Skip to content

Fix control primarytables #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Nov 17, 2024
Merged

Fix control primarytables #13

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
57485e3
fix: fix wrong primary tables
artaasadi Nov 17, 2024
13f7491
Merge remote-tracking branch 'origin/main' into fix-control-primaryta…
artaasadi Nov 17, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_cis_v120_3_5.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,13 +5,13 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_account
- aws_cloudtrail_trail
- aws_cloudwatch_alarm
- aws_sns_topic_subscription
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v140_1_17.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_account
- aws_iam_role
Parameters: []
PrimaryTable: aws_iam_role
PrimaryTable: aws_account
QueryToExecute: |
WITH support_role_count AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v140_4_14.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ Query:
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_cis_v140_4_5.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,13 +5,13 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_account
- aws_cloudtrail_trail
- aws_cloudwatch_alarm
- aws_sns_topic_subscription
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v150_1_17.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_account
- aws_iam_role
Parameters: []
PrimaryTable: aws_iam_role
PrimaryTable: aws_account
QueryToExecute: |
WITH support_role_count AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v150_1_8.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_account
- aws_iam_account_password_policy
Parameters: []
PrimaryTable: aws_iam_account_password_policy
PrimaryTable: aws_account
QueryToExecute: |
SELECT
'arn:' || a.partition || ':::' || a.account_id AS resource,
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v150_1_9.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_account
- aws_iam_account_password_policy
Parameters: []
PrimaryTable: aws_iam_account_password_policy
PrimaryTable: aws_account
QueryToExecute: |
SELECT
'arn:' || a.partition || ':::' || a.account_id AS resource,
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v150_4_10.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ Query:
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_cis_v150_4_5.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,13 +5,13 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_account
- aws_cloudtrail_trail
- aws_cloudwatch_alarm
- aws_sns_topic_subscription
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v200_4_3.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ Query:
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_cis_v300_1_17.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_account
- aws_iam_role
Parameters: []
PrimaryTable: aws_iam_role
PrimaryTable: aws_account
QueryToExecute: |
WITH support_role_count AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_cis_v300_4_12.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,13 +5,13 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_account
- aws_cloudtrail_trail
- aws_cloudwatch_alarm
- aws_sns_topic_subscription
- aws_cloudwatch_log_metric_filter
- aws_account
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH trails AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_cloudwatch_cross_account_sharing.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_iam_role
- aws_account
- aws_iam_role
Parameters: []
PrimaryTable: aws_iam_role
PrimaryTable: aws_account
QueryToExecute: |
WITH iam_role_cross_account_sharing_count AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/aws/aws_dlm_ebs_snapshot_lifecycle_policy_enabled.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,7 +8,7 @@ Query:
- aws_ebs_snapshot
- aws_dlm_lifecycle_policy
Parameters: []
PrimaryTable: aws_dlm_lifecycle_policy
PrimaryTable: aws_ebs_snapshot
QueryToExecute: |
WITH region_with_ebs_snapshots AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_foundational_security_cloudtrail_1.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_cloudtrail_trail
- aws_account
- aws_cloudtrail_trail
Parameters: []
PrimaryTable: aws_cloudtrail_trail
PrimaryTable: aws_account
QueryToExecute: |
WITH multi_region_trails AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/aws/aws_vpc_in_more_than_one_region.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- aws_vpc
- aws_account
- aws_vpc
Parameters: []
PrimaryTable: aws_vpc
PrimaryTable: aws_account
QueryToExecute: |
WITH vpc_region_list AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/azure/azure_cis_v130_2_13.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_security_center_contact
- azure_subscription
- azure_security_center_contact
Parameters: []
PrimaryTable: azure_security_center_contact
PrimaryTable: azure_subscription
QueryToExecute: |
WITH contact_info AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/azure/azure_cis_v140_2_13.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_security_center_contact
- azure_subscription
- azure_security_center_contact
Parameters: []
PrimaryTable: azure_security_center_contact
PrimaryTable: azure_subscription
QueryToExecute: |
WITH contact_info AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/azure/azure_cis_v150_2_3_2.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_security_center_contact
- azure_subscription
- azure_security_center_contact
Parameters: []
PrimaryTable: azure_security_center_contact
PrimaryTable: azure_subscription
QueryToExecute: |
WITH contact_info AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v200_2_1_14.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_policy_assignment
- azure_subscription
- azure_policy_assignment
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v200_5_2_7.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v200_5_2_8.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v200_5_2_9.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/azure/azure_cis_v200_5_3_1.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_application_insight
- azure_subscription
- azure_application_insight
Parameters: []
PrimaryTable: azure_application_insight
PrimaryTable: azure_subscription
QueryToExecute: |
WITH application_insights AS (
SELECT
Expand Down
4 changes: 2 additions & 2 deletions compliance/controls/azure/azure_cis_v200_7_1.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,10 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_bastion_host
- azure_subscription
- azure_bastion_host
Parameters: []
PrimaryTable: azure_bastion_host
PrimaryTable: azure_subscription
QueryToExecute: |
WITH bastion_hosts AS (
SELECT
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_2_1_18.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_security_center_contact
- azure_subscription
- azure_security_center_contact
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_10.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_2.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_3.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_4.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_5.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_6.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_7.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_2_8.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_log_alert
- azure_subscription
- azure_log_alert
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_5_3_1.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_application_insight
- azure_subscription
- azure_application_insight
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
2 changes: 1 addition & 1 deletion compliance/controls/azure/azure_cis_v210_7_1.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,8 +5,8 @@ IntegrationType:
Query:
Engine: CloudQL-v0.0.1
ListOfTables:
- azure_bastion_host
- azure_subscription
- azure_bastion_host
Parameters: []
PrimaryTable: azure_subscription
QueryToExecute: |
Expand Down
Loading