search

aws-cloudformation / cloudformation-guard

Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
Apache License 2.0
1.29k stars 180 forks source link

[Enhancement] Support for sourcing rules from external locations such as GitHub or S3. #192

Open dannysteenman opened 3 years ago

dannysteenman commented 3 years ago

Is your feature request related to a problem? Please describe.

As you mentioned in the readme:

Sourcing of rules from external locations such as GitHub Release and S3 bucket. If you want this feature natively in Guard, please raise an issue or +1 an existing issue.

I didn't see an existing issue yet, so I'd thought I'd raise one...

Describe the solution you'd like

The goal is to create a GitHub action for cfn-guard and integrate it into our projects. But we don't want to copy/paste the cfn-guard rules to each project. Therefore it would be nice to import rules from an external location such as GitHub or S3 with a [flag] on the command line.

Describe alternatives you've considered

No alternatives are available.

Additional context

Add any other context or screenshots about the feature request here.

PatMyron commented 3 years ago

https://github.com/aws-cloudformation/cloudformation-guard/issues/24

benbridts commented 2 years ago

I wrote a (still very much in alpha-stages) tool that might help: https://github.com/benbridts/cfn-guard-wrapper

soubhik commented 1 year ago

+1