Skip to main content

aws

Supported Platform

  • aws

Description

AWS Resource

The aws can be used to assess the configuration of AWS accounts. It provides the aws.regions field for returning a list of enabled AWS regions in the account, and the aws.vpcs field which provides a list of VPCs configured within the account.

Fields

IDTYPEDESCRIPTION
vpcs[]aws.vpclist of aws.vpc objects representing all VPCs in the account across all enabled regions
regions[]stringlist of all enabled regions in the account

Examples

List all enabled regions within the AWS account

aws.regions;

List of aws.vpc resources for all VPCs across all enabled regions

aws.vpcs;

List of aws.vpc resources for all VPCs across all enabled regions and the values for specified fields

aws.vpcs {
arn
id
state
isDefault
region
flowLogs
routeTables
}

Ensure VPC flow logging is enabled in all VPCs

aws.vpcs.all(flowLogs.any(status == "ACTIVE"));

References