# aws.eks.nodegroup + +**Supported platform** + +- aws + +**Description** + +Amazon EKS managed node group + +**Fields** + +| ID | TYPE | DESCRIPTION | +| ------------- | ------------------------------- | ------------------------------------------------------ | +| name | string | Name for the EKS node group | +| arn | string | ARN for the EKS node group | +| region | string | Region for the EKS node group | +| createdAt | time | Time when the EKS node group was created | +| status | string | Status for the EKS node group | +| capacityType | string | Capacity type for the EKS node group (ON_DEMAND, SPOT) | +| scalingConfig | dict | Scaling configuration for the EKS node group | +| instanceTypes | []string | Instance types for the EKS node group | +| amiType | string | AMI type for the EKS node group | +| nodeRole | [aws.iam.role](aws.iam.role.md) | IAM role for the EKS node group | +| diskSize | int | Disk size for the EKS node group | +| labels | map[string]string | Kubernetes labels applied to the EKS node group | +| tags | map[string]string | Tags for the EKS node group | diff --git a/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md b/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md index 46460ac7e..3c3d937a1 100644 --- a/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md +++ b/docs/mql/resources/aws-pack/aws.elb.loadbalancer.md @@ -36,3 +36,4 @@ The `aws.elb.loadbalancer` resource provides fields for assessing the configurat | region | string | Region where the load balancer exists | | elbType | string | The type of ELB. Possible values are `network`, `application`, `gateway`, or `classic` | | vpc | [aws.vpc](aws.vpc.md) | VPC where the load balancer is located | +| targetGroups | [][aws.elb.targetgroup](aws.elb.targetgroup.md) | List of target groups for the load balancer | diff --git a/docs/mql/resources/aws-pack/aws.elb.targetgroup.md b/docs/mql/resources/aws-pack/aws.elb.targetgroup.md new file mode 100644 index 000000000..ac6322734 --- /dev/null +++ b/docs/mql/resources/aws-pack/aws.elb.targetgroup.md @@ -0,0 +1,39 @@ +--- +title: aws.elb.targetgroup +id: aws.elb.targetgroup +sidebar_label: aws.elb.targetgroup +displayed_sidebar: MQL +description: AWS Elastic Load Balancer (ELB) Target Group +--- + +# aws.elb.targetgroup + +**Supported platform** + +- aws + +**Description** + +AWS Elastic Load Balancer (ELB) Target Group + +**Fields** + +| ID | TYPE | DESCRIPTION | +| -------------------------- | ------------------------------------------------------- | ---------------------------------------------------------------------------------- | +| name | string | Name for the load balancer target group | +| arn | string | ARN for the load balancer target group | +| port | int | Port for the load balancer target group | +| protocol | string | Protocol for the load balancer target group | +| protocolVersion | string | Protocol version for the load balancer target group | +| ipAddressType | string | IP address type for the load balancer target group (IPv4, IPv6) | +| healthCheckEnabled | bool | True if health check is enabled for the load balancer target group | +| healthCheckIntervalSeconds | int | Health check interval for the load balancer target group | +| healthCheckPath | string | Health check path for the load balancer target group | +| healthCheckPort | string | Health check port for the load balancer target group | +| healthCheckProtocol | string | Health check protocol for the load balancer target group | +| healthCheckTimeoutSeconds | int | Health check timeout seconds for the load balancer target group | +| targetType | string | Target type for the for the load balancer target group (instance, IP, Lambda, ALB) | +| unhealthyThresholdCount | int | Unhealthy threshold count for the load balancer target group | +| vpc | [aws.vpc](aws.vpc.md) | VPC for the load balancer target group | +| ec2Targets | [][aws.ec2.instance](aws.ec2.instance.md) | EC2 targets for the load balancer target group | +| lambdaTargets | [][aws.lambda.function](aws.lambda.function.md) | Lambda targets for the load balancer target group | diff --git a/docs/mql/resources/aws-pack/aws.vpc.natgateway.md b/docs/mql/resources/aws-pack/aws.vpc.natgateway.md index 9dd24d0cc..d13437b8a 100644 --- a/docs/mql/resources/aws-pack/aws.vpc.natgateway.md +++ b/docs/mql/resources/aws-pack/aws.vpc.natgateway.md @@ -26,3 +26,4 @@ Amazon VPC NAT Gateway | tags | map[string]string | Tags for the NAT gateway | | vpc | [aws.vpc](aws.vpc.md) | VPC associated with the NAT gateway | | addresses | [][aws.vpc.natgateway.address](aws.vpc.natgateway.address.md) | List of addresses associated with the NAT gateway | +| subnet | [aws.vpc.subnet](aws.vpc.subnet.md) | Subnet for the NAT gateway | diff --git a/yarn.lock b/yarn.lock index 48ac7f881..631d5b64f 100644 --- a/yarn.lock +++ b/yarn.lock @@ -3027,9 +3027,9 @@ caniuse-api@^3.0.0: lodash.uniq "^4.5.0" caniuse-lite@^1.0.0, caniuse-lite@^1.0.30001587, caniuse-lite@^1.0.30001599: - version "1.0.30001624" - resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001624.tgz#0ec4c8fa7a46e5b785477c70b38a56d0b10058eb" - integrity sha512-0dWnQG87UevOCPYaOR49CBcLBwoZLpws+k6W37nLjWUhumP1Isusj0p2u+3KhjNloRWK9OKMgjBBzPujQHw4nA== + version "1.0.30001625" + resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001625.tgz#ead1b155ea691d6a87938754d3cb119c24465b03" + integrity sha512-4KE9N2gcRH+HQhpeiRZXd+1niLB/XNLAhSy4z7fI8EzcbcPoAqjNInxVHTiTwWfTIV4w096XG8OtCOCQQKPv3w== ccount@^2.0.0: version "2.0.1" @@ -3124,9 +3124,9 @@ chokidar@^3.4.2, chokidar@^3.5.3: fsevents "~2.3.2" chrome-trace-event@^1.0.2: - version "1.0.3" - resolved "https://registry.yarnpkg.com/chrome-trace-event/-/chrome-trace-event-1.0.3.tgz#1015eced4741e15d06664a957dbbf50d041e26ac" - integrity sha512-p3KULyQg4S7NIHixdwbGX+nFHkoBiA4YQmyWtjb8XngSKV124nJmRysgAeujbUVb15vh+RvFUfCPqU7rXk+hZg== + version "1.0.4" + resolved "https://registry.yarnpkg.com/chrome-trace-event/-/chrome-trace-event-1.0.4.tgz#05bffd7ff928465093314708c93bdfa9bd1f0f5b" + integrity sha512-rNjApaLzuwaOTjCiT8lSDdGN1APCiqkChLMJxJPWLunPAt5fy8xgU9/jNOchV84wfIxrA0lRQB7oCT8jrn/wrQ== ci-info@^3.2.0: version "3.9.0" From 45105b9f09cdc632cc0d82037845572ed6e11d32 Mon Sep 17 00:00:00 2001 From: misterpantz Date: Wed, 29 May 2024 10:29:22 -0700 Subject: [PATCH 2/3] fix anchors in aws docs --- .../infra/cloud/aws/lambda/aws-integration-troubleshooting.mdx | 2 +- docs/platform/infra/cloud/aws/lambda/integration-lambda.mdx | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/docs/platform/infra/cloud/aws/lambda/aws-integration-troubleshooting.mdx b/docs/platform/infra/cloud/aws/lambda/aws-integration-troubleshooting.mdx index 5267e3e31..39b7072da 100644 --- a/docs/platform/infra/cloud/aws/lambda/aws-integration-troubleshooting.mdx +++ b/docs/platform/infra/cloud/aws/lambda/aws-integration-troubleshooting.mdx @@ -60,7 +60,7 @@ To ensure your Organizations are configured as needed, go to the [AWS Organizati - The 'root' spans a tree of one or more OUs with IDs that use this format: `ou-ab12-1234abcd` -If the entities below your `root` node have IDs in the format `o-abcd5678`, this interferes with an Organization-level Mondoo integration. You can still deploy the Mondoo integration; just integrate with [single accounts](/platform/infra/cloud/aws/aws-integration-scan/#integrate-with-an-entire-organization-or-single-account). +If the entities below your `root` node have IDs in the format `o-abcd5678`, this interferes with an Organization-level Mondoo integration. You can still deploy the Mondoo integration; just integrate with [single accounts](/platform/infra/cloud/aws/lambda/integration-lambda/#integrate-with-an-entire-organization-or-single-account). You can't integrate an improperly configured AWS Organization with Mondoo. The integration fails. diff --git a/docs/platform/infra/cloud/aws/lambda/integration-lambda.mdx b/docs/platform/infra/cloud/aws/lambda/integration-lambda.mdx index 8c8f75126..878755512 100644 --- a/docs/platform/infra/cloud/aws/lambda/integration-lambda.mdx +++ b/docs/platform/infra/cloud/aws/lambda/integration-lambda.mdx @@ -30,7 +30,7 @@ You can also opt to scan a single AWS account only. Single account integrations :::info When you deploy an integration with Mondoo using a StackSet on the organizational level, the StackSet only creates an integration of the [target accounts](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html#stacksets-concepts-accts). -The [administrator account](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html#stacksets-concepts-accts) in which the StackSet for the target accounts resides needs its own separate [single account integration](/platform/infra/cloud/aws/aws-integration-scan/#integrate-with-an-entire-organization-or-single-account). +The [administrator account](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html#stacksets-concepts-accts) in which the StackSet for the target accounts resides needs its own separate [single account integration](/platform/infra/cloud/aws/lambda/integration-lambda/#integrate-with-an-entire-organization-or-single-account). This is intentional and reflects the [architectural concepts of AWS StackSets](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/stacksets-concepts.html). ::: From 57400819601aca4d65acf2489a4066bf8f83005e Mon Sep 17 00:00:00 2001 From: Tim Smith Date: Wed, 29 May 2024 10:58:57 -0700 Subject: [PATCH 3/3] Remove sitemap config Signed-off-by: Tim Smith --- docusaurus.config.js | 6 ------ 1 file changed, 6 deletions(-) diff --git a/docusaurus.config.js b/docusaurus.config.js index b017c3de5..c534c9bdf 100644 --- a/docusaurus.config.js +++ b/docusaurus.config.js @@ -424,12 +424,6 @@ module.exports = { theme: { customCss: require.resolve("./src/css/custom.css"), }, - sitemap: { - changefreq: "daily", - lastmod: "date", - ignorePatterns: ["**/releases/tags/**"], - priority: 0.5, - }, }, ], ],