Skip to content

Commit 22f46f0

Browse files
Travis CI UserCI bot
Travis CI User
authored and
CI bot
committed
$MERGE_COMMIT_MESSAGE
2 parents 4482acc + 56faef9 commit 22f46f0

File tree

2 files changed

+74
-36
lines changed

2 files changed

+74
-36
lines changed

alsdkdefs/apis/remediations/examples.yaml

Lines changed: 57 additions & 34 deletions
Original file line numberDiff line numberDiff line change
@@ -3238,79 +3238,102 @@ TopologyPreviewExample:
32383238
value:
32393239
topology:
32403240
assets:
3241-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3242-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3243-
- region/aws/us-east-1
3244-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3245-
- region/aws/us-west-2
3246-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3247-
- region/aws/us-east-1
3248-
- "/aws/us-east-1/vpc/vpc-1"
3249-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3250-
- region/aws/us-east-1
3251-
- "/aws/us-east-1/vpc/vpc-1"
3252-
- subnet:/aws/us-east-1/subnet/subnet-1a-web
3253-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3254-
- region/aws/us-east-1
3255-
- "/aws/us-east-1/vpc/vpc-1"
3256-
- subnet:/aws/us-east-1/subnet/subnet-1a-web
3257-
- host:/aws/us-east-1/host/alertlogic-ids-1
3258-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3259-
- region/aws/us-east-1
3260-
- "/aws/us-east-1/vpc/vpc-1"
3261-
- host:/aws/us-east-1/host/alertlogic-ids-1
3262-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3263-
- region/aws/us-east-1
3264-
- "/aws/us-east-1/image/ami-1"
3265-
- - deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3266-
- region/aws/us-east-1
3267-
- "/aws/us-west-2/image/ami-2"
3241+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3242+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-west-2
3243+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3244+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/eu-west-1
3245+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3246+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3247+
- 814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/us-east-1/vpc/vpc-1
3248+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3249+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/eu-west-1
3250+
- 814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/eu-west-1/vpc/vpc-1
3251+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3252+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3253+
- 814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/us-east-1/vpc/vpc-1
3254+
- 814C2911-09BB-1005-9916-7831C1BAC182:subnet:/aws/us-east-1/subnet/subnet-1a-web
3255+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3256+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3257+
- 814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/us-east-1/vpc/vpc-1
3258+
- 814C2911-09BB-1005-9916-7831C1BAC182:subnet:/aws/us-east-1/subnet/subnet-1a-web
3259+
- 814C2911-09BB-1005-9916-7831C1BAC182:host:/aws/us-east-1/host/web-1a-1
3260+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3261+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3262+
- 814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/us-east-1/vpc/vpc-1
3263+
- 814C2911-09BB-1005-9916-7831C1BAC182:host:/aws/us-east-1/host/web-1a-1
3264+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3265+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3266+
- 814C2911-09BB-1005-9916-7831C1BAC182:/aws/us-east-1/image/ami-1
3267+
- - 814C2911-09BB-1005-9916-7831C1BAC182:deployment:/al/19000001/aws/814C2911-09BB-1005-9916-7831C1BAC182
3268+
- 814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1
3269+
- 814C2911-09BB-1005-9916-7831C1BAC182:/aws/us-west-2/image/ami-2
32683270
data:
3269-
host:/aws/us-east-1/host/alertlogic-ids-1:
3271+
814C2911-09BB-1005-9916-7831C1BAC182:host:/aws/us-east-1/host/web-1a-1:
32703272
alertlogic_agent: false
32713273
alertlogic_appliance: true
32723274
created_on: 1427317669928
3275+
group_membership: IN
32733276
key: "/aws/us-east-1/host/web-1a-1"
32743277
state: running
32753278
threat_level: 2
32763279
threatiness: 2
32773280
type: host
3278-
image:/aws/us-east-1/image/ami-1:
3281+
814C2911-09BB-1005-9916-7831C1BAC182:image:/aws/us-east-1/image/ami-1:
32793282
created_on: 1427317669792
3283+
group_membership: IN
32803284
key: "/aws/us-east-1/image/ami-1"
32813285
threat_level: 3
32823286
threatiness: 14
32833287
type: image
3284-
image:/aws/us-west-2/image/ami-2:
3288+
814C2911-09BB-1005-9916-7831C1BAC182:image:/aws/us-west-2/image/ami-2:
32853289
created_on: 1427317669792
3290+
group_membership: IN
32863291
key: "/aws/us-west-2/image/ami-2"
32873292
threat_level: 3
32883293
threatiness: 14
32893294
type: image
3290-
region/aws/us-east-1:
3295+
814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1:
32913296
created_on: 1427317669194
3297+
group_membership: IN
32923298
key: "/aws/us-east-1"
32933299
threat_level: 3
32943300
threatiness: 22
32953301
type: region
3296-
region/aws/us-west-2:
3302+
814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-west-2:
32973303
created_on: 1589381951438
3304+
group_membership: NOT_IN
32983305
key: "/aws/us-west-2"
32993306
threat_level: 0
33003307
threatiness: 0
33013308
type: region
3302-
subnet:/aws/us-east-1/subnet/subnet-1a-web:
3309+
814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/eu-west-1:
3310+
created_on: 1589381951438
3311+
group_membership: EXCLUDED
3312+
key: "/aws/eu-west-1"
3313+
threat_level: 0
3314+
threatiness: 0
3315+
type: region
3316+
814C2911-09BB-1005-9916-7831C1BAC182:subnet:/aws/us-east-1/subnet/subnet-1a-web:
33033317
created_on: 1427317669627
3318+
group_membership: IN
33043319
key: "/aws/us-east-1/subnet/subnet-1a-web"
33053320
threat_level: 2
33063321
threatiness: 8
33073322
type: subnet
3308-
vpc:/aws/us-east-1/vpc/vpc-1:
3323+
814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/us-east-1/vpc/vpc-1:
33093324
created_on: 1427317669270
3325+
group_membership: IN
33103326
key: "/aws/us-east-1/vpc/vpc-1"
33113327
threat_level: 3
33123328
threatiness: 22
33133329
type: vpc
3330+
814C2911-09BB-1005-9916-7831C1BAC182:vpc:/aws/eu-west-1/vpc/vpc-2:
3331+
created_on: 1427317669270
3332+
group_membership: EXCLUDED
3333+
key: "/aws/eu-west-1/vpc/vpc-2"
3334+
threat_level: 3
3335+
threatiness: 22
3336+
type: vpc
33143337
rows: 9
33153338
DisposeSingleRemediationExample:
33163339
value:

