mapping aws_ecrpublic (#282)

PatMyron · web-flow · commit c4b9bf195233 · 2021-12-31T14:14:24.000-08:00
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecrpublic_repository https://github.com/aws/aws-sdk-go/blob/main/models/apis/ecr-public/2020-10-30/api-2.json
diff --git a/docs/rules/README.md b/docs/rules/README.md
@@ -552,6 +552,9 @@ These rules enforce best practices and naming conventions:
 |aws_ecr_repository_invalid_name|✔|
 |aws_ecr_repository_policy_invalid_policy|✔|
 |aws_ecr_repository_policy_invalid_repository|✔|
+|aws_ecrpublic_repository_invalid_repository_name|✔|
+|aws_ecrpublic_repository_policy_invalid_policy|✔|
+|aws_ecrpublic_repository_policy_invalid_repository_name|✔|
 |aws_ecs_account_setting_default_invalid_name|✔|
 |aws_ecs_service_invalid_launch_type|✔|
 |aws_ecs_service_invalid_propagate_tags|✔|
diff --git a/rules/models/aws_ecrpublic_repository_invalid_repository_name.go b/rules/models/aws_ecrpublic_repository_invalid_repository_name.go
@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsEcrpublicRepositoryInvalidRepositoryNameRule checks the pattern is valid
+type AwsEcrpublicRepositoryInvalidRepositoryNameRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsEcrpublicRepositoryInvalidRepositoryNameRule returns new rule with default attributes
+func NewAwsEcrpublicRepositoryInvalidRepositoryNameRule() *AwsEcrpublicRepositoryInvalidRepositoryNameRule {
+	return &AwsEcrpublicRepositoryInvalidRepositoryNameRule{
+		resourceType:  "aws_ecrpublic_repository",
+		attributeName: "repository_name",
+		max:           205,
+		min:           2,
+		pattern:       regexp.MustCompile(`^(?:[a-z0-9]+(?:[._-][a-z0-9]+)*/)*[a-z0-9]+(?:[._-][a-z0-9]+)*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsEcrpublicRepositoryInvalidRepositoryNameRule) Name() string {
+	return "aws_ecrpublic_repository_invalid_repository_name"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsEcrpublicRepositoryInvalidRepositoryNameRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsEcrpublicRepositoryInvalidRepositoryNameRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsEcrpublicRepositoryInvalidRepositoryNameRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsEcrpublicRepositoryInvalidRepositoryNameRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"repository_name must be 205 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"repository_name must be 2 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^(?:[a-z0-9]+(?:[._-][a-z0-9]+)*/)*[a-z0-9]+(?:[._-][a-z0-9]+)*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_ecrpublic_repository_policy_invalid_policy.go b/rules/models/aws_ecrpublic_repository_policy_invalid_policy.go
@@ -0,0 +1,67 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsEcrpublicRepositoryPolicyInvalidPolicyRule checks the pattern is valid
+type AwsEcrpublicRepositoryPolicyInvalidPolicyRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+}
+
+// NewAwsEcrpublicRepositoryPolicyInvalidPolicyRule returns new rule with default attributes
+func NewAwsEcrpublicRepositoryPolicyInvalidPolicyRule() *AwsEcrpublicRepositoryPolicyInvalidPolicyRule {
+	return &AwsEcrpublicRepositoryPolicyInvalidPolicyRule{
+		resourceType:  "aws_ecrpublic_repository_policy",
+		attributeName: "policy",
+		max:           10240,
+	}
+}
+
+// Name returns the rule name
+func (r *AwsEcrpublicRepositoryPolicyInvalidPolicyRule) Name() string {
+	return "aws_ecrpublic_repository_policy_invalid_policy"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsEcrpublicRepositoryPolicyInvalidPolicyRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsEcrpublicRepositoryPolicyInvalidPolicyRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsEcrpublicRepositoryPolicyInvalidPolicyRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsEcrpublicRepositoryPolicyInvalidPolicyRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"policy must be 10240 characters or less",
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_ecrpublic_repository_policy_invalid_repository_name.go b/rules/models/aws_ecrpublic_repository_policy_invalid_repository_name.go
@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule checks the pattern is valid
+type AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule returns new rule with default attributes
+func NewAwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule() *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule {
+	return &AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule{
+		resourceType:  "aws_ecrpublic_repository_policy",
+		attributeName: "repository_name",
+		max:           205,
+		min:           2,
+		pattern:       regexp.MustCompile(`^(?:[a-z0-9]+(?:[._-][a-z0-9]+)*/)*[a-z0-9]+(?:[._-][a-z0-9]+)*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule) Name() string {
+	return "aws_ecrpublic_repository_policy_invalid_repository_name"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"repository_name must be 205 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"repository_name must be 2 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^(?:[a-z0-9]+(?:[._-][a-z0-9]+)*/)*[a-z0-9]+(?:[._-][a-z0-9]+)*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/mappings/ecr-public.hcl b/rules/models/mappings/ecr-public.hcl
@@ -0,0 +1,11 @@
+import = "aws-sdk-go/models/apis/ecr-public/2020-10-30/api-2.json"
+
+mapping "aws_ecrpublic_repository" {
+  repository_name = RepositoryName
+  catalog_data = RepositoryCatalogDataInput
+}
+
+mapping "aws_ecrpublic_repository_policy" {
+  repository_name = RepositoryName
+  policy = RepositoryPolicyText
+}
diff --git a/rules/models/provider.go b/rules/models/provider.go
@@ -480,6 +480,9 @@ var Rules = []tflint.Rule{
 	NewAwsEcrRepositoryInvalidNameRule(),
 	NewAwsEcrRepositoryPolicyInvalidPolicyRule(),
 	NewAwsEcrRepositoryPolicyInvalidRepositoryRule(),
+	NewAwsEcrpublicRepositoryInvalidRepositoryNameRule(),
+	NewAwsEcrpublicRepositoryPolicyInvalidPolicyRule(),
+	NewAwsEcrpublicRepositoryPolicyInvalidRepositoryNameRule(),
 	NewAwsEcsAccountSettingDefaultInvalidNameRule(),
 	NewAwsEcsServiceInvalidLaunchTypeRule(),
 	NewAwsEcsServiceInvalidPropagateTagsRule(),
