go.mondoo.com/cnquery@v0.0.0-20231005093811-59568235f6ea/providers-sdk/v1/inventory/testdata/aws_inventory.yaml

go.mondoo.com/cnquery@v0.0.0-20231005093811-59568235f6ea/providers-sdk/v1/inventory/testdata/aws_inventory.yaml (about)

     1  apiVersion: v1
     2  kind: Inventory
     3  metadata:
     4    name: mondoo-inventory
     5    labels:
     6      environment: production
     7  spec:
     8    credential_query: "{ user: 'ec2-user', type: 'private_key', secret_id: 'arn:aws:secretsmanager:us-east-1:921877552404:secret:ec2-secret-v2-3G3DVF', secret_encoding: 'binary' }"
     9    assets:
    10      # option 1 use aws scan in combination with a secret
    11      - name: aws
    12        connections:
    13          - backend: aws
    14            discover:
    15              targets:
    16              - all
    17      # option 2: use an instance directly with a secret
    18  #    - name: i-01a46ade2364692a0
    19  #      connections:
    20  #      - backend: ssh
    21  #        host: 54.145.57.6
    22  #        credentials:
    23  #          - secret_id: 'arn:aws:secretsmanager:us-east-1:921877552404:secret:ec2-secret-v2-3G3DVF'
    24  #            type: private_key
    25  #            user: ec2-user
    26  #            # secret_encoding: binary (not required since binary is the default)
    27  
    28      # option 3: instance with credential query
    29  #    - name: i-01a46ade2364692a0
    30  #      connections:
    31  #        - backend: ssh
    32  #          host: 54.145.57.6
    33  
    34    vault:
    35      name: aws-921877552404
    36      type: aws-secrets-manager