-
Notifications
You must be signed in to change notification settings - Fork 12
Expand file tree
/
Copy pathKeyVault.qll
More file actions
39 lines (30 loc) · 1.09 KB
/
KeyVault.qll
File metadata and controls
39 lines (30 loc) · 1.09 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
private import codeql.hcl.AST
private import codeql.hcl.Resources
private import codeql.hcl.Constants
private import codeql.hcl.Terraform::Terraform
module AzureKeyVault {
private import codeql.hcl.providers.Azure
/**
* Azure Key Vault.
*/
class KeyVault extends Azure::AzureResource {
KeyVault() { this.getResourceType() = "azurerm_key_vault" }
override string toString() { result = "KeyVault " + this.getName() }
}
/**
* Azure Key Vault Key.
*/
class KeyVaultKey extends Azure::AzureResource {
KeyVaultKey() { this.getResourceType() = "azurerm_key_vault_key" }
override string toString() { result = "KeyVaultKey " + this.getName() }
string getKeyType() { result = this.getAttribute("key_type").(StringLiteral).getValue() }
int getKeySize() { result = this.getAttribute("key_size").(NumericLiteral).getInt() }
// string getKeyOpts() { result = this.getAttribute("key_opts") }
}
/**
* Azure Key Vault Secret.
*/
class KeyVaultSecret extends Azure::AzureResource {
KeyVaultSecret() { this.getResourceType() = "azurerm_key_vault_secret" }
}
}