Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
AWS::Config::ConfigRule.Description length not validated
See original GitHub issuecfn-lint version: (cfn-lint --version)
~ cfn-lint --version
cfn-lint 0.32.1
Description of issue.
validation error detected: Value 'Checks .... ' at 'configRule.description' failed to satisfy
constraint: Member must have length less than or equal to 256 (Service: AmazonConfig; Status Code: 400; Error Code: ValidationException; Request ID: xxxx; Proxy: null).
Please provide as much information as possible:
- Template linting issues:
- Please provide a CloudFormation sample that generated the issue.
S3BucketPublicWriteProhibitedConfigRule:
Type: "AWS::Config::ConfigRule"
Properties:
ConfigRuleName: InfoSecS3BucketPublicWriteProhibited
Description: |
Checks that your Amazon S3 buckets do not allow public write access.
The rule checks the Block Public Access settings, the bucket policy,
and the bucket access control list (ACL). (CIS, NIST-PR.AC-3,
NIST-PR.AC-5, NIST-PR.DS-5, NIST-PR.PT-3, PCI-1.2.1, PCI-1.3, PCI-7.2)
MaximumExecutionFrequency: Twelve_Hours
Scope:
ComplianceResourceTypes:
- "AWS::S3::Bucket"
Source:
Owner: AWS
SourceIdentifier: S3_BUCKET_PUBLIC_WRITE_PROHIBITED
- Feature request:
- Please provide argumentation about the missing feature. Context is key!
- I believe other things are validated for length, and validating description would be awesome.
I have since removed my over-descriptive descriptions 😿
Issue Analytics
- State:
- Created 3 years ago
- Comments:5 (5 by maintainers)
Top Results From Across the Web
ConfigRule - AWS Config
The description that you provide for the AWS Config rule. Type: String. Length Constraints: Minimum length of 0. Maximum length of 256. Required:...
Read more >AWS::Config::ConfigRule - AWS CloudFormation
To change the frequency, specify a valid value for the MaximumExecutionFrequency parameter. Required: No. Type: String. Allowed values: One_Hour | Six_Hours | ...
Read more >AWS::Config::ConfigRule Source - AWS CloudFormation
Provides the runtime system, policy definition, and whether debug logging is enabled. Required when owner is set to CUSTOM_POLICY . Required: No. Type: ......
Read more >Components of an AWS Config Rule
AWS Config rules evaluate the configuration settings of your AWS resources. This page discusses the structure of rule definitions and best practices for...
Read more >PutOrganizationConfigRule - AWS Config - AWS Documentation
Adds or updates an AWS Config rule for your entire organization to evaluate if your AWS resources comply with your desired configurations.
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
@PatMyron No worries, I should have dug in a bit more. Opening up a PR so we can work through this.
@PatMyron wonderful, thank you for the link. I will look at contributing this after work.