From fcc2400809596bcc6ed5a40c8d519a2206dbe983 Mon Sep 17 00:00:00 2001 From: James Woolfenden Date: Mon, 9 Jun 2025 08:23:32 +0100 Subject: [PATCH 1/5] partial on gcp compare --- go.mod | 20 +++++ go.sum | 49 ++++++++++++ src/compare.go | 126 +++++++++++++++++++++++++++++- src/compare_test.go | 73 +++++++++++++++++ src/error.go | 2 +- src/testdata/gcp/basic/storage.tf | 20 +++++ 6 files changed, 288 insertions(+), 2 deletions(-) create mode 100644 src/testdata/gcp/basic/storage.tf diff --git a/go.mod b/go.mod index 95e5ee08..c80514be 100644 --- a/go.mod +++ b/go.mod @@ -21,9 +21,14 @@ require ( golang.org/x/exp v0.0.0-20250506013437-ce4c2cf36ca6 golang.org/x/net v0.40.0 golang.org/x/oauth2 v0.30.0 + google.golang.org/api v0.236.0 + ) require ( + cloud.google.com/go/auth v0.16.1 // indirect + cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect + cloud.google.com/go/compute/metadata v0.7.0 // indirect dario.cat/mergo v1.0.2 // indirect github.com/Microsoft/go-winio v0.6.2 // indirect github.com/ProtonMail/go-crypto v1.2.0 // indirect @@ -44,10 +49,17 @@ require ( github.com/cpuguy83/go-md2man/v2 v2.0.7 // indirect github.com/cyphar/filepath-securejoin v0.4.1 // indirect github.com/emirpasic/gods v1.18.1 // indirect + github.com/felixge/httpsnoop v1.0.4 // indirect github.com/go-git/gcfg v1.5.1-0.20230307220236-3a3c6141e376 // indirect github.com/go-git/go-billy/v5 v5.6.2 // indirect + github.com/go-logr/logr v1.4.2 // indirect + github.com/go-logr/stdr v1.2.2 // indirect github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 // indirect github.com/google/go-querystring v1.1.0 // indirect + github.com/google/s2a-go v0.1.9 // indirect + github.com/google/uuid v1.6.0 // indirect + github.com/googleapis/enterprise-certificate-proxy v0.3.6 // indirect + github.com/googleapis/gax-go/v2 v2.14.2 // indirect github.com/hashicorp/go-cleanhttp v0.5.2 // indirect github.com/hashicorp/go-retryablehttp v0.7.7 // indirect github.com/hashicorp/terraform-json v0.25.0 // indirect @@ -63,11 +75,19 @@ require ( github.com/xanzy/ssh-agent v0.3.3 // indirect github.com/xrash/smetrics v0.0.0-20240521201337-686a1a2994c1 // indirect github.com/zclconf/go-cty v1.16.2 // indirect + go.opentelemetry.io/auto/sdk v1.1.0 // indirect + go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.60.0 // indirect + go.opentelemetry.io/otel v1.35.0 // indirect + go.opentelemetry.io/otel/metric v1.35.0 // indirect + go.opentelemetry.io/otel/trace v1.35.0 // indirect golang.org/x/mod v0.24.0 // indirect golang.org/x/sync v0.14.0 // indirect golang.org/x/sys v0.33.0 // indirect golang.org/x/text v0.25.0 // indirect golang.org/x/tools v0.33.0 // indirect + google.golang.org/genproto/googleapis/rpc v0.0.0-20250528174236-200df99c418a // indirect + google.golang.org/grpc v1.72.2 // indirect + google.golang.org/protobuf v1.36.6 // indirect gopkg.in/warnings.v0 v0.1.2 // indirect ) diff --git a/go.sum b/go.sum index 0ebfa77a..0bf08b02 100644 --- a/go.sum +++ b/go.sum @@ -1,3 +1,9 @@ +cloud.google.com/go/auth v0.16.1 h1:XrXauHMd30LhQYVRHLGvJiYeczweKQXZxsTbV9TiguU= +cloud.google.com/go/auth v0.16.1/go.mod h1:1howDHJ5IETh/LwYs3ZxvlkXF48aSqqJUM+5o02dNOI= +cloud.google.com/go/auth/oauth2adapt v0.2.8 h1:keo8NaayQZ6wimpNSmW5OPc283g65QNIiLpZnkHRbnc= +cloud.google.com/go/auth/oauth2adapt v0.2.8/go.mod h1:XQ9y31RkqZCcwJWNSx2Xvric3RrU88hAYYbjDWYDL+c= +cloud.google.com/go/compute/metadata v0.7.0 h1:PBWF+iiAerVNe8UCHxdOt6eHLVc3ydFeOCw78U8ytSU= +cloud.google.com/go/compute/metadata v0.7.0/go.mod h1:j5MvL9PprKL39t166CoB1uVHfQMs4tFQZZcKwksXUjo= dario.cat/mergo v1.0.2 h1:85+piFYR1tMbRrLcDwR18y4UKJ3aH1Tbzi24VRW1TK8= dario.cat/mergo v1.0.2/go.mod h1:E/hbnu0NxMFBjpMIE34DRGLWqDy0g5FuKDhCb31ngxA= github.com/JamesWoolfenden/arn v0.2.5 h1:5QzdBn28X0znoefzpdtD1iWKA2OlJ1hRH12jA5VomuM= @@ -61,6 +67,8 @@ github.com/emirpasic/gods v1.18.1 h1:FXtiHYKDGKCW2KzwZKx0iC0PQmdlorYgdFG9jPXJ1Bc github.com/emirpasic/gods v1.18.1/go.mod h1:8tpGGwCnJ5H4r6BWwaV6OrWmMoPhUl5jm/FMNAnJvWQ= github.com/fatih/color v1.16.0 h1:zmkK9Ngbjj+K0yRhTVONQh1p/HknKYSlNT+vZCzyokM= github.com/fatih/color v1.16.0/go.mod h1:fL2Sau1YI5c0pdGEVCbKQbLXB6edEj1ZgiY4NijnWvE= +github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg= +github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U= github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo= github.com/fsnotify/fsnotify v1.4.9 h1:hsms1Qyu0jgnwNXIxa+/V/PDsU6CfLf6CNO8H7IWoS4= github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ= @@ -74,6 +82,11 @@ github.com/go-git/go-git-fixtures/v4 v4.3.2-0.20231010084843-55a94097c399 h1:eMj github.com/go-git/go-git-fixtures/v4 v4.3.2-0.20231010084843-55a94097c399/go.mod h1:1OCfN199q1Jm3HZlxleg+Dw/mwps2Wbk9frAWm+4FII= github.com/go-git/go-git/v5 v5.16.0 h1:k3kuOEpkc0DeY7xlL6NaaNg39xdgQbtH5mwCafHO9AQ= github.com/go-git/go-git/v5 v5.16.0/go.mod h1:4Ge4alE/5gPs30F2H1esi2gPd69R0C39lolkucHBOp8= +github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A= +github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY= +github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= +github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag= +github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE= github.com/go-task/slim-sprig v0.0.0-20210107165309-348f09dbbbc0/go.mod h1:fyg7847qk6SyHyPtNmDHnmrv/HOrqktSC+C9fM+CJOE= github.com/go-test/deep v1.0.3 h1:ZrJSEWsXzPOxaZnFteGEfooLba+ju3FYIbOrS+rQd68= github.com/go-test/deep v1.0.3/go.mod h1:wGDj63lr65AM2AQyKZd/NYHGb0R+1RLqB8NKt3aSFNA= @@ -87,6 +100,8 @@ github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrU github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w= github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0= github.com/golang/protobuf v1.4.2/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI= +github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek= +github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps= github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= @@ -97,6 +112,14 @@ github.com/google/go-github/v47 v47.1.0 h1:Cacm/WxQBOa9lF0FT0EMjZ2BWMetQ1TQfyurn github.com/google/go-github/v47 v47.1.0/go.mod h1:VPZBXNbFSJGjyjFRUKo9vZGawTajnWzC/YjGw/oFKi0= github.com/google/go-querystring v1.1.0 h1:AnCroh3fv4ZBgVIf1Iwtovgjaw/GiKJo8M8yD/fhyJ8= github.com/google/go-querystring v1.1.0/go.mod h1:Kcdr2DB4koayq7X8pmAG4sNG59So17icRSOU623lUBU= +github.com/google/s2a-go v0.1.9 h1:LGD7gtMgezd8a/Xak7mEWL0PjoTQFvpRudN895yqKW0= +github.com/google/s2a-go v0.1.9/go.mod h1:YA0Ei2ZQL3acow2O62kdp9UlnvMmU7kA6Eutn0dXayM= +github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0= +github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= +github.com/googleapis/enterprise-certificate-proxy v0.3.6 h1:GW/XbdyBFQ8Qe+YAmFU9uHLo7OnF5tL52HFAgMmyrf4= +github.com/googleapis/enterprise-certificate-proxy v0.3.6/go.mod h1:MkHOF77EYAE7qfSuSS9PU6g4Nt4e11cnsDUowfwewLA= +github.com/googleapis/gax-go/v2 v2.14.2 h1:eBLnkZ9635krYIPD+ag1USrOAI0Nr0QYF3+/3GqO0k0= +github.com/googleapis/gax-go/v2 v2.14.2/go.mod h1:ON64QhlJkhVtSqp4v1uaK92VyZ2gmvDQsweuyLV+8+w= github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ= github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48= github.com/hashicorp/go-hclog v1.6.3 h1:Qr2kF+eVWjTiYmU7Y31tYlP1h0q/X3Nl3tPGdaB11/k= @@ -192,6 +215,20 @@ github.com/zclconf/go-cty v1.16.2 h1:LAJSwc3v81IRBZyUVQDUdZ7hs3SYs9jv0eZJDWHD/70 github.com/zclconf/go-cty v1.16.2/go.mod h1:VvMs5i0vgZdhYawQNq5kePSpLAoz8u1xvZgrPIxfnZE= github.com/zclconf/go-cty-debug v0.0.0-20240509010212-0d6042c53940 h1:4r45xpDWB6ZMSMNJFMOjqrGHynW3DIBuR2H9j0ug+Mo= github.com/zclconf/go-cty-debug v0.0.0-20240509010212-0d6042c53940/go.mod h1:CmBdvvj3nqzfzJ6nTCIwDTPZ56aVGvDrmztiO5g3qrM= +go.opentelemetry.io/auto/sdk v1.1.0 h1:cH53jehLUN6UFLY71z+NDOiNJqDdPRaXzTel0sJySYA= +go.opentelemetry.io/auto/sdk v1.1.0/go.mod h1:3wSPjt5PWp2RhlCcmmOial7AvC4DQqZb7a7wCow3W8A= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.60.0 h1:sbiXRNDSWJOTobXh5HyQKjq6wUC5tNybqjIqDpAY4CU= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.60.0/go.mod h1:69uWxva0WgAA/4bu2Yy70SLDBwZXuQ6PbBpbsa5iZrQ= +go.opentelemetry.io/otel v1.35.0 h1:xKWKPxrxB6OtMCbmMY021CqC45J+3Onta9MqjhnusiQ= +go.opentelemetry.io/otel v1.35.0/go.mod h1:UEqy8Zp11hpkUrL73gSlELM0DupHoiq72dR+Zqel/+Y= +go.opentelemetry.io/otel/metric v1.35.0 h1:0znxYu2SNyuMSQT4Y9WDWej0VpcsxkuklLa4/siN90M= +go.opentelemetry.io/otel/metric v1.35.0/go.mod h1:nKVFgxBZ2fReX6IlyW28MgZojkoAkJGaE8CpgeAU3oE= +go.opentelemetry.io/otel/sdk v1.35.0 h1:iPctf8iprVySXSKJffSS79eOjl9pvxV9ZqOWT0QejKY= +go.opentelemetry.io/otel/sdk v1.35.0/go.mod h1:+ga1bZliga3DxJ3CQGg3updiaAJoNECOgJREo9KHGQg= +go.opentelemetry.io/otel/sdk/metric v1.35.0 h1:1RriWBmCKgkeHEhM7a2uMjMUfP7MsOF5JpUCaEqEI9o= +go.opentelemetry.io/otel/sdk/metric v1.35.0/go.mod h1:is6XYCUMpcKi+ZsOvfluY5YstFnhW0BidkR+gL+qN+w= +go.opentelemetry.io/otel/trace v1.35.0 h1:dPpEfJu1sDIqruz7BHFG3c7528f6ddfSWfFDVt/xgMs= +go.opentelemetry.io/otel/trace v1.35.0/go.mod h1:WUk7DtFp1Aw2MkvqGdwiXYDZZNvA/1J8o6xRXLrIkyc= golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= @@ -255,12 +292,24 @@ golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8T golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +google.golang.org/api v0.236.0 h1:CAiEiDVtO4D/Qja2IA9VzlFrgPnK3XVMmRoJZlSWbc0= +google.golang.org/api v0.236.0/go.mod h1:X1WF9CU2oTc+Jml1tiIxGmWFK/UZezdqEu09gcxZAj4= +google.golang.org/genproto v0.0.0-20250505200425-f936aa4a68b2 h1:1tXaIXCracvtsRxSBsYDiSBN0cuJvM7QYW+MrpIRY78= +google.golang.org/genproto v0.0.0-20250505200425-f936aa4a68b2/go.mod h1:49MsLSx0oWMOZqcpB3uL8ZOkAh1+TndpJ8ONoCBWiZk= +google.golang.org/genproto/googleapis/api v0.0.0-20250505200425-f936aa4a68b2 h1:vPV0tzlsK6EzEDHNNH5sa7Hs9bd7iXR7B1tSiPepkV0= +google.golang.org/genproto/googleapis/api v0.0.0-20250505200425-f936aa4a68b2/go.mod h1:pKLAc5OolXC3ViWGI62vvC0n10CpwAtRcTNCFwTKBEw= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250528174236-200df99c418a h1:v2PbRU4K3llS09c7zodFpNePeamkAwG3mPrAery9VeE= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250528174236-200df99c418a/go.mod h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A= +google.golang.org/grpc v1.72.2 h1:TdbGzwb82ty4OusHWepvFWGLgIbNo1/SUynEN0ssqv8= +google.golang.org/grpc v1.72.2/go.mod h1:wH5Aktxcg25y1I3w7H69nHfXdOG3UiadoBtjh3izSDM= google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8= google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0= google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM= google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE= google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo= google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= +google.golang.org/protobuf v1.36.6 h1:z1NpPI8ku2WgiWnf+t9wTPsn6eP1L7ksHUlkfLvd9xY= +google.golang.org/protobuf v1.36.6/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY= gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk= diff --git a/src/compare.go b/src/compare.go index 93cbd54b..2bebbcdd 100644 --- a/src/compare.go +++ b/src/compare.go @@ -3,24 +3,125 @@ package pike import ( "context" "encoding/json" + "errors" "fmt" "os" + "slices" "strings" "time" "github.com/aws/aws-sdk-go-v2/config" "github.com/aws/aws-sdk-go-v2/service/iam" + "github.com/rs/zerolog/log" diff "github.com/yudai/gojsondiff" "github.com/yudai/gojsondiff/formatter" + gcpiam "google.golang.org/api/iam/v1" + "google.golang.org/api/serviceusage/v1" ) // Compare IAC codebase to AWS policy. func Compare(directory string, arn string, init bool) (bool, error) { + var result bool + valid, err := inputValidationCompare(directory, arn) if err != nil { return valid, &inputValidationError{err} } + switch *getCloudFromRole(arn) { + case "arn": + { + result, err = compareAWSRole(directory, arn, init) + } + case "gcp": + { + result, err = compareGCPRole(directory, arn, init) + } + } + + return result, err +} + +func getCloudFromRole(arn string) *string { + var result string + + if strings.Contains(arn, "arn:") { + result = "aws" + return &result + } + + if strings.Contains(arn, "roles") { + result = "gcp" + return &result + } + + return nil +} + +type apiNotFoundError struct { + API string +} + +func (m *apiNotFoundError) Error() string { + return fmt.Sprintf("API %s not found", m.API) +} + +type apiNotEnabledError struct { + API string +} + +func (m *apiNotEnabledError) Error() string { + return fmt.Sprintf("API %s not enabled", m.API) +} + +func compareGCPRole(directory string, arn string, init bool) (bool, error) { + ctx := context.Background() + + projectID := "pike-412922" + var API string + API = "iam.googleapis.com" + + enabled, err := isAPIEnabled(projectID, API) + + if err != nil { + return enabled, &apiNotFoundError{API} + } + + if !enabled { + return enabled, &apiNotEnabledError{API} + } + + iamService, err := gcpiam.NewService(ctx) + if err != nil { + log.Error().Msgf("Failed to create IAM Service %v", err) + } + + Roles, err := iamService.Roles.Get(arn).Do() + + log.Info().Msg(Roles.Name) + + if err != nil { + log.Error().Msgf("Failed to get role %v", err) + } + + return false, nil +} + +func isAPIEnabled(projectID string, want string) (bool, error) { + enabledAPIs, err := listEnabledAPIs(projectID) + + if err != nil { + log.Error().Msgf("Failed to list enabled APIs %v", err) + } + + if !slices.Contains(enabledAPIs, want) { + return false, errors.New("API not enabled") + } + + return true, nil +} + +func compareAWSRole(directory string, arn string, init bool) (bool, error) { // Load the Shared AWS Configuration (~/.aws/config) ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second) @@ -72,7 +173,7 @@ func inputValidationCompare(directory string, arn string) (bool, error) { return false, &arnEmptyError{} } - if !strings.HasPrefix(arn, "arn:") { + if !strings.HasPrefix(arn, "arn:") && !strings.HasPrefix(arn, "roles/") { return false, &invalidARNError{arn} } @@ -135,3 +236,26 @@ func showDifferences(policy string, compare diff.Diff) (bool, error) { return false, nil } + +func listEnabledAPIs(projectID string) ([]string, error) { + ctx := context.Background() + serviceUsageService, err := serviceusage.NewService(ctx) + if err != nil { + return nil, fmt.Errorf("failed to create Service Usage client: %v", err) + } + + parent := fmt.Sprintf("projects/%s", projectID) + req := serviceUsageService.Services.List(parent).Filter("state:ENABLED") + + var services []string + if err := req.Pages(ctx, func(page *serviceusage.ListServicesResponse) error { + for _, service := range page.Services { + services = append(services, service.Config.Name) + } + return nil + }); err != nil { + return nil, fmt.Errorf("failed to list services: %v", err) + } + + return services, nil +} diff --git a/src/compare_test.go b/src/compare_test.go index 7db6cbd4..17d53f6d 100644 --- a/src/compare_test.go +++ b/src/compare_test.go @@ -5,6 +5,7 @@ package pike import ( "os" "path/filepath" + "reflect" "testing" diff "github.com/yudai/gojsondiff" @@ -96,6 +97,9 @@ func TestCompare(t *testing.T) { {"fail arn is empty", args{"./testdata/init/nicconf", "", false}, false, true}, {"fail arn is not policy", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:user/readonly", false}, false, true}, {"pass", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:policy/testdata", false}, true, false}, + //code is not aws + {"gcp-basic-fail", args{"./testdata/gcp/basic", "basic", false}, false, true}, + {"gcp-basic", args{"./testdata/gcp/basic", "roles/terraform_pike", false}, false, false}, } for _, tt := range tests { @@ -224,3 +228,72 @@ func TestInputValidationCompare(t *testing.T) { }) } } + +func Test_listEnabledAPIs(t *testing.T) { + type args struct { + projectID string + } + tests := []struct { + name string + args args + want []string + wantErr bool + }{ + {"All", args{"pike-"}, nil, true}, + {"Enabled", args{"pike-412922"}, []string{"analyticshub.googleapis.com", + "artifactregistry.googleapis.com", "autoscaling.googleapis.com", "bigquery.googleapis.com", + "bigqueryconnection.googleapis.com", "bigquerydatapolicy.googleapis.com", "bigquerymigration.googleapis.com", + "bigqueryreservation.googleapis.com", "bigquerystorage.googleapis.com", "bigtable.googleapis.com", + "bigtableadmin.googleapis.com", "cloudapis.googleapis.com", "cloudbuild.googleapis.com", + "cloudfunctions.googleapis.com", "cloudkms.googleapis.com", "cloudresourcemanager.googleapis.com", + "cloudtrace.googleapis.com", "composer.googleapis.com", "compute.googleapis.com", "container.googleapis.com", + "containerfilesystem.googleapis.com", "containerregistry.googleapis.com", "dataform.googleapis.com", + "dataplex.googleapis.com", "datastore.googleapis.com", "dns.googleapis.com", "gkebackup.googleapis.com", + "iam.googleapis.com", "iamcredentials.googleapis.com", "logging.googleapis.com", "monitoring.googleapis.com", + "networkconnectivity.googleapis.com", "oslogin.googleapis.com", "pubsub.googleapis.com", "run.googleapis.com", + "servicehealth.googleapis.com", "servicemanagement.googleapis.com", "serviceusage.googleapis.com", + "source.googleapis.com", "sql-component.googleapis.com", "sqladmin.googleapis.com", "storage-api.googleapis.com", + "storage-component.googleapis.com", + "storage.googleapis.com"}, false}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + got, err := listEnabledAPIs(tt.args.projectID) + if (err != nil) != tt.wantErr { + t.Errorf("listEnabledAPIs() error = %v, wantErr %v", err, tt.wantErr) + return + } + if !reflect.DeepEqual(got, tt.want) { + t.Errorf("listEnabledAPIs() got = %v, want %v", got, tt.want) + } + }) + } +} + +func Test_compareGCPRole(t *testing.T) { + type args struct { + directory string + arn string + init bool + } + tests := []struct { + name string + args args + want bool + wantErr bool + }{ + {"pass", args{"./testdata/", "roles/terraform_pike", false}, true, false}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + got, err := compareGCPRole(tt.args.directory, tt.args.arn, tt.args.init) + if (err != nil) != tt.wantErr { + t.Errorf("compareGCPRole() error = %v, wantErr %v", err, tt.wantErr) + return + } + if got != tt.want { + t.Errorf("compareGCPRole() got = %v, want %v", got, tt.want) + } + }) + } +} diff --git a/src/error.go b/src/error.go index dc4a2c95..32505bcb 100644 --- a/src/error.go +++ b/src/error.go @@ -183,7 +183,7 @@ type invalidARNError struct { } func (m *invalidARNError) Error() string { - return fmt.Sprintf("invalid ARN: %s", m.arn) + return fmt.Sprintf("invalid role or ARN: %s", m.arn) } type awsConfigError struct { diff --git a/src/testdata/gcp/basic/storage.tf b/src/testdata/gcp/basic/storage.tf new file mode 100644 index 00000000..a2790a60 --- /dev/null +++ b/src/testdata/gcp/basic/storage.tf @@ -0,0 +1,20 @@ +# Create new storage bucket in the US +# location with Standard Storage + +resource "google_storage_bucket" "static" { + name = "BUCKET_NAME" + location = "US" + storage_class = "STANDARD" + + uniform_bucket_level_access = true +} + +# Upload a text file as an object +# to the storage bucket + +resource "google_storage_bucket_object" "default" { + name = "OBJECT_NAME" + source = "OBJECT_PATH" + content_type = "text/plain" + bucket = google_storage_bucket.static.id +} From 06049d23a5a1d232f5431e334d6667b8cc3fceb2 Mon Sep 17 00:00:00 2001 From: James Woolfenden Date: Mon, 9 Jun 2025 16:59:42 +0100 Subject: [PATCH 2/5] working prototype --- go.mod | 1 + src/compare.go | 67 +- src/compare_test.go | 60 +- src/coverage/azure.md | 5 +- src/error_test.go | 2 +- src/parse/aws-members.json | 2110 +------------------------------- src/parse/azurerm-members.json | 1450 +--------------------- src/parse/google-members.json | 1552 +---------------------- src/scan.go | 37 +- src/utils.go | 15 + src/utils_test.go | 55 + 11 files changed, 228 insertions(+), 5126 deletions(-) diff --git a/go.mod b/go.mod index c80514be..12b3808d 100644 --- a/go.mod +++ b/go.mod @@ -9,6 +9,7 @@ require ( github.com/aws/aws-sdk-go-v2/config v1.29.14 github.com/aws/aws-sdk-go-v2/service/iam v1.42.0 github.com/go-git/go-git/v5 v5.16.0 + github.com/google/go-cmp v0.7.0 github.com/google/go-github/v47 v47.1.0 github.com/hashicorp/go-version v1.7.0 github.com/hashicorp/hc-install v0.9.2 diff --git a/src/compare.go b/src/compare.go index 2bebbcdd..c995ae49 100644 --- a/src/compare.go +++ b/src/compare.go @@ -6,12 +6,14 @@ import ( "errors" "fmt" "os" + "regexp" "slices" "strings" "time" "github.com/aws/aws-sdk-go-v2/config" "github.com/aws/aws-sdk-go-v2/service/iam" + "github.com/google/go-cmp/cmp" "github.com/rs/zerolog/log" diff "github.com/yudai/gojsondiff" "github.com/yudai/gojsondiff/formatter" @@ -75,13 +77,26 @@ func (m *apiNotEnabledError) Error() string { } func compareGCPRole(directory string, arn string, init bool) (bool, error) { + iacPolicy, err := MakePermissionBag(directory, nil, init, "") + if err != nil { + return false, &getIAMVersionError{err} + } + ctx := context.Background() - projectID := "pike-412922" + var projectID string + temp, err := GetEnv("GCP_PROJECT") + + projectID = *temp + + if err != nil { + return false, &EnvVariableNotSetError{"GCP_PROJECT"} + } + var API string API = "iam.googleapis.com" - enabled, err := isAPIEnabled(projectID, API) + enabled, err := isGCPAPIEnabled(projectID, API) if err != nil { return enabled, &apiNotFoundError{API} @@ -96,18 +111,35 @@ func compareGCPRole(directory string, arn string, init bool) (bool, error) { log.Error().Msgf("Failed to create IAM Service %v", err) } - Roles, err := iamService.Roles.Get(arn).Do() - - log.Info().Msg(Roles.Name) + // The resource name of the role in one of the following formats: + // `roles/{ROLE_NAME}` + // `organizations/{ORGANIZATION_ID}/roles/{ROLE_NAME}` + // `projects/{PROJECT_ID}/roles/{ROLE_NAME}` + err = VerifyGCPRole(arn) if err != nil { + return false, &GcpRoleNotVerified{arn} + } + + Roles, err := iamService.Roles.Get(arn).Context(ctx).Do() + + if Roles == nil || err != nil { log.Error().Msgf("Failed to get role %v", err) } + //reflect.DeepEqual(iacPolicy.GCP, Roles.IncludedPermissions) + results := cmp.Diff(Roles.IncludedPermissions, iacPolicy.GCP) + if results != "" { + results = strings.Replace(results, "[]string{", "", -1) + results = strings.Replace(results, "}", "", -1) + fmt.Print("Policy Comparison mismatch mismatch (-excess +needs):") + fmt.Print(results) + return true, nil + } return false, nil } -func isAPIEnabled(projectID string, want string) (bool, error) { +func isGCPAPIEnabled(projectID string, want string) (bool, error) { enabledAPIs, err := listEnabledAPIs(projectID) if err != nil { @@ -259,3 +291,26 @@ func listEnabledAPIs(projectID string) ([]string, error) { return services, nil } + +type GcpRoleNotVerified struct { + role string +} + +func (e *GcpRoleNotVerified) Error() string { + log.Info().Msg( + `The resource name of the role in one of the following formats:") + roles/{ROLE_NAME} + organizations/{ORGANIZATION_ID}/roles/{ROLE_NAME} + projects/{PROJECT_ID}/roles/{ROLE_NAME}`) + return e.role +} + +func VerifyGCPRole(role string) error { + r, err := regexp.Compile("projects/(.*\\S)/roles/(.*\\S)") + if err == nil { + if r.MatchString(role) { + return nil + } + } + return &GcpRoleNotVerified{role} +} diff --git a/src/compare_test.go b/src/compare_test.go index 17d53f6d..165731b1 100644 --- a/src/compare_test.go +++ b/src/compare_test.go @@ -240,7 +240,7 @@ func Test_listEnabledAPIs(t *testing.T) { wantErr bool }{ {"All", args{"pike-"}, nil, true}, - {"Enabled", args{"pike-412922"}, []string{"analyticshub.googleapis.com", + {"Enabled", args{"488072219970"}, []string{"analyticshub.googleapis.com", "artifactregistry.googleapis.com", "autoscaling.googleapis.com", "bigquery.googleapis.com", "bigqueryconnection.googleapis.com", "bigquerydatapolicy.googleapis.com", "bigquerymigration.googleapis.com", "bigqueryreservation.googleapis.com", "bigquerystorage.googleapis.com", "bigtable.googleapis.com", @@ -276,13 +276,15 @@ func Test_compareGCPRole(t *testing.T) { arn string init bool } + + os.Setenv("GCP_PROJECT", "pike-412922") tests := []struct { name string args args want bool wantErr bool }{ - {"pass", args{"./testdata/", "roles/terraform_pike", false}, true, false}, + {"pass", args{"./testdata/gcp/basic", "projects/pike-412922/roles/terraform_pike", false}, true, false}, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { @@ -297,3 +299,57 @@ func Test_compareGCPRole(t *testing.T) { }) } } + +func TestGcpRoleNotVerified_Error(t *testing.T) { + type fields struct { + role string + } + tests := []struct { + name string + fields fields + want string + }{ + {"fail", fields{"pike-fail"}, ""}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + e := &GcpRoleNotVerified{ + role: tt.fields.role, + } + if got := e.Error(); got != tt.want { + t.Errorf("Error() = %v, want %v", got, tt.want) + } + }) + } +} + +func TestVerifyRole(t *testing.T) { + type args struct { + role string + } + tests := []struct { + name string + args args + want bool + wantErr bool + }{ + {"Fail", args{"projectsmine/duff/roles/mine"}, false, true}, + {"Fail2", args{"projects/duff/noroles/mine"}, false, true}, + {"Fail3", args{"projects/duff/roles"}, false, true}, + {"Fail4", args{"projects/roles/a"}, false, true}, + {"Fail5", args{"mine/duff/roles/mine"}, false, true}, + + {"Pass", args{"projects/a/roles/a"}, false, false}, + {"Pass2", args{"projects/duff/roles/mine"}, false, false}, + {"Pass3", args{role: "projects/pike-412922/roles/terraform_pike"}, false, false}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + err := VerifyGCPRole(tt.args.role) + if (err != nil) != tt.wantErr { + t.Errorf("VerifyRole() error = %v, wantErr %v", err, tt.wantErr) + return + } + }) + } +} diff --git a/src/coverage/azure.md b/src/coverage/azure.md index cc529156..e77d2559 100755 --- a/src/coverage/azure.md +++ b/src/coverage/azure.md @@ -1,7 +1,7 @@ # todo azure Resource percentage coverage 4.50 -Datasource percentage coverage 34.76 +Datasource percentage coverage 34.56 ./resource.ps1 azurerm_aadb2c_directory ./resource.ps1 azurerm_active_directory_domain_service @@ -649,6 +649,7 @@ Datasource percentage coverage 34.76 ./resource.ps1 azurerm_network_manager_ipam_pool ./resource.ps1 azurerm_network_manager_management_group_connection ./resource.ps1 azurerm_network_manager_network_group +./resource.ps1 azurerm_network_manager_routing_configuration ./resource.ps1 azurerm_network_manager_scope_connection ./resource.ps1 azurerm_network_manager_security_admin_configuration ./resource.ps1 azurerm_network_manager_static_member @@ -1100,6 +1101,8 @@ Datasource percentage coverage 34.76 ./resource.ps1 azurerm_databricks_workspace_private_endpoint_connection -type data ./resource.ps1 azurerm_dedicated_host -type data ./resource.ps1 azurerm_dedicated_host_group -type data +./resource.ps1 azurerm_dev_center -type data +./resource.ps1 azurerm_dev_center_project -type data ./resource.ps1 azurerm_digital_twins_instance -type data ./resource.ps1 azurerm_disk_access -type data ./resource.ps1 azurerm_disk_encryption_set -type data diff --git a/src/error_test.go b/src/error_test.go index e1ccfed7..b02dc7e9 100644 --- a/src/error_test.go +++ b/src/error_test.go @@ -708,7 +708,7 @@ func TestARNErrors(t *testing.T) { err := &invalidARNError{arn: "invalid:arn"} - expected := "invalid ARN: invalid:arn" + expected := "invalid role or ARN: invalid:arn" if err.Error() != expected { t.Errorf("expected %q, got %q", expected, err.Error()) diff --git a/src/parse/aws-members.json b/src/parse/aws-members.json index cb5a0a18..c32cf407 100755 --- a/src/parse/aws-members.json +++ b/src/parse/aws-members.json @@ -1,2108 +1,4 @@ { - "resources": [ - "aws_accessanalyzer_analyzer", - "aws_accessanalyzer_archive_rule", - "aws_account_alternate_contact", - "aws_account_primary_contact", - "aws_account_region", - "aws_acm_certificate", - "aws_acm_certificate_validation", - "aws_acmpca_certificate", - "aws_acmpca_certificate_authority", - "aws_acmpca_certificate_authority_certificate", - "aws_acmpca_permission", - "aws_acmpca_policy", - "aws_alb", - "aws_ami", - "aws_ami_copy", - "aws_ami_from_instance", - "aws_ami_launch_permission", - "aws_amplify_app", - "aws_amplify_backend_environment", - "aws_amplify_branch", - "aws_amplify_domain_association", - "aws_amplify_webhook", - "aws_api_gateway_account", - "aws_api_gateway_api_key", - "aws_api_gateway_authorizer", - "aws_api_gateway_base_path_mapping", - "aws_api_gateway_client_certificate", - "aws_api_gateway_deployment", - "aws_api_gateway_documentation_part", - "aws_api_gateway_documentation_version", - "aws_api_gateway_domain_name", - "aws_api_gateway_domain_name_access_association", - "aws_api_gateway_gateway_response", - "aws_api_gateway_integration", - "aws_api_gateway_integration_response", - "aws_api_gateway_method", - "aws_api_gateway_method_response", - "aws_api_gateway_method_settings", - "aws_api_gateway_model", - "aws_api_gateway_request_validator", - "aws_api_gateway_resource", - "aws_api_gateway_rest_api", - "aws_api_gateway_rest_api_policy", - "aws_api_gateway_rest_api_put", - "aws_api_gateway_stage", - "aws_api_gateway_usage_plan", - "aws_api_gateway_usage_plan_key", - "aws_api_gateway_vpc_link", - "aws_apigatewayv2_api", - "aws_apigatewayv2_api_mapping", - "aws_apigatewayv2_authorizer", - "aws_apigatewayv2_deployment", - "aws_apigatewayv2_domain_name", - "aws_apigatewayv2_integration", - "aws_apigatewayv2_integration_response", - "aws_apigatewayv2_model", - "aws_apigatewayv2_route", - "aws_apigatewayv2_route_response", - "aws_apigatewayv2_stage", - "aws_apigatewayv2_vpc_link", - "aws_app_cookie_stickiness_policy", - "aws_appautoscaling_policy", - "aws_appautoscaling_scheduled_action", - "aws_appautoscaling_target", - "aws_appconfig_application", - "aws_appconfig_configuration_profile", - "aws_appconfig_deployment", - "aws_appconfig_deployment_strategy", - "aws_appconfig_environment", - "aws_appconfig_extension", - "aws_appconfig_extension_association", - "aws_appconfig_hosted_configuration_version", - "aws_appfabric_app_authorization", - "aws_appfabric_app_authorization_connection", - "aws_appfabric_app_bundle", - "aws_appfabric_ingestion", - "aws_appfabric_ingestion_destination", - "aws_appflow_connector_profile", - "aws_appflow_flow", - "aws_appintegrations_data_integration", - "aws_appintegrations_event_integration", - "aws_applicationinsights_application", - "aws_appmesh_gateway_route", - "aws_appmesh_mesh", - "aws_appmesh_route", - "aws_appmesh_virtual_gateway", - "aws_appmesh_virtual_node", - "aws_appmesh_virtual_router", - "aws_appmesh_virtual_service", - "aws_apprunner_auto_scaling_configuration_version", - "aws_apprunner_connection", - "aws_apprunner_custom_domain_association", - "aws_apprunner_default_auto_scaling_configuration_version", - "aws_apprunner_deployment", - "aws_apprunner_observability_configuration", - "aws_apprunner_service", - "aws_apprunner_vpc_connector", - "aws_apprunner_vpc_ingress_connection", - "aws_appstream_directory_config", - "aws_appstream_fleet", - "aws_appstream_fleet_stack_association", - "aws_appstream_image_builder", - "aws_appstream_stack", - "aws_appstream_user", - "aws_appstream_user_stack_association", - "aws_appsync_api_cache", - "aws_appsync_api_key", - "aws_appsync_datasource", - "aws_appsync_domain_name", - "aws_appsync_domain_name_api_association", - "aws_appsync_function", - "aws_appsync_graphql_api", - "aws_appsync_resolver", - "aws_appsync_source_api_association", - "aws_appsync_type", - "aws_athena_capacity_reservation", - "aws_athena_data_catalog", - "aws_athena_database", - "aws_athena_named_query", - "aws_athena_prepared_statement", - "aws_athena_workgroup", - "aws_auditmanager_account_registration", - "aws_auditmanager_assessment", - "aws_auditmanager_assessment_delegation", - "aws_auditmanager_assessment_report", - "aws_auditmanager_control", - "aws_auditmanager_framework", - "aws_auditmanager_framework_share", - "aws_auditmanager_organization_admin_account_registration", - "aws_autoscaling_attachment", - "aws_autoscaling_group", - "aws_autoscaling_group_tag", - "aws_autoscaling_lifecycle_hook", - "aws_autoscaling_notification", - "aws_autoscaling_policy", - "aws_autoscaling_schedule", - "aws_autoscaling_traffic_source_attachment", - "aws_autoscalingplans_scaling_plan", - "aws_backup_framework", - "aws_backup_global_settings", - "aws_backup_logically_air_gapped_vault", - "aws_backup_plan", - "aws_backup_region_settings", - "aws_backup_report_plan", - "aws_backup_selection", - "aws_backup_vault", - "aws_backup_vault_lock_configuration", - "aws_backup_vault_notifications", - "aws_backup_vault_policy", - "aws_batch_compute_environment", - "aws_batch_job_definition", - "aws_batch_job_queue", - "aws_batch_scheduling_policy", - "aws_bcmdataexports_export", - "aws_bedrock_custom_model", - "aws_bedrock_guardrail", - "aws_bedrock_guardrail_version", - "aws_bedrock_inference_profile", - "aws_bedrock_model_invocation_logging_configuration", - "aws_bedrock_provisioned_model_throughput", - "aws_bedrockagent_agent", - "aws_bedrockagent_agent_action_group", - "aws_bedrockagent_agent_alias", - "aws_bedrockagent_agent_collaborator", - "aws_bedrockagent_agent_knowledge_base_association", - "aws_bedrockagent_data_source", - "aws_bedrockagent_knowledge_base", - "aws_bedrockagent_prompt", - "aws_budgets_budget", - "aws_budgets_budget_action", - "aws_ce_anomaly_monitor", - "aws_ce_anomaly_subscription", - "aws_ce_cost_allocation_tag", - "aws_ce_cost_category", - "aws_chatbot_slack_channel_configuration", - "aws_chatbot_teams_channel_configuration", - "aws_chime_voice_connector", - "aws_chime_voice_connector_group", - "aws_chime_voice_connector_logging", - "aws_chime_voice_connector_origination", - "aws_chime_voice_connector_streaming", - "aws_chime_voice_connector_termination", - "aws_chime_voice_connector_termination_credentials", - "aws_chimesdkmediapipelines_media_insights_pipeline_configuration", - "aws_chimesdkvoice_global_settings", - "aws_chimesdkvoice_sip_media_application", - "aws_chimesdkvoice_sip_rule", - "aws_chimesdkvoice_voice_profile_domain", - "aws_cleanrooms_collaboration", - "aws_cleanrooms_configured_table", - "aws_cleanrooms_membership", - "aws_cloud9_environment_ec2", - "aws_cloud9_environment_membership", - "aws_cloudcontrolapi_resource", - "aws_cloudformation_stack", - "aws_cloudformation_stack_instances", - "aws_cloudformation_stack_set", - "aws_cloudformation_stack_set_instance", - "aws_cloudformation_type", - "aws_cloudfront_cache_policy", - "aws_cloudfront_continuous_deployment_policy", - "aws_cloudfront_distribution", - "aws_cloudfront_field_level_encryption_config", - "aws_cloudfront_field_level_encryption_profile", - "aws_cloudfront_function", - "aws_cloudfront_key_group", - "aws_cloudfront_key_value_store", - "aws_cloudfront_monitoring_subscription", - "aws_cloudfront_origin_access_control", - "aws_cloudfront_origin_access_identity", - "aws_cloudfront_origin_request_policy", - "aws_cloudfront_public_key", - "aws_cloudfront_realtime_log_config", - "aws_cloudfront_response_headers_policy", - "aws_cloudfront_vpc_origin", - "aws_cloudfrontkeyvaluestore_key", - "aws_cloudfrontkeyvaluestore_keys_exclusive", - "aws_cloudhsm_v2_cluster", - "aws_cloudhsm_v2_hsm", - "aws_cloudsearch_domain", - "aws_cloudsearch_domain_service_access_policy", - "aws_cloudtrail", - "aws_cloudtrail_event_data_store", - "aws_cloudtrail_organization_delegated_admin_account", - "aws_cloudwatch_composite_alarm", - "aws_cloudwatch_contributor_insight_rule", - "aws_cloudwatch_contributor_managed_insight_rule", - "aws_cloudwatch_dashboard", - "aws_cloudwatch_event_api_destination", - "aws_cloudwatch_event_archive", - "aws_cloudwatch_event_bus", - "aws_cloudwatch_event_bus_policy", - "aws_cloudwatch_event_connection", - "aws_cloudwatch_event_endpoint", - "aws_cloudwatch_event_permission", - "aws_cloudwatch_event_rule", - "aws_cloudwatch_event_target", - "aws_cloudwatch_log_account_policy", - "aws_cloudwatch_log_anomaly_detector", - "aws_cloudwatch_log_data_protection_policy", - "aws_cloudwatch_log_delivery", - "aws_cloudwatch_log_delivery_destination", - "aws_cloudwatch_log_delivery_destination_policy", - "aws_cloudwatch_log_delivery_source", - "aws_cloudwatch_log_destination", - "aws_cloudwatch_log_destination_policy", - "aws_cloudwatch_log_group", - "aws_cloudwatch_log_index_policy", - "aws_cloudwatch_log_metric_filter", - "aws_cloudwatch_log_resource_policy", - "aws_cloudwatch_log_stream", - "aws_cloudwatch_log_subscription_filter", - "aws_cloudwatch_metric_alarm", - "aws_cloudwatch_metric_stream", - "aws_cloudwatch_query_definition", - "aws_codeartifact_domain", - "aws_codeartifact_domain_permissions_policy", - "aws_codeartifact_repository", - "aws_codeartifact_repository_permissions_policy", - "aws_codebuild_fleet", - "aws_codebuild_project", - "aws_codebuild_report_group", - "aws_codebuild_resource_policy", - "aws_codebuild_source_credential", - "aws_codebuild_webhook", - "aws_codecatalyst_dev_environment", - "aws_codecatalyst_project", - "aws_codecatalyst_source_repository", - "aws_codecommit_approval_rule_template", - "aws_codecommit_approval_rule_template_association", - "aws_codecommit_repository", - "aws_codecommit_trigger", - "aws_codeconnections_connection", - "aws_codeconnections_host", - "aws_codedeploy_app", - "aws_codedeploy_deployment_config", - "aws_codedeploy_deployment_group", - "aws_codeguruprofiler_profiling_group", - "aws_codegurureviewer_repository_association", - "aws_codepipeline", - "aws_codepipeline_custom_action_type", - "aws_codepipeline_webhook", - "aws_codestarconnections_connection", - "aws_codestarconnections_host", - "aws_codestarnotifications_notification_rule", - "aws_cognito_identity_pool", - "aws_cognito_identity_pool_provider_principal_tag", - "aws_cognito_identity_pool_roles_attachment", - "aws_cognito_identity_provider", - "aws_cognito_managed_user_pool_client", - "aws_cognito_resource_server", - "aws_cognito_risk_configuration", - "aws_cognito_user", - "aws_cognito_user_group", - "aws_cognito_user_in_group", - "aws_cognito_user_pool", - "aws_cognito_user_pool_client", - "aws_cognito_user_pool_domain", - "aws_cognito_user_pool_ui_customization", - "aws_comprehend_document_classifier", - "aws_comprehend_entity_recognizer", - "aws_computeoptimizer_enrollment_status", - "aws_computeoptimizer_recommendation_preferences", - "aws_config_aggregate_authorization", - "aws_config_config_rule", - "aws_config_configuration_aggregator", - "aws_config_configuration_recorder", - "aws_config_configuration_recorder_status", - "aws_config_conformance_pack", - "aws_config_delivery_channel", - "aws_config_organization_conformance_pack", - "aws_config_organization_custom_policy_rule", - "aws_config_organization_custom_rule", - "aws_config_organization_managed_rule", - "aws_config_remediation_configuration", - "aws_config_retention_configuration", - "aws_connect_bot_association", - "aws_connect_contact_flow", - "aws_connect_contact_flow_module", - "aws_connect_hours_of_operation", - "aws_connect_instance", - "aws_connect_instance_storage_config", - "aws_connect_lambda_function_association", - "aws_connect_phone_number", - "aws_connect_queue", - "aws_connect_quick_connect", - "aws_connect_routing_profile", - "aws_connect_security_profile", - "aws_connect_user", - "aws_connect_user_hierarchy_group", - "aws_connect_user_hierarchy_structure", - "aws_connect_vocabulary", - "aws_controltower_control", - "aws_controltower_landing_zone", - "aws_costoptimizationhub_enrollment_status", - "aws_costoptimizationhub_preferences", - "aws_cur_report_definition", - "aws_customer_gateway", - "aws_customerprofiles_domain", - "aws_customerprofiles_profile", - "aws_dataexchange_data_set", - "aws_dataexchange_event_action", - "aws_dataexchange_revision", - "aws_dataexchange_revision_assets", - "aws_datapipeline_pipeline", - "aws_datapipeline_pipeline_definition", - "aws_datasync_agent", - "aws_datasync_location_azure_blob", - "aws_datasync_location_efs", - "aws_datasync_location_fsx_lustre_file_system", - "aws_datasync_location_fsx_ontap_file_system", - "aws_datasync_location_fsx_openzfs_file_system", - "aws_datasync_location_fsx_windows_file_system", - "aws_datasync_location_hdfs", - "aws_datasync_location_nfs", - "aws_datasync_location_object_storage", - "aws_datasync_location_s3", - "aws_datasync_location_smb", - "aws_datasync_task", - "aws_datazone_asset_type", - "aws_datazone_domain", - "aws_datazone_environment", - "aws_datazone_environment_blueprint_configuration", - "aws_datazone_environment_profile", - "aws_datazone_form_type", - "aws_datazone_glossary", - "aws_datazone_glossary_term", - "aws_datazone_project", - "aws_datazone_user_profile", - "aws_dax_cluster", - "aws_dax_parameter_group", - "aws_dax_subnet_group", - "aws_db_cluster_snapshot", - "aws_db_event_subscription", - "aws_db_instance", - "aws_db_instance_automated_backups_replication", - "aws_db_instance_role_association", - "aws_db_option_group", - "aws_db_parameter_group", - "aws_db_proxy", - "aws_db_proxy_default_target_group", - "aws_db_proxy_endpoint", - "aws_db_proxy_target", - "aws_db_snapshot", - "aws_db_snapshot_copy", - "aws_db_subnet_group", - "aws_default_network_acl", - "aws_default_route_table", - "aws_default_security_group", - "aws_default_subnet", - "aws_default_vpc", - "aws_default_vpc_dhcp_options", - "aws_detective_graph", - "aws_detective_invitation_accepter", - "aws_detective_member", - "aws_detective_organization_admin_account", - "aws_detective_organization_configuration", - "aws_devicefarm_device_pool", - "aws_devicefarm_instance_profile", - "aws_devicefarm_network_profile", - "aws_devicefarm_project", - "aws_devicefarm_upload", - "aws_devopsguru_event_sources_config", - "aws_devopsguru_notification_channel", - "aws_devopsguru_resource_collection", - "aws_devopsguru_service_integration", - "aws_directory_service_conditional_forwarder", - "aws_directory_service_directory", - "aws_directory_service_log_subscription", - "aws_directory_service_radius_settings", - "aws_directory_service_region", - "aws_directory_service_shared_directory", - "aws_directory_service_shared_directory_accepter", - "aws_directory_service_trust", - "aws_dlm_lifecycle_policy", - "aws_dms_certificate", - "aws_dms_endpoint", - "aws_dms_event_subscription", - "aws_dms_replication_config", - "aws_dms_replication_instance", - "aws_dms_replication_subnet_group", - "aws_dms_replication_task", - "aws_dms_s3_endpoint", - "aws_docdb_cluster", - "aws_docdb_cluster_instance", - "aws_docdb_cluster_parameter_group", - "aws_docdb_cluster_snapshot", - "aws_docdb_event_subscription", - "aws_docdb_global_cluster", - "aws_docdb_subnet_group", - "aws_docdbelastic_cluster", - "aws_drs_replication_configuration_template", - "aws_dx_bgp_peer", - "aws_dx_connection", - "aws_dx_connection_association", - "aws_dx_connection_confirmation", - "aws_dx_gateway", - "aws_dx_gateway_association", - "aws_dx_gateway_association_proposal", - "aws_dx_hosted_connection", - "aws_dx_hosted_private_virtual_interface", - "aws_dx_hosted_private_virtual_interface_accepter", - "aws_dx_hosted_public_virtual_interface", - "aws_dx_hosted_public_virtual_interface_accepter", - "aws_dx_hosted_transit_virtual_interface", - "aws_dx_hosted_transit_virtual_interface_accepter", - "aws_dx_lag", - "aws_dx_macsec_key_association", - "aws_dx_private_virtual_interface", - "aws_dx_public_virtual_interface", - "aws_dx_transit_virtual_interface", - "aws_dynamodb_contributor_insights", - "aws_dynamodb_global_table", - "aws_dynamodb_kinesis_streaming_destination", - "aws_dynamodb_resource_policy", - "aws_dynamodb_table", - "aws_dynamodb_table_export", - "aws_dynamodb_table_item", - "aws_dynamodb_table_replica", - "aws_dynamodb_tag", - "aws_ebs_default_kms_key", - "aws_ebs_encryption_by_default", - "aws_ebs_fast_snapshot_restore", - "aws_ebs_snapshot", - "aws_ebs_snapshot_block_public_access", - "aws_ebs_snapshot_copy", - "aws_ebs_snapshot_import", - "aws_ebs_volume", - "aws_ec2_availability_zone_group", - "aws_ec2_capacity_block_reservation", - "aws_ec2_capacity_reservation", - "aws_ec2_carrier_gateway", - "aws_ec2_client_vpn_authorization_rule", - "aws_ec2_client_vpn_endpoint", - "aws_ec2_client_vpn_network_association", - "aws_ec2_client_vpn_route", - "aws_ec2_default_credit_specification", - "aws_ec2_fleet", - "aws_ec2_host", - "aws_ec2_image_block_public_access", - "aws_ec2_instance", - "aws_ec2_instance_connect_endpoint", - "aws_ec2_instance_metadata_defaults", - "aws_ec2_instance_state", - "aws_ec2_local_gateway_route", - "aws_ec2_local_gateway_route_table_vpc_association", - "aws_ec2_managed_prefix_list", - "aws_ec2_managed_prefix_list_entry", - "aws_ec2_network_insights_analysis", - "aws_ec2_network_insights_path", - "aws_ec2_serial_console_access", - "aws_ec2_subnet_cidr_reservation", - "aws_ec2_tag", - "aws_ec2_traffic_mirror_filter", - "aws_ec2_traffic_mirror_filter_rule", - "aws_ec2_traffic_mirror_session", - "aws_ec2_traffic_mirror_target", - "aws_ec2_transit_gateway", - "aws_ec2_transit_gateway_connect", - "aws_ec2_transit_gateway_connect_peer", - "aws_ec2_transit_gateway_default_route_table_association", - "aws_ec2_transit_gateway_default_route_table_propagation", - "aws_ec2_transit_gateway_multicast_domain", - "aws_ec2_transit_gateway_multicast_domain_association", - "aws_ec2_transit_gateway_multicast_group_member", - "aws_ec2_transit_gateway_multicast_group_source", - "aws_ec2_transit_gateway_peering_attachment", - "aws_ec2_transit_gateway_peering_attachment_accepter", - "aws_ec2_transit_gateway_policy_table", - "aws_ec2_transit_gateway_policy_table_association", - "aws_ec2_transit_gateway_prefix_list_reference", - "aws_ec2_transit_gateway_route", - "aws_ec2_transit_gateway_route_table", - "aws_ec2_transit_gateway_route_table_association", - "aws_ec2_transit_gateway_route_table_propagation", - "aws_ec2_transit_gateway_vpc_attachment", - "aws_ec2_transit_gateway_vpc_attachment_accepter", - "aws_ecr_account_setting", - "aws_ecr_lifecycle_policy", - "aws_ecr_pull_through_cache_rule", - "aws_ecr_registry_policy", - "aws_ecr_registry_scanning_configuration", - "aws_ecr_replication_configuration", - "aws_ecr_repository", - "aws_ecr_repository_creation_template", - "aws_ecr_repository_policy", - "aws_ecrpublic_repository", - "aws_ecrpublic_repository_policy", - "aws_ecs_account_setting_default", - "aws_ecs_capacity_provider", - "aws_ecs_cluster", - "aws_ecs_cluster_capacity_providers", - "aws_ecs_service", - "aws_ecs_tag", - "aws_ecs_task_definition", - "aws_ecs_task_set", - "aws_efs_access_point", - "aws_efs_backup_policy", - "aws_efs_file_system", - "aws_efs_file_system_policy", - "aws_efs_mount_target", - "aws_efs_replication_configuration", - "aws_egress_only_internet_gateway", - "aws_eip", - "aws_eip_association", - "aws_eip_domain_name", - "aws_eks_access_entry", - "aws_eks_access_policy_association", - "aws_eks_addon", - "aws_eks_cluster", - "aws_eks_fargate_profile", - "aws_eks_identity_provider_config", - "aws_eks_node_group", - "aws_eks_pod_identity_association", - "aws_elastic_beanstalk_application", - "aws_elastic_beanstalk_application_version", - "aws_elastic_beanstalk_configuration_template", - "aws_elastic_beanstalk_environment", - "aws_elasticache_cluster", - "aws_elasticache_global_replication_group", - "aws_elasticache_parameter_group", - "aws_elasticache_replication_group", - "aws_elasticache_reserved_cache_node", - "aws_elasticache_serverless_cache", - "aws_elasticache_subnet_group", - "aws_elasticache_user", - "aws_elasticache_user_group", - "aws_elasticache_user_group_association", - "aws_elasticsearch_domain", - "aws_elasticsearch_domain_policy", - "aws_elasticsearch_domain_saml_options", - "aws_elasticsearch_vpc_endpoint", - "aws_elastictranscoder_pipeline", - "aws_elastictranscoder_preset", - "aws_elb", - "aws_elb_attachment", - "aws_emr_block_public_access_configuration", - "aws_emr_cluster", - "aws_emr_instance_fleet", - "aws_emr_instance_group", - "aws_emr_managed_scaling_policy", - "aws_emr_security_configuration", - "aws_emr_studio", - "aws_emr_studio_session_mapping", - "aws_emrcontainers_job_template", - "aws_emrcontainers_virtual_cluster", - "aws_emrserverless_application", - "aws_evidently_feature", - "aws_evidently_launch", - "aws_evidently_project", - "aws_evidently_segment", - "aws_finspace_kx_cluster", - "aws_finspace_kx_database", - "aws_finspace_kx_dataview", - "aws_finspace_kx_environment", - "aws_finspace_kx_scaling_group", - "aws_finspace_kx_user", - "aws_finspace_kx_volume", - "aws_fis_experiment_template", - "aws_flow_log", - "aws_fms_admin_account", - "aws_fms_policy", - "aws_fms_resource_set", - "aws_fsx_backup", - "aws_fsx_data_repository_association", - "aws_fsx_file_cache", - "aws_fsx_lustre_file_system", - "aws_fsx_ontap_file_system", - "aws_fsx_ontap_storage_virtual_machine", - "aws_fsx_ontap_volume", - "aws_fsx_openzfs_file_system", - "aws_fsx_openzfs_snapshot", - "aws_fsx_openzfs_volume", - "aws_fsx_windows_file_system", - "aws_gamelift_alias", - "aws_gamelift_build", - "aws_gamelift_fleet", - "aws_gamelift_game_server_group", - "aws_gamelift_game_session_queue", - "aws_gamelift_script", - "aws_glacier_vault", - "aws_glacier_vault_lock", - "aws_globalaccelerator_accelerator", - "aws_globalaccelerator_cross_account_attachment", - "aws_globalaccelerator_custom_routing_accelerator", - "aws_globalaccelerator_custom_routing_endpoint_group", - "aws_globalaccelerator_custom_routing_listener", - "aws_globalaccelerator_endpoint_group", - "aws_globalaccelerator_listener", - "aws_glue_catalog_database", - "aws_glue_catalog_table", - "aws_glue_catalog_table_optimizer", - "aws_glue_classifier", - "aws_glue_connection", - "aws_glue_crawler", - "aws_glue_data_catalog_encryption_settings", - "aws_glue_data_quality_ruleset", - "aws_glue_dev_endpoint", - "aws_glue_job", - "aws_glue_ml_transform", - "aws_glue_partition", - "aws_glue_partition_index", - "aws_glue_registry", - "aws_glue_resource_policy", - "aws_glue_schema", - "aws_glue_security_configuration", - "aws_glue_trigger", - "aws_glue_user_defined_function", - "aws_glue_workflow", - "aws_grafana_license_association", - "aws_grafana_role_association", - "aws_grafana_workspace", - "aws_grafana_workspace_api_key", - "aws_grafana_workspace_saml_configuration", - "aws_grafana_workspace_service_account", - "aws_grafana_workspace_service_account_token", - "aws_guardduty_detector", - "aws_guardduty_detector_feature", - "aws_guardduty_filter", - "aws_guardduty_invite_accepter", - "aws_guardduty_ipset", - "aws_guardduty_malware_protection_plan", - "aws_guardduty_member", - "aws_guardduty_member_detector_feature", - "aws_guardduty_organization_admin_account", - "aws_guardduty_organization_configuration", - "aws_guardduty_organization_configuration_feature", - "aws_guardduty_publishing_destination", - "aws_guardduty_threatintelset", - "aws_iam_access_key", - "aws_iam_account_alias", - "aws_iam_account_password_policy", - "aws_iam_group", - "aws_iam_group_membership", - "aws_iam_group_policies_exclusive", - "aws_iam_group_policy", - "aws_iam_group_policy_attachment", - "aws_iam_group_policy_attachments_exclusive", - "aws_iam_instance_profile", - "aws_iam_openid_connect_provider", - "aws_iam_organizations_features", - "aws_iam_policy", - "aws_iam_policy_attachment", - "aws_iam_role", - "aws_iam_role_policies_exclusive", - "aws_iam_role_policy", - "aws_iam_role_policy_attachment", - "aws_iam_role_policy_attachments_exclusive", - "aws_iam_saml_provider", - "aws_iam_security_token_service_preferences", - "aws_iam_server_certificate", - "aws_iam_service_linked_role", - "aws_iam_service_specific_credential", - "aws_iam_signing_certificate", - "aws_iam_user", - "aws_iam_user_group_membership", - "aws_iam_user_login_profile", - "aws_iam_user_policies_exclusive", - "aws_iam_user_policy", - "aws_iam_user_policy_attachment", - "aws_iam_user_policy_attachments_exclusive", - "aws_iam_user_ssh_key", - "aws_iam_virtual_mfa_device", - "aws_identitystore_group", - "aws_identitystore_group_membership", - "aws_identitystore_user", - "aws_imagebuilder_component", - "aws_imagebuilder_container_recipe", - "aws_imagebuilder_distribution_configuration", - "aws_imagebuilder_image", - "aws_imagebuilder_image_pipeline", - "aws_imagebuilder_image_recipe", - "aws_imagebuilder_infrastructure_configuration", - "aws_imagebuilder_lifecycle_policy", - "aws_imagebuilder_workflow", - "aws_inspector2_delegated_admin_account", - "aws_inspector2_enabler", - "aws_inspector2_filter", - "aws_inspector2_member_association", - "aws_inspector2_organization_configuration", - "aws_inspector_assessment_target", - "aws_inspector_assessment_template", - "aws_inspector_resource_group", - "aws_instance", - "aws_internet_gateway", - "aws_internet_gateway_attachment", - "aws_internetmonitor_monitor", - "aws_iot_authorizer", - "aws_iot_billing_group", - "aws_iot_ca_certificate", - "aws_iot_certificate", - "aws_iot_domain_configuration", - "aws_iot_event_configurations", - "aws_iot_indexing_configuration", - "aws_iot_logging_options", - "aws_iot_policy", - "aws_iot_policy_attachment", - "aws_iot_provisioning_template", - "aws_iot_role_alias", - "aws_iot_thing", - "aws_iot_thing_group", - "aws_iot_thing_group_membership", - "aws_iot_thing_principal_attachment", - "aws_iot_thing_type", - "aws_iot_topic_rule", - "aws_iot_topic_rule_destination", - "aws_ivs_channel", - "aws_ivs_playback_key_pair", - "aws_ivs_recording_configuration", - "aws_ivschat_logging_configuration", - "aws_ivschat_room", - "aws_kendra_data_source", - "aws_kendra_experience", - "aws_kendra_faq", - "aws_kendra_index", - "aws_kendra_query_suggestions_block_list", - "aws_kendra_thesaurus", - "aws_key_pair", - "aws_keyspaces_keyspace", - "aws_keyspaces_table", - "aws_kinesis_analytics_application", - "aws_kinesis_firehose_delivery_stream", - "aws_kinesis_resource_policy", - "aws_kinesis_stream", - "aws_kinesis_stream_consumer", - "aws_kinesis_video_stream", - "aws_kinesisanalyticsv2_application", - "aws_kinesisanalyticsv2_application_snapshot", - "aws_kms_alias", - "aws_kms_ciphertext", - "aws_kms_custom_key_store", - "aws_kms_external_key", - "aws_kms_grant", - "aws_kms_key", - "aws_kms_key_policy", - "aws_kms_replica_external_key", - "aws_kms_replica_key", - "aws_lakeformation_data_cells_filter", - "aws_lakeformation_data_lake_settings", - "aws_lakeformation_lf_tag", - "aws_lakeformation_opt_in", - "aws_lakeformation_permissions", - "aws_lakeformation_resource", - "aws_lakeformation_resource_lf_tag", - "aws_lakeformation_resource_lf_tags", - "aws_lambda_alias", - "aws_lambda_code_signing_config", - "aws_lambda_event_source_mapping", - "aws_lambda_function", - "aws_lambda_function_event_invoke_config", - "aws_lambda_function_recursion_config", - "aws_lambda_function_url", - "aws_lambda_invocation", - "aws_lambda_layer_version", - "aws_lambda_layer_version_permission", - "aws_lambda_permission", - "aws_lambda_provisioned_concurrency_config", - "aws_lambda_runtime_management_config", - "aws_launch_configuration", - "aws_launch_template", - "aws_lb", - "aws_lb_cookie_stickiness_policy", - "aws_lb_listener", - "aws_lb_listener_certificate", - "aws_lb_listener_rule", - "aws_lb_ssl_negotiation_policy", - "aws_lb_target_group", - "aws_lb_target_group_attachment", - "aws_lb_trust_store", - "aws_lb_trust_store_revocation", - "aws_lex_bot", - "aws_lex_bot_alias", - "aws_lex_intent", - "aws_lex_slot_type", - "aws_lexv2models_bot", - "aws_lexv2models_bot_locale", - "aws_lexv2models_bot_version", - "aws_lexv2models_intent", - "aws_lexv2models_slot", - "aws_lexv2models_slot_type", - "aws_licensemanager_association", - "aws_licensemanager_grant", - "aws_licensemanager_grant_accepter", - "aws_licensemanager_license_configuration", - "aws_lightsail_bucket", - "aws_lightsail_bucket_access_key_access_key", - "aws_lightsail_bucket_resource_access", - "aws_lightsail_certificate", - "aws_lightsail_container_service", - "aws_lightsail_container_service_deployment_version", - "aws_lightsail_database", - "aws_lightsail_disk", - "aws_lightsail_disk_attachment", - "aws_lightsail_distribution", - "aws_lightsail_domain", - "aws_lightsail_domain_entry", - "aws_lightsail_instance", - "aws_lightsail_instance_public_ports", - "aws_lightsail_key_pair", - "aws_lightsail_lb", - "aws_lightsail_lb_attachment", - "aws_lightsail_lb_certificate", - "aws_lightsail_lb_certificate_attachment", - "aws_lightsail_lb_https_redirection_policy", - "aws_lightsail_lb_stickiness_policy", - "aws_lightsail_static_ip", - "aws_lightsail_static_ip_attachment", - "aws_load_balancer_backend_server_policy", - "aws_load_balancer_listener_policy", - "aws_load_balancer_policy", - "aws_location_geofence_collection", - "aws_location_map", - "aws_location_place_index", - "aws_location_route_calculator", - "aws_location_tracker", - "aws_location_tracker_association", - "aws_m2_application", - "aws_m2_deployment", - "aws_m2_environment", - "aws_macie2_account", - "aws_macie2_classification_export_configuration", - "aws_macie2_classification_job", - "aws_macie2_custom_data_identifier", - "aws_macie2_findings_filter", - "aws_macie2_invitation_accepter", - "aws_macie2_member", - "aws_macie2_organization_admin_account", - "aws_macie2_organization_configuration", - "aws_main_route_table_association", - "aws_media_convert_queue", - "aws_media_package_channel", - "aws_media_packagev2_channel_group", - "aws_media_store_container", - "aws_media_store_container_policy", - "aws_medialive_channel", - "aws_medialive_input", - "aws_medialive_input_security_group", - "aws_medialive_multiplex", - "aws_medialive_multiplex_program", - "aws_memorydb_acl", - "aws_memorydb_cluster", - "aws_memorydb_multi_region_cluster", - "aws_memorydb_parameter_group", - "aws_memorydb_snapshot", - "aws_memorydb_subnet_group", - "aws_memorydb_user", - "aws_mq_broker", - "aws_mq_configuration", - "aws_msk_cluster", - "aws_msk_cluster_policy", - "aws_msk_configuration", - "aws_msk_replicator", - "aws_msk_scram_secret_association", - "aws_msk_serverless_cluster", - "aws_msk_single_scram_secret_association", - "aws_msk_vpc_connection", - "aws_mskconnect_connector", - "aws_mskconnect_custom_plugin", - "aws_mskconnect_worker_configuration", - "aws_mwaa_environment", - "aws_nat_gateway", - "aws_neptune_cluster", - "aws_neptune_cluster_endpoint", - "aws_neptune_cluster_instance", - "aws_neptune_cluster_parameter_group", - "aws_neptune_cluster_snapshot", - "aws_neptune_event_subscription", - "aws_neptune_global_cluster", - "aws_neptune_parameter_group", - "aws_neptune_subnet_group", - "aws_