This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies. For details on cookie usage on our site, read our Privacy Policy
Trying to Join 2 API: aws-ec2-describe-security-groups & aws-vpc-transit-gateway-attachment 1. List of Security Groups that allow everything: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; 2. Extracting List of VPCs that dont have a particular Gateway AttachmentID: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId does not contain "XXXXXXXXX" as Y; final Join: config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-ec2-describe-security-groups' AND json.rule = isShared is false and (ipPermissions[?any((ipProtocol equals tcp or ipProtocol equals icmp or ipProtocol equals icmpv6 or ipProtocol equals udp) and (ipRanges[*] contains 0.0.0.0/0 or ipv6Ranges[*].cidrIpv6 contains ::/0))] exists) as X; config from cloud.resource where cloud.type = 'aws' AND api.name= 'aws-vpc-transit-gateway-attachment' AND json.rule = transitGatewayId equals "XXXX" as Y; filter ' $.X.vpcId == $.Y.resourceId'; show X;
... View more