AWS cfn-guard documentation change
Summary
Reformatted code example with improved comments and indentation
Security assessment
Code formatting changes without security implications or security feature documentation
Diff
diff --git a/cfn-guard/latest/ug/query-and-filtering.md b/cfn-guard/latest/ug/query-and-filtering.md index 6f810c7b4..7f39b34ce 100644 --- a//cfn-guard/latest/ug/query-and-filtering.md +++ b//cfn-guard/latest/ug/query-and-filtering.md @@ -51 +51,13 @@ Tags: `[{"Key": "Stage", "Value": "PROD"}, {"Key": "App", "Value": "MyService"}] - let all_resources = Resource.* # query let iam_resources = %resources[ Type == /IAM/ ] # filter from query results let managed_policies = %iam_resources[ Type == /ManagedPolicy/ ] # further refinements %managed_policies { # traversing each value # do something with each } + # Query all resources + let all_resources = Resource.* + + # Filter IAM resources from query results + let iam_resources = %resources[ Type == /IAM/ ] + + # Further refine to get managed policies + let managed_policies = %iam_resources[ Type == /ManagedPolicy/ ] + + # Traverse each managed policy + %managed_policies { + # Do something with each policy + }