gitea-mirror/trivy
1
0
Fork 0
mirror of https://github.com/aquasecurity/trivy.git synced 2025-12-12 15:50:15 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
48dfedeb1e13d1654e2b9239f403d847af353e2e
trivy/pkg/iac/adapters/terraform/azure/cosmosdb/adapt.go
yagreut 48dfedeb1e feat(misconf): Update Azure Database schema (#9811) 
Signed-off-by: nikpivkin <nikita.pivkin@smartforce.io>
Co-authored-by: nikpivkin <nikita.pivkin@smartforce.io>
2025-12-05 05:28:25 +00:00

47 lines
1.3 KiB
Go
Raw Blame History

package cosmosdb
import (
"github.com/zclconf/go-cty/cty"
"github.com/aquasecurity/trivy/pkg/iac/providers/azure/cosmosdb"
"github.com/aquasecurity/trivy/pkg/iac/terraform"
iacTypes "github.com/aquasecurity/trivy/pkg/iac/types"
)
func Adapt(modules terraform.Modules) cosmosdb.CosmosDB {
return cosmosdb.CosmosDB{
Accounts: adaptCosmosDBAccounts(modules),
}
}
func adaptCosmosDBAccounts(modules terraform.Modules) []cosmosdb.Account {
var cosmosDBAccounts []cosmosdb.Account
for _, module := range modules {
for _, resource := range module.GetResourcesByType("azurerm_cosmosdb_account") {
cosmosDBAccounts = append(cosmosDBAccounts, adaptCosmosDBAccount(resource))
}
}
return cosmosDBAccounts
}
func adaptCosmosDBAccount(resource *terraform.Block) cosmosdb.Account {
// ip_range_filter is a list of strings in Terraform
ipRangeFilterAttr := resource.GetAttribute("ip_range_filter")
var ipRangeFilterVal []iacTypes.StringValue
if ipRangeFilterAttr.IsNil() {
ipRangeFilterVal = []iacTypes.StringValue{}
} else {
switch ipRangeFilterAttr.Type() {
case cty.String:
ipRangeFilterVal = []iacTypes.StringValue{ipRangeFilterAttr.AsStringValueOrDefault("", resource)}
default:
ipRangeFilterVal = ipRangeFilterAttr.AsStringValues()
}
}
return cosmosdb.Account{
Metadata: resource.GetMetadata(),
IPRangeFilter: ipRangeFilterVal,
}
}
Reference in New Issue View Git Blame Copy Permalink