fix: update views and queries structure

Author: artaasadi

queries/1-aws_insight_lambda_function_not_cmk_encrypted.yaml

@@ -1,14 +1,10 @@
-Description: List of lambda functions which are not encrypted with CMK
-ID: aws_insight_lambda_function_not_cmk_encrypted
-IntegrationType:
+id: aws_insight_lambda_function_not_cmk_encrypted
+type: query
+title: Unencrypted Lambda
+description: List of lambda functions which are not encrypted with CMK
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_lambda_function
-  Parameters: []
-  PrimaryTable: aws_lambda_function
-  QueryToExecute: |
+query: |
     SELECT
       name,
       kms_key_arn,
@@ -19,7 +15,6 @@ Query:
       aws_lambda_function
     WHERE
       kms_key_arn IS NULL;
-Tags:
-  category:
-    - Security
-Title: Unencrypted Lambda
+tags:
+    category:
+      - Security

queries/10-aws_insight_acm_certificate_transparency_logging_disabled.yaml

@@ -1,20 +1,15 @@
-Description: List certificates for which transparency logging is disabled
-ID: aws_insight_acm_certificate_transparency_logging_disabled
-IntegrationType:
+id: aws_insight_acm_certificate_transparency_logging_disabled
+type: query
+title: Certificates with no Logging
+description: List certificates for which transparency logging is disabled
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_acm_certificate
-  Parameters: []
-  PrimaryTable: aws_acm_certificate
-  QueryToExecute: |
+query: |
     SELECT certificate_arn, domain_name, status, account_id, platform_account_id, platform_resource_id 
     FROM aws_acm_certificate
     WHERE certificate_transparency_logging_preference <> 'ENABLED';
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Resiliency
-Title: Certificates with no Logging
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Resiliency

queries/11-aws_insight_acm_certificate_expired.yaml

@@ -1,14 +1,10 @@
-Description: List of expired certificates
-ID: aws_insight_acm_certificate_expired
-IntegrationType:
+id: aws_insight_acm_certificate_expired
+type: query
+title: Expired Certificates
+description: List of expired certificates
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_acm_certificate
-  Parameters: []
-  PrimaryTable: aws_acm_certificate
-  QueryToExecute: |
+query: |
     SELECT certificate_arn, 
            domain_name, 
            status, 
@@ -17,10 +13,9 @@ Query:
            platform_resource_id 
     FROM aws_acm_certificate
     WHERE status = 'EXPIRED';
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Resiliency
-    - Cost Management
-Title: Expired Certificates
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Resiliency
+      - Cost Management

queries/12-aws_insight_ebs_snapshot_older_than_year.yaml

@@ -1,20 +1,15 @@
-Description: List Snapshots older than 365 days
-ID: aws_insight_ebs_snapshot_older_than_year
-IntegrationType:
+id: aws_insight_ebs_snapshot_older_than_year
+type: query
+title: Snapshots older than a year
+description: List Snapshots older than 365 days
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_ebs_snapshot
-  Parameters: []
-  PrimaryTable: aws_ebs_snapshot
-  QueryToExecute: |
+query: |
     SELECT snapshot_id, arn, start_time, account_id, platform_account_id, platform_resource_id
     FROM aws_ebs_snapshot
     WHERE start_time < NOW() - INTERVAL '1 year';
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Cost Management
-Title: Snapshots older than a year
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Cost Management

queries/13-aws_insight_ec2_classic_load_balancer.yaml

@@ -1,14 +1,10 @@
-Description: List all Classic Load Balancer. Link here.
-ID: aws_insight_ec2_classic_load_balancer
-IntegrationType:
+id: aws_insight_ec2_classic_load_balancer
+type: query
+title: Classic Load Balancers
+description: List all Classic Load Balancer. Link here.
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_ec2_classic_load_balancer
-  Parameters: []
-  PrimaryTable: aws_ec2_classic_load_balancer
-  QueryToExecute: |
+query: |
     SELECT 
       NAME, 
       ARN, 
@@ -17,13 +13,12 @@ Query:
       PLATFORM_RESOURCE_ID 
     FROM 
       AWS_EC2_CLASSIC_LOAD_BALANCER
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Resiliency
-  persona:
-    - Executive
-    - Product
-    - FinOps
-Title: Classic Load Balancers
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Resiliency
+    persona:
+      - Executive
+      - Product
+      - FinOps