neptunegraph_graph", - "aws_network_acl", - "aws_network_acl_association", - "aws_network_acl_rule", - "aws_network_interface", - "aws_network_interface_attachment", - "aws_network_interface_permission", - "aws_network_interface_sg_attachment", - "aws_networkfirewall_firewall", - "aws_networkfirewall_firewall_policy", - "aws_networkfirewall_logging_configuration", - "aws_networkfirewall_resource_policy", - "aws_networkfirewall_rule_group", - "aws_networkfirewall_tls_inspection_configuration", - "aws_networkmanager_attachment_accepter", - "aws_networkmanager_connect_attachment", - "aws_networkmanager_connect_peer", - "aws_networkmanager_connection", - "aws_networkmanager_core_network", - "aws_networkmanager_core_network_policy_attachment", - "aws_networkmanager_customer_gateway_association", - "aws_networkmanager_device", - "aws_networkmanager_dx_gateway_attachment", - "aws_networkmanager_global_network", - "aws_networkmanager_link", - "aws_networkmanager_link_association", - "aws_networkmanager_site", - "aws_networkmanager_site_to_site_vpn_attachment", - "aws_networkmanager_transit_gateway_connect_peer_association", - "aws_networkmanager_transit_gateway_peering", - "aws_networkmanager_transit_gateway_registration", - "aws_networkmanager_transit_gateway_route_table_attachment", - "aws_networkmanager_vpc_attachment", - "aws_networkmonitor_monitor", - "aws_networkmonitor_probe", - "aws_notifications_channel_association", - "aws_notifications_event_rule", - "aws_notifications_notification_configuration", - "aws_notifications_notification_hub", - "aws_notificationscontacts_email_contact", - "aws_oam_link", - "aws_oam_sink", - "aws_oam_sink_policy", - "aws_opensearch_authorize_vpc_endpoint_access", - "aws_opensearch_domain", - "aws_opensearch_domain_policy", - "aws_opensearch_domain_saml_options", - "aws_opensearch_inbound_connection_accepter", - "aws_opensearch_outbound_connection", - "aws_opensearch_package", - "aws_opensearch_package_association", - "aws_opensearch_vpc_endpoint", - "aws_opensearchserverless_access_policy", - "aws_opensearchserverless_collection", - "aws_opensearchserverless_lifecycle_policy", - "aws_opensearchserverless_security_config", - "aws_opensearchserverless_security_policy", - "aws_opensearchserverless_vpc_endpoint", - "aws_opsworks_application", - "aws_opsworks_custom_layer", - "aws_opsworks_ecs_cluster_layer", - "aws_opsworks_ganglia_layer", - "aws_opsworks_haproxy_layer", - "aws_opsworks_instance", - "aws_opsworks_java_app_layer", - "aws_opsworks_memcached_layer", - "aws_opsworks_mysql_layer", - "aws_opsworks_nodejs_app_layer", - "aws_opsworks_permission", - "aws_opsworks_php_app_layer", - "aws_opsworks_rails_app_layer", - "aws_opsworks_rds_db_instance", - "aws_opsworks_stack", - "aws_opsworks_static_web_layer", - "aws_opsworks_user_profile", - "aws_organizations_account", - "aws_organizations_delegated_administrator", - "aws_organizations_organization", - "aws_organizations_organizational_unit", - "aws_organizations_policy", - "aws_organizations_policy_attachment", - "aws_organizations_resource_policy", - "aws_osis_pipeline", - "aws_paymentcryptography_key", - "aws_paymentcryptography_key_alias", - "aws_pinpoint_adm_channel", - "aws_pinpoint_apns_channel", - "aws_pinpoint_apns_sandbox_channel", - "aws_pinpoint_apns_voip_channel", - "aws_pinpoint_apns_voip_sandbox_channel", - "aws_pinpoint_app", - "aws_pinpoint_baidu_channel", - "aws_pinpoint_email_channel", - "aws_pinpoint_email_template", - "aws_pinpoint_event_stream", - "aws_pinpoint_gcm_channel", - "aws_pinpoint_sms_channel", - "aws_pinpointsmsvoicev2_configuration_set", - "aws_pinpointsmsvoicev2_opt_out_list", - "aws_pinpointsmsvoicev2_phone_number", - "aws_pipes_pipe", - "aws_placement_group", - "aws_prometheus_alert_manager_definition", - "aws_prometheus_rule_group_namespace", - "aws_prometheus_scraper", - "aws_prometheus_workspace", - "aws_proxy_protocol_policy", - "aws_qbusiness_application", - "aws_qldb_ledger", - "aws_qldb_stream", - "aws_quicksight_account_settings", - "aws_quicksight_account_subscription", - "aws_quicksight_analysis", - "aws_quicksight_dashboard", - "aws_quicksight_data_set", - "aws_quicksight_data_source", - "aws_quicksight_folder", - "aws_quicksight_folder_membership", - "aws_quicksight_group", - "aws_quicksight_group_membership", - "aws_quicksight_iam_policy_assignment", - "aws_quicksight_ingestion", - "aws_quicksight_namespace", - "aws_quicksight_refresh_schedule", - "aws_quicksight_role_membership", - "aws_quicksight_template", - "aws_quicksight_template_alias", - "aws_quicksight_theme", - "aws_quicksight_user", - "aws_quicksight_vpc_connection", - "aws_ram_principal_association", - "aws_ram_resource_association", - "aws_ram_resource_share", - "aws_ram_resource_share_accepter", - "aws_ram_sharing_with_organization", - "aws_rbin_rule", - "aws_rds_certificate", - "aws_rds_cluster", - "aws_rds_cluster_activity_stream", - "aws_rds_cluster_endpoint", - "aws_rds_cluster_instance", - "aws_rds_cluster_parameter_group", - "aws_rds_cluster_role_association", - "aws_rds_cluster_snapshot_copy", - "aws_rds_custom_db_engine_version", - "aws_rds_export_task", - "aws_rds_global_cluster", - "aws_rds_instance_state", - "aws_rds_integration", - "aws_rds_reserved_instance", - "aws_rds_shard_group", - "aws_redshift_authentication_profile", - "aws_redshift_cluster", - "aws_redshift_cluster_iam_roles", - "aws_redshift_cluster_snapshot", - "aws_redshift_data_share_authorization", - "aws_redshift_data_share_consumer_association", - "aws_redshift_endpoint_access", - "aws_redshift_endpoint_authorization", - "aws_redshift_event_subscription", - "aws_redshift_hsm_client_certificate", - "aws_redshift_hsm_configuration", - "aws_redshift_integration", - "aws_redshift_logging", - "aws_redshift_parameter_group", - "aws_redshift_partner", - "aws_redshift_resource_policy", - "aws_redshift_scheduled_action", - "aws_redshift_snapshot_copy", - "aws_redshift_snapshot_copy_grant", - "aws_redshift_snapshot_schedule", - "aws_redshift_snapshot_schedule_association", - "aws_redshift_subnet_group", - "aws_redshift_usage_limit", - "aws_redshiftdata_statement", - "aws_redshiftserverless_custom_domain_association", - "aws_redshiftserverless_endpoint_access", - "aws_redshiftserverless_namespace", - "aws_redshiftserverless_resource_policy", - "aws_redshiftserverless_snapshot", - "aws_redshiftserverless_usage_limit", - "aws_redshiftserverless_workgroup", - "aws_rekognition_collection", - "aws_rekognition_project", - "aws_rekognition_stream_processor", - "aws_resiliencehub_resiliency_policy", - "aws_resourceexplorer2_index", - "aws_resourceexplorer2_view", - "aws_resourcegroups_group", - "aws_resourcegroups_resource", - "aws_rolesanywhere_profile", - "aws_rolesanywhere_trust_anchor", - "aws_route", - "aws_route53_cidr_collection", - "aws_route53_cidr_location", - "aws_route53_delegation_set", - "aws_route53_health_check", - "aws_route53_hosted_zone_dnssec", - "aws_route53_key_signing_key", - "aws_route53_query_log", - "aws_route53_record", - "aws_route53_records_exclusive", - "aws_route53_resolver_config", - "aws_route53_resolver_dnssec_config", - "aws_route53_resolver_endpoint", - "aws_route53_resolver_firewall_config", - "aws_route53_resolver_firewall_domain_list", - "aws_route53_resolver_firewall_rule", - "aws_route53_resolver_firewall_rule_group", - "aws_route53_resolver_firewall_rule_group_association", - "aws_route53_resolver_query_log_config", - "aws_route53_resolver_query_log_config_association", - "aws_route53_resolver_rule", - "aws_route53_resolver_rule_association", - "aws_route53_traffic_policy", - "aws_route53_traffic_policy_instance", - "aws_route53_vpc_association_authorization", - "aws_route53_zone", - "aws_route53_zone_association", - "aws_route53domains_delegation_signer_record", - "aws_route53domains_domain", - "aws_route53domains_registered_domain", - "aws_route53profiles_association", - "aws_route53profiles_profile", - "aws_route53profiles_resource_association", - "aws_route53recoverycontrolconfig_cluster", - "aws_route53recoverycontrolconfig_control_panel", - "aws_route53recoverycontrolconfig_routing_control", - "aws_route53recoverycontrolconfig_safety_rule", - "aws_route53recoveryreadiness_cell", - "aws_route53recoveryreadiness_readiness_check", - "aws_route53recoveryreadiness_recovery_group", - "aws_route53recoveryreadiness_resource_set", - "aws_route_table", - "aws_route_table_association", - "aws_rum_app_monitor", - "aws_rum_metrics_destination", - "aws_s3_access_point", - "aws_s3_account_public_access_block", - "aws_s3_bucket", - "aws_s3_bucket_accelerate_configuration", - "aws_s3_bucket_acl", - "aws_s3_bucket_analytics_configuration", - "aws_s3_bucket_cors_configuration", - "aws_s3_bucket_intelligent_tiering_configuration", - "aws_s3_bucket_inventory", - "aws_s3_bucket_lifecycle_configuration", - "aws_s3_bucket_logging", - "aws_s3_bucket_metric", - "aws_s3_bucket_notification", - "aws_s3_bucket_object", - "aws_s3_bucket_object_lock_configuration", - "aws_s3_bucket_ownership_controls", - "aws_s3_bucket_policy", - "aws_s3_bucket_public_access_block", - "aws_s3_bucket_replication_configuration", - "aws_s3_bucket_request_payment_configuration", - "aws_s3_bucket_server_side_encryption_configuration", - "aws_s3_bucket_versioning", - "aws_s3_bucket_website_configuration", - "aws_s3_directory_bucket", - "aws_s3_object", - "aws_s3_object_copy", - "aws_s3control_access_grant", - "aws_s3control_access_grants_instance", - "aws_s3control_access_grants_instance_resource_policy", - "aws_s3control_access_grants_location", - "aws_s3control_access_point_policy", - "aws_s3control_bucket", - "aws_s3control_bucket_lifecycle_configuration", - "aws_s3control_bucket_policy", - "aws_s3control_multi_region_access_point", - "aws_s3control_multi_region_access_point_policy", - "aws_s3control_object_lambda_access_point", - "aws_s3control_object_lambda_access_point_policy", - "aws_s3control_storage_lens_configuration", - "aws_s3outposts_endpoint", - "aws_s3tables_namespace", - "aws_s3tables_table", - "aws_s3tables_table_bucket", - "aws_s3tables_table_bucket_policy", - "aws_s3tables_table_policy", - "aws_sagemaker_app", - "aws_sagemaker_app_image_config", - "aws_sagemaker_code_repository", - "aws_sagemaker_data_quality_job_definition", - "aws_sagemaker_device", - "aws_sagemaker_device_fleet", - "aws_sagemaker_domain", - "aws_sagemaker_endpoint", - "aws_sagemaker_endpoint_configuration", - "aws_sagemaker_feature_group", - "aws_sagemaker_flow_definition", - "aws_sagemaker_hub", - "aws_sagemaker_human_task_ui", - "aws_sagemaker_image", - "aws_sagemaker_image_version", - "aws_sagemaker_mlflow_tracking_server", - "aws_sagemaker_model", - "aws_sagemaker_model_package_group", - "aws_sagemaker_model_package_group_policy", - "aws_sagemaker_monitoring_schedule", - "aws_sagemaker_notebook_instance", - "aws_sagemaker_notebook_instance_lifecycle_configuration", - "aws_sagemaker_pipeline", - "aws_sagemaker_project", - "aws_sagemaker_servicecatalog_portfolio_status", - "aws_sagemaker_space", - "aws_sagemaker_studio_lifecycle_config", - "aws_sagemaker_user_profile", - "aws_sagemaker_workforce", - "aws_sagemaker_workteam", - "aws_scheduler_schedule", - "aws_scheduler_schedule_group", - "aws_schemas_discoverer", - "aws_schemas_registry", - "aws_schemas_registry_policy", - "aws_schemas_schema", - "aws_secretsmanager_secret", - "aws_secretsmanager_secret_policy", - "aws_secretsmanager_secret_rotation", - "aws_secretsmanager_secret_version", - "aws_security_group", - "aws_security_group_rule", - "aws_securityhub_account", - "aws_securityhub_action_target", - "aws_securityhub_automation_rule", - "aws_securityhub_configuration_policy", - "aws_securityhub_configuration_policy_association", - "aws_securityhub_finding_aggregator", - "aws_securityhub_insight", - "aws_securityhub_invite_accepter", - "aws_securityhub_member", - "aws_securityhub_organization_admin_account", - "aws_securityhub_organization_configuration", - "aws_securityhub_product_subscription", - "aws_securityhub_standards_control", - "aws_securityhub_standards_control_association", - "aws_securityhub_standards_subscription", - "aws_securitylake_aws_log_source", - "aws_securitylake_custom_log_source", - "aws_securitylake_data_lake", - "aws_securitylake_subscriber", - "aws_securitylake_subscriber_notification", - "aws_serverlessapplicationrepository_cloudformation_stack", - "aws_service_discovery_http_namespace", - "aws_service_discovery_instance", - "aws_service_discovery_private_dns_namespace", - "aws_service_discovery_public_dns_namespace", - "aws_service_discovery_service", - "aws_servicecatalog_budget_resource_association", - "aws_servicecatalog_constraint", - "aws_servicecatalog_organizations_access", - "aws_servicecatalog_portfolio", - "aws_servicecatalog_portfolio_share", - "aws_servicecatalog_principal_portfolio_association", - "aws_servicecatalog_product", - "aws_servicecatalog_product_portfolio_association", - "aws_servicecatalog_provisioned_product", - "aws_servicecatalog_provisioning_artifact", - "aws_servicecatalog_service_action", - "aws_servicecatalog_tag_option", - "aws_servicecatalog_tag_option_resource_association", - "aws_servicecatalogappregistry_application", - "aws_servicecatalogappregistry_attribute_group", - "aws_servicecatalogappregistry_attribute_group_association", - "aws_servicequotas_service_quota", - "aws_servicequotas_template", - "aws_servicequotas_template_association", - "aws_ses_active_receipt_rule_set", - "aws_ses_configuration_set", - "aws_ses_domain_dkim", - "aws_ses_domain_identity", - "aws_ses_domain_identity_verification", - "aws_ses_domain_mail_from", - "aws_ses_email_identity", - "aws_ses_event_destination", - "aws_ses_identity_notification_topic", - "aws_ses_identity_policy", - "aws_ses_receipt_filter", - "aws_ses_receipt_rule", - "aws_ses_receipt_rule_set", - "aws_ses_template", - "aws_sesv2_account_suppression_attributes", - "aws_sesv2_account_vdm_attributes", - "aws_sesv2_configuration_set", - "aws_sesv2_configuration_set_event_destination", - "aws_sesv2_contact_list", - "aws_sesv2_dedicated_ip_assignment", - "aws_sesv2_dedicated_ip_pool", - "aws_sesv2_email_identity", - "aws_sesv2_email_identity_feedback_attributes", - "aws_sesv2_email_identity_mail_from_attributes", - "aws_sesv2_email_identity_policy", - "aws_sfn_activity", - "aws_sfn_alias", - "aws_sfn_state_machine", - "aws_shield_application_layer_automatic_response", - "aws_shield_drt_access_log_bucket_association", - "aws_shield_drt_access_role_arn_association", - "aws_shield_proactive_engagement", - "aws_shield_protection", - "aws_shield_protection_group", - "aws_shield_protection_health_check_association", - "aws_shield_subscription", - "aws_signer_signing_job", - "aws_signer_signing_profile", - "aws_signer_signing_profile_permission", - "aws_simpledb_domain", - "aws_snapshot_create_volume_permission", - "aws_sns_platform_application", - "aws_sns_sms_preferences", - "aws_sns_topic", - "aws_sns_topic_data_protection_policy", - "aws_sns_topic_policy", - "aws_sns_topic_subscription", - "aws_spot_datafeed_subscription", - "aws_spot_fleet_request", - "aws_spot_instance_request", - "aws_sqs_queue", - "aws_sqs_queue_policy", - "aws_sqs_queue_redrive_allow_policy", - "aws_sqs_queue_redrive_policy", - "aws_ssm_activation", - "aws_ssm_association", - "aws_ssm_default_patch_baseline", - "aws_ssm_document", - "aws_ssm_maintenance_window", - "aws_ssm_maintenance_window_target", - "aws_ssm_maintenance_window_task", - "aws_ssm_parameter", - "aws_ssm_patch_baseline", - "aws_ssm_patch_group", - "aws_ssm_resource_data_sync", - "aws_ssm_service_setting", - "aws_ssmcontacts_contact", - "aws_ssmcontacts_contact_channel", - "aws_ssmcontacts_plan", - "aws_ssmcontacts_rotation", - "aws_ssmincidents_replication_set", - "aws_ssmincidents_response_plan", - "aws_ssmquicksetup_configuration_manager", - "aws_ssoadmin_account_assignment", - "aws_ssoadmin_application", - "aws_ssoadmin_application_access_scope", - "aws_ssoadmin_application_assignment", - "aws_ssoadmin_application_assignment_configuration", - "aws_ssoadmin_customer_managed_policy_attachment", - "aws_ssoadmin_instance_access_control_attributes", - "aws_ssoadmin_managed_policy_attachment", - "aws_ssoadmin_permission_set", - "aws_ssoadmin_permission_set_inline_policy", - "aws_ssoadmin_permissions_boundary_attachment", - "aws_ssoadmin_trusted_token_issuer", - "aws_storagegateway_cache", - "aws_storagegateway_cached_iscsi_volume", - "aws_storagegateway_file_system_association", - "aws_storagegateway_gateway", - "aws_storagegateway_nfs_file_share", - "aws_storagegateway_smb_file_share", - "aws_storagegateway_stored_iscsi_volume", - "aws_storagegateway_tape_pool", - "aws_storagegateway_upload_buffer", - "aws_storagegateway_working_storage", - "aws_subnet", - "aws_swf_domain", - "aws_synthetics_canary", - "aws_synthetics_group", - "aws_synthetics_group_association", - "aws_timestreaminfluxdb_db_instance", - "aws_timestreamquery_scheduled_query", - "aws_timestreamwrite_database", - "aws_timestreamwrite_table", - "aws_transcribe_language_model", - "aws_transcribe_medical_vocabulary", - "aws_transcribe_vocabulary", - "aws_transcribe_vocabulary_filter", - "aws_transfer_access", - "aws_transfer_agreement", - "aws_transfer_certificate", - "aws_transfer_connector", - "aws_transfer_profile", - "aws_transfer_server", - "aws_transfer_ssh_key", - "aws_transfer_tag", - "aws_transfer_user", - "aws_transfer_workflow", - "aws_verifiedaccess_endpoint", - "aws_verifiedaccess_group", - "aws_verifiedaccess_instance", - "aws_verifiedaccess_instance_logging_configuration", - "aws_verifiedaccess_instance_trust_provider_attachment", - "aws_verifiedaccess_trust_provider", - "aws_verifiedpermissions_identity_source", - "aws_verifiedpermissions_policy", - "aws_verifiedpermissions_policy_store", - "aws_verifiedpermissions_policy_template", - "aws_verifiedpermissions_schema", - "aws_volume_attachment", - "aws_vpc", - "aws_vpc_block_public_access_exclusion", - "aws_vpc_block_public_access_options", - "aws_vpc_dhcp_options", - "aws_vpc_dhcp_options_association", - "aws_vpc_endpoint", - "aws_vpc_endpoint_connection_accepter", - "aws_vpc_endpoint_connection_notification", - "aws_vpc_endpoint_policy", - "aws_vpc_endpoint_private_dns", - "aws_vpc_endpoint_route_table_association", - "aws_vpc_endpoint_security_group_association", - "aws_vpc_endpoint_service", - "aws_vpc_endpoint_service_allowed_principal", - "aws_vpc_endpoint_service_private_dns_verification", - "aws_vpc_endpoint_subnet_association", - "aws_vpc_ipam", - "aws_vpc_ipam_organization_admin_account", - "aws_vpc_ipam_pool", - "aws_vpc_ipam_pool_cidr", - "aws_vpc_ipam_pool_cidr_allocation", - "aws_vpc_ipam_preview_next_cidr", - "aws_vpc_ipam_resource_discovery", - "aws_vpc_ipam_resource_discovery_association", - "aws_vpc_ipam_scope", - "aws_vpc_ipv4_cidr_block_association", - "aws_vpc_ipv6_cidr_block_association", - "aws_vpc_network_performance_metric_subscription", - "aws_vpc_peering_connection", - "aws_vpc_peering_connection_accepter", - "aws_vpc_peering_connection_options", - "aws_vpc_security_group_egress_rule", - "aws_vpc_security_group_ingress_rule", - "aws_vpc_security_group_vpc_association", - "aws_vpclattice_access_log_subscription", - "aws_vpclattice_auth_policy", - "aws_vpclattice_listener", - "aws_vpclattice_listener_rule", - "aws_vpclattice_resource_configuration", - "aws_vpclattice_resource_gateway", - "aws_vpclattice_resource_policy", - "aws_vpclattice_service", - "aws_vpclattice_service_network", - "aws_vpclattice_service_network_resource_association", - "aws_vpclattice_service_network_service_association", - "aws_vpclattice_service_network_vpc_association", - "aws_vpclattice_target_group", - "aws_vpclattice_target_group_attachment", - "aws_vpn_connection", - "aws_vpn_connection_route", - "aws_vpn_gateway", - "aws_vpn_gateway_attachment", - "aws_vpn_gateway_route_propagation", - "aws_waf_byte_match_set", - "aws_waf_geo_match_set", - "aws_waf_ipset", - "aws_waf_rate_based_rule", - "aws_waf_regex_match_set", - "aws_waf_regex_pattern_set", - "aws_waf_rule", - "aws_waf_rule_group", - "aws_waf_size_constraint_set", - "aws_waf_sql_injection_match_set", - "aws_waf_web_acl", - "aws_waf_xss_match_set", - "aws_wafregional_byte_match_set", - "aws_wafregional_geo_match_set", - "aws_wafregional_ipset", - "aws_wafregional_rate_based_rule", - "aws_wafregional_regex_match_set", - "aws_wafregional_regex_pattern_set", - "aws_wafregional_rule", - "aws_wafregional_rule_group", - "aws_wafregional_size_constraint_set", - "aws_wafregional_sql_injection_match_set", - "aws_wafregional_web_acl", - "aws_wafregional_web_acl_association", - "aws_wafregional_xss_match_set", - "aws_wafv2_api_key", - "aws_wafv2_ip_set", - "aws_wafv2_regex_pattern_set", - "aws_wafv2_rule_group", - "aws_wafv2_web_acl", - "aws_wafv2_web_acl_association", - "aws_wafv2_web_acl_logging_configuration", - "aws_worklink_fleet", - "aws_worklink_website_certificate_authority_association", - "aws_workspaces_connection_alias", - "aws_workspaces_directory", - "aws_workspaces_ip_group", - "aws_workspaces_workspace", - "aws_workspacesweb_browser_settings", - "aws_workspacesweb_network_settings", - "aws_workspacesweb_user_settings", - "aws_xray_encryption_config", - "aws_xray_group", - "aws_xray_resource_policy", - "aws_xray_sampling_rule" - ], - "dataSources": [ - "aws_account_primary_contact", - "aws_acm_certificate", - "aws_acmpca_certificate", - "aws_acmpca_certificate_authority", - "aws_ami", - "aws_ami_ids", - "aws_api_gateway_api_key", - "aws_api_gateway_api_keys", - "aws_api_gateway_authorizer", - "aws_api_gateway_authorizers", - "aws_api_gateway_domain_name", - "aws_api_gateway_export", - "aws_api_gateway_resource", - "aws_api_gateway_rest_api", - "aws_api_gateway_sdk", - "aws_api_gateway_vpc_link", - "aws_apigatewayv2_api", - "aws_apigatewayv2_apis", - "aws_apigatewayv2_export", - "aws_apigatewayv2_vpc_link", - "aws_appconfig_configuration_profile", - "aws_appconfig_configuration_profiles", - "aws_appconfig_environment", - "aws_appconfig_environments", - "aws_appintegrations_event_integration", - "aws_appmesh_gateway_route", - "aws_appmesh_mesh", - "aws_appmesh_route", - "aws_appmesh_virtual_gateway", - "aws_appmesh_virtual_node", - "aws_appmesh_virtual_router", - "aws_appmesh_virtual_service", - "aws_apprunner_hosted_zone_id", - "aws_appstream_image", - "aws_arn", - "aws_athena_named_query", - "aws_auditmanager_control", - "aws_auditmanager_framework", - "aws_autoscaling_group", - "aws_autoscaling_groups", - "aws_availability_zone", - "aws_availability_zones", - "aws_backup_framework", - "aws_backup_plan", - "aws_backup_report_plan", - "aws_backup_selection", - "aws_backup_vault", - "aws_batch_compute_environment", - "aws_batch_job_definition", - "aws_batch_job_queue", - "aws_batch_scheduling_policy", - "aws_bedrock_custom_model", - "aws_bedrock_custom_models", - "aws_bedrock_foundation_model", - "aws_bedrock_foundation_models", - "aws_bedrock_inference_profile", - "aws_bedrock_inference_profiles", - "aws_bedrockagent_agent_versions", - "aws_billing_service_account", - "aws_budgets_budget", - "aws_caller_identity", - "aws_canonical_user_id", - "aws_ce_tags", - "aws_chatbot_slack_workspace", - "aws_cloudcontrolapi_resource", - "aws_cloudformation_export", - "aws_cloudformation_stack", - "aws_cloudformation_type", - "aws_cloudfront_cache_policy", - "aws_cloudfront_distribution", - "aws_cloudfront_function", - "aws_cloudfront_log_delivery_canonical_user_id", - "aws_cloudfront_origin_access_control", - "aws_cloudfront_origin_access_identities", - "aws_cloudfront_origin_access_identity", - "aws_cloudfront_origin_request_policy", - "aws_cloudfront_realtime_log_config", - "aws_cloudfront_response_headers_policy", - "aws_cloudhsm_v2_cluster", - "aws_cloudtrail_service_account", - "aws_cloudwatch_contributor_managed_insight_rules", - "aws_cloudwatch_event_bus", - "aws_cloudwatch_event_buses", - "aws_cloudwatch_event_connection", - "aws_cloudwatch_event_source", - "aws_cloudwatch_log_data_protection_policy_document", - "aws_cloudwatch_log_group", - "aws_cloudwatch_log_groups", - "aws_codeartifact_authorization_token", - "aws_codeartifact_repository_endpoint", - "aws_codebuild_fleet", - "aws_codecatalyst_dev_environment", - "aws_codecommit_approval_rule_template", - "aws_codecommit_repository", - "aws_codeguruprofiler_profiling_group", - "aws_codestarconnections_connection", - "aws_cognito_identity_pool", - "aws_cognito_user_group", - "aws_cognito_user_groups", - "aws_cognito_user_pool", - "aws_cognito_user_pool_client", - "aws_cognito_user_pool_clients", - "aws_cognito_user_pool_signing_certificate", - "aws_cognito_user_pools", - "aws_connect_bot_association", - "aws_connect_contact_flow", - "aws_connect_contact_flow_module", - "aws_connect_hours_of_operation", - "aws_connect_instance", - "aws_connect_instance_storage_config", - "aws_connect_lambda_function_association", - "aws_connect_prompt", - "aws_connect_queue", - "aws_connect_quick_connect", - "aws_connect_routing_profile", - "aws_connect_security_profile", - "aws_connect_user", - "aws_connect_user_hierarchy_group", - "aws_connect_user_hierarchy_structure", - "aws_connect_vocabulary", - "aws_controltower_controls", - "aws_cur_report_definition", - "aws_customer_gateway", - "aws_datapipeline_pipeline", - "aws_datapipeline_pipeline_definition", - "aws_datazone_domain", - "aws_datazone_environment_blueprint", - "aws_db_cluster_snapshot", - "aws_db_event_categories", - "aws_db_instance", - "aws_db_instances", - "aws_db_parameter_group", - "aws_db_proxy", - "aws_db_snapshot", - "aws_db_subnet_group", - "aws_default_tags", - "aws_devopsguru_notification_channel", - "aws_devopsguru_resource_collection", - "aws_directory_service_directory", - "aws_dms_certificate", - "aws_dms_endpoint", - "aws_dms_replication_instance", - "aws_dms_replication_subnet_group", - "aws_dms_replication_task", - "aws_docdb_engine_version", - "aws_docdb_orderable_db_instance", - "aws_dx_connection", - "aws_dx_gateway", - "aws_dx_location", - "aws_dx_locations", - "aws_dx_router_configuration", - "aws_dynamodb_table", - "aws_dynamodb_table_item", - "aws_dynamodb_tables", - "aws_ebs_default_kms_key", - "aws_ebs_encryption_by_default", - "aws_ebs_snapshot", - "aws_ebs_snapshot_ids", - "aws_ebs_volume", - "aws_ebs_volumes", - "aws_ec2_capacity_block_offering", - "aws_ec2_client_vpn_endpoint", - "aws_ec2_coip_pool", - "aws_ec2_coip_pools", - "aws_ec2_host", - "aws_ec2_instance_type", - "aws_ec2_instance_type_offering", - "aws_ec2_instance_type_offerings", - "aws_ec2_instance_types", - "aws_ec2_local_gateway", - "aws_ec2_local_gateway_route_table", - "aws_ec2_local_gateway_route_tables", - "aws_ec2_local_gateway_virtual_interface", - "aws_ec2_local_gateway_virtual_interface_group", - "aws_ec2_local_gateway_virtual_interface_groups", - "aws_ec2_local_gateways", - "aws_ec2_managed_prefix_list", - "aws_ec2_managed_prefix_lists", - "aws_ec2_network_insights_analysis", - "aws_ec2_network_insights_path", - "aws_ec2_public_ipv4_pool", - "aws_ec2_public_ipv4_pools", - "aws_ec2_serial_console_access", - "aws_ec2_spot_price", - "aws_ec2_transit_gateway", - "aws_ec2_transit_gateway_attachment", - "aws_ec2_transit_gateway_attachments", - "aws_ec2_transit_gateway_connect", - "aws_ec2_transit_gateway_connect_peer", - "aws_ec2_transit_gateway_dx_gateway_attachment", - "aws_ec2_transit_gateway_multicast_domain", - "aws_ec2_transit_gateway_peering_attachment", - "aws_ec2_transit_gateway_peering_attachments", - "aws_ec2_transit_gateway_route_table", - "aws_ec2_transit_gateway_route_table_associations", - "aws_ec2_transit_gateway_route_table_propagations", - "aws_ec2_transit_gateway_route_table_routes", - "aws_ec2_transit_gateway_route_tables", - "aws_ec2_transit_gateway_vpc_attachment", - "aws_ec2_transit_gateway_vpc_attachments", - "aws_ec2_transit_gateway_vpn_attachment", - "aws_ecr_authorization_token", - "aws_ecr_image", - "aws_ecr_lifecycle_policy_document", - "aws_ecr_pull_through_cache_rule", - "aws_ecr_repositories", - "aws_ecr_repository", - "aws_ecr_repository_creation_template", - "aws_ecrpublic_authorization_token", - "aws_ecs_cluster", - "aws_ecs_clusters", - "aws_ecs_container_definition", - "aws_ecs_service", - "aws_ecs_task_definition", - "aws_ecs_task_execution", - "aws_efs_access_point", - "aws_efs_access_points", - "aws_efs_file_system", - "aws_efs_mount_target", - "aws_eip", - "aws_eips", - "aws_eks_access_entry", - "aws_eks_addon", - "aws_eks_addon_version", - "aws_eks_cluster", - "aws_eks_cluster_auth", - "aws_eks_cluster_versions", - "aws_eks_clusters", - "aws_eks_node_group", - "aws_eks_node_groups", - "aws_elastic_beanstalk_application", - "aws_elastic_beanstalk_hosted_zone", - "aws_elastic_beanstalk_solution_stack", - "aws_elasticache_cluster", - "aws_elasticache_replication_group", - "aws_elasticache_reserved_cache_node_offering", - "aws_elasticache_serverless_cache", - "aws_elasticache_user", - "aws_elasticsearch_domain", - "aws_elb", - "aws_elb_hosted_zone_id", - "aws_elb_service_account", - "aws_emr_release_labels", - "aws_emr_supported_instance_types", - "aws_emrcontainers_virtual_cluster", - "aws_fis_experiment_templates", - "aws_fsx_ontap_file_system", - "aws_fsx_ontap_storage_virtual_machine", - "aws_fsx_ontap_storage_virtual_machines", - "aws_fsx_openzfs_snapshot", - "aws_fsx_windows_file_system", - "aws_globalaccelerator_accelerator", - "aws_globalaccelerator_custom_routing_accelerator", - "aws_glue_catalog_table", - "aws_glue_connection", - "aws_glue_data_catalog_encryption_settings", - "aws_glue_registry", - "aws_glue_script", - "aws_grafana_workspace", - "aws_guardduty_detector", - "aws_guardduty_finding_ids", - "aws_iam_access_keys", - "aws_iam_account_alias", - "aws_iam_group", - "aws_iam_instance_profile", - "aws_iam_instance_profiles", - "aws_iam_openid_connect_provider", - "aws_iam_policy", - "aws_iam_policy_document", - "aws_iam_principal_policy_simulation", - "aws_iam_role", - "aws_iam_roles", - "aws_iam_saml_provider", - "aws_iam_server_certificate", - "aws_iam_session_context", - "aws_iam_user", - "aws_iam_user_ssh_key", - "aws_iam_users", - "aws_identitystore_group", - "aws_identitystore_group_memberships", - "aws_identitystore_groups", - "aws_identitystore_user", - "aws_identitystore_users", - "aws_imagebuilder_component", - "aws_imagebuilder_components", - "aws_imagebuilder_container_recipe", - "aws_imagebuilder_container_recipes", - "aws_imagebuilder_distribution_configuration", - "aws_imagebuilder_distribution_configurations", - "aws_imagebuilder_image", - "aws_imagebuilder_image_pipeline", - "aws_imagebuilder_image_pipelines", - "aws_imagebuilder_image_recipe", - "aws_imagebuilder_image_recipes", - "aws_imagebuilder_infrastructure_configuration", - "aws_imagebuilder_infrastructure_configurations", - "aws_inspector_rules_packages", - "aws_instance", - "aws_instances", - "aws_internet_gateway", - "aws_iot_endpoint", - "aws_iot_registration_code", - "aws_ip_ranges", - "aws_ivs_stream_key", - "aws_kendra_experience", - "aws_kendra_faq", - "aws_kendra_index", - "aws_kendra_query_suggestions_block_list", - "aws_kendra_thesaurus", - "aws_key_pair", - "aws_kinesis_firehose_delivery_stream", - "aws_kinesis_stream", - "aws_kinesis_stream_consumer", - "aws_kms_alias", - "aws_kms_ciphertext", - "aws_kms_custom_key_store", - "aws_kms_key", - "aws_kms_public_key", - "aws_kms_secret", - "aws_kms_secrets", - "aws_lakeformation_data_lake_settings", - "aws_lakeformation_permissions", - "aws_lakeformation_resource", - "aws_lambda_alias", - "aws_lambda_code_signing_config", - "aws_lambda_function", - "aws_lambda_function_url", - "aws_lambda_functions", - "aws_lambda_invocation", - "aws_lambda_layer_version", - "aws_launch_configuration", - "aws_launch_template", - "aws_lb", - "aws_lb_hosted_zone_id", - "aws_lb_listener", - "aws_lb_listener_rule", - "aws_lb_target_group", - "aws_lb_trust_store", - "aws_lbs", - "aws_lex_bot", - "aws_lex_bot_alias", - "aws_lex_intent", - "aws_lex_slot_type", - "aws_licensemanager_grants", - "aws_licensemanager_received_license", - "aws_licensemanager_received_licenses", - "aws_location_geofence_collection", - "aws_location_map", - "aws_location_place_index", - "aws_location_route_calculator", - "aws_location_tracker", - "aws_location_tracker_association", - "aws_location_tracker_associations", - "aws_medialive_input", - "aws_mq_broker", - "aws_mq_broker_engine_types", - "aws_mq_broker_instance_type_offerings", - "aws_msk_bootstrap_brokers", - "aws_msk_broker_nodes", - "aws_msk_cluster", - "aws_msk_configuration", - "aws_msk_kafka_version", - "aws_msk_vpc_connection", - "aws_mskconnect_connector", - "aws_mskconnect_custom_plugin", - "aws_mskconnect_worker_configuration", - "aws_nat_gateway", - "aws_nat_gateways", - "aws_neptune_engine_version", - "aws_neptune_orderable_db_instance", - "aws_network_acls", - "aws_network_interface", - "aws_network_interfaces", - "aws_networkfirewall_firewall", - "aws_networkfirewall_firewall_policy", - "aws_networkfirewall_resource_policy", - "aws_networkmanager_connection", - "aws_networkmanager_connections", - "aws_networkmanager_core_network_policy_document", - "aws_networkmanager_device", - "aws_networkmanager_devices", - "aws_networkmanager_global_network", - "aws_networkmanager_global_networks", - "aws_networkmanager_link", - "aws_networkmanager_links", - "aws_networkmanager_site", - "aws_networkmanager_sites", - "aws_oam_link", - "aws_oam_links", - "aws_oam_sink", - "aws_oam_sinks", - "aws_opensearch_domain", - "aws_opensearchserverless_access_policy", - "aws_opensearchserverless_collection", - "aws_opensearchserverless_lifecycle_policy", - "aws_opensearchserverless_security_config", - "aws_opensearchserverless_security_policy", - "aws_opensearchserverless_vpc_endpoint", - "aws_organizations_delegated_administrators", - "aws_organizations_delegated_services", - "aws_organizations_organization", - "aws_organizations_organizational_unit", - "aws_organizations_organizational_unit_child_accounts", - "aws_organizations_organizational_unit_descendant_accounts", - "aws_organizations_organizational_unit_descendant_organizational_units", - "aws_organizations_organizational_units", - "aws_organizations_policies", - "aws_organizations_policies_for_target", - "aws_organizations_policy", - "aws_organizations_resource_tags", - "aws_outposts_asset", - "aws_outposts_assets", - "aws_outposts_outpost", - "aws_outposts_outpost_instance_type", - "aws_outposts_outpost_instance_types", - "aws_outposts_outposts", - "aws_outposts_site", - "aws_outposts_sites", - "aws_partition", - "aws_polly_voices", - "aws_prefix_list", - "aws_pricing_product", - "aws_prometheus_default_scraper_configuration", - "aws_prometheus_workspace", - "aws_prometheus_workspaces", - "aws_qldb_ledger", - "aws_quicksight_analysis", - "aws_quicksight_data_set", - "aws_quicksight_group", - "aws_quicksight_theme", - "aws_quicksight_user", - "aws_ram_resource_share", - "aws_rds_certificate", - "aws_rds_cluster", - "aws_rds_cluster_parameter_group", - "aws_rds_clusters", - "aws_rds_engine_version", - "aws_rds_orderable_db_instance", - "aws_rds_reserved_instance_offering", - "aws_redshift_cluster", - "aws_redshift_cluster_credentials", - "aws_redshift_data_shares", - "aws_redshift_orderable_cluster", - "aws_redshift_producer_data_shares", - "aws_redshift_service_account", - "aws_redshift_subnet_group", - "aws_redshiftserverless_credentials", - "aws_redshiftserverless_namespace", - "aws_redshiftserverless_workgroup", - "aws_region", - "aws_regions", - "aws_resourceexplorer2_search", - "aws_resourcegroupstaggingapi_resources", - "aws_route", - "aws_route53_delegation_set", - "aws_route53_records", - "aws_route53_resolver_endpoint", - "aws_route53_resolver_firewall_config", - "aws_route53_resolver_firewall_domain_list", - "aws_route53_resolver_firewall_rule_group", - "aws_route53_resolver_firewall_rule_group_association", - "aws_route53_resolver_firewall_rules", - "aws_route53_resolver_query_log_config", - "aws_route53_resolver_rule", - "aws_route53_resolver_rules", - "aws_route53_traffic_policy_document", - "aws_route53_zone", - "aws_route53_zones", - "aws_route53profiles_profiles", - "aws_route_table", - "aws_route_tables", - "aws_s3_account_public_access_block", - "aws_s3_bucket", - "aws_s3_bucket_object", - "aws_s3_bucket_objects", - "aws_s3_bucket_policy", - "aws_s3_directory_buckets", - "aws_s3_object", - "aws_s3_objects", - "aws_s3control_multi_region_access_point", - "aws_sagemaker_prebuilt_ecr_image", - "aws_secretsmanager_random_password", - "aws_secretsmanager_secret", - "aws_secretsmanager_secret_rotation", - "aws_secretsmanager_secret_version", - "aws_secretsmanager_secret_versions", - "aws_secretsmanager_secrets", - "aws_security_group", - "aws_security_groups", - "aws_serverlessapplicationrepository_application", - "aws_service", - "aws_service_discovery_dns_namespace", - "aws_service_discovery_http_namespace", - "aws_service_discovery_service", - "aws_service_principal", - "aws_servicecatalog_constraint", - "aws_servicecatalog_launch_paths", - "aws_servicecatalog_portfolio", - "aws_servicecatalog_portfolio_constraints", - "aws_servicecatalog_product", - "aws_servicecatalog_provisioning_artifacts", - "aws_servicecatalogappregistry_application", - "aws_servicecatalogappregistry_attribute_group", - "aws_servicecatalogappregistry_attribute_group_associations", - "aws_servicequotas_service", - "aws_servicequotas_service_quota", - "aws_servicequotas_templates", - "aws_ses_active_receipt_rule_set", - "aws_ses_domain_identity", - "aws_ses_email_identity", - "aws_sesv2_configuration_set", - "aws_sesv2_dedicated_ip_pool", - "aws_sesv2_email_identity", - "aws_sesv2_email_identity_mail_from_attributes", - "aws_sfn_activity", - "aws_sfn_alias", - "aws_sfn_state_machine", - "aws_sfn_state_machine_versions", - "aws_shield_protection", - "aws_signer_signing_job", - "aws_signer_signing_profile", - "aws_sns_topic", - "aws_spot_datafeed_subscription", - "aws_sqs_queue", - "aws_sqs_queues", - "aws_ssm_document", - "aws_ssm_instances", - "aws_ssm_maintenance_windows", - "aws_ssm_parameter", - "aws_ssm_parameters_by_path", - "aws_ssm_patch_baseline", - "aws_ssm_patch_baselines", - "aws_ssmcontacts_contact", - "aws_ssmcontacts_contact_channel", - "aws_ssmcontacts_plan", - "aws_ssmcontacts_rotation", - "aws_ssmincidents_replication_set", - "aws_ssmincidents_response_plan", - "aws_ssoadmin_application", - "aws_ssoadmin_application_assignments", - "aws_ssoadmin_application_providers", - "aws_ssoadmin_instances", - "aws_ssoadmin_permission_set", - "aws_ssoadmin_permission_sets", - "aws_ssoadmin_principal_application_assignments", - "aws_storagegateway_local_disk", - "aws_subnet", - "aws_subnet_ids", - "aws_subnets", - "aws_synthetics_runtime_version", - "aws_synthetics_runtime_versions", - "aws_timestreamwrite_database", - "aws_timestreamwrite_table", - "aws_transfer_connector", - "aws_transfer_server", - "aws_verifiedpermissions_policy_store", - "aws_vpc", - "aws_vpc_dhcp_options", - "aws_vpc_endpoint", - "aws_vpc_endpoint_associations", - "aws_vpc_endpoint_service", - "aws_vpc_ipam", - "aws_vpc_ipam_pool", - "aws_vpc_ipam_pool_cidrs", - "aws_vpc_ipam_pools", - "aws_vpc_ipam_preview_next_cidr", - "aws_vpc_ipams", - "aws_vpc_peering_connection", - "aws_vpc_peering_connections", - "aws_vpc_security_group_rule", - "aws_vpc_security_group_rules", - "aws_vpclattice_auth_policy", - "aws_vpclattice_listener", - "aws_vpclattice_resource_policy", - "aws_vpclattice_service", - "aws_vpclattice_service_network", - "aws_vpcs", - "aws_vpn_gateway", - "aws_waf_ipset", - "aws_waf_rate_based_rule", - "aws_waf_rule", - "aws_waf_subscribed_rule_group", - "aws_waf_web_acl", - "aws_wafregional_ipset", - "aws_wafregional_rate_based_rule", - "aws_wafregional_rule", - "aws_wafregional_subscribed_rule_group", - "aws_wafregional_web_acl", - "aws_wafv2_ip_set", - "aws_wafv2_regex_pattern_set", - "aws_wafv2_rule_group", - "aws_wafv2_web_acl", - "aws_workspaces_bundle", - "aws_workspaces_directory", - "aws_workspaces_image" - ] -} \ No newline at end of file + "dataSources": null, + "resources": null +} diff --git a/src/parse/azurerm-members.json b/src/parse/azurerm-members.json index 8d5d58f2..c32cf407 100755 --- a/src/parse/azurerm-members.json +++ b/src/parse/azurerm-members.json @@ -1,1448 +1,4 @@ { - "resources": [ - "azurerm_aadb2c_directory", - "azurerm_active_directory_domain_service", - "azurerm_active_directory_domain_service_replica_set", - "azurerm_active_directory_domain_service_trust", - "azurerm_advanced_threat_protection", - "azurerm_advisor_suppression", - "azurerm_ai_foundry", - "azurerm_ai_foundry_project", - "azurerm_ai_services", - "azurerm_analysis_services_server", - "azurerm_api_connection", - "azurerm_api_management", - "azurerm_api_management_api", - "azurerm_api_management_api_diagnostic", - "azurerm_api_management_api_operation", - "azurerm_api_management_api_operation_policy", - "azurerm_api_management_api_operation_tag", - "azurerm_api_management_api_policy", - "azurerm_api_management_api_release", - "azurerm_api_management_api_schema", - "azurerm_api_management_api_tag", - "azurerm_api_management_api_tag_description", - "azurerm_api_management_api_version_set", - "azurerm_api_management_authorization_server", - "azurerm_api_management_backend", - "azurerm_api_management_certificate", - "azurerm_api_management_custom_domain", - "azurerm_api_management_diagnostic", - "azurerm_api_management_email_template", - "azurerm_api_management_gateway", - "azurerm_api_management_gateway_api", - "azurerm_api_management_gateway_certificate_authority", - "azurerm_api_management_gateway_host_name_configuration", - "azurerm_api_management_global_schema", - "azurerm_api_management_group", - "azurerm_api_management_group_user", - "azurerm_api_management_identity_provider_aad", - "azurerm_api_management_identity_provider_aadb2c", - "azurerm_api_management_identity_provider_facebook", - "azurerm_api_management_identity_provider_google", - "azurerm_api_management_identity_provider_microsoft", - "azurerm_api_management_identity_provider_twitter", - "azurerm_api_management_logger", - "azurerm_api_management_named_value", - "azurerm_api_management_notification_recipient_email", - "azurerm_api_management_notification_recipient_user", - "azurerm_api_management_openid_connect_provider", - "azurerm_api_management_policy", - "azurerm_api_management_policy_fragment", - "azurerm_api_management_product", - "azurerm_api_management_product_api", - "azurerm_api_management_product_group", - "azurerm_api_management_product_policy", - "azurerm_api_management_product_tag", - "azurerm_api_management_redis_cache", - "azurerm_api_management_subscription", - "azurerm_api_management_tag", - "azurerm_api_management_user", - "azurerm_app_configuration", - "azurerm_app_configuration_feature", - "azurerm_app_configuration_key", - "azurerm_app_service", - "azurerm_app_service_active_slot", - "azurerm_app_service_certificate", - "azurerm_app_service_certificate_binding", - "azurerm_app_service_certificate_order", - "azurerm_app_service_connection", - "azurerm_app_service_custom_hostname_binding", - "azurerm_app_service_environment_v3", - "azurerm_app_service_hybrid_connection", - "azurerm_app_service_managed_certificate", - "azurerm_app_service_plan", - "azurerm_app_service_public_certificate", - "azurerm_app_service_slot", - "azurerm_app_service_slot_custom_hostname_binding", - "azurerm_app_service_slot_virtual_network_swift_connection", - "azurerm_app_service_source_control", - "azurerm_app_service_source_control_slot", - "azurerm_app_service_source_control_token", - "azurerm_app_service_virtual_network_swift_connection", - "azurerm_application_gateway", - "azurerm_application_insights", - "azurerm_application_insights_analytics_item", - "azurerm_application_insights_api_key", - "azurerm_application_insights_smart_detection_rule", - "azurerm_application_insights_workbook", - "azurerm_application_insights_workbook_template", - "azurerm_application_load_balancer", - "azurerm_application_load_balancer_frontend", - "azurerm_application_load_balancer_subnet_association", - "azurerm_application_security_group", - "azurerm_arc_kubernetes_cluster", - "azurerm_arc_kubernetes_cluster_extension", - "azurerm_arc_kubernetes_flux_configuration", - "azurerm_arc_kubernetes_provisioned_cluster", - "azurerm_arc_machine", - "azurerm_arc_machine_automanage_configuration_assignment", - "azurerm_arc_machine_extension", - "azurerm_arc_private_link_scope", - "azurerm_arc_resource_bridge_appliance", - "azurerm_attestation_provider", - "azurerm_automanage_configuration", - "azurerm_automation_account", - "azurerm_automation_certificate", - "azurerm_automation_connection", - "azurerm_automation_connection_certificate", - "azurerm_automation_connection_classic_certificate", - "azurerm_automation_connection_service_principal", - "azurerm_automation_connection_type", - "azurerm_automation_credential", - "azurerm_automation_dsc_configuration", - "azurerm_automation_dsc_nodeconfiguration", - "azurerm_automation_hybrid_runbook_worker", - "azurerm_automation_hybrid_runbook_worker_group", - "azurerm_automation_job_schedule", - "azurerm_automation_module", - "azurerm_automation_powershell72_module", - "azurerm_automation_python3_package", - "azurerm_automation_runbook", - "azurerm_automation_schedule", - "azurerm_automation_software_update_configuration", - "azurerm_automation_source_control", - "azurerm_automation_variable_bool", - "azurerm_automation_variable_datetime", - "azurerm_automation_variable_int", - "azurerm_automation_variable_object", - "azurerm_automation_variable_string", - "azurerm_automation_watcher", - "azurerm_automation_webhook", - "azurerm_availability_set", - "azurerm_backup_container_storage_account", - "azurerm_backup_policy_file_share", - "azurerm_backup_policy_vm", - "azurerm_backup_policy_vm_workload", - "azurerm_backup_protected_file_share", - "azurerm_backup_protected_vm", - "azurerm_bastion_host", - "azurerm_batch_account", - "azurerm_batch_application", - "azurerm_batch_certificate", - "azurerm_batch_job", - "azurerm_batch_pool", - "azurerm_billing_account_cost_management_export", - "azurerm_blueprint_assignment", - "azurerm_bot_channel_alexa", - "azurerm_bot_channel_direct_line_speech", - "azurerm_bot_channel_directline", - "azurerm_bot_channel_email", - "azurerm_bot_channel_facebook", - "azurerm_bot_channel_line", - "azurerm_bot_channel_ms_teams", - "azurerm_bot_channel_slack", - "azurerm_bot_channel_sms", - "azurerm_bot_channel_web_chat", - "azurerm_bot_channels_registration", - "azurerm_bot_connection", - "azurerm_bot_service_azure_bot", - "azurerm_bot_web_app", - "azurerm_capacity_reservation", - "azurerm_capacity_reservation_group", - "azurerm_cdn_endpoint", - "azurerm_cdn_endpoint_custom_domain", - "azurerm_cdn_frontdoor_custom_domain", - "azurerm_cdn_frontdoor_custom_domain_association", - "azurerm_cdn_frontdoor_endpoint", - "azurerm_cdn_frontdoor_firewall_policy", - "azurerm_cdn_frontdoor_origin", - "azurerm_cdn_frontdoor_origin_group", - "azurerm_cdn_frontdoor_profile", - "azurerm_cdn_frontdoor_route", - "azurerm_cdn_frontdoor_rule", - "azurerm_cdn_frontdoor_rule_set", - "azurerm_cdn_frontdoor_secret", - "azurerm_cdn_frontdoor_security_policy", - "azurerm_cdn_profile", - "azurerm_chaos_studio_capability", - "azurerm_chaos_studio_experiment", - "azurerm_chaos_studio_target", - "azurerm_cognitive_account", - "azurerm_cognitive_account_customer_managed_key", - "azurerm_cognitive_account_rai_blocklist", - "azurerm_cognitive_account_rai_policy", - "azurerm_cognitive_deployment", - "azurerm_communication_service", - "azurerm_communication_service_email_domain_association", - "azurerm_confidential_ledger", - "azurerm_consumption_budget_management_group", - "azurerm_consumption_budget_resource_group", - "azurerm_consumption_budget_subscription", - "azurerm_container_app", - "azurerm_container_app_custom_domain", - "azurerm_container_app_environment", - "azurerm_container_app_environment_certificate", - "azurerm_container_app_environment_custom_domain", - "azurerm_container_app_environment_dapr_component", - "azurerm_container_app_environment_storage", - "azurerm_container_app_job", - "azurerm_container_connected_registry", - "azurerm_container_group", - "azurerm_container_registry", - "azurerm_container_registry_agent_pool", - "azurerm_container_registry_cache_rule", - "azurerm_container_registry_credential_set", - "azurerm_container_registry_scope_map", - "azurerm_container_registry_task", - "azurerm_container_registry_task_schedule_run_now", - "azurerm_container_registry_token", - "azurerm_container_registry_token_password", - "azurerm_container_registry_webhook", - "azurerm_cosmosdb_account", - "azurerm_cosmosdb_cassandra_cluster", - "azurerm_cosmosdb_cassandra_datacenter", - "azurerm_cosmosdb_cassandra_keyspace", - "azurerm_cosmosdb_cassandra_table", - "azurerm_cosmosdb_gremlin_database", - "azurerm_cosmosdb_gremlin_graph", - "azurerm_cosmosdb_mongo_collection", - "azurerm_cosmosdb_mongo_database", - "azurerm_cosmosdb_mongo_role_definition", - "azurerm_cosmosdb_mongo_user_definition", - "azurerm_cosmosdb_postgresql_cluster", - "azurerm_cosmosdb_postgresql_coordinator_configuration", - "azurerm_cosmosdb_postgresql_firewall_rule", - "azurerm_cosmosdb_postgresql_node_configuration", - "azurerm_cosmosdb_postgresql_role", - "azurerm_cosmosdb_sql_container", - "azurerm_cosmosdb_sql_database", - "azurerm_cosmosdb_sql_dedicated_gateway", - "azurerm_cosmosdb_sql_function", - "azurerm_cosmosdb_sql_role_assignment", - "azurerm_cosmosdb_sql_role_definition", - "azurerm_cosmosdb_sql_stored_procedure", - "azurerm_cosmosdb_sql_trigger", - "azurerm_cosmosdb_table", - "azurerm_cost_anomaly_alert", - "azurerm_cost_management_scheduled_action", - "azurerm_custom_ip_prefix", - "azurerm_custom_provider", - "azurerm_dashboard", - "azurerm_dashboard_grafana", - "azurerm_dashboard_grafana_managed_private_endpoint", - "azurerm_data_factory", - "azurerm_data_factory_credential_service_principal", - "azurerm_data_factory_credential_user_managed_identity", - "azurerm_data_factory_custom_dataset", - "azurerm_data_factory_data_flow", - "azurerm_data_factory_dataset_azure_blob", - "azurerm_data_factory_dataset_azure_sql_table", - "azurerm_data_factory_dataset_binary", - "azurerm_data_factory_dataset_cosmosdb_sqlapi", - "azurerm_data_factory_dataset_delimited_text", - "azurerm_data_factory_dataset_http", - "azurerm_data_factory_dataset_json", - "azurerm_data_factory_dataset_mysql", - "azurerm_data_factory_dataset_parquet", - "azurerm_data_factory_dataset_postgresql", - "azurerm_data_factory_dataset_snowflake", - "azurerm_data_factory_dataset_sql_server_table", - "azurerm_data_factory_flowlet_data_flow", - "azurerm_data_factory_integration_runtime_azure", - "azurerm_data_factory_integration_runtime_azure_ssis", - "azurerm_data_factory_integration_runtime_self_hosted", - "azurerm_data_factory_linked_custom_service", - "azurerm_data_factory_linked_service_azure_blob_storage", - "azurerm_data_factory_linked_service_azure_databricks", - "azurerm_data_factory_linked_service_azure_file_storage", - "azurerm_data_factory_linked_service_azure_function", - "azurerm_data_factory_linked_service_azure_search", - "azurerm_data_factory_linked_service_azure_sql_database", - "azurerm_data_factory_linked_service_azure_table_storage", - "azurerm_data_factory_linked_service_cosmosdb", - "azurerm_data_factory_linked_service_cosmosdb_mongoapi", - "azurerm_data_factory_linked_service_data_lake_storage_gen2", - "azurerm_data_factory_linked_service_key_vault", - "azurerm_data_factory_linked_service_kusto", - "azurerm_data_factory_linked_service_mysql", - "azurerm_data_factory_linked_service_odata", - "azurerm_data_factory_linked_service_odbc", - "azurerm_data_factory_linked_service_postgresql", - "azurerm_data_factory_linked_service_sftp", - "azurerm_data_factory_linked_service_snowflake", - "azurerm_data_factory_linked_service_sql_server", - "azurerm_data_factory_linked_service_synapse", - "azurerm_data_factory_linked_service_web", - "azurerm_data_factory_managed_private_endpoint", - "azurerm_data_factory_pipeline", - "azurerm_data_factory_trigger_blob_event", - "azurerm_data_factory_trigger_custom_event", - "azurerm_data_factory_trigger_schedule", - "azurerm_data_factory_trigger_tumbling_window", - "azurerm_data_protection_backup_instance_blob_storage", - "azurerm_data_protection_backup_instance_disk", - "azurerm_data_protection_backup_instance_kubernetes_cluster", - "azurerm_data_protection_backup_instance_mysql_flexible_server", - "azurerm_data_protection_backup_instance_postgresql", - "azurerm_data_protection_backup_instance_postgresql_flexible_server", - "azurerm_data_protection_backup_policy_blob_storage", - "azurerm_data_protection_backup_policy_disk", - "azurerm_data_protection_backup_policy_kubernetes_cluster", - "azurerm_data_protection_backup_policy_mysql_flexible_server", - "azurerm_data_protection_backup_policy_postgresql", - "azurerm_data_protection_backup_policy_postgresql_flexible_server", - "azurerm_data_protection_backup_vault", - "azurerm_data_protection_backup_vault_customer_managed_key", - "azurerm_data_protection_resource_guard", - "azurerm_data_share", - "azurerm_data_share_account", - "azurerm_data_share_dataset_blob_storage", - "azurerm_data_share_dataset_data_lake_gen2", - "azurerm_data_share_dataset_kusto_cluster", - "azurerm_data_share_dataset_kusto_database", - "azurerm_database_migration_project", - "azurerm_database_migration_service", - "azurerm_databox_edge_device", - "azurerm_databricks_access_connector", - "azurerm_databricks_virtual_network_peering", - "azurerm_databricks_workspace", - "azurerm_databricks_workspace_root_dbfs_customer_managed_key", - "azurerm_datadog_monitor", - "azurerm_datadog_monitor_sso_configuration", - "azurerm_datadog_monitor_tag_rule", - "azurerm_dedicated_hardware_security_module", - "azurerm_dedicated_host", - "azurerm_dedicated_host_group", - "azurerm_dev_center", - "azurerm_dev_center_attached_network", - "azurerm_dev_center_catalog", - "azurerm_dev_center_dev_box_definition", - "azurerm_dev_center_environment_type", - "azurerm_dev_center_gallery", - "azurerm_dev_center_network_connection", - "azurerm_dev_center_project", - "azurerm_dev_center_project_environment_type", - "azurerm_dev_center_project_pool", - "azurerm_digital_twins_endpoint_eventgrid", - "azurerm_digital_twins_endpoint_eventhub", - "azurerm_digital_twins_endpoint_servicebus", - "azurerm_digital_twins_instance", - "azurerm_digital_twins_time_series_database_connection", - "azurerm_disk_access", - "azurerm_disk_encryption_set", - "azurerm_dns_a_record", - "azurerm_dns_aaaa_record", - "azurerm_dns_caa_record", - "azurerm_dns_cname_record", - "azurerm_dns_mx_record", - "azurerm_dns_ns_record", - "azurerm_dns_ptr_record", - "azurerm_dns_srv_record", - "azurerm_dns_txt_record", - "azurerm_dns_zone", - "azurerm_dynatrace_monitor", - "azurerm_dynatrace_tag_rules", - "azurerm_elastic_cloud_elasticsearch", - "azurerm_elastic_san", - "azurerm_elastic_san_volume", - "azurerm_elastic_san_volume_group", - "azurerm_email_communication_service", - "azurerm_email_communication_service_domain", - "azurerm_eventgrid_domain", - "azurerm_eventgrid_domain_topic", - "azurerm_eventgrid_event_subscription", - "azurerm_eventgrid_namespace", - "azurerm_eventgrid_partner_configuration", - "azurerm_eventgrid_system_topic", - "azurerm_eventgrid_system_topic_event_subscription", - "azurerm_eventgrid_topic", - "azurerm_eventhub", - "azurerm_eventhub_authorization_rule", - "azurerm_eventhub_cluster", - "azurerm_eventhub_consumer_group", - "azurerm_eventhub_namespace", - "azurerm_eventhub_namespace_authorization_rule", - "azurerm_eventhub_namespace_customer_managed_key", - "azurerm_eventhub_namespace_disaster_recovery_config", - "azurerm_eventhub_namespace_schema_group", - "azurerm_express_route_circuit", - "azurerm_express_route_circuit_authorization", - "azurerm_express_route_circuit_connection", - "azurerm_express_route_circuit_peering", - "azurerm_express_route_connection", - "azurerm_express_route_gateway", - "azurerm_express_route_port", - "azurerm_express_route_port_authorization", - "azurerm_extended_location_custom_location", - "azurerm_fabric_capacity", - "azurerm_federated_identity_credential", - "azurerm_firewall", - "azurerm_firewall_application_rule_collection", - "azurerm_firewall_nat_rule_collection", - "azurerm_firewall_network_rule_collection", - "azurerm_firewall_policy", - "azurerm_firewall_policy_rule_collection_group", - "azurerm_fluid_relay_server", - "azurerm_frontdoor", - "azurerm_frontdoor_custom_https_configuration", - "azurerm_frontdoor_firewall_policy", - "azurerm_frontdoor_rules_engine", - "azurerm_function_app", - "azurerm_function_app_active_slot", - "azurerm_function_app_connection", - "azurerm_function_app_flex_consumption", - "azurerm_function_app_function", - "azurerm_function_app_hybrid_connection", - "azurerm_function_app_slot", - "azurerm_gallery_application", - "azurerm_gallery_application_version", - "azurerm_graph_services_account", - "azurerm_hdinsight_hadoop_cluster", - "azurerm_hdinsight_hbase_cluster", - "azurerm_hdinsight_interactive_query_cluster", - "azurerm_hdinsight_kafka_cluster", - "azurerm_hdinsight_spark_cluster", - "azurerm_healthbot", - "azurerm_healthcare_dicom_service", - "azurerm_healthcare_fhir_service", - "azurerm_healthcare_medtech_service", - "azurerm_healthcare_medtech_service_fhir_destination", - "azurerm_healthcare_service", - "azurerm_healthcare_workspace", - "azurerm_hpc_cache", - "azurerm_hpc_cache_access_policy", - "azurerm_hpc_cache_blob_nfs_target", - "azurerm_hpc_cache_blob_target", - "azurerm_hpc_cache_nfs_target", - "azurerm_image", - "azurerm_iot_security_device_group", - "azurerm_iot_security_solution", - "azurerm_iotcentral_application", - "azurerm_iotcentral_application_network_rule_set", - "azurerm_iotcentral_organization", - "azurerm_iothub", - "azurerm_iothub_certificate", - "azurerm_iothub_consumer_group", - "azurerm_iothub_device_update_account", - "azurerm_iothub_device_update_instance", - "azurerm_iothub_dps", - "azurerm_iothub_dps_certificate", - "azurerm_iothub_dps_shared_access_policy", - "azurerm_iothub_endpoint_cosmosdb_account", - "azurerm_iothub_endpoint_eventhub", - "azurerm_iothub_endpoint_servicebus_queue", - "azurerm_iothub_endpoint_servicebus_topic