To contribute a fix for this issue, leave a comment (and link to your pull request, if you've opened one already)
Issue details
As a developer, I want to apply AWS Guard policies to my stack that creates AWS ACM Certificates, to ensure my policies do not expire without me knowing.
Policy pack attempts to retrieve the ACM Certificate from the specified AWS region, however, Certificate does not exist and SDK call fails.
Steps to reproduce
Create a new Pulumi Typescript project. pulumi new aws-typescript
mkdir awsguard && cd awsguard
pulumi policy new awsguard-typescript
Add: new AwsGuard({ all: "advisory" }); to the index.ts file in the awsguard directory
In your main program's index.ts add:
new aws.acm.Certificate("cert", {
domainName: "some-domain.com",
validationMethod: "DNS"
});
pulumi preview --policy-pack awsguard
Expected: ACM Certificate is validated by AWSGuard policy pack and is successfully created.
Actual: Stack fails and ACM Certificate cannot be created.
Hello!
Issue details
As a developer, I want to apply AWS Guard policies to my stack that creates AWS ACM Certificates, to ensure my policies do not expire without me knowing.
Policy pack attempts to retrieve the ACM Certificate from the specified AWS region, however, Certificate does not exist and SDK call fails.
Steps to reproduce
pulumi new aws-typescriptmkdir awsguard && cd awsguardpulumi policy new awsguard-typescriptnew AwsGuard({ all: "advisory" });to the index.ts file in the awsguard directorypulumi preview --policy-pack awsguardExpected: ACM Certificate is validated by AWSGuard policy pack and is successfully created. Actual: Stack fails and ACM Certificate cannot be created.