queries/14-aws_insight_elb_classic_lb_use_ssl_certificate.yaml

@@ -1,14 +1,10 @@
-Description: List all Load Balancers without SSL
-ID: aws_insight_elb_classic_lb_use_ssl_certificate
-IntegrationType:
+id: aws_insight_elb_classic_lb_use_ssl_certificate
+type: query
+title: Load Balancers with no SSL
+description: List all Load Balancers without SSL
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_ec2_classic_load_balancer
-  Parameters: []
-  PrimaryTable: aws_ec2_classic_load_balancer
-  QueryToExecute: |
+query: |
     WITH detailed_classic_listeners AS (
       SELECT
         name
@@ -36,8 +32,7 @@ Query:
     FROM
       aws_ec2_classic_load_balancer AS a
     LEFT JOIN detailed_classic_listeners AS b ON a.name = b.name;
-Tags:
-  category:
-    - Security
-    - Technical Debt
-Title: Load Balancers with no SSL
+tags:
+    category:
+      - Security
+      - Technical Debt

queries/15-aws_insight_elb_application_lb_waf_enabled.yaml

@@ -1,14 +1,10 @@
-Description: List all ELB with no WAF.
-ID: aws_insight_elb_application_lb_waf_enabled
-IntegrationType:
+id: aws_insight_elb_application_lb_waf_enabled
+type: query
+title: Load Balancers with no WAF
+description: List all ELB with no WAF.
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_ec2_application_load_balancer
-  Parameters: []
-  PrimaryTable: aws_ec2_application_load_balancer
-  QueryToExecute: |
+query: |
     SELECT
       arn AS resource,
       account_id,
@@ -25,8 +21,7 @@ Query:
       region
     FROM
       aws_ec2_application_load_balancer;
-Tags:
-  category:
-    - Security
-    - Technical Debt
-Title: Load Balancers with no WAF
+tags:
+    category:
+      - Security
+      - Technical Debt

queries/16-aws_insight_vpc_with_public_cidr.yaml

@@ -1,14 +1,10 @@
-Description: List VPCs with public CIDR blocks
-ID: aws_insight_vpc_with_public_cidr
-IntegrationType:
+id: aws_insight_vpc_with_public_cidr
+type: query
+title: VPCs with Public IP Range
+description: List VPCs with public CIDR blocks
+integration_type:
   - aws_cloud_account
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - aws_vpc
-  Parameters: []
-  PrimaryTable: aws_vpc
-  QueryToExecute: |
+query: |
     SELECT
       vpc_id,
       cidr_block,
@@ -23,10 +19,9 @@ Query:
       (NOT cidr_block <<= '10.0.0.0/8'
       AND NOT cidr_block <<= '192.168.0.0/16'
       AND NOT cidr_block <<= '172.16.0.0/12');
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Resiliency
-    - Cost Management
-Title: VPCs with Public IP Range
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Resiliency
+      - Cost Management

queries/17-azure_insight_compute_disk_unattached.yaml

@@ -1,14 +1,10 @@
-Description: List of unattached Disks
-ID: azure_insight_compute_disk_unattached
-IntegrationType:
+id: azure_insight_compute_disk_unattached
+type: query
+title: Unused Azure Disks
+description: List of unattached Disks
+integration_type:
   - azure_subscription
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - azure_compute_disk
-  Parameters: []
-  PrimaryTable: azure_compute_disk
-  QueryToExecute: |
+query: |
     SELECT
       name,
       disk_state,
@@ -19,8 +15,7 @@ Query:
       azure_compute_disk
     WHERE
       disk_state = 'Unattached';
-Tags:
-  category:
-    - Technical Debt
-    - Cost Management
-Title: Unused Azure Disks
+tags:
+    category:
+      - Technical Debt
+      - Cost Management

queries/18-azure_insight_compute_disk_unavailable_in_multiple_az.yaml

@@ -1,14 +1,10 @@
-Description: List of compute disks which are not available in multiple az
-ID: azure_insight_compute_disk_unavailable_in_multiple_az
-IntegrationType:
+id: azure_insight_compute_disk_unavailable_in_multiple_az
+type: query
+title: Non-Resiliency Azure Disks
+description: List of compute disks which are not available in multiple az
+integration_type:
   - azure_subscription
-Query:
-  Engine: CloudQL-v0.0.1
-  ListOfTables:
-    - azure_compute_disk
-  Parameters: []
-  PrimaryTable: azure_compute_disk
-  QueryToExecute: |
+query: |
     SELECT
       name,
       az,
@@ -21,9 +17,8 @@ Query:
       CROSS JOIN jsonb_array_elements(zones) az
     WHERE
       zones IS NOT NULL;
-Tags:
-  category:
-    - Security
-    - Technical Debt
-    - Resiliency
-Title: Non-Resiliency Azure Disks
+tags:
+    category:
+      - Security
+      - Technical Debt
+      - Resiliency