Documentation
¶
Index ¶
- Constants
- type ACLFetcherConfig
- type ConfigResource
- type EcrFetcher
- type EcrResource
- type ElbFetcher
- type ElbResource
- type IAMFetcher
- type IAMFetcherConfig
- type IAMResource
- type KmsFetcher
- type KmsResource
- type LoggingFetcher
- type LoggingResource
- type MonitoringFetcher
- type MonitoringResource
- type NetworkFetcher
- type NetworkResource
- type PodDescriber
- type RdsFetcher
- type RdsFetcherConfig
- type RdsResource
- type S3Fetcher
- type S3Resource
- type SecurityHubResource
Constants ¶
View Source
const ( // PrivateRepoRegexTemplate should identify images with an ecr regex template // <account-id>.dkr.ecr.<region>.amazonaws.com/<repository-name> PrivateRepoRegexTemplate = "^%s\\.dkr\\.ecr\\.([-\\w]+)\\.amazonaws\\.com\\/([-\\w\\.\\/]+)[:,@]?" EcrRegionRegexGroup = 1 EcrImageRegexGroup = 2 )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type ACLFetcherConfig ¶
type ACLFetcherConfig struct {
fetching.AwsBaseFetcherConfig `config:",inline"`
}
type ConfigResource ¶
type ConfigResource struct {
// contains filtered or unexported fields
}
func (ConfigResource) GetData ¶
func (c ConfigResource) GetData() any
func (ConfigResource) GetElasticCommonData ¶
func (c ConfigResource) GetElasticCommonData() (map[string]any, error)
func (ConfigResource) GetIds ¶
func (c ConfigResource) GetIds() []string
func (ConfigResource) GetMetadata ¶
func (c ConfigResource) GetMetadata() (fetching.ResourceMetadata, error)
type EcrFetcher ¶
type EcrFetcher struct {
PodDescriber PodDescriber
// contains filtered or unexported fields
}
func NewEcrFetcher ¶
func NewEcrFetcher(log *clog.Logger, ch chan fetching.ResourceInfo, kubeProvider k8s.Interface, podDescriber PodDescriber) *EcrFetcher
func (*EcrFetcher) Stop ¶
func (f *EcrFetcher) Stop()
type EcrResource ¶
type EcrResource struct {
ecr.Repository
}
func (EcrResource) GetData ¶
func (res EcrResource) GetData() any
func (EcrResource) GetElasticCommonData ¶
func (res EcrResource) GetElasticCommonData() (map[string]any, error)
func (EcrResource) GetIds ¶
func (res EcrResource) GetIds() []string
func (EcrResource) GetMetadata ¶
func (res EcrResource) GetMetadata() (fetching.ResourceMetadata, error)
type ElbFetcher ¶
type ElbFetcher struct {
// contains filtered or unexported fields
}
func NewElbFetcher ¶
func NewElbFetcher(log *clog.Logger, ch chan fetching.ResourceInfo, kubeProvider k8s.Interface, provider elb.LoadBalancerDescriber, identity *cloud.Identity, matchers string) *ElbFetcher
func (*ElbFetcher) GetLoadBalancers ¶
func (f *ElbFetcher) GetLoadBalancers(ctx context.Context) ([]string, error)
func (*ElbFetcher) Stop ¶
func (f *ElbFetcher) Stop()
type ElbResource ¶
type ElbResource struct {
// contains filtered or unexported fields
}
func (ElbResource) GetData ¶
func (r ElbResource) GetData() any
func (ElbResource) GetElasticCommonData ¶
func (ElbResource) GetElasticCommonData() (map[string]any, error)
func (ElbResource) GetIds ¶
func (r ElbResource) GetIds() []string
func (ElbResource) GetMetadata ¶
func (r ElbResource) GetMetadata() (fetching.ResourceMetadata, error)
type IAMFetcher ¶
type IAMFetcher struct {
// contains filtered or unexported fields
}
func NewIAMFetcher ¶
func NewIAMFetcher(log *clog.Logger, provider iam.AccessManagement, ch chan fetching.ResourceInfo, identity *cloud.Identity) *IAMFetcher
func (IAMFetcher) Fetch ¶
Fetch collects IAM resources, such as password-policy and IAM users. The resources are enriched by the provider and being send to evaluation.
