updating to integrations

Author: acx1729

queries/1-aws_insight_lambda_function_not_cmk_encrypted.yaml

@@ -1,7 +1,7 @@
 ID: aws_insight_lambda_function_not_cmk_encrypted
 Title: "Unencrypted Lambda"
 Description: "List of lambda functions which are not encrypted with CMK"
-Connector:
+IntegrationTypeName:
 - aws
 Query:
   Engine: CloudQL-v0.0.1

queries/1-aws_insight_lambda_function_not_cmk_encrypted.yaml.bak

@@ -0,0 +1,22 @@
+ID: aws_insight_lambda_function_not_cmk_encrypted
+Title: "Unencrypted Lambda"
+Description: "List of lambda functions which are not encrypted with CMK"
+Connector:
+- aws
+Query:
+  Engine: CloudQL-v0.0.1
+  QueryToExecute: |-
+    select
+      name,
+      kms_key_arn, account_id, og_account_id, og_resource_id
+    from
+      aws_lambda_function
+    where
+      kms_key_arn is null;
+  PrimaryTable: aws_lambda_function
+  ListOfTables:
+  - aws_lambda_function
+  Parameters: []
+Tags:
+  category:
+  - Security

queries/10-aws_insight_acm_certificate_transparency_logging_disabled.yaml

@@ -1,7 +1,7 @@
 ID: aws_insight_acm_certificate_transparency_logging_disabled
 Title: "Certificates with no Logging"
 Description: "List certificates for which transparency logging is disabled"
-Connector:
+IntegrationTypeName:
 - aws
 Query:
   Engine: CloudQL-v0.0.1

queries/10-aws_insight_acm_certificate_transparency_logging_disabled.yaml.bak

@@ -0,0 +1,21 @@
+ID: aws_insight_acm_certificate_transparency_logging_disabled
+Title: "Certificates with no Logging"
+Description: "List certificates for which transparency logging is disabled"
+Connector:
+- aws
+Query:
+  Engine: CloudQL-v0.0.1
+  QueryToExecute: |-
+    select certificate_arn, domain_name, status, account_id, og_account_id, og_resource_id from
+      aws_acm_certificate
+    where
+      certificate_transparency_logging_preference <> 'ENABLED';
+  PrimaryTable: aws_acm_certificate
+  ListOfTables:
+  - aws_acm_certificate
+  Parameters: []
+Tags:
+  category:
+  - Security
+  - Technical Debt
+  - Resiliency

queries/11-aws_insight_acm_certificate_expired.yaml

@@ -1,7 +1,7 @@
 ID: aws_insight_acm_certificate_expired
 Title: "Expired Certificates"
 Description: "List of expired certificates"
-Connector:
+IntegrationTypeName:
 - aws
 Query:
   Engine: CloudQL-v0.0.1

queries/11-aws_insight_acm_certificate_expired.yaml.bak

@@ -0,0 +1,22 @@
+ID: aws_insight_acm_certificate_expired
+Title: "Expired Certificates"
+Description: "List of expired certificates"
+Connector:
+- aws
+Query:
+  Engine: CloudQL-v0.0.1
+  QueryToExecute: |-
+    select certificate_arn, domain_name, status, account_id, og_account_id, og_resource_id from
+      aws_acm_certificate
+    where
+      status = 'EXPIRED';
+  PrimaryTable: aws_acm_certificate
+  ListOfTables:
+  - aws_acm_certificate
+  Parameters: []
+Tags:
+  category:
+  - Security
+  - Technical Debt
+  - Resiliency
+  - Cost Management

queries/12-aws_insight_ebs_snapshot_older_than_year.yaml

@@ -1,7 +1,7 @@
 ID: aws_insight_ebs_snapshot_older_than_year
 Title: "Snapshots older than a year"
 Description: "List Snapshots older than 365 days"
-Connector:
+IntegrationTypeName:
 - aws
 Query:
   Engine: CloudQL-v0.0.1

queries/12-aws_insight_ebs_snapshot_older_than_year.yaml.bak

@@ -0,0 +1,17 @@
+ID: aws_insight_ebs_snapshot_older_than_year
+Title: "Snapshots older than a year"
+Description: "List Snapshots older than 365 days"
+Connector:
+- aws
+Query:
+  Engine: CloudQL-v0.0.1
+  QueryToExecute: SELECT snapshot_id, arn, start_time, account_id, og_account_id, og_resource_id FROM aws_ebs_snapshot WHERE start_time < now() - interval '1 year';
+  PrimaryTable: aws_ebs_snapshot
+  ListOfTables:
+  - aws_ebs_snapshot
+  Parameters: []
+Tags:
+  category:
+  - Security
+  - Technical Debt
+  - Cost Management

queries/13-aws_insight_ec2_classic_load_balancer.yaml

@@ -1,7 +1,7 @@
 ID: aws_insight_ec2_classic_load_balancer
 Title: "Classic Load Balancers"
 Description: "List all Classic Load Balancer. Link here."
-Connector:
+IntegrationTypeName:
 - aws
 Query:
   Engine: CloudQL-v0.0.1

queries/13-aws_insight_ec2_classic_load_balancer.yaml.bak

@@ -0,0 +1,21 @@
+ID: aws_insight_ec2_classic_load_balancer
+Title: "Classic Load Balancers"
+Description: "List all Classic Load Balancer. Link here."
+Connector:
+- aws
+Query:
+  Engine: CloudQL-v0.0.1
+  QueryToExecute: SELECT name, arn, account_id, og_account_id, og_resource_id FROM aws_ec2_classic_load_balancer
+  PrimaryTable: aws_ec2_classic_load_balancer
+  ListOfTables:
+  - aws_ec2_classic_load_balancer
+  Parameters: []
+Tags:
+  category:
+  - Security
+  - Technical Debt
+  - Resiliency
+  persona:
+  - Executive
+  - Product
+  - FinOps