Optional
configThis policy's configuration schema.
For example:
{
configSchema: {
properties: {
expiration: {
type: "integer",
default: 14,
},
identifier: {
type: "string",
},
},
},
validateResource: (args, reportViolation) => {
const { expiration, identifier } = args.getConfig<{ expiration: number; identifier?: string; }>();
// ...
}),
}
A brief description of the policy rule. e.g., "S3 buckets should have default encryption enabled."
Optional
enforcementIndicates what to do on policy violation, e.g., block deployment but allow override with proper permissions.
An ID for the policy. Must be unique within the current policy set.
A callback function that validates if a stack violates a policy.
Generated using TypeDoc
StackValidationPolicy is a policy that validates a stack.