", - "azurerm_iothub_endpoint_storage_container", - "azurerm_iothub_enrichment", - "azurerm_iothub_fallback_route", - "azurerm_iothub_file_upload", - "azurerm_iothub_route", - "azurerm_iothub_shared_access_policy", - "azurerm_ip_group", - "azurerm_ip_group_cidr", - "azurerm_key_vault", - "azurerm_key_vault_access_policy", - "azurerm_key_vault_certificate", - "azurerm_key_vault_certificate_contacts", - "azurerm_key_vault_certificate_issuer", - "azurerm_key_vault_key", - "azurerm_key_vault_managed_hardware_security_module", - "azurerm_key_vault_managed_hardware_security_module_key", - "azurerm_key_vault_managed_hardware_security_module_key_rotation_policy", - "azurerm_key_vault_managed_hardware_security_module_role_assignment", - "azurerm_key_vault_managed_hardware_security_module_role_definition", - "azurerm_key_vault_managed_storage_account", - "azurerm_key_vault_managed_storage_account_sas_token_definition", - "azurerm_key_vault_secret", - "azurerm_kubernetes_cluster", - "azurerm_kubernetes_cluster_extension", - "azurerm_kubernetes_cluster_node_pool", - "azurerm_kubernetes_cluster_trusted_access_role_binding", - "azurerm_kubernetes_fleet_manager", - "azurerm_kubernetes_fleet_member", - "azurerm_kubernetes_fleet_update_run", - "azurerm_kubernetes_fleet_update_strategy", - "azurerm_kubernetes_flux_configuration", - "azurerm_kusto_attached_database_configuration", - "azurerm_kusto_cluster", - "azurerm_kusto_cluster_customer_managed_key", - "azurerm_kusto_cluster_managed_private_endpoint", - "azurerm_kusto_cluster_principal_assignment", - "azurerm_kusto_cosmosdb_data_connection", - "azurerm_kusto_database", - "azurerm_kusto_database_principal_assignment", - "azurerm_kusto_eventgrid_data_connection", - "azurerm_kusto_eventhub_data_connection", - "azurerm_kusto_iothub_data_connection", - "azurerm_kusto_script", - "azurerm_lb", - "azurerm_lb_backend_address_pool", - "azurerm_lb_backend_address_pool_address", - "azurerm_lb_nat_pool", - "azurerm_lb_nat_rule", - "azurerm_lb_outbound_rule", - "azurerm_lb_probe", - "azurerm_lb_rule", - "azurerm_lighthouse_assignment", - "azurerm_lighthouse_definition", - "azurerm_linux_function_app", - "azurerm_linux_function_app_slot", - "azurerm_linux_virtual_machine", - "azurerm_linux_virtual_machine_scale_set", - "azurerm_linux_web_app", - "azurerm_linux_web_app_slot", - "azurerm_local_network_gateway", - "azurerm_log_analytics_cluster", - "azurerm_log_analytics_cluster_customer_managed_key", - "azurerm_log_analytics_data_export_rule", - "azurerm_log_analytics_datasource_windows_event", - "azurerm_log_analytics_datasource_windows_performance_counter", - "azurerm_log_analytics_linked_service", - "azurerm_log_analytics_linked_storage_account", - "azurerm_log_analytics_query_pack", - "azurerm_log_analytics_query_pack_query", - "azurerm_log_analytics_saved_search", - "azurerm_log_analytics_solution", - "azurerm_log_analytics_storage_insights", - "azurerm_log_analytics_workspace", - "azurerm_log_analytics_workspace_table", - "azurerm_logic_app_action_custom", - "azurerm_logic_app_action_http", - "azurerm_logic_app_integration_account", - "azurerm_logic_app_integration_account_agreement", - "azurerm_logic_app_integration_account_assembly", - "azurerm_logic_app_integration_account_batch_configuration", - "azurerm_logic_app_integration_account_certificate", - "azurerm_logic_app_integration_account_map", - "azurerm_logic_app_integration_account_partner", - "azurerm_logic_app_integration_account_schema", - "azurerm_logic_app_integration_account_session", - "azurerm_logic_app_standard", - "azurerm_logic_app_trigger_custom", - "azurerm_logic_app_trigger_http_request", - "azurerm_logic_app_trigger_recurrence", - "azurerm_logic_app_workflow", - "azurerm_machine_learning_compute_cluster", - "azurerm_machine_learning_compute_instance", - "azurerm_machine_learning_datastore_blobstorage", - "azurerm_machine_learning_datastore_datalake_gen2", - "azurerm_machine_learning_datastore_fileshare", - "azurerm_machine_learning_inference_cluster", - "azurerm_machine_learning_synapse_spark", - "azurerm_machine_learning_workspace", - "azurerm_machine_learning_workspace_network_outbound_rule_fqdn", - "azurerm_machine_learning_workspace_network_outbound_rule_private_endpoint", - "azurerm_machine_learning_workspace_network_outbound_rule_service_tag", - "azurerm_maintenance_assignment_dedicated_host", - "azurerm_maintenance_assignment_dynamic_scope", - "azurerm_maintenance_assignment_virtual_machine", - "azurerm_maintenance_assignment_virtual_machine_scale_set", - "azurerm_maintenance_configuration", - "azurerm_managed_application", - "azurerm_managed_application_definition", - "azurerm_managed_disk", - "azurerm_managed_disk_sas_token", - "azurerm_managed_lustre_file_system", - "azurerm_management_group", - "azurerm_management_group_policy_assignment", - "azurerm_management_group_policy_exemption", - "azurerm_management_group_policy_remediation", - "azurerm_management_group_subscription_association", - "azurerm_management_group_template_deployment", - "azurerm_management_lock", - "azurerm_maps_account", - "azurerm_maps_creator", - "azurerm_marketplace_agreement", - "azurerm_marketplace_role_assignment", - "azurerm_media_services_account", - "azurerm_media_transform", - "azurerm_mobile_network", - "azurerm_mobile_network_attached_data_network", - "azurerm_mobile_network_data_network", - "azurerm_mobile_network_packet_core_control_plane", - "azurerm_mobile_network_packet_core_data_plane", - "azurerm_mobile_network_service", - "azurerm_mobile_network_sim", - "azurerm_mobile_network_sim_group", - "azurerm_mobile_network_sim_policy", - "azurerm_mobile_network_site", - "azurerm_mobile_network_slice", - "azurerm_mongo_cluster", - "azurerm_monitor_aad_diagnostic_setting", - "azurerm_monitor_action_group", - "azurerm_monitor_activity_log_alert", - "azurerm_monitor_alert_processing_rule_action_group", - "azurerm_monitor_alert_processing_rule_suppression", - "azurerm_monitor_alert_prometheus_rule_group", - "azurerm_monitor_autoscale_setting", - "azurerm_monitor_data_collection_endpoint", - "azurerm_monitor_data_collection_rule", - "azurerm_monitor_data_collection_rule_association", - "azurerm_monitor_diagnostic_setting", - "azurerm_monitor_metric_alert", - "azurerm_monitor_private_link_scope", - "azurerm_monitor_private_link_scoped_service", - "azurerm_monitor_scheduled_query_rules_alert", - "azurerm_monitor_scheduled_query_rules_alert_v2", - "azurerm_monitor_scheduled_query_rules_log", - "azurerm_monitor_smart_detector_alert_rule", - "azurerm_monitor_workspace", - "azurerm_mssql_database", - "azurerm_mssql_database_extended_auditing_policy", - "azurerm_mssql_database_vulnerability_assessment_rule_baseline", - "azurerm_mssql_elasticpool", - "azurerm_mssql_failover_group", - "azurerm_mssql_firewall_rule", - "azurerm_mssql_job", - "azurerm_mssql_job_agent", - "azurerm_mssql_job_credential", - "azurerm_mssql_job_schedule", - "azurerm_mssql_job_step", - "azurerm_mssql_job_target_group", - "azurerm_mssql_managed_database", - "azurerm_mssql_managed_instance", - "azurerm_mssql_managed_instance_active_directory_administrator", - "azurerm_mssql_managed_instance_failover_group", - "azurerm_mssql_managed_instance_security_alert_policy", - "azurerm_mssql_managed_instance_transparent_data_encryption", - "azurerm_mssql_managed_instance_vulnerability_assessment", - "azurerm_mssql_outbound_firewall_rule", - "azurerm_mssql_server", - "azurerm_mssql_server_dns_alias", - "azurerm_mssql_server_extended_auditing_policy", - "azurerm_mssql_server_microsoft_support_auditing_policy", - "azurerm_mssql_server_security_alert_policy", - "azurerm_mssql_server_transparent_data_encryption", - "azurerm_mssql_server_vulnerability_assessment", - "azurerm_mssql_virtual_machine", - "azurerm_mssql_virtual_machine_availability_group_listener", - "azurerm_mssql_virtual_machine_group", - "azurerm_mssql_virtual_network_rule", - "azurerm_mysql_flexible_database", - "azurerm_mysql_flexible_server", - "azurerm_mysql_flexible_server_active_directory_administrator", - "azurerm_mysql_flexible_server_configuration", - "azurerm_mysql_flexible_server_firewall_rule", - "azurerm_nat_gateway", - "azurerm_nat_gateway_public_ip_association", - "azurerm_nat_gateway_public_ip_prefix_association", - "azurerm_netapp_account", - "azurerm_netapp_account_encryption", - "azurerm_netapp_backup_policy", - "azurerm_netapp_backup_vault", - "azurerm_netapp_pool", - "azurerm_netapp_snapshot", - "azurerm_netapp_snapshot_policy", - "azurerm_netapp_volume", - "azurerm_netapp_volume_group_oracle", - "azurerm_netapp_volume_group_sap_hana", - "azurerm_netapp_volume_quota_rule", - "azurerm_network_connection_monitor", - "azurerm_network_ddos_protection_plan", - "azurerm_network_function_azure_traffic_collector", - "azurerm_network_function_collector_policy", - "azurerm_network_interface", - "azurerm_network_interface_application_gateway_backend_address_pool_association", - "azurerm_network_interface_application_security_group_association", - "azurerm_network_interface_backend_address_pool_association", - "azurerm_network_interface_nat_rule_association", - "azurerm_network_interface_security_group_association", - "azurerm_network_manager", - "azurerm_network_manager_admin_rule", - "azurerm_network_manager_admin_rule_collection", - "azurerm_network_manager_connectivity_configuration", - "azurerm_network_manager_deployment", - "azurerm_network_manager_ipam_pool", - "azurerm_network_manager_management_group_connection", - "azurerm_network_manager_network_group", - "azurerm_network_manager_routing_configuration", - "azurerm_network_manager_scope_connection", - "azurerm_network_manager_security_admin_configuration", - "azurerm_network_manager_static_member", - "azurerm_network_manager_subscription_connection", - "azurerm_network_manager_verifier_workspace", - "azurerm_network_profile", - "azurerm_network_security_group", - "azurerm_network_security_rule", - "azurerm_network_watcher", - "azurerm_network_watcher_flow_log", - "azurerm_new_relic_monitor", - "azurerm_new_relic_tag_rule", - "azurerm_nginx_api_key", - "azurerm_nginx_certificate", - "azurerm_nginx_configuration", - "azurerm_nginx_deployment", - "azurerm_notification_hub", - "azurerm_notification_hub_authorization_rule", - "azurerm_notification_hub_namespace", - "azurerm_oracle_autonomous_database", - "azurerm_oracle_cloud_vm_cluster", - "azurerm_oracle_exadata_infrastructure", - "azurerm_orbital_contact", - "azurerm_orbital_contact_profile", - "azurerm_orbital_spacecraft", - "azurerm_orchestrated_virtual_machine_scale_set", - "azurerm_palo_alto_local_rulestack", - "azurerm_palo_alto_local_rulestack_certificate", - "azurerm_palo_alto_local_rulestack_fqdn_list", - "azurerm_palo_alto_local_rulestack_outbound_trust_certificate_association", - "azurerm_palo_alto_local_rulestack_outbound_untrust_certificate_association", - "azurerm_palo_alto_local_rulestack_prefix_list", - "azurerm_palo_alto_local_rulestack_rule", - "azurerm_palo_alto_next_generation_firewall_virtual_hub_local_rulestack", - "azurerm_palo_alto_next_generation_firewall_virtual_hub_panorama", - "azurerm_palo_alto_next_generation_firewall_virtual_network_local_rulestack", - "azurerm_palo_alto_next_generation_firewall_virtual_network_panorama", - "azurerm_palo_alto_virtual_network_appliance", - "azurerm_pim_active_role_assignment", - "azurerm_pim_eligible_role_assignment", - "azurerm_point_to_site_vpn_gateway", - "azurerm_policy_definition", - "azurerm_policy_set_definition", - "azurerm_policy_virtual_machine_configuration_assignment", - "azurerm_portal_dashboard", - "azurerm_portal_tenant_configuration", - "azurerm_postgresql_active_directory_administrator", - "azurerm_postgresql_configuration", - "azurerm_postgresql_database", - "azurerm_postgresql_firewall_rule", - "azurerm_postgresql_flexible_server", - "azurerm_postgresql_flexible_server_active_directory_administrator", - "azurerm_postgresql_flexible_server_configuration", - "azurerm_postgresql_flexible_server_database", - "azurerm_postgresql_flexible_server_firewall_rule", - "azurerm_postgresql_flexible_server_virtual_endpoint", - "azurerm_postgresql_server", - "azurerm_postgresql_server_key", - "azurerm_postgresql_virtual_network_rule", - "azurerm_powerbi_embedded", - "azurerm_private_dns_a_record", - "azurerm_private_dns_aaaa_record", - "azurerm_private_dns_cname_record", - "azurerm_private_dns_mx_record", - "azurerm_private_dns_ptr_record", - "azurerm_private_dns_resolver", - "azurerm_private_dns_resolver_dns_forwarding_ruleset", - "azurerm_private_dns_resolver_forwarding_rule", - "azurerm_private_dns_resolver_inbound_endpoint", - "azurerm_private_dns_resolver_outbound_endpoint", - "azurerm_private_dns_resolver_virtual_network_link", - "azurerm_private_dns_soa_record", - "azurerm_private_dns_srv_record", - "azurerm_private_dns_txt_record", - "azurerm_private_dns_zone", - "azurerm_private_dns_zone_virtual_network_link", - "azurerm_private_endpoint", - "azurerm_private_endpoint_application_security_group_association", - "azurerm_private_link_service", - "azurerm_proximity_placement_group", - "azurerm_public_ip", - "azurerm_public_ip_prefix", - "azurerm_purview_account", - "azurerm_recovery_services_vault", - "azurerm_recovery_services_vault_resource_guard_association", - "azurerm_redhat_openshift_cluster", - "azurerm_redis_cache", - "azurerm_redis_cache_access_policy", - "azurerm_redis_cache_access_policy_assignment", - "azurerm_redis_enterprise_cluster", - "azurerm_redis_enterprise_database", - "azurerm_redis_firewall_rule", - "azurerm_redis_linked_server", - "azurerm_relay_hybrid_connection", - "azurerm_relay_hybrid_connection_authorization_rule", - "azurerm_relay_namespace", - "azurerm_relay_namespace_authorization_rule", - "azurerm_resource_deployment_script_azure_cli", - "azurerm_resource_deployment_script_azure_power_shell", - "azurerm_resource_group", - "azurerm_resource_group_cost_management_export", - "azurerm_resource_group_cost_management_view", - "azurerm_resource_group_policy_assignment", - "azurerm_resource_group_policy_exemption", - "azurerm_resource_group_policy_remediation", - "azurerm_resource_group_template_deployment", - "azurerm_resource_management_private_link", - "azurerm_resource_management_private_link_association", - "azurerm_resource_policy_assignment", - "azurerm_resource_policy_exemption", - "azurerm_resource_policy_remediation", - "azurerm_resource_provider_registration", - "azurerm_role_assignment", - "azurerm_role_definition", - "azurerm_role_management_policy", - "azurerm_route", - "azurerm_route_filter", - "azurerm_route_map", - "azurerm_route_server", - "azurerm_route_server_bgp_connection", - "azurerm_route_table", - "azurerm_search_service", - "azurerm_search_shared_private_link_service", - "azurerm_security_center_assessment", - "azurerm_security_center_assessment_policy", - "azurerm_security_center_auto_provisioning", - "azurerm_security_center_automation", - "azurerm_security_center_contact", - "azurerm_security_center_server_vulnerability_assessment_virtual_machine", - "azurerm_security_center_server_vulnerability_assessments_setting", - "azurerm_security_center_setting", - "azurerm_security_center_storage_defender", - "azurerm_security_center_subscription_pricing", - "azurerm_security_center_workspace", - "azurerm_sentinel_alert_rule_anomaly_built_in", - "azurerm_sentinel_alert_rule_anomaly_duplicate", - "azurerm_sentinel_alert_rule_fusion", - "azurerm_sentinel_alert_rule_machine_learning_behavior_analytics", - "azurerm_sentinel_alert_rule_ms_security_incident", - "azurerm_sentinel_alert_rule_nrt", - "azurerm_sentinel_alert_rule_scheduled", - "azurerm_sentinel_alert_rule_threat_intelligence", - "azurerm_sentinel_automation_rule", - "azurerm_sentinel_data_connector_aws_cloud_trail", - "azurerm_sentinel_data_connector_aws_s3", - "azurerm_sentinel_data_connector_azure_active_directory", - "azurerm_sentinel_data_connector_azure_advanced_threat_protection", - "azurerm_sentinel_data_connector_azure_security_center", - "azurerm_sentinel_data_connector_dynamics_365", - "azurerm_sentinel_data_connector_iot", - "azurerm_sentinel_data_connector_microsoft_cloud_app_security", - "azurerm_sentinel_data_connector_microsoft_defender_advanced_threat_protection", - "azurerm_sentinel_data_connector_microsoft_threat_intelligence", - "azurerm_sentinel_data_connector_microsoft_threat_protection", - "azurerm_sentinel_data_connector_office_365", - "azurerm_sentinel_data_connector_office_365_project", - "azurerm_sentinel_data_connector_office_atp", - "azurerm_sentinel_data_connector_office_irm", - "azurerm_sentinel_data_connector_office_power_bi", - "azurerm_sentinel_data_connector_threat_intelligence", - "azurerm_sentinel_data_connector_threat_intelligence_taxii", - "azurerm_sentinel_log_analytics_workspace_onboarding", - "azurerm_sentinel_metadata", - "azurerm_sentinel_threat_intelligence_indicator", - "azurerm_sentinel_watchlist", - "azurerm_sentinel_watchlist_item", - "azurerm_service_fabric_cluster", - "azurerm_service_fabric_managed_cluster", - "azurerm_service_plan", - "azurerm_servicebus_namespace", - "azurerm_servicebus_namespace_authorization_rule", - "azurerm_servicebus_namespace_customer_managed_key", - "azurerm_servicebus_namespace_disaster_recovery_config", - "azurerm_servicebus_queue", - "azurerm_servicebus_queue_authorization_rule", - "azurerm_servicebus_subscription", - "azurerm_servicebus_subscription_rule", - "azurerm_servicebus_topic", - "azurerm_servicebus_topic_authorization_rule", - "azurerm_shared_image", - "azurerm_shared_image_gallery", - "azurerm_shared_image_version", - "azurerm_signalr_service", - "azurerm_signalr_service_custom_certificate", - "azurerm_signalr_service_custom_domain", - "azurerm_signalr_service_network_acl", - "azurerm_signalr_shared_private_link_resource", - "azurerm_site_recovery_fabric", - "azurerm_site_recovery_hyperv_network_mapping", - "azurerm_site_recovery_hyperv_replication_policy", - "azurerm_site_recovery_hyperv_replication_policy_association", - "azurerm_site_recovery_network_mapping", - "azurerm_site_recovery_protection_container", - "azurerm_site_recovery_protection_container_mapping", - "azurerm_site_recovery_replicated_vm", - "azurerm_site_recovery_replication_policy", - "azurerm_site_recovery_replication_recovery_plan", - "azurerm_site_recovery_services_vault_hyperv_site", - "azurerm_site_recovery_vmware_replicated_vm", - "azurerm_site_recovery_vmware_replication_policy", - "azurerm_site_recovery_vmware_replication_policy_association", - "azurerm_snapshot", - "azurerm_source_control_token", - "azurerm_spatial_anchors_account", - "azurerm_spring_cloud_accelerator", - "azurerm_spring_cloud_active_deployment", - "azurerm_spring_cloud_api_portal", - "azurerm_spring_cloud_api_portal_custom_domain", - "azurerm_spring_cloud_app", - "azurerm_spring_cloud_app_cosmosdb_association", - "azurerm_spring_cloud_app_dynamics_application_performance_monitoring", - "azurerm_spring_cloud_app_mysql_association", - "azurerm_spring_cloud_app_redis_association", - "azurerm_spring_cloud_application_insights_application_performance_monitoring", - "azurerm_spring_cloud_application_live_view", - "azurerm_spring_cloud_build_deployment", - "azurerm_spring_cloud_build_pack_binding", - "azurerm_spring_cloud_builder", - "azurerm_spring_cloud_certificate", - "azurerm_spring_cloud_configuration_service", - "azurerm_spring_cloud_connection", - "azurerm_spring_cloud_container_deployment", - "azurerm_spring_cloud_custom_domain", - "azurerm_spring_cloud_customized_accelerator", - "azurerm_spring_cloud_dev_tool_portal", - "azurerm_spring_cloud_dynatrace_application_performance_monitoring", - "azurerm_spring_cloud_elastic_application_performance_monitoring", - "azurerm_spring_cloud_gateway", - "azurerm_spring_cloud_gateway_custom_domain", - "azurerm_spring_cloud_gateway_route_config", - "azurerm_spring_cloud_java_deployment", - "azurerm_spring_cloud_new_relic_application_performance_monitoring", - "azurerm_spring_cloud_service", - "azurerm_spring_cloud_storage", - "azurerm_sql_firewall_rule", - "azurerm_sql_server", - "azurerm_sql_virtual_network_rule", - "azurerm_ssh_public_key", - "azurerm_stack_hci_cluster", - "azurerm_stack_hci_deployment_setting", - "azurerm_stack_hci_extension", - "azurerm_stack_hci_logical_network", - "azurerm_stack_hci_marketplace_gallery_image", - "azurerm_stack_hci_network_interface", - "azurerm_stack_hci_storage_path", - "azurerm_stack_hci_virtual_hard_disk", - "azurerm_static_site", - "azurerm_static_site_custom_domain", - "azurerm_static_web_app", - "azurerm_static_web_app_custom_domain", - "azurerm_static_web_app_function_app_registration", - "azurerm_storage_account", - "azurerm_storage_account_customer_managed_key", - "azurerm_storage_account_local_user", - "azurerm_storage_account_network_rules", - "azurerm_storage_account_queue_properties", - "azurerm_storage_account_static_website", - "azurerm_storage_blob", - "azurerm_storage_blob_inventory_policy", - "azurerm_storage_container", - "azurerm_storage_container_immutability_policy", - "azurerm_storage_data_lake_gen2_filesystem", - "azurerm_storage_data_lake_gen2_path", - "azurerm_storage_encryption_scope", - "azurerm_storage_management_policy", - "azurerm_storage_mover", - "azurerm_storage_mover_agent", - "azurerm_storage_mover_job_definition", - "azurerm_storage_mover_project", - "azurerm_storage_mover_source_endpoint", - "azurerm_storage_mover_target_endpoint", - "azurerm_storage_object_replication", - "azurerm_storage_queue", - "azurerm_storage_share", - "azurerm_storage_share_directory", - "azurerm_storage_share_file", - "azurerm_storage_sync", - "azurerm_storage_sync_cloud_endpoint", - "azurerm_storage_sync_group", - "azurerm_storage_sync_server_endpoint", - "azurerm_storage_table", - "azurerm_storage_table_entity", - "azurerm_stream_analytics_cluster", - "azurerm_stream_analytics_function_javascript_uda", - "azurerm_stream_analytics_function_javascript_udf", - "azurerm_stream_analytics_job", - "azurerm_stream_analytics_job_schedule", - "azurerm_stream_analytics_job_storage_account", - "azurerm_stream_analytics_managed_private_endpoint", - "azurerm_stream_analytics_output_blob", - "azurerm_stream_analytics_output_cosmosdb", - "azurerm_stream_analytics_output_eventhub", - "azurerm_stream_analytics_output_function", - "azurerm_stream_analytics_output_mssql", - "azurerm_stream_analytics_output_powerbi", - "azurerm_stream_analytics_output_servicebus_queue", - "azurerm_stream_analytics_output_servicebus_topic", - "azurerm_stream_analytics_output_synapse", - "azurerm_stream_analytics_output_table", - "azurerm_stream_analytics_reference_input_blob", - "azurerm_stream_analytics_reference_input_mssql", - "azurerm_stream_analytics_stream_input_blob", - "azurerm_stream_analytics_stream_input_eventhub", - "azurerm_stream_analytics_stream_input_eventhub_v2", - "azurerm_stream_analytics_stream_input_iothub", - "azurerm_subnet", - "azurerm_subnet_nat_gateway_association", - "azurerm_subnet_network_security_group_association", - "azurerm_subnet_route_table_association", - "azurerm_subnet_service_endpoint_storage_policy", - "azurerm_subscription", - "azurerm_subscription_cost_management_export", - "azurerm_subscription_cost_management_view", - "azurerm_subscription_policy_assignment", - "azurerm_subscription_policy_exemption", - "azurerm_subscription_policy_remediation", - "azurerm_subscription_template_deployment", - "azurerm_synapse_firewall_rule", - "azurerm_synapse_integration_runtime_azure", - "azurerm_synapse_integration_runtime_self_hosted", - "azurerm_synapse_linked_service", - "azurerm_synapse_managed_private_endpoint", - "azurerm_synapse_private_link_hub", - "azurerm_synapse_role_assignment", - "azurerm_synapse_spark_pool", - "azurerm_synapse_sql_pool", - "azurerm_synapse_sql_pool_extended_auditing_policy", - "azurerm_synapse_sql_pool_security_alert_policy", - "azurerm_synapse_sql_pool_vulnerability_assessment", - "azurerm_synapse_sql_pool_vulnerability_assessment_baseline", - "azurerm_synapse_sql_pool_workload_classifier", - "azurerm_synapse_sql_pool_workload_group", - "azurerm_synapse_workspace", - "azurerm_synapse_workspace_aad_admin", - "azurerm_synapse_workspace_extended_auditing_policy", - "azurerm_synapse_workspace_key", - "azurerm_synapse_workspace_security_alert_policy", - "azurerm_synapse_workspace_sql_aad_admin", - "azurerm_synapse_workspace_vulnerability_assessment", - "azurerm_system_center_virtual_machine_manager_availability_set", - "azurerm_system_center_virtual_machine_manager_cloud", - "azurerm_system_center_virtual_machine_manager_server", - "azurerm_system_center_virtual_machine_manager_virtual_machine_instance", - "azurerm_system_center_virtual_machine_manager_virtual_machine_instance_guest_agent", - "azurerm_system_center_virtual_machine_manager_virtual_machine_template", - "azurerm_system_center_virtual_machine_manager_virtual_network", - "azurerm_tenant_template_deployment", - "azurerm_traffic_manager_azure_endpoint", - "azurerm_traffic_manager_external_endpoint", - "azurerm_traffic_manager_nested_endpoint", - "azurerm_traffic_manager_profile", - "azurerm_trusted_signing_account", - "azurerm_user_assigned_identity", - "azurerm_video_indexer_account", - "azurerm_virtual_desktop_application", - "azurerm_virtual_desktop_application_group", - "azurerm_virtual_desktop_host_pool", - "azurerm_virtual_desktop_host_pool_registration_info", - "azurerm_virtual_desktop_scaling_plan", - "azurerm_virtual_desktop_scaling_plan_host_pool_association", - "azurerm_virtual_desktop_workspace", - "azurerm_virtual_desktop_workspace_application_group_association", - "azurerm_virtual_hub", - "azurerm_virtual_hub_bgp_connection", - "azurerm_virtual_hub_connection", - "azurerm_virtual_hub_ip", - "azurerm_virtual_hub_route_table", - "azurerm_virtual_hub_route_table_route", - "azurerm_virtual_hub_routing_intent", - "azurerm_virtual_hub_security_partner_provider", - "azurerm_virtual_machine", - "azurerm_virtual_machine_automanage_configuration_assignment", - "azurerm_virtual_machine_data_disk_attachment", - "azurerm_virtual_machine_extension", - "azurerm_virtual_machine_gallery_application_assignment", - "azurerm_virtual_machine_implicit_data_disk_from_source", - "azurerm_virtual_machine_packet_capture", - "azurerm_virtual_machine_restore_point", - "azurerm_virtual_machine_restore_point_collection", - "azurerm_virtual_machine_run_command", - "azurerm_virtual_machine_scale_set", - "azurerm_virtual_machine_scale_set_extension", - "azurerm_virtual_machine_scale_set_packet_capture", - "azurerm_virtual_machine_scale_set_standby_pool", - "azurerm_virtual_network", - "azurerm_virtual_network_dns_servers", - "azurerm_virtual_network_gateway", - "azurerm_virtual_network_gateway_connection", - "azurerm_virtual_network_gateway_nat_rule", - "azurerm_virtual_network_peering", - "azurerm_virtual_wan", - "azurerm_vmware_cluster", - "azurerm_vmware_express_route_authorization", - "azurerm_vmware_netapp_volume_attachment", - "azurerm_vmware_private_cloud", - "azurerm_voice_services_communications_gateway", - "azurerm_vpn_gateway", - "azurerm_vpn_gateway_connection", - "azurerm_vpn_gateway_nat_rule", - "azurerm_vpn_server_configuration", - "azurerm_vpn_server_configuration_policy_group", - "azurerm_vpn_site", - "azurerm_web_app_active_slot", - "azurerm_web_app_hybrid_connection", - "azurerm_web_application_firewall_policy", - "azurerm_web_pubsub", - "azurerm_web_pubsub_custom_certificate", - "azurerm_web_pubsub_custom_domain", - "azurerm_web_pubsub_hub", - "azurerm_web_pubsub_network_acl", - "azurerm_web_pubsub_service", - "azurerm_web_pubsub_shared_private_link_resource", - "azurerm_web_pubsub_socketio", - "azurerm_windows_function_app", - "azurerm_windows_function_app_slot", - "azurerm_windows_virtual_machine", - "azurerm_windows_virtual_machine_scale_set", - "azurerm_windows_web_app", - "azurerm_windows_web_app_slot", - "azurerm_workloads_sap_discovery_virtual_instance", - "azurerm_workloads_sap_single_node_virtual_instance", - "azurerm_workloads_sap_three_tier_virtual_instance" - ], - "dataSources": [ - "azurerm_aadb2c_directory", - "azurerm_active_directory_domain_service", - "azurerm_advisor_recommendations", - "azurerm_api_management", - "azurerm_api_management_api", - "azurerm_api_management_api_version_set", - "azurerm_api_management_gateway", - "azurerm_api_management_gateway_host_name_configuration", - "azurerm_api_management_group", - "azurerm_api_management_product", - "azurerm_api_management_subscription", - "azurerm_api_management_user", - "azurerm_app_configuration", - "azurerm_app_configuration_key", - "azurerm_app_configuration_keys", - "azurerm_app_service", - "azurerm_app_service_certificate", - "azurerm_app_service_certificate_order", - "azurerm_app_service_environment_v3", - "azurerm_app_service_plan", - "azurerm_application_gateway", - "azurerm_application_insights", - "azurerm_application_security_group", - "azurerm_arc_machine", - "azurerm_arc_resource_bridge_appliance", - "azurerm_attestation", - "azurerm_automation_account", - "azurerm_automation_runbook", - "azurerm_automation_variable_bool", - "azurerm_automation_variable_datetime", - "azurerm_automation_variable_int", - "azurerm_automation_variable_object", - "azurerm_automation_variable_string", - "azurerm_automation_variables", - "azurerm_availability_set", - "azurerm_backup_policy_file_share", - "azurerm_backup_policy_vm", - "azurerm_bastion_host", - "azurerm_batch_account", - "azurerm_batch_application", - "azurerm_batch_certificate", - "azurerm_batch_pool", - "azurerm_billing_enrollment_account_scope", - "azurerm_billing_mca_account_scope", - "azurerm_billing_mpa_account_scope", - "azurerm_blueprint_definition", - "azurerm_blueprint_published_version", - "azurerm_cdn_frontdoor_custom_domain", - "azurerm_cdn_frontdoor_endpoint", - "azurerm_cdn_frontdoor_firewall_policy", - "azurerm_cdn_frontdoor_origin_group", - "azurerm_cdn_frontdoor_profile", - "azurerm_cdn_frontdoor_rule_set", - "azurerm_cdn_frontdoor_secret", - "azurerm_cdn_profile", - "azurerm_client_config", - "azurerm_cognitive_account", - "azurerm_communication_service", - "azurerm_confidential_ledger", - "azurerm_consumption_budget_resource_group", - "azurerm_consumption_budget_subscription", - "azurerm_container_app", - "azurerm_container_app_environment.", - "azurerm_container_app_environment_certificate.", - "azurerm_container_app_environment_dapr_component.", - "azurerm_container_group", - "azurerm_container_registry", - "azurerm_container_registry_cache_rule", - "azurerm_container_registry_scope_map", - "azurerm_container_registry_token", - "azurerm_cosmosdb_account", - "azurerm_cosmosdb_mongo_database", - "azurerm_cosmosdb_restorable_database_accounts", - "azurerm_cosmosdb_sql_database", - "azurerm_dashboard_grafana", - "azurerm_data_factory", - "azurerm_data_factory_trigger_schedule", - "azurerm_data_factory_trigger_schedules", - "azurerm_data_lake_store", - "azurerm_data_protection_backup_vault", - "azurerm_data_share", - "azurerm_data_share_account", - "azurerm_data_share_dataset_blob_storage", - "azurerm_data_share_dataset_data_lake_gen1", - "azurerm_data_share_dataset_data_lake_gen2", - "azurerm_data_share_dataset_kusto_cluster", - "azurerm_data_share_dataset_kusto_database", - "azurerm_database_migration_project", - "azurerm_database_migration_service", - "azurerm_databricks_access_connector", - "azurerm_databricks_workspace", - "azurerm_databricks_workspace_private_endpoint_connection", - "azurerm_dedicated_host", - "azurerm_dedicated_host_group", - "azurerm_dev_center", - "azurerm_dev_center_project", - "azurerm_digital_twins_instance", - "azurerm_disk_access", - "azurerm_disk_encryption_set", - "azurerm_dns_a_record", - "azurerm_dns_aaaa_record", - "azurerm_dns_caa_record", - "azurerm_dns_cname_record", - "azurerm_dns_mx_record", - "azurerm_dns_ns_record", - "azurerm_dns_ptr_record", - "azurerm_dns_soa_record", - "azurerm_dns_srv_record", - "azurerm_dns_txt_record", - "azurerm_dns_zone", - "azurerm_dynatrace_monitor", - "azurerm_elastic_cloud_elasticsearch", - "azurerm_elastic_san", - "azurerm_elastic_san_volume_group", - "azurerm_elastic_san_volume_snapshot", - "azurerm_eventgrid_domain", - "azurerm_eventgrid_domain_topic", - "azurerm_eventgrid_system_topic", - "azurerm_eventgrid_topic", - "azurerm_eventhub", - "azurerm_eventhub_cluster", - "azurerm_eventhub_consumer_group", - "azurerm_eventhub_namespace", - "azurerm_eventhub_namespace_authorization_rule", - "azurerm_eventhub_sas", - "azurerm_express_route_circuit", - "azurerm_express_route_circuit_peering", - "azurerm_extended_location_custom_location", - "azurerm_extended_locations", - "azurerm_firewall", - "azurerm_firewall_policy", - "azurerm_function_app", - "azurerm_function_app_host_keys", - "azurerm_hdinsight_cluster", - "azurerm_healthcare_dicom_service", - "azurerm_healthcare_fhir_service", - "azurerm_healthcare_medtech_service", - "azurerm_healthcare_service", - "azurerm_healthcare_workspace", - "azurerm_image", - "azurerm_images", - "azurerm_iothub", - "azurerm_iothub_dps", - "azurerm_iothub_dps_shared_access_policy", - "azurerm_iothub_shared_access_policy", - "azurerm_ip_group", - "azurerm_ip_groups", - "azurerm_key_vault", - "azurerm_key_vault_access_policy", - "azurerm_key_vault_certificate", - "azurerm_key_vault_certificate_data", - "azurerm_key_vault_certificate_issuer", - "azurerm_key_vault_certificates", - "azurerm_key_vault_encrypted_value", - "azurerm_key_vault_key", - "azurerm_key_vault_managed_hardware_security_module", - "azurerm_key_vault_managed_hardware_security_module_key", - "azurerm_key_vault_managed_hardware_security_module_role_definition", - "azurerm_key_vault_secret", - "azurerm_key_vault_secrets", - "azurerm_kubernetes_cluster", - "azurerm_kubernetes_cluster_node_pool", - "azurerm_kubernetes_fleet_manager", - "azurerm_kubernetes_node_pool_snapshot", - "azurerm_kubernetes_service_versions", - "azurerm_kusto_cluster", - "azurerm_kusto_database", - "azurerm_lb", - "azurerm_lb_backend_address_pool", - "azurerm_lb_outbound_rule", - "azurerm_lb_rule", - "azurerm_linux_function_app", - "azurerm_linux_web_app", - "azurerm_local_network_gateway", - "azurerm_location", - "azurerm_log_analytics_workspace", - "azurerm_logic_app_integration_account", - "azurerm_logic_app_standard", - "azurerm_logic_app_workflow", - "azurerm_machine_learning_workspace", - "azurerm_maintenance_configuration", - "azurerm_managed_api", - "azurerm_managed_application_definition", - "azurerm_managed_disk", - "azurerm_management_group", - "azurerm_management_group_template_deployment", - "azurerm_maps_account", - "azurerm_monitor_action_group", - "azurerm_monitor_data_collection_endpoint", - "azurerm_monitor_data_collection_rule", - "azurerm_monitor_diagnostic_categories", - "azurerm_monitor_scheduled_query_rules_alert", - "azurerm_monitor_scheduled_query_rules_log", - "azurerm_monitor_workspace", - "azurerm_mssql_database", - "azurerm_mssql_elasticpool", - "azurerm_mssql_managed_database", - "azurerm_mssql_managed_instance", - "azurerm_mssql_server", - "azurerm_nat_gateway", - "azurerm_netapp_account", - "azurerm_netapp_account_encryption", - "azurerm_netapp_pool", - "azurerm_netapp_snapshot", - "azurerm_netapp_snapshot_policy", - "azurerm_netapp_volume", - "azurerm_netapp_volume_group_oracle", - "azurerm_netapp_volume_group_sap_hana", - "azurerm_netapp_volume_quota_rule", - "azurerm_network_ddos_protection_plan", - "azurerm_network_interface", - "azurerm_network_manager_connectivity_configuration", - "azurerm_network_security_group", - "azurerm_network_service_tags", - "azurerm_network_watcher", - "azurerm_nginx_api_key", - "azurerm_nginx_certificate", - "azurerm_nginx_configuration", - "azurerm_nginx_deployment", - "azurerm_notification_hub", - "azurerm_notification_hub_namespace", - "azurerm_oracle_adbs_character_sets", - "azurerm_oracle_adbs_national_character_sets", - "azurerm_oracle_autonomous_database", - "azurerm_oracle_cloud_vm_cluster", - "azurerm_oracle_db_nodes", - "azurerm_oracle_db_servers", - "azurerm_oracle_db_system_shapes", - "azurerm_oracle_exadata_infrastructure", - "azurerm_oracle_gi_versions", - "azurerm_orchestrated_virtual_machine_scale_set", - "azurerm_palo_alto_local_rulestack", - "azurerm_platform_image", - "azurerm_policy_assignment", - "azurerm_policy_definition", - "azurerm_policy_definition_built_in", - "azurerm_policy_set_definition", - "azurerm_policy_virtual_machine_configuration_assignment", - "azurerm_portal_dashboard", - "azurerm_postgresql_flexible_server", - "azurerm_postgresql_server", - "azurerm_private_dns_a_record", - "azurerm_private_dns_aaaa_record", - "azurerm_private_dns_cname_record", - "azurerm_private_dns_mx_record", - "azurerm_private_dns_ptr_record", - "azurerm_private_dns_resolver", - "azurerm_private_dns_resolver_dns_forwarding_ruleset", - "azurerm_private_dns_resolver_forwarding_rule", - "azurerm_private_dns_resolver_inbound_endpoint", - "azurerm_private_dns_resolver_outbound_endpoint", - "azurerm_private_dns_resolver_virtual_network_link", - "azurerm_private_dns_soa_record", - "azurerm_private_dns_srv_record", - "azurerm_private_dns_txt_record", - "azurerm_private_dns_zone", - "azurerm_private_dns_zone_virtual_network_link", - "azurerm_private_endpoint_connection", - "azurerm_private_link_service", - "azurerm_private_link_service_endpoint_connections", - "azurerm_proximity_placement_group", - "azurerm_public_ip", - "azurerm_public_ip_prefix", - "azurerm_public_ips", - "azurerm_public_maintenance_configurations", - "azurerm_recovery_services_vault", - "azurerm_redis_cache", - "azurerm_redis_enterprise_database", - "azurerm_resource_group", - "azurerm_resource_group_template_deployment", - "azurerm_resources", - "azurerm_role_assignments", - "azurerm_role_definition", - "azurerm_role_management_policy", - "azurerm_route_filter", - "azurerm_route_table", - "azurerm_sentinel_alert_rule", - "azurerm_sentinel_alert_rule_anomaly", - "azurerm_sentinel_alert_rule_template", - "azurerm_service_plan", - "azurerm_servicebus_namespace", - "azurerm_servicebus_namespace_authorization_rule", - "azurerm_servicebus_namespace_disaster_recovery_config", - "azurerm_servicebus_queue", - "azurerm_servicebus_queue_authorization_rule", - "azurerm_servicebus_subscription", - "azurerm_servicebus_topic", - "azurerm_servicebus_topic_authorization_rule", - "azurerm_shared_image", - "azurerm_shared_image_gallery", - "azurerm_shared_image_version", - "azurerm_shared_image_versions", - "azurerm_signalr_service", - "azurerm_site_recovery_fabric", - "azurerm_site_recovery_protection_container", - "azurerm_site_recovery_replication_policy", - "azurerm_snapshot", - "azurerm_source_control_token", - "azurerm_spring_cloud_app", - "azurerm_spring_cloud_service", - "azurerm_ssh_public_key", - "azurerm_stack_hci_cluster", - "azurerm_stack_hci_storage_path", - "azurerm_static_web_app", - "azurerm_storage_account", - "azurerm_storage_account_blob_container_sas", - "azurerm_storage_account_sas", - "azurerm_storage_blob", - "azurerm_storage_container", - "azurerm_storage_containers", - "azurerm_storage_encryption_scope", - "azurerm_storage_management_policy", - "azurerm_storage_queue", - "azurerm_storage_share", - "azurerm_storage_sync", - "azurerm_storage_sync_group", - "azurerm_storage_table", - "azurerm_storage_table_entity", - "azurerm_stream_analytics_job", - "azurerm_subnet", - "azurerm_subscription", - "azurerm_subscription_template_deployment", - "azurerm_subscriptions", - "azurerm_synapse_workspace", - "azurerm_system_center_virtual_machine_manager_inventory_items", - "azurerm_template_spec_version", - "azurerm_tenant_template_deployment", - "azurerm_traffic_manager_geographical_location", - "azurerm_traffic_manager_profile", - "azurerm_user_assigned_identity", - "azurerm_virtual_desktop_application_group", - "azurerm_virtual_desktop_host_pool", - "azurerm_virtual_desktop_workspace", - "azurerm_virtual_hub", - "azurerm_virtual_hub_connection", - "azurerm_virtual_hub_route_table", - "azurerm_virtual_machine", - "azurerm_virtual_machine_scale_set", - "azurerm_virtual_network", - "azurerm_virtual_network_gateway", - "azurerm_virtual_network_gateway_connection", - "azurerm_virtual_network_peering", - "azurerm_virtual_wan", - "azurerm_vmware_private_cloud", - "azurerm_vpn_gateway", - "azurerm_vpn_server_configuration", - "azurerm_web_application_firewall_policy", - "azurerm_web_pubsub", - "azurerm_web_pubsub_private_link_resource", - "azurerm_windows_function_app", - "azurerm_windows_web_app", - "netapp_backup_policy", - "netapp_backup_vault" - ] -} \ No newline at end of file + "dataSources": null, + "resources": null +} diff --git a/src/parse/google-members.json b/src/parse/google-members.json index 25765de2..c32cf407 100755 --- a/src/parse/google-members.json +++ b/src/parse/google-members.json @@ -1,1550 +1,4 @@ { - "resources": [ - "google_access_context_manager_access_level", - "google_access_context_manager_access_level_condition", - "google_access_context_manager_access_levels", - "google_access_context_manager_access_policy", - "google_access_context_manager_access_policy_iam_binding", - "google_access_context_manager_access_policy_iam_member", - "google_access_context_manager_access_policy_iam_policy", - "google_access_context_manager_authorized_orgs_desc", - "google_access_context_manager_gcp_user_access_binding", - "google_access_context_manager_service_perimeter", - "google_access_context_manager_service_perimeter_dry_run_egress_policy", - "google_access_context_manager_service_perimeter_dry_run_ingress_policy", - "google_access_context_manager_service_perimeter_dry_run_resource", - "google_access_context_manager_service_perimeter_egress_policy", - "google_access_context_manager_service_perimeter_ingress_policy", - "google_access_context_manager_service_perimeter_resource", - "google_access_context_manager_service_perimeters", - "google_active_directory_domain", - "google_active_directory_domain_trust", - "google_active_directory_peering", - "google_alloydb_backup", - "google_alloydb_cluster", - "google_alloydb_instance", - "google_alloydb_user", - "google_api_gateway_api", - "google_api_gateway_api_config", - "google_api_gateway_api_config_iam_binding", - "google_api_gateway_api_config_iam_member", - "google_api_gateway_api_config_iam_policy", - "google_api_gateway_api_iam_binding", - "google_api_gateway_api_iam_member", - "google_api_gateway_api_iam_policy", - "google_api_gateway_gateway", - "google_api_gateway_gateway_iam_binding", - "google_api_gateway_gateway_iam_member", - "google_api_gateway_gateway_iam_policy", - "google_apigee_addons_config", - "google_apigee_api", - "google_apigee_app_group", - "google_apigee_control_plane_access", - "google_apigee_developer", - "google_apigee_dns_zone", - "google_apigee_env_keystore", - "google_apigee_envgroup", - "google_apigee_envgroup_attachment", - "google_apigee_environment", - "google_apigee_environment_addons_config", - "google_apigee_environment_iam_binding", - "google_apigee_environment_iam_member", - "google_apigee_environment_iam_policy", - "google_apigee_environment_keyvaluemaps", - "google_apigee_environment_keyvaluemaps_entries", - "google_apigee_instance", - "google_apigee_instance_attachment", - "google_apigee_keystores_aliases_self_signed_cert", - "google_apigee_nat_address", - "google_apigee_organization", - "google_apigee_security_monitoring_condition", - "google_apigee_security_profile_v2", - "google_apigee_sync_authorization", - "google_apigee_target_server", - "google_apihub_api_hub_instance", - "google_apihub_host_project_registration", - "google_apikeys_key", - "google_app_engine_application", - "google_app_engine_application_url_dispatch_rules", - "google_app_engine_domain_mapping", - "google_app_engine_firewall_rule", - "google_app_engine_flexible_app_version", - "google_app_engine_service_network_settings", - "google_app_engine_service_split_traffic", - "google_app_engine_standard_app_version", - "google_apphub_application", - "google_apphub_service", - "google_apphub_service_project_attachment", - "google_apphub_workload", - "google_artifact_registry_repository", - "google_artifact_registry_repository_iam_binding", - "google_artifact_registry_repository_iam_member", - "google_artifact_registry_repository_iam_policy", - "google_artifact_registry_vpcsc_config", - "google_assured_workloads_workload", - "google_backup_dr_backup_plan", - "google_backup_dr_backup_plan_association", - "google_backup_dr_backup_vault", - "google_backup_dr_management_server", - "google_beyondcorp_app_connection", - "google_beyondcorp_app_connector", - "google_beyondcorp_app_gateway", - "google_beyondcorp_application", - "google_beyondcorp_application_iam_binding", - "google_beyondcorp_application_iam_member", - "google_beyondcorp_application_iam_policy", - "google_beyondcorp_security_gateway", - "google_beyondcorp_security_gateway_application", - "google_beyondcorp_security_gateway_application_iam_binding", - "google_beyondcorp_security_gateway_application_iam_member", - "google_beyondcorp_security_gateway_application_iam_policy", - "google_beyondcorp_security_gateway_iam_binding", - "google_beyondcorp_security_gateway_iam_member", - "google_beyondcorp_security_gateway_iam_policy", - "google_biglake_catalog", - "google_biglake_database", - "google_biglake_table", - "google_bigquery_analytics_hub_data_exchange", - "google_bigquery_analytics_hub_data_exchange_iam_binding", - "google_bigquery_analytics_hub_data_exchange_iam_member", - "google_bigquery_analytics_hub_data_exchange_iam_policy", - "google_bigquery_analytics_hub_listing", - "google_bigquery_analytics_hub_listing_iam_binding", - "google_bigquery_analytics_hub_listing_iam_member", - "google_bigquery_analytics_hub_listing_iam_policy", - "google_bigquery_analytics_hub_listing_subscription", - "google_bigquery_bi_reservation", - "google_bigquery_capacity_commitment", - "google_bigquery_connection", - "google_bigquery_connection_iam_binding", - "google_bigquery_connection_iam_member", - "google_bigquery_connection_iam_policy", - "google_bigquery_data_transfer_config", - "google_bigquery_datapolicy_data_policy", - "google_bigquery_datapolicy_data_policy_iam_binding", - "google_bigquery_datapolicy_data_policy_iam_member", - "google_bigquery_datapolicy_data_policy_iam_policy", - "google_bigquery_dataset", - "google_bigquery_dataset_access", - "google_bigquery_dataset_iam_binding", - "google_bigquery_dataset_iam_member", - "google_bigquery_dataset_iam_policy", - "google_bigquery_job", - "google_bigquery_reservation", - "google_bigquery_reservation_assignment", - "google_bigquery_routine", - "google_bigquery_row_access_policy", - "google_bigquery_table", - "google_bigquery_table_iam_binding", - "google_bigquery_table_iam_member", - "google_bigquery_table_iam_policy", - "google_bigtable_app_profile", - "google_bigtable_authorized_view", - "google_bigtable_gc_policy", - "google_bigtable_instance", - "google_bigtable_instance_iam_binding", - "google_bigtable_instance_iam_member", - "google_bigtable_instance_iam_policy", - "google_bigtable_logical_view", - "google_bigtable_materialized_view", - "google_bigtable_table", - "google_bigtable_table_iam_binding", - "google_bigtable_table_iam_member", - "google_bigtable_table_iam_policy", - "google_billing_account_iam_binding", - "google_billing_account_iam_member", - "google_billing_account_iam_policy", - "google_billing_budget", - "google_billing_project_info", - "google_billing_subaccount", - "google_binary_authorization_attestor", - "google_binary_authorization_attestor_iam_binding", - "google_binary_authorization_attestor_iam_member", - "google_binary_authorization_attestor_iam_policy", - "google_binary_authorization_policy", - "google_blockchain_node_engine_blockchain_nodes", - "google_certificate_manager_certificate", - "google_certificate_manager_certificate_issuance_config", - "google_certificate_manager_certificate_map", - "google_certificate_manager_certificate_map_entry", - "google_certificate_manager_dns_authorization", - "google_certificate_manager_trust_config", - "google_chronicle_data_access_label", - "google_chronicle_data_access_scope", - "google_chronicle_reference_list", - "google_chronicle_retrohunt", - "google_chronicle_rule", - "google_chronicle_rule_deployment", - "google_chronicle_watchlist", - "google_cloud_asset_folder_feed", - "google_cloud_asset_organization_feed", - "google_cloud_asset_project_feed", - "google_cloud_identity_group", - "google_cloud_identity_group_membership", - "google_cloud_ids_endpoint", - "google_cloud_quotas_quota_adjuster_settings", - "google_cloud_quotas_quota_preference", - "google_cloud_run_domain_mapping", - "google_cloud_run_service", - "google_cloud_run_service_iam_binding", - "google_cloud_run_service_iam_member", - "google_cloud_run_service_iam_policy", - "google_cloud_run_v2_job", - "google_cloud_run_v2_job_iam_binding", - "google_cloud_run_v2_job_iam_member", - "google_cloud_run_v2_job_iam_policy", - "google_cloud_run_v2_service", - "google_cloud_run_v2_service_iam_binding", - "google_cloud_run_v2_service_iam_member", - "google_cloud_run_v2_service_iam_policy", - "google_cloud_run_v2_worker_pool", - "google_cloud_run_v2_worker_pool_iam_binding", - "google_cloud_run_v2_worker_pool_iam_member", - "google_cloud_run_v2_worker_pool_iam_policy", - "google_cloud_scheduler_job", - "google_cloud_tasks_queue", - "google_cloud_tasks_queue_iam_binding", - "google_cloud_tasks_queue_iam_member", - "google_cloud_tasks_queue_iam_policy", - "google_cloudbuild_bitbucket_server_config", - "google_cloudbuild_trigger", - "google_cloudbuild_worker_pool", - "google_cloudbuildv2_connection", - "google_cloudbuildv2_connection_iam_binding", - "google_cloudbuildv2_connection_iam_member", - "google_cloudbuildv2_connection_iam_policy", - "google_cloudbuildv2_repository", - "google_clouddeploy_automation", - "google_clouddeploy_custom_target_type", - "google_clouddeploy_custom_target_type_iam_binding", - "google_clouddeploy_custom_target_type_iam_member", - "google_clouddeploy_custom_target_type_iam_policy", - "google_clouddeploy_delivery_pipeline", - "google_clouddeploy_delivery_pipeline_iam_binding", - "google_clouddeploy_delivery_pipeline_iam_member", - "google_clouddeploy_delivery_pipeline_iam_policy", - "google_clouddeploy_deploy_policy", - "google_clouddeploy_target", - "google_clouddeploy_target_iam_binding", - "google_clouddeploy_target_iam_member", - "google_clouddeploy_target_iam_policy", - "google_clouddomains_registration", - "google_cloudfunctions2_function", - "google_cloudfunctions2_function_iam_binding", - "google_cloudfunctions2_function_iam_member", - "google_cloudfunctions2_function_iam_policy", - "google_cloudfunctions_function", - "google_cloudfunctions_function_iam_binding", - "google_cloudfunctions_function_iam_member", - "google_cloudfunctions_function_iam_policy", - "google_cloudiot_registry", - "google_colab_notebook_execution", - "google_colab_runtime", - "google_colab_runtime_template", - "google_colab_runtime_template_iam_binding", - "google_colab_runtime_template_iam_member", - "google_colab_runtime_template_iam_policy", - "google_colab_schedule", - "google_composer_environment", - "google_composer_user_workloads_config_map", - "google_composer_user_workloads_secret", - "google_compute_address", - "google_compute_attached_disk", - "google_compute_autoscaler", - "google_compute_backend_bucket", - "google_compute_backend_bucket_iam_binding", - "google_compute_backend_bucket_iam_member", - "google_compute_backend_bucket_iam_policy", - "google_compute_backend_bucket_signed_url_key", - "google_compute_backend_service", - "google_compute_backend_service_iam_binding", - "google_compute_backend_service_iam_member", - "google_compute_backend_service_iam_policy", - "google_compute_backend_service_signed_url_key", - "google_compute_cross_site_network", - "google_compute_disk", - "google_compute_disk_async_replication", - "google_compute_disk_iam_binding", - "google_compute_disk_iam_member", - "google_compute_disk_iam_policy", - "google_compute_disk_resource_policy_attachment", - "google_compute_external_vpn_gateway", - "google_compute_firewall", - "google_compute_firewall_policy", - "google_compute_firewall_policy_association", - "google_compute_firewall_policy_rule", - "google_compute_firewall_policy_with_rules", - "google_compute_forwarding_rule", - "google_compute_future_reservation", - "google_compute_global_address", - "google_compute_global_forwarding_rule", - "google_compute_global_network_endpoint", - "google_compute_global_network_endpoint_group", - "google_compute_ha_vpn_gateway", - "google_compute_health_check", - "google_compute_http_health_check", - "google_compute_https_health_check", - "google_compute_image", - "google_compute_image_iam_binding", - "google_compute_image_iam_member", - "google_compute_image_iam_policy", - "google_compute_instance", - "google_compute_instance_from_machine_image", - "google_compute_instance_from_template", - "google_compute_instance_group", - "google_compute_instance_group_manager", - "google_compute_instance_group_membership", - "google_compute_instance_group_named_port", - "google_compute_instance_iam_binding", - "google_compute_instance_iam_member", - "google_compute_instance_iam_policy", - "google_compute_instance_settings", - "google_compute_instance_template", - "google_compute_instance_template_iam_binding", - "google_compute_instance_template_iam_member", - "google_compute_instance_template_iam_policy", - "google_compute_instant_snapshot", - "google_compute_instant_snapshot_iam_binding", - "google_compute_instant_snapshot_iam_member", - "google_compute_instant_snapshot_iam_policy", - "google_compute_interconnect", - "google_compute_interconnect_attachment", - "google_compute_machine_image", - "google_compute_machine_image_iam_binding", - "google_compute_machine_image_iam_member", - "google_compute_machine_image_iam_policy", - "google_compute_managed_ssl_certificate", - "google_compute_network", - "google_compute_network_attachment", - "google_compute_network_edge_security_service", - "google_compute_network_endpoint", - "google_compute_network_endpoint_group", - "google_compute_network_endpoints", - "google_compute_network_firewall_policy", - "google_compute_network_firewall_policy_association", - "google_compute_network_firewall_policy_packet_mirroring_rule", - "google_compute_network_firewall_policy_rule", - "google_compute_network_firewall_policy_with_rules", - "google_compute_network_peering", - "google_compute_network_peering_routes_config", - "google_compute_node_group", - "google_compute_node_template", - "google_compute_organization_security_policy", - "google_compute_organization_security_policy_association", - "google_compute_organization_security_policy_rule", - "google_compute_packet_mirroring", - "google_compute_per_instance_config", - "google_compute_project_cloud_armor_tier", - "google_compute_project_default_network_tier", - "google_compute_project_metadata", - "google_compute_project_metadata_item", - "google_compute_public_advertised_prefix", - "google_compute_public_delegated_prefix", - "google_compute_region_autoscaler", - "google_compute_region_backend_service", - "google_compute_region_backend_service_iam_binding", - "google_compute_region_backend_service_iam_member", - "google_compute_region_backend_service_iam_policy", - "google_compute_region_commitment", - "google_compute_region_disk", - "google_compute_region_disk_iam_binding", - "google_compute_region_disk_iam_member", - "google_compute_region_disk_iam_policy", - "google_compute_region_disk_resource_policy_attachment", - "google_compute_region_health_check", - "google_compute_region_instance_group_manager", - "google_compute_region_instance_template", - "google_compute_region_network_endpoint", - "google_compute_region_network_endpoint_group", - "google_compute_region_network_firewall_policy", - "google_compute_region_network_firewall_policy_association", - "google_compute_region_network_firewall_policy_rule", - "google_compute_region_network_firewall_policy_with_rules", - "google_compute_region_per_instance_config", - "google_compute_region_resize_request", - "google_compute_region_security_policy", - "google_compute_region_security_policy_rule", - "google_compute_region_ssl_certificate", - "google_compute_region_target_http_proxy", - "google_compute_region_target_https_proxy", - "google_compute_region_target_tcp_proxy", - "google_compute_region_url_map", - "google_compute_reservation", - "google_compute_resize_request", - "google_compute_resource_policy", - "google_compute_resource_policy_attachment", - "google_compute_route", - "google_compute_router", - "google_compute_router_interface", - "google_compute_router_nat", - "google_compute_router_nat_address", - "google_compute_router_peer", - "google_compute_router_route_policy", - "google_compute_security_policy", - "google_compute_security_policy_rule", - "google_compute_service_attachment", - "google_compute_shared_vpc_host_project", - "google_compute_shared_vpc_service_project", - "google_compute_snapshot", - "google_compute_snapshot_iam_binding", - "google_compute_snapshot_iam_member", - "google_compute_snapshot_iam_policy", - "google_compute_ssl_certificate", - "google_compute_ssl_policy", - "google_compute_storage_pool", - "google_compute_storage_pool_iam_binding", - "google_compute_storage_pool_iam_member", - "google_compute_storage_pool_iam_policy", - "google_compute_subnetwork", - "google_compute_subnetwork_iam_binding", - "google_compute_subnetwork_iam_member", - "google_compute_subnetwork_iam_policy", - "google_compute_target_grpc_proxy", - "google_compute_target_http_proxy", - "google_compute_target_https_proxy", - "google_compute_target_instance", - "google_compute_target_pool", - "google_compute_target_ssl_proxy", - "google_compute_target_tcp_proxy", - "google_compute_url_map", - "google_compute_vpn_gateway", - "google_compute_vpn_tunnel", - "google_container_analysis_note", - "google_container_analysis_note_iam_binding", - "google_container_analysis_note_iam_member", - "google_container_analysis_note_iam_policy", - "google_container_analysis_occurrence", - "google_container_attached_cluster", - "google_container_aws_cluster", - "google_container_aws_node_pool", - "google_container_azure_client", - "google_container_azure_cluster", - "google_container_azure_node_pool", - "google_container