func (IAMFetcher) Stop ¶
func (f IAMFetcher) Stop()
type IAMFetcherConfig ¶
type IAMFetcherConfig struct {
fetching.AwsBaseFetcherConfig `config:",inline"`
}
type IAMResource ¶
type IAMResource struct {
awslib.AwsResource
// contains filtered or unexported fields
}
func (IAMResource) GetData ¶
func (r IAMResource) GetData() any
func (IAMResource) GetElasticCommonData ¶
func (r IAMResource) GetElasticCommonData() (map[string]any, error)
func (IAMResource) GetIds ¶
func (r IAMResource) GetIds() []string
func (IAMResource) GetMetadata ¶
func (r IAMResource) GetMetadata() (fetching.ResourceMetadata, error)
type KmsFetcher ¶
type KmsFetcher struct {
// contains filtered or unexported fields
}
func NewKMSFetcher ¶
func NewKMSFetcher(log *clog.Logger, provider kms.KMS, ch chan fetching.ResourceInfo) *KmsFetcher
func (*KmsFetcher) Stop ¶
func (f *KmsFetcher) Stop()
type KmsResource ¶
type KmsResource struct {
// contains filtered or unexported fields
}
func (KmsResource) GetData ¶
func (r KmsResource) GetData() any
func (KmsResource) GetElasticCommonData ¶
func (r KmsResource) GetElasticCommonData() (map[string]any, error)
func (KmsResource) GetIds ¶
func (r KmsResource) GetIds() []string
func (KmsResource) GetMetadata ¶
func (r KmsResource) GetMetadata() (fetching.ResourceMetadata, error)
type LoggingFetcher ¶
type LoggingFetcher struct {
// contains filtered or unexported fields
}
func NewLoggingFetcher ¶
func NewLoggingFetcher( log *clog.Logger, loggingProvider logging.Client, configserviceProvider configservice.ConfigService, ch chan fetching.ResourceInfo, identity *cloud.Identity, ) *LoggingFetcher
func (LoggingFetcher) Stop ¶
func (f LoggingFetcher) Stop()
type LoggingResource ¶
type LoggingResource struct {
awslib.AwsResource
}
func (LoggingResource) GetData ¶
func (r LoggingResource) GetData() any
func (LoggingResource) GetElasticCommonData ¶
func (r LoggingResource) GetElasticCommonData() (map[string]any, error)
func (LoggingResource) GetIds ¶
func (r LoggingResource) GetIds() []string
func (LoggingResource) GetMetadata ¶
func (r LoggingResource) GetMetadata() (fetching.ResourceMetadata, error)
type MonitoringFetcher ¶
type MonitoringFetcher struct {
// contains filtered or unexported fields
}
func NewMonitoringFetcher ¶
func NewMonitoringFetcher(log *clog.Logger, provider monitoring.Client, securityHubProvider securityhub.Service, ch chan fetching.ResourceInfo, identity *cloud.Identity) *MonitoringFetcher
func (MonitoringFetcher) Stop ¶
func (m MonitoringFetcher) Stop()
type MonitoringResource ¶
type MonitoringResource struct {
monitoring.Resource
// contains filtered or unexported fields
}
func (MonitoringResource) GetData ¶
func (r MonitoringResource) GetData() any
func (MonitoringResource) GetElasticCommonData ¶
func (r MonitoringResource) GetElasticCommonData() (map[string]any, error)
func (MonitoringResource) GetIds ¶
func (r MonitoringResource) GetIds() []string
func (MonitoringResource) GetMetadata ¶
func (r MonitoringResource) GetMetadata() (fetching.ResourceMetadata, error)
type NetworkFetcher ¶
type NetworkFetcher struct {
// contains filtered or unexported fields
}
func NewNetworkFetcher ¶
func NewNetworkFetcher(log *clog.Logger, ec2Client ec2.ElasticCompute, ch chan fetching.ResourceInfo) *NetworkFetcher
func (NetworkFetcher) Fetch ¶
Fetch collects network resource such as network acl and security groups
func (NetworkFetcher) Stop ¶
func (f NetworkFetcher) Stop()
type NetworkResource ¶
type NetworkResource struct {
awslib.AwsResource
}
func (NetworkResource) GetData ¶
func (r NetworkResource) GetData() any
func (NetworkResource) GetElasticCommonData ¶
func (r NetworkResource) GetElasticCommonData() (map[string]any, error)
func (NetworkResource) GetIds ¶
func (r NetworkResource) GetIds() []string
func (NetworkResource) GetMetadata ¶
func (r NetworkResource) GetMetadata() (fetching.ResourceMetadata, error)
type PodDescriber ¶
type PodDescriber struct {
FilterRegex *regexp.Regexp
Provider ecr.RepositoryDescriber
}
type RdsFetcher ¶
type RdsFetcher struct {
// contains filtered or unexported fields
}
func NewRdsFetcher ¶
func NewRdsFetcher(log *clog.Logger, provider rds.Rds, ch chan fetching.ResourceInfo) *RdsFetcher
func (*RdsFetcher) Stop ¶
func (f *RdsFetcher) Stop()
type RdsFetcherConfig ¶
type RdsFetcherConfig struct {
fetching.AwsBaseFetcherConfig `config:",inline"`
}
type RdsResource ¶
type RdsResource struct {
// contains filtered or unexported fields
}
func (RdsResource) GetData ¶
func (r RdsResource) GetData() any
func (RdsResource) GetElasticCommonData ¶
func (r RdsResource) GetElasticCommonData() (map[string]any, error)
func (RdsResource) GetIds ¶
func (r RdsResource) GetIds() []string
func (RdsResource) GetMetadata ¶
func (r RdsResource) GetMetadata() (fetching.ResourceMetadata, error)
type S3Fetcher ¶
type S3Fetcher struct {
// contains filtered or unexported fields
}
func NewS3Fetcher ¶
type S3Resource ¶
type S3Resource struct {
// contains filtered or unexported fields
}
func (S3Resource) GetData ¶
func (r S3Resource) GetData() any
func (S3Resource) GetElasticCommonData ¶
func (r S3Resource) GetElasticCommonData() (map[string]any, error)
func (S3Resource) GetIds ¶
func (r S3Resource) GetIds() []string
func (S3Resource) GetMetadata ¶
func (r S3Resource) GetMetadata() (fetching.ResourceMetadata, error)
type SecurityHubResource ¶
type SecurityHubResource struct {
securityhub.SecurityHub
}
func (SecurityHubResource) GetData ¶
func (s SecurityHubResource) GetData() any
func (SecurityHubResource) GetElasticCommonData ¶
func (s SecurityHubResource) GetElasticCommonData() (map[string]any, error)
func (SecurityHubResource) GetIds ¶
func (s SecurityHubResource) GetIds() []string
func (SecurityHubResource) GetMetadata ¶
func (s SecurityHubResource) GetMetadata() (fetching.ResourceMetadata, error)
Source Files
Click to show internal directories.
Click to hide internal directories.