alsdkdefs/apis/remediations/schemas.yaml

Lines changed: 17 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -449,14 +449,29 @@ TopologyPreviewResponse:
449449
description: |-
450450
An array of arrays of asset references. Each element in the array is an array of asset
451451
references (that can be resolved by looking up the reference in the `topology.data`
452-
object) that describe topological relationship sequences.
452+
object) that describe topological relationship sequences. Note that all groupable assets
453+
are returned in the rows, but the `topology.data` object must be consulted for each asset to determine
454+
its inclusion or exclusion from the group. Intermediate topology assets do not have their own row in
455+
the result (a VPC with subnets would not have an entry, but a VPC without subnets would have an entry).
453456
data:
454457
type: object
455458
description: |-
456459
An object containing all of the asset details for asset references in the
457460
`topology.assets`. The object keys are asset
458461
references produced by colon-joining deployment ID, asset type and asset key, e.g.,
459-
`814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1`.
462+
`814C2911-09BB-1005-9916-7831C1BAC182:region:/aws/us-east-1`. All assets are decorated with a
463+
`group_membership` property that must be consulted to determine membership in the group. Possible values are described below:
464+
465+
`IN` - The asset is included in the group by scope definition.
466+
467+
`CONTAINS` - The asset does not meet the full criteria for inclusion in the group, but contains at least one successor asset in the group.
468+
469+
`CAN_CONTAIN` - The asset does not meet the full criteria for inclusion in the group. The scope definition does allow this asset to
470+
potentially include future successors in the group.
471+
472+
`EXCLUDED` - The asset is excluded from the group by scope definition.
473+
474+
`NOT_IN` - The asset does not meet all criteria for inclusion in the group by scope definition, but is not explicitly excluded.
460475
rows:
461476
type: integer
462477
description: The count of rows in the `topology.assets` array.

0 commit comments

Comments
 (0)