mapping macie2 (#244)

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/macie2_account
https://github.com/aws/aws-sdk-go/blob/main/models/apis/macie2/2020-01-01/api-2.json

Author: PatMyron

docs/rules/README.md

@@ -727,6 +727,11 @@ These rules enforce best practices and naming conventions:
 |aws_lightsail_static_ip_attachment_invalid_instance_name|✔|
 |aws_lightsail_static_ip_attachment_invalid_static_ip_name|✔|
 |aws_lightsail_static_ip_invalid_name|✔|
+|aws_macie2_account_invalid_finding_publishing_frequency|✔|
+|aws_macie2_account_invalid_status|✔|
+|aws_macie2_classification_job_invalid_job_status|✔|
+|aws_macie2_classification_job_invalid_job_type|✔|
+|aws_macie2_findings_filter_invalid_action|✔|
 |aws_macie_member_account_association_invalid_member_account_id|✔|
 |aws_macie_s3_bucket_association_invalid_bucket_name|✔|
 |aws_macie_s3_bucket_association_invalid_member_account_id|✔|

rules/models/aws_macie2_account_invalid_finding_publishing_frequency.go

@@ -0,0 +1,78 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMacie2AccountInvalidFindingPublishingFrequencyRule checks the pattern is valid
+type AwsMacie2AccountInvalidFindingPublishingFrequencyRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsMacie2AccountInvalidFindingPublishingFrequencyRule returns new rule with default attributes
+func NewAwsMacie2AccountInvalidFindingPublishingFrequencyRule() *AwsMacie2AccountInvalidFindingPublishingFrequencyRule {
+	return &AwsMacie2AccountInvalidFindingPublishingFrequencyRule{
+		resourceType:  "aws_macie2_account",
+		attributeName: "finding_publishing_frequency",
+		enum: []string{
+			"FIFTEEN_MINUTES",
+			"ONE_HOUR",
+			"SIX_HOURS",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMacie2AccountInvalidFindingPublishingFrequencyRule) Name() string {
+	return "aws_macie2_account_invalid_finding_publishing_frequency"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMacie2AccountInvalidFindingPublishingFrequencyRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMacie2AccountInvalidFindingPublishingFrequencyRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMacie2AccountInvalidFindingPublishingFrequencyRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMacie2AccountInvalidFindingPublishingFrequencyRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as finding_publishing_frequency`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_macie2_account_invalid_status.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMacie2AccountInvalidStatusRule checks the pattern is valid
+type AwsMacie2AccountInvalidStatusRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsMacie2AccountInvalidStatusRule returns new rule with default attributes
+func NewAwsMacie2AccountInvalidStatusRule() *AwsMacie2AccountInvalidStatusRule {
+	return &AwsMacie2AccountInvalidStatusRule{
+		resourceType:  "aws_macie2_account",
+		attributeName: "status",
+		enum: []string{
+			"PAUSED",
+			"ENABLED",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMacie2AccountInvalidStatusRule) Name() string {
+	return "aws_macie2_account_invalid_status"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMacie2AccountInvalidStatusRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMacie2AccountInvalidStatusRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMacie2AccountInvalidStatusRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMacie2AccountInvalidStatusRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as status`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_macie2_classification_job_invalid_job_status.go

@@ -0,0 +1,81 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMacie2ClassificationJobInvalidJobStatusRule checks the pattern is valid
+type AwsMacie2ClassificationJobInvalidJobStatusRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsMacie2ClassificationJobInvalidJobStatusRule returns new rule with default attributes
+func NewAwsMacie2ClassificationJobInvalidJobStatusRule() *AwsMacie2ClassificationJobInvalidJobStatusRule {
+	return &AwsMacie2ClassificationJobInvalidJobStatusRule{
+		resourceType:  "aws_macie2_classification_job",
+		attributeName: "job_status",
+		enum: []string{
+			"RUNNING",
+			"PAUSED",
+			"CANCELLED",
+			"COMPLETE",
+			"IDLE",
+			"USER_PAUSED",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMacie2ClassificationJobInvalidJobStatusRule) Name() string {
+	return "aws_macie2_classification_job_invalid_job_status"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMacie2ClassificationJobInvalidJobStatusRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMacie2ClassificationJobInvalidJobStatusRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMacie2ClassificationJobInvalidJobStatusRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMacie2ClassificationJobInvalidJobStatusRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as job_status`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_macie2_classification_job_invalid_job_type.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMacie2ClassificationJobInvalidJobTypeRule checks the pattern is valid
+type AwsMacie2ClassificationJobInvalidJobTypeRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsMacie2ClassificationJobInvalidJobTypeRule returns new rule with default attributes
+func NewAwsMacie2ClassificationJobInvalidJobTypeRule() *AwsMacie2ClassificationJobInvalidJobTypeRule {
+	return &AwsMacie2ClassificationJobInvalidJobTypeRule{
+		resourceType:  "aws_macie2_classification_job",
+		attributeName: "job_type",
+		enum: []string{
+			"ONE_TIME",
+			"SCHEDULED",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMacie2ClassificationJobInvalidJobTypeRule) Name() string {
+	return "aws_macie2_classification_job_invalid_job_type"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMacie2ClassificationJobInvalidJobTypeRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMacie2ClassificationJobInvalidJobTypeRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMacie2ClassificationJobInvalidJobTypeRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMacie2ClassificationJobInvalidJobTypeRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as job_type`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}