Skip to content

fix: Add region criteria to inner join #10246

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
erezrokah merged 2 commits into from
Apr 23, 2023
Merged

fix: Add region criteria to inner join #10246

erezrokah merged 2 commits into from
Apr 23, 2023

Conversation

@paul-e-allen
Copy link
Contributor

@paul-e-allen paul-e-allen commented Apr 20, 2023
edited
Loading

Summary

This PR addresses inadequate criteria in the inner join of the policy query that checks whether AWS CloudTrail is enabled in all regions, enabled_in_all_regions.sql

Specifically, the fix handles the situation of a single global CloudTrail in a target AWS account by adding region criteria to the inner join. It also corrects the results when an Organization-wide CloudTrail is in place, by adding account_id criteria to the inner join.

This bug is identified in #10245.

@cq-bot cq-bot added the aws label Apr 20, 2023
@paul-e-allen paul-e-allen changed the title fix: add region criteria to inner join fix: Add region criteria to inner join Apr 20, 2023
@bbernays bbernays added the automerge Automatically merge once required checks pass label Apr 21, 2023
@bbernays bbernays linked an issue Apr 21, 2023 that may be closed by this pull request
bug: improper join in CloudTrail query 'enabled_in_all_regions' #10245
Closed
2 tasks
hermanschaaf
hermanschaaf approved these changes Apr 21, 2023
View reviewed changes
Copy link
Member

@hermanschaaf hermanschaaf left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the fix @paul-e-allen!

@erezrokah erezrokah merged commit c9fd369 into cloudquery:main Apr 23, 2023
@cq-bot cq-bot mentioned this pull request Apr 23, 2023
Merged
kodiakhq bot pushed a commit that referenced this pull request Apr 25, 2023
@cq-bot
chore(main): Release plugins-source-aws v17.0.0 (#10237)
24083a0 
🤖 I have created a release *beep* *boop*
---


## [17.0.0](plugins-source-aws-v16.3.0...plugins-source-aws-v17.0.0) (2023-04-25)


### ⚠ BREAKING CHANGES

* **aws:** Move EC2 EBS Snapshot `attributes` column to standalone table ([#10247](#10247))
* **aws-resources:** Query issue on `aws_cloudwatchlogs_log_group_data_protection_policies` ([#10243](#10243))
* **aws:** Fix Primary Key for `aws_directconnect_gateways` ([#10233](#10233))

### Features

* **aws-services:** Support newly added regions ([#10289](#10289)) ([dd6c034](dd6c034))
* **aws:** Store Spec in Client ([#10286](#10286)) ([2561d5c](2561d5c))


### Bug Fixes

* **aws-docs:** Policy docs should include tables used in views ([#10250](#10250)) ([08c4d91](08c4d91))
* **aws-resources:** Query issue on `aws_cloudwatchlogs_log_group_data_protection_policies` ([#10243](#10243)) ([4e9bb39](4e9bb39)), closes [#10216](#10216)
* **aws:** Fix Primary Key for `aws_directconnect_gateways` ([#10233](#10233)) ([fc9094f](fc9094f))
* **aws:** Move EC2 EBS Snapshot `attributes` column to standalone table ([#10247](#10247)) ([bdb421b](bdb421b))
* **aws:** Remove Resource Specific Parallelization For S3 to use only the SDK parallelization  ([#10255](#10255)) ([07c7edb](07c7edb))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/feature/s3/manager to v1.11.63 ([#10267](#10267)) ([7a8a4c7](7a8a4c7))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/service/amp to v1.16.8 ([#10268](#10268)) ([d4ec528](d4ec528))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/service/amplify to v1.13.8 ([#10269](#10269)) ([8d5d163](8d5d163))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/service/apigateway to v1.16.9 ([#10270](#10270)) ([dc8fd93](dc8fd93))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/service/apigatewayv2 to v1.13.9 ([#10271](#10271)) ([e3e3f0a](e3e3f0a))
* **deps:** Update module github.com/aws/aws-sdk-go-v2/service/autoscalingplans to v1.13.8 ([#10272](#10272)) ([cd7bcee](cd7bcee))
* **deps:** Update module github.com/cloudquery/plugin-sdk/v2 to v2.3.8 ([#10213](#10213)) ([f358666](f358666))
* **deps:** Update module github.com/cloudquery/plugin-sdk/v2 to v2.4.0 ([#10278](#10278)) ([a0a713e](a0a713e))
* **policies-cloudtrail:** Add region criteria to inner join ([#10246](#10246)) ([c9fd369](c9fd369))

---
This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@hermanschaaf hermanschaaf hermanschaaf approved these changes

@bbernays bbernays bbernays approved these changes

@yevgenypats yevgenypats Awaiting requested review from yevgenypats

Assignees

No one assigned

Labels

automerge Automatically merge once required checks pass

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

bug: improper join in CloudTrail query 'enabled_in_all_regions'

5 participants

@paul-e-allen @hermanschaaf @bbernays @erezrokah @cq-bot