feat(CG-1290): create boilerplate for aws cis 1.5.0

Author: james-zhou-inspire11

src/aws/cis-1.5.0/.npmignore

@@ -0,0 +1,9 @@
+rules/
+tests/
+*.bak
+.*
+jest.config.js
+tsconfig.json
+**/*.ts
+!dist/**/*.d.ts
+!dist/**/*.js

src/aws/cis-1.5.0/.releaserc.yml

@@ -0,0 +1,39 @@
+---
+branches:
+  - name: alpha
+    channel: alpha
+    prerelease: true
+  - name: beta
+    channel: beta
+    prerelease: true
+  - name: main
+
+dryRun: false
+
+plugins:
+  - "@semantic-release/commit-analyzer"
+  - "@semantic-release/release-notes-generator"
+  - - "@semantic-release/changelog"
+    - changelogFile: CHANGELOG.md
+  - - "@semantic-release/git"
+    - assets:
+        - CHANGELOG.md
+        - package.json
+  - - "semantic-release-pnpm"
+    - npmPublish: true
+  - "@semantic-release/github"
+verifyConditions:
+  - "@semantic-release/changelog"
+  - "@semantic-release/github"
+  - "semantic-release-pnpm"
+prepare:
+  - "@semantic-release/changelog"
+  - "semantic-release-pnpm"
+  - - "@semantic-release/git"
+    - message: "chore(release): @cloudgraph/policy-pack-aws-cis-1.5.0 ${nextRelease.version} \n\n${nextRelease.notes}"
+publish:
+  - "@semantic-release/github"
+  - "semantic-release-pnpm"
+success: false
+fail: false
+tagFormat: "@cloudgraph/policy-pack-aws-cis-1.5.0@${version}"

src/aws/cis-1.5.0/CHANGELOG.md

@@ -0,0 +1,5 @@
+### Bug Fixes
+
+
+### Features
+

src/aws/cis-1.5.0/README.md

@@ -0,0 +1,60 @@
+# CIS Amazon Web Services Foundations 1.5.0
+
+Policy Pack based on the [AWS Foundations 1.5.0](https://docs.aws.amazon.com/audit-manager/latest/userguide/CIS-1-5.html) benchmark provided by the [Center for Internet Security (CIS)](https://www.cisecurity.org/benchmark/amazon_web_services/)
+
+## First Steps
+
+1. Install [Cloud Graph CLI](https://docs.cloudgraph.dev/quick-start).
+2. Set up the [AWS Provider](https://www.npmjs.com/package/@cloudgraph/cg-provider-aws) for CG with the `cg init aws` command.
+3. Add Policy Pack for CIS Amazon Web Services Foundations benchmark using `cg policy add aws-cis-1.5.0` command.
+4. Execute the ruleset using the scan command `cg scan aws`.
+5. Query the findings using the different options:
+
+   5a. Querying findings by provider:
+
+   ```graphql
+   query {
+     queryawsFindings {
+       CISFindings {
+         id
+         resourceId
+         result
+       }
+     }
+   }
+   ```
+
+   5b. Querying findings by specific benchmark:
+
+   ```graphql
+   query {
+     queryawsCISFindings {
+       id
+       resourceId
+       result
+     }
+   }
+   ```
+
+   5c. Querying findings by resource:
+
+   ```graphql
+   query {
+     queryawsIamUser {
+       id
+       arn
+       accountId
+       CISFindings {
+         id
+         resourceId
+         result
+       }
+     }
+   }
+   ```
+
+## Available Ruleset
+
+| Rule          | Description                                                                                                                 |
+| ------------- | --------------------------------------------------------------------------------------------------------------------------- |
+

src/aws/cis-1.5.0/index.ts

@@ -0,0 +1,8 @@
+import PolicyPacksRules from './rules'
+
+export default {
+  provider: 'aws',
+  entity: 'CIS',
+  rules: PolicyPacksRules,
+  extraFields: ['arn', 'accountId'],
+}

src/aws/cis-1.5.0/jest.config.js

@@ -0,0 +1,7 @@
+/** @type {import('@ts-jest/dist/types').InitialOptionsTsJest} */
+module.exports = {
+  preset: 'ts-jest',
+  testEnvironment: 'node',
+  testMatch: ['<rootDir>/tests/**/*.test.ts'],
+  testPathIgnorePatterns: ['<rootDir>/lib/', '<rootDir>/node_modules/'],
+}

src/aws/cis-1.5.0/package.json

@@ -0,0 +1,63 @@
+{
+  "name": "@cloudgraph/policy-pack-aws-cis-1.5.0",
+  "description": "Policy pack implementing CIS Amazon Web Services Foundations 1.5.0 Benchmark",
+  "version": "0.3.0",
+  "author": "AutoCloud",
+  "license": "MPL-2.0",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/cloudgraphdev/cloudgraph-policy-packs.git",
+    "directory": "src/aws/cis-1.5.0"
+  },
+  "bugs": {
+    "url": "https://github.com/cloudgraphdev/cloudgraph-policy-packs/issues"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "directories": {
+    "test": "tests"
+  },
+  "devDependencies": {
+    "@autocloud/eslint-config": "^0.1.0",
+    "@cloudgraph/sdk": "^0.21.1",
+    "@types/jest": "^27.0.3",
+    "@types/node": "^15.12.4",
+    "@types/pino": "^6.3.11",
+    "@typescript-eslint/eslint-plugin": "^4.28.5",
+    "@typescript-eslint/parser": "^4.28.5",
+    "cpx": "^1.5.0",
+    "cuid": "^2.1.8",
+    "eslint": "^7.25.0",
+    "eslint-config-airbnb-base": "14.2.1",
+    "eslint-config-prettier": "^6.11.0",
+    "eslint-plugin-import": "^2.22.1",
+    "eslint-plugin-prettier": "^3.4.0",
+    "jest": "^27.0.6",
+    "prettier": "^2.4.1",
+    "shx": "^0.3.3",
+    "ts-jest": "^27.0.4",
+    "tslib": "^1",
+    "typescript": "^4.3.5"
+  },
+  "engines": {
+    "node": ">=14.0.0"
+  },
+  "homepage": "https://www.cloudgraph.dev/",
+  "keywords": [
+    "cloudgraph"
+  ],
+  "prettier": {
+    "semi": false,
+    "singleQuote": true
+  },
+  "scripts": {
+    "build": "pnpm prepack",
+    "clean": "rm -rf dist",
+    "lint": "eslint",
+    "prepack": "rm -rf dist && tsc -b",
+    "test": "NODE_ENV=test jest"
+  }
+}

src/aws/cis-1.5.0/rules/index.ts

@@ -0,0 +1,2 @@
+export default [
+]

src/aws/cis-1.5.0/tsconfig.json

@@ -0,0 +1,20 @@
+{
+  "compilerOptions": {
+    "declaration": true,
+    "importHelpers": true,
+    "module": "commonjs",
+    "outDir": "dist",
+    "rootDir": "./",
+    "strict": true,
+    "target": "es2020",
+    "lib": ["esnext.array", "ES2020.Promise"],
+    "allowSyntheticDefaultImports": true,
+    "esModuleInterop": true,
+    "skipLibCheck": true,
+    "forceConsistentCasingInFileNames": true
+  },
+  "include": [
+    "**/*"
+  ],
+  "exclude": ["dist", "./tests"]
+}