_cluster", - "google_container_node_pool", - "google_container_registry", - "google_data_catalog_entry", - "google_data_catalog_entry_group", - "google_data_catalog_entry_group_iam_binding", - "google_data_catalog_entry_group_iam_member", - "google_data_catalog_entry_group_iam_policy", - "google_data_catalog_policy_tag", - "google_data_catalog_policy_tag_iam_binding", - "google_data_catalog_policy_tag_iam_member", - "google_data_catalog_policy_tag_iam_policy", - "google_data_catalog_tag", - "google_data_catalog_tag_template", - "google_data_catalog_tag_template_iam_binding", - "google_data_catalog_tag_template_iam_member", - "google_data_catalog_tag_template_iam_policy", - "google_data_catalog_taxonomy", - "google_data_catalog_taxonomy_iam_binding", - "google_data_catalog_taxonomy_iam_member", - "google_data_catalog_taxonomy_iam_policy", - "google_data_fusion_instance", - "google_data_fusion_instance_iam_binding", - "google_data_fusion_instance_iam_member", - "google_data_fusion_instance_iam_policy", - "google_data_loss_prevention_deidentify_template", - "google_data_loss_prevention_discovery_config", - "google_data_loss_prevention_inspect_template", - "google_data_loss_prevention_job_trigger", - "google_data_loss_prevention_stored_info_type", - "google_data_pipeline_pipeline", - "google_database_migration_service_connection_profile", - "google_database_migration_service_migration_job", - "google_database_migration_service_private_connection", - "google_dataflow_flex_template_job", - "google_dataflow_job", - "google_dataform_repository", - "google_dataform_repository_iam_binding", - "google_dataform_repository_iam_member", - "google_dataform_repository_iam_policy", - "google_dataform_repository_release_config", - "google_dataform_repository_workflow_config", - "google_dataplex_aspect_type", - "google_dataplex_aspect_type_iam_binding", - "google_dataplex_aspect_type_iam_member", - "google_dataplex_aspect_type_iam_policy", - "google_dataplex_asset", - "google_dataplex_asset_iam_binding", - "google_dataplex_asset_iam_member", - "google_dataplex_asset_iam_policy", - "google_dataplex_datascan", - "google_dataplex_datascan_iam_binding", - "google_dataplex_datascan_iam_member", - "google_dataplex_datascan_iam_policy", - "google_dataplex_entry", - "google_dataplex_entry_group", - "google_dataplex_entry_group_iam_binding", - "google_dataplex_entry_group_iam_member", - "google_dataplex_entry_group_iam_policy", - "google_dataplex_entry_type", - "google_dataplex_entry_type_iam_binding", - "google_dataplex_entry_type_iam_member", - "google_dataplex_entry_type_iam_policy", - "google_dataplex_glossary", - "google_dataplex_glossary_category", - "google_dataplex_glossary_iam_binding", - "google_dataplex_glossary_iam_member", - "google_dataplex_glossary_iam_policy", - "google_dataplex_glossary_term", - "google_dataplex_lake", - "google_dataplex_lake_iam_binding", - "google_dataplex_lake_iam_member", - "google_dataplex_lake_iam_policy", - "google_dataplex_task", - "google_dataplex_task_iam_binding", - "google_dataplex_task_iam_member", - "google_dataplex_task_iam_policy", - "google_dataplex_zone", - "google_dataplex_zone_iam_binding", - "google_dataplex_zone_iam_member", - "google_dataplex_zone_iam_policy", - "google_dataproc_autoscaling_policy", - "google_dataproc_autoscaling_policy_iam_binding", - "google_dataproc_autoscaling_policy_iam_member", - "google_dataproc_autoscaling_policy_iam_policy", - "google_dataproc_batch", - "google_dataproc_cluster", - "google_dataproc_cluster_iam_binding", - "google_dataproc_cluster_iam_member", - "google_dataproc_cluster_iam_policy", - "google_dataproc_gdc_application_environment", - "google_dataproc_gdc_service_instance", - "google_dataproc_gdc_spark_application", - "google_dataproc_job", - "google_dataproc_job_iam_binding", - "google_dataproc_job_iam_member", - "google_dataproc_job_iam_policy", - "google_dataproc_metastore_database_iam_binding", - "google_dataproc_metastore_database_iam_member", - "google_dataproc_metastore_database_iam_policy", - "google_dataproc_metastore_federation", - "google_dataproc_metastore_federation_iam_binding", - "google_dataproc_metastore_federation_iam_member", - "google_dataproc_metastore_federation_iam_policy", - "google_dataproc_metastore_service", - "google_dataproc_metastore_service_iam_binding", - "google_dataproc_metastore_service_iam_member", - "google_dataproc_metastore_service_iam_policy", - "google_dataproc_metastore_table_iam_binding", - "google_dataproc_metastore_table_iam_member", - "google_dataproc_metastore_table_iam_policy", - "google_dataproc_workflow_template", - "google_datastream_connection_profile", - "google_datastream_private_connection", - "google_datastream_stream", - "google_deployment_manager_deployment", - "google_developer_connect_account_connector", - "google_developer_connect_connection", - "google_developer_connect_git_repository_link", - "google_dialogflow_agent", - "google_dialogflow_cx_agent", - "google_dialogflow_cx_entity_type", - "google_dialogflow_cx_environment", - "google_dialogflow_cx_flow", - "google_dialogflow_cx_intent", - "google_dialogflow_cx_page", - "google_dialogflow_cx_security_settings", - "google_dialogflow_cx_version", - "google_dialogflow_cx_webhook", - "google_dialogflow_entity_type", - "google_dialogflow_fulfillment", - "google_dialogflow_intent", - "google_discovery_engine_chat_engine", - "google_discovery_engine_data_store", - "google_discovery_engine_schema", - "google_discovery_engine_search_engine", - "google_discovery_engine_sitemap", - "google_discovery_engine_target_site", - "google_dns_managed_zone", - "google_dns_managed_zone_iam_binding", - "google_dns_managed_zone_iam_member", - "google_dns_managed_zone_iam_policy", - "google_dns_policy", - "google_dns_record_set", - "google_dns_response_policy", - "google_dns_response_policy_rule", - "google_document_ai_processor", - "google_document_ai_processor_default_version", - "google_document_ai_warehouse_document_schema", - "google_document_ai_warehouse_location", - "google_edgecontainer_cluster", - "google_edgecontainer_node_pool", - "google_edgecontainer_vpn_connection", - "google_edgenetwork_interconnect_attachment", - "google_edgenetwork_network", - "google_edgenetwork_subnet", - "google_endpoints_service", - "google_endpoints_service_consumers_iam_binding", - "google_endpoints_service_consumers_iam_member", - "google_endpoints_service_consumers_iam_policy", - "google_endpoints_service_iam_binding", - "google_endpoints_service_iam_member", - "google_endpoints_service_iam_policy", - "google_essential_contacts_contact", - "google_eventarc_channel", - "google_eventarc_enrollment", - "google_eventarc_google_api_source", - "google_eventarc_google_channel_config", - "google_eventarc_message_bus", - "google_eventarc_pipeline", - "google_eventarc_trigger", - "google_filestore_backup", - "google_filestore_instance", - "google_filestore_snapshot", - "google_firebase_android_app", - "google_firebase_app_check_app_attest_config", - "google_firebase_app_check_debug_token", - "google_firebase_app_check_device_check_config", - "google_firebase_app_check_play_integrity_config", - "google_firebase_app_check_recaptcha_enterprise_config", - "google_firebase_app_check_recaptcha_v3_config", - "google_firebase_app_check_service_config", - "google_firebase_app_hosting_backend", - "google_firebase_app_hosting_build", - "google_firebase_app_hosting_default_domain", - "google_firebase_app_hosting_domain", - "google_firebase_app_hosting_traffic", - "google_firebase_apple_app", - "google_firebase_data_connect_service", - "google_firebase_database_instance", - "google_firebase_extensions_instance", - "google_firebase_hosting_channel", - "google_firebase_hosting_custom_domain", - "google_firebase_hosting_release", - "google_firebase_hosting_site", - "google_firebase_hosting_version", - "google_firebase_project", - "google_firebase_project_location", - "google_firebase_storage_bucket", - "google_firebase_web_app", - "google_firebaserules_release", - "google_firebaserules_ruleset", - "google_firestore_backup_schedule", - "google_firestore_database", - "google_firestore_document", - "google_firestore_field", - "google_firestore_index", - "google_folder", - "google_folder_access_approval_settings", - "google_folder_iam_audit_config", - "google_folder_iam_binding", - "google_folder_iam_member", - "google_folder_iam_policy", - "google_folder_organization_policy", - "google_folder_service_identity", - "google_gemini_code_repository_index", - "google_gemini_code_tools_setting", - "google_gemini_code_tools_setting_binding", - "google_gemini_data_sharing_with_google_setting", - "google_gemini_data_sharing_with_google_setting_binding", - "google_gemini_gemini_gcp_enablement_setting", - "google_gemini_gemini_gcp_enablement_setting_binding", - "google_gemini_logging_setting", - "google_gemini_logging_setting_binding", - "google_gemini_release_channel_setting", - "google_gemini_release_channel_setting_binding", - "google_gemini_repository_group", - "google_gemini_repository_group_iam_binding", - "google_gemini_repository_group_iam_member", - "google_gemini_repository_group_iam_policy", - "google_gke_backup_backup_channel", - "google_gke_backup_backup_plan", - "google_gke_backup_backup_plan_iam_binding", - "google_gke_backup_backup_plan_iam_member", - "google_gke_backup_backup_plan_iam_policy", - "google_gke_backup_restore_channel", - "google_gke_backup_restore_plan", - "google_gke_backup_restore_plan_iam_binding", - "google_gke_backup_restore_plan_iam_member", - "google_gke_backup_restore_plan_iam_policy", - "google_gke_hub_feature", - "google_gke_hub_feature_iam_binding", - "google_gke_hub_feature_iam_member", - "google_gke_hub_feature_iam_policy", - "google_gke_hub_feature_membership", - "google_gke_hub_fleet", - "google_gke_hub_membership", - "google_gke_hub_membership_binding", - "google_gke_hub_membership_iam_binding", - "google_gke_hub_membership_iam_member", - "google_gke_hub_membership_iam_policy", - "google_gke_hub_membership_rbac_role_binding", - "google_gke_hub_namespace", - "google_gke_hub_scope", - "google_gke_hub_scope_iam_binding", - "google_gke_hub_scope_iam_member", - "google_gke_hub_scope_iam_policy", - "google_gke_hub_scope_rbac_role_binding", - "google_gkeonprem_bare_metal_admin_cluster", - "google_gkeonprem_bare_metal_cluster", - "google_gkeonprem_bare_metal_node_pool", - "google_gkeonprem_vmware_admin_cluster", - "google_gkeonprem_vmware_cluster", - "google_gkeonprem_vmware_node_pool", - "google_healthcare_consent_store", - "google_healthcare_consent_store_iam_binding", - "google_healthcare_consent_store_iam_member", - "google_healthcare_consent_store_iam_policy", - "google_healthcare_dataset", - "google_healthcare_dataset_iam_binding", - "google_healthcare_dataset_iam_member", - "google_healthcare_dataset_iam_policy", - "google_healthcare_dicom_store", - "google_healthcare_dicom_store_iam_binding", - "google_healthcare_dicom_store_iam_member", - "google_healthcare_dicom_store_iam_policy", - "google_healthcare_fhir_store", - "google_healthcare_fhir_store_iam_binding", - "google_healthcare_fhir_store_iam_member", - "google_healthcare_fhir_store_iam_policy", - "google_healthcare_hl7_v2_store", - "google_healthcare_hl7_v2_store_iam_binding", - "google_healthcare_hl7_v2_store_iam_member", - "google_healthcare_hl7_v2_store_iam_policy", - "google_healthcare_pipeline_job", - "google_healthcare_workspace", - "google_iam_access_boundary_policy", - "google_iam_deny_policy", - "google_iam_folders_policy_binding", - "google_iam_oauth_client", - "google_iam_oauth_client_credential", - "google_iam_organizations_policy_binding", - "google_iam_principal_access_boundary_policy", - "google_iam_projects_policy_binding", - "google_iam_workforce_pool", - "google_iam_workforce_pool_provider", - "google_iam_workforce_pool_provider_key", - "google_iam_workload_identity_pool", - "google_iam_workload_identity_pool_iam_binding", - "google_iam_workload_identity_pool_iam_member", - "google_iam_workload_identity_pool_iam_policy", - "google_iam_workload_identity_pool_managed_identity", - "google_iam_workload_identity_pool_namespace", - "google_iam_workload_identity_pool_provider", - "google_iap_app_engine_service_iam_binding", - "google_iap_app_engine_service_iam_member", - "google_iap_app_engine_service_iam_policy", - "google_iap_app_engine_version_iam_binding", - "google_iap_app_engine_version_iam_member", - "google_iap_app_engine_version_iam_policy", - "google_iap_brand", - "google_iap_client", - "google_iap_settings", - "google_iap_tunnel_dest_group", - "google_iap_tunnel_dest_group_iam_binding", - "google_iap_tunnel_dest_group_iam_member", - "google_iap_tunnel_dest_group_iam_policy", - "google_iap_tunnel_iam_binding", - "google_iap_tunnel_iam_member", - "google_iap_tunnel_iam_policy", - "google_iap_tunnel_instance_iam_binding", - "google_iap_tunnel_instance_iam_member", - "google_iap_tunnel_instance_iam_policy", - "google_iap_web_backend_service_iam_binding", - "google_iap_web_backend_service_iam_member", - "google_iap_web_backend_service_iam_policy", - "google_iap_web_cloud_run_service_iam_binding", - "google_iap_web_cloud_run_service_iam_member", - "google_iap_web_cloud_run_service_iam_policy", - "google_iap_web_iam_binding", - "google_iap_web_iam_member", - "google_iap_web_iam_policy", - "google_iap_web_region_backend_service_iam_binding", - "google_iap_web_region_backend_service_iam_member", - "google_iap_web_region_backend_service_iam_policy", - "google_iap_web_type_app_engine_iam_binding", - "google_iap_web_type_app_engine_iam_member", - "google_iap_web_type_app_engine_iam_policy", - "google_iap_web_type_compute_iam_binding", - "google_iap_web_type_compute_iam_member", - "google_iap_web_type_compute_iam_policy", - "google_identity_platform_config", - "google_identity_platform_default_supported_idp_config", - "google_identity_platform_inbound_saml_config", - "google_identity_platform_oauth_idp_config", - "google_identity_platform_tenant", - "google_identity_platform_tenant_default_supported_idp_config", - "google_identity_platform_tenant_inbound_saml_config", - "google_identity_platform_tenant_oauth_idp_config", - "google_integration_connectors_connection", - "google_integration_connectors_endpoint_attachment", - "google_integration_connectors_managed_zone", - "google_integrations_auth_config", - "google_integrations_client", - "google_kms_autokey_config", - "google_kms_crypto_key", - "google_kms_crypto_key_iam_binding", - "google_kms_crypto_key_iam_member", - "google_kms_crypto_key_iam_policy", - "google_kms_crypto_key_version", - "google_kms_ekm_connection", - "google_kms_ekm_connection_iam_binding", - "google_kms_ekm_connection_iam_member", - "google_kms_ekm_connection_iam_policy", - "google_kms_key_handle", - "google_kms_key_ring", - "google_kms_key_ring_iam_binding", - "google_kms_key_ring_iam_member", - "google_kms_key_ring_iam_policy", - "google_kms_key_ring_import_job", - "google_kms_secret_ciphertext", - "google_logging_billing_account_bucket_config", - "google_logging_billing_account_exclusion", - "google_logging_billing_account_sink", - "google_logging_folder_bucket_config", - "google_logging_folder_exclusion", - "google_logging_folder_settings", - "google_logging_folder_sink", - "google_logging_linked_dataset", - "google_logging_log_scope", - "google_logging_log_view", - "google_logging_log_view_iam_binding", - "google_logging_log_view_iam_member", - "google_logging_log_view_iam_policy", - "google_logging_metric", - "google_logging_organization_bucket_config", - "google_logging_organization_exclusion", - "google_logging_organization_settings", - "google_logging_organization_sink", - "google_logging_project_bucket_config", - "google_logging_project_exclusion", - "google_logging_project_sink", - "google_looker_instance", - "google_lustre_instance", - "google_managed_kafka_acl", - "google_managed_kafka_cluster", - "google_managed_kafka_connect_cluster", - "google_managed_kafka_connector", - "google_managed_kafka_topic", - "google_memcache_instance", - "google_memorystore_instance", - "google_memorystore_instance_desired_user_created_endpoints", - "google_migration_center_group", - "google_migration_center_preference_set", - "google_ml_engine_model", - "google_monitoring_alert_policy", - "google_monitoring_custom_service", - "google_monitoring_dashboard", - "google_monitoring_group", - "google_monitoring_metric_descriptor", - "google_monitoring_monitored_project", - "google_monitoring_notification_channel", - "google_monitoring_service", - "google_monitoring_slo", - "google_monitoring_uptime_check_config", - "google_netapp_active_directory", - "google_netapp_backup", - "google_netapp_backup_policy", - "google_netapp_backup_vault", - "google_netapp_kmsconfig", - "google_netapp_storage_pool", - "google_netapp_volume", - "google_netapp_volume_quota_rule", - "google_netapp_volume_replication", - "google_netapp_volume_snapshot", - "google_network_connectivity_group", - "google_network_connectivity_hub", - "google_network_connectivity_internal_range", - "google_network_connectivity_policy_based_route", - "google_network_connectivity_regional_endpoint", - "google_network_connectivity_service_connection_policy", - "google_network_connectivity_spoke", - "google_network_management_vpc_flow_logs_config", - "google_network_security_address_group", - "google_network_security_address_group_iam_binding", - "google_network_security_address_group_iam_member", - "google_network_security_address_group_iam_policy", - "google_network_security_authorization_policy", - "google_network_security_authz_policy", - "google_network_security_backend_authentication_config", - "google_network_security_client_tls_policy", - "google_network_security_firewall_endpoint", - "google_network_security_firewall_endpoint_association", - "google_network_security_gateway_security_policy", - "google_network_security_gateway_security_policy_rule", - "google_network_security_intercept_deployment", - "google_network_security_intercept_deployment_group", - "google_network_security_intercept_endpoint_group", - "google_network_security_intercept_endpoint_group_association", - "google_network_security_mirroring_deployment", - "google_network_security_mirroring_deployment_group", - "google_network_security_mirroring_endpoint_group", - "google_network_security_mirroring_endpoint_group_association", - "google_network_security_security_profile", - "google_network_security_security_profile_group", - "google_network_security_server_tls_policy", - "google_network_security_tls_inspection_policy", - "google_network_security_url_lists", - "google_network_services_authz_extension", - "google_network_services_edge_cache_keyset", - "google_network_services_edge_cache_origin", - "google_network_services_edge_cache_service", - "google_network_services_endpoint_policy", - "google_network_services_gateway", - "google_network_services_grpc_route", - "google_network_services_http_route", - "google_network_services_lb_route_extension", - "google_network_services_lb_traffic_extension", - "google_network_services_mesh", - "google_network_services_service_binding", - "google_network_services_service_lb_policies", - "google_network_services_tcp_route", - "google_network_services_tls_route", - "google_notebooks_environment", - "google_notebooks_instance", - "google_notebooks_instance_iam_binding", - "google_notebooks_instance_iam_member", - "google_notebooks_instance_iam_policy", - "google_notebooks_runtime", - "google_notebooks_runtime_iam_binding", - "google_notebooks_runtime_iam_member", - "google_notebooks_runtime_iam_policy", - "google_oracle_database_autonomous_database", - "google_oracle_database_cloud_exadata_infrastructure", - "google_oracle_database_cloud_vm_cluster", - "google_org_policy_custom_constraint", - "google_org_policy_policy", - "google_organization_access_approval_settings", - "google_organization_iam_audit_config", - "google_organization_iam_binding", - "google_organization_iam_custom_role", - "google_organization_iam_member", - "google_organization_iam_policy", - "google_organization_policy", - "google_os_config_guest_policies", - "google_os_config_os_policy_assignment", - "google_os_config_patch_deployment", - "google_os_config_v2_policy_orchestrator", - "google_os_config_v2_policy_orchestrator_for_folder", - "google_os_config_v2_policy_orchestrator_for_organization", - "google_os_login_ssh_public_key", - "google_parallelstore_instance", - "google_parameter_manager_parameter", - "google_parameter_manager_parameter_version", - "google_parameter_manager_regional_parameter", - "google_parameter_manager_regional_parameter_version", - "google_privateca_ca_pool", - "google_privateca_ca_pool_iam_binding", - "google_privateca_ca_pool_iam_member", - "google_privateca_ca_pool_iam_policy", - "google_privateca_certificate", - "google_privateca_certificate_authority", - "google_privateca_certificate_template", - "google_privateca_certificate_template_iam_binding", - "google_privateca_certificate_template_iam_member", - "google_privateca_certificate_template_iam_policy", - "google_privileged_access_manager_entitlement", - "google_project", - "google_project_access_approval_settings", - "google_project_default_service_accounts", - "google_project_iam_audit_config", - "google_project_iam_binding", - "google_project_iam_custom_role", - "google_project_iam_member", - "google_project_iam_member_remove", - "google_project_iam_policy", - "google_project_organization_policy", - "google_project_service", - "google_project_service_identity", - "google_project_services", - "google_project_usage_export_bucket", - "google_public_ca_external_account_key", - "google_pubsub_lite_reservation", - "google_pubsub_lite_subscription", - "google_pubsub_lite_topic", - "google_pubsub_schema", - "google_pubsub_schema_iam_binding", - "google_pubsub_schema_iam_member", - "google_pubsub_schema_iam_policy", - "google_pubsub_subscription", - "google_pubsub_subscription_iam_binding", - "google_pubsub_subscription_iam_member", - "google_pubsub_subscription_iam_policy", - "google_pubsub_topic", - "google_pubsub_topic_iam_binding", - "google_pubsub_topic_iam_member", - "google_pubsub_topic_iam_policy", - "google_recaptcha_enterprise_key", - "google_redis_cluster", - "google_redis_cluster_user_created_connections", - "google_redis_instance", - "google_resource_manager_capability", - "google_resource_manager_lien", - "google_runtimeconfig_config", - "google_runtimeconfig_config_iam_binding", - "google_runtimeconfig_config_iam_member", - "google_runtimeconfig_config_iam_policy", - "google_runtimeconfig_variable", - "google_scc_event_threat_detection_custom_module", - "google_scc_folder_custom_module", - "google_scc_folder_notification_config", - "google_scc_folder_scc_big_query_export", - "google_scc_management_folder_security_health_analytics_custom_module", - "google_scc_management_organization_event_threat_detection_custom_module", - "google_scc_management_organization_security_health_analytics_custom_module", - "google_scc_management_project_security_health_analytics_custom_module", - "google_scc_mute_config", - "google_scc_notification_config", - "google_scc_organization_custom_module", - "google_scc_organization_scc_big_query_export", - "google_scc_project_custom_module", - "google_scc_project_notification_config", - "google_scc_project_scc_big_query_export", - "google_scc_source", - "google_scc_source_iam_binding", - "google_scc_source_iam_member", - "google_scc_source_iam_policy", - "google_scc_v2_folder_mute_config", - "google_scc_v2_folder_notification_config", - "google_scc_v2_folder_scc_big_query_export", - "google_scc_v2_organization_mute_config", - "google_scc_v2_organization_notification_config", - "google_scc_v2_organization_scc_big_query_export", - "google_scc_v2_organization_scc_big_query_exports", - "google_scc_v2_organization_source_iam_binding", - "google_scc_v2_organization_source_iam_member", - "google_scc_v2_organization_source_iam_policy", - "google_scc_v2_project_mute_config", - "google_scc_v2_project_notification_config", - "google_scc_v2_project_scc_big_query_export", - "google_secret_manager_regional_secret", - "google_secret_manager_regional_secret_iam_binding", - "google_secret_manager_regional_secret_iam_member", - "google_secret_manager_regional_secret_iam_policy", - "google_secret_manager_regional_secret_version", - "google_secret_manager_secret", - "google_secret_manager_secret_iam_binding", - "google_secret_manager_secret_iam_member", - "google_secret_manager_secret_iam_policy", - "google_secret_manager_secret_version", - "google_secure_source_manager_branch_rule", - "google_secure_source_manager_instance", - "google_secure_source_manager_instance_iam_binding", - "google_secure_source_manager_instance_iam_member", - "google_secure_source_manager_instance_iam_policy", - "google_secure_source_manager_repository", - "google_secure_source_manager_repository_iam_binding", - "google_secure_source_manager_repository_iam_member", - "google_secure_source_manager_repository_iam_policy", - "google_security_scanner_scan_config", - "google_securityposture_posture", - "google_service_account", - "google_service_account_iam_binding", - "google_service_account_iam_member", - "google_service_account_iam_policy", - "google_service_account_key", - "google_service_directory_endpoint", - "google_service_directory_namespace", - "google_service_directory_namespace_iam_binding", - "google_service_directory_namespace_iam_member", - "google_service_directory_namespace_iam_policy", - "google_service_directory_service", - "google_service_directory_service_iam_binding", - "google_service_directory_service_iam_member", - "google_service_directory_service_iam_policy", - "google_service_networking_connection", - "google_service_networking_peered_dns_domain", - "google_service_networking_vpc_service_controls", - "google_service_usage_consumer_quota_override", - "google_site_verification_owner", - "google_site_verification_web_resource", - "google_sourcerepo_repository", - "google_sourcerepo_repository_iam_binding", - "google_sourcerepo_repository_iam_member", - "google_sourcerepo_repository_iam_policy", - "google_spanner_backup_schedule", - "google_spanner_database", - "google_spanner_database_iam_binding", - "google_spanner_database_iam_member", - "google_spanner_database_iam_policy", - "google_spanner_instance", - "google_spanner_instance_config", - "google_spanner_instance_iam_binding", - "google_spanner_instance_iam_member", - "google_spanner_instance_iam_policy", - "google_spanner_instance_partition", - "google_sql_database", - "google_sql_database_instance", - "google_sql_source_representation_instance", - "google_sql_ssl_cert", - "google_sql_user", - "google_storage_anywhere_cache", - "google_storage_batch_operations_job", - "google_storage_bucket", - "google_storage_bucket_access_control", - "google_storage_bucket_acl", - "google_storage_bucket_iam_binding", - "google_storage_bucket_iam_member", - "google_storage_bucket_iam_policy", - "google_storage_bucket_object", - "google_storage_control_folder_intelligence_config", - "google_storage_control_organization_intelligence_config", - "google_storage_control_project_intelligence_config", - "google_storage_default_object_access_control", - "google_storage_default_object_acl", - "google_storage_folder", - "google_storage_hmac_key", - "google_storage_insights_report_config", - "google_storage_managed_folder", - "google_storage_managed_folder_iam_binding", - "google_storage_managed_folder_iam_member", - "google_storage_managed_folder_iam_policy", - "google_storage_notification", - "google_storage_object_access_control", - "google_storage_object_acl", - "google_storage_transfer_agent_pool", - "google_storage_transfer_job", - "google_tags_location_tag_binding", - "google_tags_tag_binding", - "google_tags_tag_key", - "google_tags_tag_key_iam_binding", - "google_tags_tag_key_iam_member", - "google_tags_tag_key_iam_policy", - "google_tags_tag_value", - "google_tags_tag_value_iam_binding", - "google_tags_tag_value_iam_member", - "google_tags_tag_value_iam_policy", - "google_tpu_node", - "google_tpu_v2_queued_resource", - "google_tpu_v2_vm", - "google_transcoder_job", - "google_transcoder_job_template", - "google_vertex_ai_dataset", - "google_vertex_ai_deployment_resource_pool", - "google_vertex_ai_endpoint", - "google_vertex_ai_endpoint_iam_binding", - "google_vertex_ai_endpoint_iam_member", - "google_vertex_ai_endpoint_iam_policy", - "google_vertex_ai_feature_group", - "google_vertex_ai_feature_group_feature", - "google_vertex_ai_feature_group_iam_binding", - "google_vertex_ai_feature_group_iam_member", - "google_vertex_ai_feature_group_iam_policy", - "google_vertex_ai_feature_online_store", - "google_vertex_ai_feature_online_store_featureview", - "google_vertex_ai_feature_online_store_featureview_iam_binding", - "google_vertex_ai_feature_online_store_featureview_iam_member", - "google_vertex_ai_feature_online_store_featureview_iam_policy", - "google_vertex_ai_feature_online_store_iam_binding", - "google_vertex_ai_feature_online_store_iam_member", - "google_vertex_ai_feature_online_store_iam_policy", - "google_vertex_ai_featurestore", - "google_vertex_ai_featurestore_entitytype", - "google_vertex_ai_featurestore_entitytype_feature", - "google_vertex_ai_featurestore_entitytype_iam_binding", - "google_vertex_ai_featurestore_entitytype_iam_member", - "google_vertex_ai_featurestore_entitytype_iam_policy", - "google_vertex_ai_featurestore_iam_binding", - "google_vertex_ai_featurestore_iam_member", - "google_vertex_ai_featurestore_iam_policy", - "google_vertex_ai_index", - "google_vertex_ai_index_endpoint", - "google_vertex_ai_index_endpoint_deployed_index", - "google_vertex_ai_metadata_store", - "google_vertex_ai_tensorboard", - "google_vmwareengine_cluster", - "google_vmwareengine_external_access_rule", - "google_vmwareengine_external_address", - "google_vmwareengine_network", - "google_vmwareengine_network_peering", - "google_vmwareengine_network_policy", - "google_vmwareengine_private_cloud", - "google_vmwareengine_subnet", - "google_vpc_access_connector", - "google_workbench_instance", - "google_workbench_instance_iam_binding", - "google_workbench_instance_iam_member", - "google_workbench_instance_iam_policy", - "google_workflows_workflow", - "google_workstations_workstation", - "google_workstations_workstation_cluster", - "google_workstations_workstation_config", - "google_workstations_workstation_config_iam_binding", - "google_workstations_workstation_config_iam_member", - "google_workstations_workstation_config_iam_policy", - "google_workstations_workstation_iam_binding", - "google_workstations_workstation_iam_member", - "google_workstations_workstation_iam_policy" - ], - "dataSources": [ - "google_access_approval_folder_service_account", - "google_access_approval_organization_service_account", - "google_access_approval_project_service_account", - "google_access_context_manager_access_policy", - "google_access_context_manager_access_policy_iam_policy", - "google_active_folder", - "google_alloydb_cluster", - "google_alloydb_instance", - "google_alloydb_locations", - "google_alloydb_supported_database_flags", - "google_api_gateway_api_config_iam_policy", - "google_api_gateway_api_iam_policy", - "google_api_gateway_gateway_iam_policy", - "google_apigee_environment_iam_policy", - "google_app_engine_default_service_account", - "google_apphub_application", - "google_apphub_discovered_service", - "google_apphub_discovered_workload", - "google_artifact_registry_docker_image", - "google_artifact_registry_locations", - "google_artifact_registry_repository", - "google_artifact_registry_repository_iam_policy", - "google_backup_dr_backup", - "google_backup_dr_backup_plan_association", - "google_backup_dr_backup_vault", - "google_backup_dr_data_source", - "google_beyondcorp_app_connection", - "google_beyondcorp_app_connector", - "google_beyondcorp_app_gateway", - "google_beyondcorp_application_iam_policy", - "google_beyondcorp_security_gateway", - "google_beyondcorp_security_gateway_application_iam_policy", - "google_beyondcorp_security_gateway_iam_policy", - "google_bigquery_analytics_hub_data_exchange_iam_policy", - "google_bigquery_analytics_hub_listing_iam_policy", - "google_bigquery_connection_iam_policy", - "google_bigquery_datapolicy_data_policy_iam_policy", - "google_bigquery_dataset", - "google_bigquery_dataset_iam_policy", - "google_bigquery_datasets", - "google_bigquery_default_service_account", - "google_bigquery_table", - "google_bigquery_table_iam_policy", - "google_bigquery_tables", - "google_bigtable_instance_iam_policy", - "google_bigtable_table_iam_policy", - "google_billing_account", - "google_billing_account_iam_policy", - "google_binary_authorization_attestor_iam_policy", - "google_certificate_manager_certificate_map", - "google_certificate_manager_certificates", - "google_client_config", - "google_client_openid_userinfo", - "google_cloud_identity_group_lookup", - "google_cloud_identity_group_memberships", - "google_cloud_identity_group_transitive_memberships", - "google_cloud_identity_groups", - "google_cloud_quotas_quota_info", - "google_cloud_quotas_quota_infos", - "google_cloud_run_locations", - "google_cloud_run_service", - "google_cloud_run_service_iam_policy", - "google_cloud_run_v2_job", - "google_cloud_run_v2_job_iam_policy", - "google_cloud_run_v2_service", - "google_cloud_run_v2_service_iam_policy", - "google_cloud_run_v2_worker_pool", - "google_cloud_run_v2_worker_pool_iam_policy", - "google_cloud_tasks_queue_iam_policy", - "google_cloudbuild_trigger", - "google_cloudbuildv2_connection_iam_policy", - "google_clouddeploy_custom_target_type_iam_policy", - "google_clouddeploy_delivery_pipeline_iam_policy", - "google_clouddeploy_target_iam_policy", - "google_cloudfunctions2_function", - "google_cloudfunctions2_function_iam_policy", - "google_cloudfunctions_function", - "google_cloudfunctions_function_iam_policy", - "google_colab_runtime_template_iam_policy", - "google_composer_environment", - "google_composer_image_versions", - "google_composer_user_workloads_config_map", - "google_composer_user_workloads_secret", - "google_compute_address", - "google_compute_addresses", - "google_compute_backend_bucket", - "google_compute_backend_bucket_iam_policy", - "google_compute_backend_service", - "google_compute_backend_service_iam_policy", - "google_compute_default_service_account", - "google_compute_disk", - "google_compute_disk_iam_policy", - "google_compute_forwarding_rule", - "google_compute_forwarding_rules", - "google_compute_global_address", - "google_compute_global_forwarding_rule", - "google_compute_ha_vpn_gateway", - "google_compute_health_check", - "google_compute_image", - "google_compute_image_iam_policy", - "google_compute_images", - "google_compute_instance", - "google_compute_instance_group", - "google_compute_instance_group_manager", - "google_compute_instance_guest_attributes", - "google_compute_instance_iam_policy", - "google_compute_instance_serial_port", - "google_compute_instance_template", - "google_compute_instance_template_iam_policy", - "google_compute_instant_snapshot_iam_policy", - "google_compute_lb_ip_ranges", - "google_compute_machine_image_iam_policy", - "google_compute_machine_types", - "google_compute_network", - "google_compute_network_endpoint_group", - "google_compute_network_peering", - "google_compute_networks", - "google_compute_node_types", - "google_compute_region_backend_service", - "google_compute_region_backend_service_iam_policy", - "google_compute_region_disk", - "google_compute_region_disk_iam_policy", - "google_compute_region_instance_group", - "google_compute_region_instance_group_manager", - "google_compute_region_instance_template", - "google_compute_region_network_endpoint_group", - "google_compute_region_ssl_certificate", - "google_compute_regions", - "google_compute_reservation", - "google_compute_resource_policy", - "google_compute_router", - "google_compute_router_nat", - "google_compute_router_status", - "google_compute_security_policy", - "google_compute_snapshot", - "google_compute_snapshot_iam_policy", - "google_compute_ssl_certificate", - "google_compute_ssl_policy", - "google_compute_storage_pool_iam_policy", - "google_compute_storage_pool_types", - "google_compute_subnetwork", - "google_compute_subnetwork_iam_policy", - "google_compute_subnetworks", - "google_compute_vpn_gateway", - "google_compute_zones", - "google_container_analysis_note_iam_policy", - "google_container_attached_install_manifest", - "google_container_attached_versions", - "google_container_aws_versions", - "google_container_azure_versions", - "google_container_cluster", - "google_container_engine_versions", - "google_container_registry_image", - "google_container_registry_repository", - "google_data_catalog_entry_group_iam_policy", - "google_data_catalog_policy_tag_iam_policy", - "google_data_catalog_tag_template_iam_policy", - "google_data_catalog_taxonomy_iam_policy", - "google_data_fusion_instance_iam_policy", - "google_dataform_repository_iam_policy", - "google_dataplex_aspect_type_iam_policy", - "google_dataplex_asset_iam_policy", - "google_dataplex_datascan_iam_policy", - "google_dataplex_entry_group_iam_policy", - "google_dataplex_entry_type_iam_policy", - "google_dataplex_glossary_iam_policy", - "google_dataplex_lake_iam_policy", - "google_dataplex_task_iam_policy", - "google_dataplex_zone_iam_policy", - "google_dataproc_autoscaling_policy_iam_policy", - "google_dataproc_cluster_iam_policy", - "google_dataproc_job_iam_policy", - "google_dataproc_metastore_database_iam_policy", - "google_dataproc_metastore_federation_iam_policy", - "google_dataproc_metastore_service", - "google_dataproc_metastore_service_iam_policy", - "google_dataproc_metastore_table_iam_policy", - "google_datastream_static_ips", - "google_dns_keys", - "google_dns_managed_zone", - "google_dns_managed_zone_iam_policy", - "google_dns_managed_zones", - "google_dns_record_set", - "google_endpoints_service_consumers_iam_policy", - "google_endpoints_service_iam_policy", - "google_filestore_instance", - "google_firebase_web_app_config", - "google_folder", - "google_folder_iam_policy", - "google_folder_organization_policy", - "google_folders", - "google_gemini_repository_group_iam_policy", - "google_gke_backup_backup_plan_iam_policy", - "google_gke_backup_restore_plan_iam_policy", - "google_gke_hub_feature", - "google_gke_hub_feature_iam_policy", - "google_gke_hub_membership", - "google_gke_hub_membership_iam_policy", - "google_gke_hub_scope_iam_policy", - "google_healthcare_consent_store_iam_policy", - "google_healthcare_dataset_iam_policy", - "google_healthcare_dicom_store_iam_policy", - "google_healthcare_fhir_store_iam_policy", - "google_healthcare_hl7_v2_store_iam_policy", - "google_iam_policy", - "google_iam_role", - "google_iam_workload_identity_pool", - "google_iam_workload_identity_pool_iam_policy", - "google_iam_workload_identity_pool_provider", - "google_iap_app_engine_service_iam_policy", - "google_iap_app_engine_version_iam_policy", - "google_iap_client", - "google_iap_tunnel_dest_group_iam_policy", - "google_iap_tunnel_iam_policy", - "google_iap_tunnel_instance_iam_policy", - "google_iap_web_backend_service_iam_policy", - "google_iap_web_cloud_run_service_iam_policy", - "google_iap_web_iam_policy", - "google_iap_web_region_backend_service_iam_policy", - "google_iap_web_type_app_engine_iam_policy", - "google_iap_web_type_compute_iam_policy", - "google_kms_autokey_config", - "google_kms_crypto_key", - "google_kms_crypto_key_iam_policy", - "google_kms_crypto_key_latest_version", - "google_kms_crypto_key_version", - "google_kms_crypto_key_versions", - "google_kms_crypto_keys", - "google_kms_ekm_connection_iam_policy", - "google_kms_key_handle", - "google_kms_key_handles", - "google_kms_key_ring", - "google_kms_key_ring_iam_policy", - "google_kms_key_rings", - "google_kms_secret", - "google_kms_secret_asymmetric", - "google_kms_secret_ciphertext", - "google_logging_folder_settings", - "google_logging_log_view_iam_policy", - "google_logging_organization_settings", - "google_logging_project_cmek_settings", - "google_logging_project_settings", - "google_lustre_instance", - "google_memcache_instance", - "google_memorystore_instance", - "google_monitoring_app_engine_service", - "google_monitoring_cluster_istio_service", - "google_monitoring_istio_canonical_service", - "google_monitoring_mesh_istio_service", - "google_monitoring_notification_channel", - "google_monitoring_uptime_check_ips", - "google_netblock_ip_ranges", - "google_network_security_address_group_iam_policy", - "google_notebooks_instance_iam_policy", - "google_notebooks_runtime_iam_policy", - "google_oracle_database_autonomous_database", - "google_oracle_database_autonomous_databases", - "google_oracle_database_cloud_exadata_infrastructure", - "google_oracle_database_cloud_exadata_infrastructures", - "google_oracle_database_cloud_vm_cluster", - "google_oracle_database_cloud_vm_clusters", - "google_oracle_database_db_nodes", - "google_oracle_database_db_servers", - "google_organization", - "google_organization_iam_custom_role", - "google_organization_iam_custom_roles", - "google_organization_iam_policy", - "google_organizations", - "google_parameter_manager_parameter", - "google_parameter_manager_parameter_version", - "google_parameter_manager_parameter_version_render", - "google_parameter_manager_parameters", - "google_parameter_manager_regional_parameter", - "google_parameter_manager_regional_parameter_version", - "google_parameter_manager_regional_parameter_version_render", - "google_parameter_manager_regional_parameters", - "google_privateca_ca_pool_iam_policy", - "google_privateca_certificate_authority", - "google_privateca_certificate_template_iam_policy", - "google_privileged_access_manager_entitlement", - "google_project", - "google_project_ancestry", - "google_project_iam_custom_role", - "google_project_iam_custom_roles", - "google_project_iam_policy", - "google_project_organization_policy", - "google_project_service", - "google_projects", - "google_pubsub_schema_iam_policy", - "google_pubsub_subscription", - "google_pubsub_subscription_iam_policy", - "google_pubsub_topic", - "google_pubsub_topic_iam_policy", - "google_redis_instance", - "google_runtimeconfig_config", - "google_runtimeconfig_config_iam_policy", - "google_runtimeconfig_variable", - "google_scc_source_iam_policy", - "google_scc_v2_organization_source_iam_policy", - "google_secret_manager_regional_secret", - "google_secret_manager_regional_secret_iam_policy", - "google_secret_manager_regional_secret_version", - "google_secret_manager_regional_secret_version_access", - "google_secret_manager_regional_secrets", - "google_secret_manager_secret", - "google_secret_manager_secret_iam_policy", - "google_secret_manager_secret_version", - "google_secret_manager_secret_version_access", - "google_secret_manager_secrets", - "google_secure_source_manager_instance_iam_policy", - "google_secure_source_manager_repository_iam_policy", - "google_service_account", - "google_service_account_access_token", - "google_service_account_iam_policy", - "google_service_account_id_token", - "google_service_account_jwt", - "google_service_account_key", - "google_service_accounts", - "google_service_directory_namespace_iam_policy", - "google_service_directory_service_iam_policy", - "google_site_verification_token", - "google_sourcerepo_repository", - "google_sourcerepo_repository_iam_policy", - "google_spanner_database", - "google_spanner_database_iam_policy", - "google_spanner_instance", - "google_spanner_instance_iam_policy", - "google_sql_backup_run", - "google_sql_ca_certs", - "google_sql_database", - "google_sql_database_instance", - "google_sql_database_instance_latest_recovery_time", - "google_sql_database_instances", - "google_sql_databases", - "google_sql_tiers", - "google_storage_bucket", - "google_storage_bucket_iam_policy", - "google_storage_bucket_object", - "google_storage_bucket_object_content", - "google_storage_bucket_objects", - "google_storage_buckets", - "google_storage_control_folder_intelligence_config", - "google_storage_control_organization_intelligence_config", - "google_storage_control_project_intelligence_config", - "google_storage_object_signed_url", - "google_storage_project_service_account", - "google_storage_transfer_project_service_account", - "google_tags_tag_key", - "google_tags_tag_key_iam_policy", - "google_tags_tag_keys", - "google_tags_tag_value", - "google_tags_tag_value_iam_policy", - "google_tags_tag_values", - "google_tpu_tensorflow_versions", - "google_tpu_v2_accelerator_types", - "google_tpu_v2_runtime_versions", - "google_vertex_ai_endpoint_iam_policy", - "google_vertex_ai_feature_group_iam_policy", - "google_vertex_ai_feature_online_store_featureview_iam_policy", - "google_vertex_ai_feature_online_store_iam_policy", - "google_vertex_ai_featurestore_entitytype_iam_policy", - "google_vertex_ai_featurestore_iam_policy", - "google_vmwareengine_cluster", - "google_vmwareengine_external_access_rule", - "google_vmwareengine_external_address", - "google_vmwareengine_network", - "google_vmwareengine_network_peering", - "google_vmwareengine_network_policy", - "google_vmwareengine_nsx_credentials", - "google_vmwareengine_private_cloud", - "google_vmwareengine_subnet", - "google_vmwareengine_vcenter_credentials", - "google_vpc_access_connector", - "google_workbench_instance_iam_policy", - "google_workstations_workstation_config_iam_policy", - "google_workstations_workstation_iam_policy" - ] -} \ No newline at end of file + "dataSources": null, + "resources": null +} diff --git a/src/scan.go b/src/scan.go index 1e036472..f950b717 100644 --- a/src/scan.go +++ b/src/scan.go @@ -241,14 +241,31 @@ func LocateTerraform() (string, error) { // MakePolicy does the guts of determining a policy from code. func MakePolicy(dirName string, file *string, init bool, EnableResources bool, provider string) (OutputPolicy, error) { var ( - files []string output OutputPolicy ) + permissionsBag, err := MakePermissionBag(dirName, file, init, provider) + + if err != nil { + return output, err + } + + output, err = GetPolicy(permissionsBag, EnableResources) + if err != nil { + return output, &getPolicyError{err: err} + } + + return output, nil +} + +func MakePermissionBag(dirName string, file *string, init bool, provider string) (Sorted, error) { + + var files []string + if file == nil { fullPath, err := filepath.Abs(dirName) if err != nil { - return output, &absolutePathError{directory: dirName, err: err} + return Sorted{}, &absolutePathError{directory: dirName, err: err} } if init { @@ -264,24 +281,24 @@ func MakePolicy(dirName string, file *string, init bool, EnableResources bool, p files, err = GetTF(fullPath) if err != nil { - return output, &getTFError{directory: fullPath, err: err} + return Sorted{}, &getTFError{directory: fullPath, err: err} } } else { myFile, err := filepath.Abs(*file) if err != nil { - return output, &absolutePathError{directory: *file, err: err} + return Sorted{}, &absolutePathError{directory: *file, err: err} } // is this a tfFile? if !(FileExists(myFile)) { - return output, os.ErrNotExist + return Sorted{}, os.ErrNotExist } files = append(files, myFile) } if len(files) == 0 { - return output, &emptyIACError{} + return Sorted{}, &emptyIACError{} } var resources []ResourceV2 @@ -298,13 +315,7 @@ func MakePolicy(dirName string, file *string, init bool, EnableResources bool, p } } permissionsBag := GetPermissionBag(resources, provider) - - output, err := GetPolicy(permissionsBag, EnableResources) - if err != nil { - return output, &getPolicyError{err: err} - } - - return output, nil + return permissionsBag, nil } func GetPermissionBag(resources []ResourceV2, provider string) Sorted { diff --git a/src/utils.go b/src/utils.go index f200c165..ab1de1c7 100644 --- a/src/utils.go +++ b/src/utils.go @@ -134,3 +134,18 @@ const float64EqualityThreshold = 1e-9 func AlmostEqual(a, b float64) bool { return math.Abs(a-b) <= float64EqualityThreshold } + +type EnvVariableNotSetError struct { + Key string +} + +func (e *EnvVariableNotSetError) Error() string { + return fmt.Sprintf("environment variable %s not set", e.Key) +} + +func GetEnv(key string) (*string, error) { + if value, ok := os.LookupEnv(key); ok { + return &value, nil + } + return nil, &EnvVariableNotSetError{key} +} diff --git a/src/utils_test.go b/src/utils_test.go index d2d2d673..233838a7 100644 --- a/src/utils_test.go +++ b/src/utils_test.go @@ -1,6 +1,8 @@ package pike_test import ( + "os" + "reflect" "testing" pike "github.com/jameswoolfenden/pike/src" @@ -220,3 +222,56 @@ func TestAlmostEqual(t *testing.T) { }) } } + +func TestEnvVariableNotSetError_Error(t *testing.T) { + type fields struct { + Key string + } + tests := []struct { + name string + fields fields + want string + }{ + {"fail", fields{"key"}, "environment variable key not set"}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + e := &pike.EnvVariableNotSetError{ + Key: tt.fields.Key, + } + if got := e.Error(); got != tt.want { + t.Errorf("Error() = %v, want %v", got, tt.want) + } + }) + } +} + +func Test_getEnv(t *testing.T) { + type args struct { + key string + } + + os.Setenv("fortest", "value") + + tests := []struct { + name string + args args + want *string + wantErr bool + }{ + {"fail", args{"key"}, nil, true}, + {"pass", args{"fortest"}, &[]string{"value"}[0], false}, + } + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + got, err := pike.GetEnv(tt.args.key) + if (err != nil) != tt.wantErr { + t.Errorf("GetEnv() error = %v, wantErr %v", err, tt.wantErr) + return + } + if !reflect.DeepEqual(got, tt.want) { + t.Errorf("GetEnv() got = %v, want %v", got, tt.want) + } + }) + } +} From 0781585dc65cf112f2b04591fa8d785de23a4784 Mon Sep 17 00:00:00 2001 From: James Woolfenden Date: Mon, 9 Jun 2025 20:38:28 +0100 Subject: [PATCH 3/5] gcp compare policy function --- main.go | 13 +- src/compare.go | 109 +- src/compare_test.go | 56 +- src/coverage/aws.md | 17 +- src/coverage/azure.md | 7 +- src/coverage/google.md | 8 +- src/parse/aws-members.json | 2125 +++++++++++++++++++++++++++++++- src/parse/azurerm-members.json | 1457 +++++++++++++++++++++- src/parse/google-members.json | 1560 ++++++++++++++++++++++- 9 files changed, 5279 insertions(+), 73 deletions(-) diff --git a/main.go b/main.go index efdacdc8..345c43f1 100644 --- a/main.go +++ b/main.go @@ -190,8 +190,8 @@ func main() { &cli.StringFlag{ Name: "arn", Aliases: []string{"a"}, - Usage: "Policy identifier e.g. arn", - Value: "arn:aws:iam::680235478471:policy/basic", + Usage: "Policy identifier e.g. arn, gcp role path", + Required: true, Destination: &arn, EnvVars: []string{"ARN"}, }, @@ -204,7 +204,14 @@ func main() { }, Action: func(*cli.Context) error { theSame, err := pike.Compare(directory, arn, init) - log.Print("The same: ", theSame) + if err != nil { + log.Fatal().Msgf(err.Error()) + os.Exit(1) + } + + if !theSame { + os.Exit(1) + } return err }, diff --git a/src/compare.go b/src/compare.go index c995ae49..4e23893c 100644 --- a/src/compare.go +++ b/src/compare.go @@ -21,17 +21,26 @@ import ( "google.golang.org/api/serviceusage/v1" ) +type invalidCloudError struct { + arn string +} + +func (e *invalidCloudError) Error() string { + return fmt.Sprintf("Invalid Cloud: %v", e.arn) +} + // Compare IAC codebase to AWS policy. func Compare(directory string, arn string, init bool) (bool, error) { var result bool - valid, err := inputValidationCompare(directory, arn) + result, err := inputValidationCompare(directory, arn) if err != nil { - return valid, &inputValidationError{err} + log.Error().Msgf("Failed to validate input %v", err) + os.Exit(1) } switch *getCloudFromRole(arn) { - case "arn": + case "aws": { result, err = compareAWSRole(directory, arn, init) } @@ -39,6 +48,10 @@ func Compare(directory string, arn string, init bool) (bool, error) { { result, err = compareGCPRole(directory, arn, init) } + default: + { + err = &invalidCloudError{arn} + } } return result, err @@ -49,15 +62,13 @@ func getCloudFromRole(arn string) *string { if strings.Contains(arn, "arn:") { result = "aws" - return &result } - if strings.Contains(arn, "roles") { + if strings.Contains(arn, "projects") { result = "gcp" - return &result } - return nil + return &result } type apiNotFoundError struct { @@ -82,21 +93,19 @@ func compareGCPRole(directory string, arn string, init bool) (bool, error) { return false, &getIAMVersionError{err} } - ctx := context.Background() - - var projectID string - temp, err := GetEnv("GCP_PROJECT") - - projectID = *temp + var projectID *string + projectID, err = GetEnv("GCP_PROJECT") if err != nil { return false, &EnvVariableNotSetError{"GCP_PROJECT"} } + //projectID = *temp + var API string API = "iam.googleapis.com" - enabled, err := isGCPAPIEnabled(projectID, API) + enabled, err := isGCPAPIEnabled(*projectID, API) if err != nil { return enabled, &apiNotFoundError{API} @@ -106,9 +115,12 @@ func compareGCPRole(directory string, arn string, init bool) (bool, error) { return enabled, &apiNotEnabledError{API} } + ctx, cancel := context.WithTimeout(context.Background(), 30*time.Second) + defer cancel() + iamService, err := gcpiam.NewService(ctx) if err != nil { - log.Error().Msgf("Failed to create IAM Service %v", err) + return false, &IAMServiceError{err} } // The resource name of the role in one of the following formats: @@ -123,20 +135,51 @@ func compareGCPRole(directory string, arn string, init bool) (bool, error) { Roles, err := iamService.Roles.Get(arn).Context(ctx).Do() - if Roles == nil || err != nil { - log.Error().Msgf("Failed to get role %v", err) + if Roles == nil { + return false, &GCPRoleNotFound{arn} + } + + if err != nil { + return false, &GCPIAMRoleError{err} } - //reflect.DeepEqual(iacPolicy.GCP, Roles.IncludedPermissions) + return compareGCPPolicy(Roles, iacPolicy) +} + +func compareGCPPolicy(Roles *gcpiam.Role, iacPolicy Sorted) (bool, error) { results := cmp.Diff(Roles.IncludedPermissions, iacPolicy.GCP) if results != "" { results = strings.Replace(results, "[]string{", "", -1) results = strings.Replace(results, "}", "", -1) fmt.Print("Policy Comparison mismatch mismatch (-excess +needs):") fmt.Print(results) - return true, nil + return false, nil } - return false, nil + return true, nil +} + +type GCPIAMRoleError struct { + err error +} + +func (m *GCPIAMRoleError) Error() string { + return fmt.Sprintf("IAM Role Error: %v", m.err) +} + +type GCPRoleNotFound struct { + role string +} + +func (e *GCPRoleNotFound) Error() string { + return fmt.Sprintf("IAM Role Error: %v", e.role) +} + +type IAMServiceError struct { + err error +} + +func (m *IAMServiceError) Error() string { + return m.err.Error() } func isGCPAPIEnabled(projectID string, want string) (bool, error) { @@ -194,22 +237,26 @@ func compareAWSRole(directory string, arn string, init bool) (bool, error) { func inputValidationCompare(directory string, arn string) (bool, error) { if directory == "" { + log.Error().Msg("Directory cannot be empty") return false, &emptyDirectoryError{} } - if _, err := os.Stat(directory); os.IsNotExist(err) { - return false, &directoryNotFoundError{directory} - } - if arn == "" { + log.Error().Msg("ARN cannot be empty") return false, &arnEmptyError{} } - if !strings.HasPrefix(arn, "arn:") && !strings.HasPrefix(arn, "roles/") { + if _, err := os.Stat(directory); os.IsNotExist(err) { + log.Error().Msgf("Directory %s does not exist", directory) + return false, &directoryNotFoundError{directory} + } + + if !strings.HasPrefix(arn, "arn:") && !strings.HasPrefix(arn, "projects/") { + log.Error().Msgf("Invalid ARN %s cant determine cloud in use", arn) return false, &invalidARNError{arn} } - return false, nil + return true, nil } type compareDifferenceError struct { @@ -297,11 +344,11 @@ type GcpRoleNotVerified struct { } func (e *GcpRoleNotVerified) Error() string { - log.Info().Msg( - `The resource name of the role in one of the following formats:") - roles/{ROLE_NAME} - organizations/{ORGANIZATION_ID}/roles/{ROLE_NAME} - projects/{PROJECT_ID}/roles/{ROLE_NAME}`) + fmt.Print( + `The resource name of the role in one of the following formats: + roles/{ROLE_NAME} + organizations/{ORGANIZATION_ID}/roles/{ROLE_NAME} + projects/{PROJECT_ID}/roles/{ROLE_NAME}`) return e.role } diff --git a/src/compare_test.go b/src/compare_test.go index 165731b1..f0870bb0 100644 --- a/src/compare_test.go +++ b/src/compare_test.go @@ -88,6 +88,8 @@ func TestCompare(t *testing.T) { init bool } + os.Setenv("GCP_PROJECT", "pike-412922") + tests := []struct { name string args args @@ -95,11 +97,11 @@ func TestCompare(t *testing.T) { wantErr bool }{ {"fail arn is empty", args{"./testdata/init/nicconf", "", false}, false, true}, - {"fail arn is not policy", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:user/readonly", false}, false, true}, + {"fail arn is not policy", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:user/readonly", false}, false, false}, {"pass", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:policy/testdata", false}, true, false}, //code is not aws {"gcp-basic-fail", args{"./testdata/gcp/basic", "basic", false}, false, true}, - {"gcp-basic", args{"./testdata/gcp/basic", "roles/terraform_pike", false}, false, false}, + {"gcp-basic-exist-fail", args{"./testdata/gcp/basic", "projects/pike-412922/roles/terraform_pike", false}, false, false}, } for _, tt := range tests { @@ -300,28 +302,34 @@ func Test_compareGCPRole(t *testing.T) { } } -func TestGcpRoleNotVerified_Error(t *testing.T) { - type fields struct { - role string - } - tests := []struct { - name string - fields fields - want string - }{ - {"fail", fields{"pike-fail"}, ""}, - } - for _, tt := range tests { - t.Run(tt.name, func(t *testing.T) { - e := &GcpRoleNotVerified{ - role: tt.fields.role, - } - if got := e.Error(); got != tt.want { - t.Errorf("Error() = %v, want %v", got, tt.want) - } - }) - } -} +//func TestGcpRoleNotVerified_Error(t *testing.T) { +// type fields struct { +// role string +// } +// output := +// `The resource name of the role in one of the following formats: +// roles/{ROLE_NAME} +// organizations/{ORGANIZATION_ID}/roles/{ROLE_NAME} +// projects/{PROJECT_ID}/roles/{ROLE_NAME}` +// +// tests := []struct { +// name string +// fields fields +// want string +// }{ +// {"fail", fields{"pike-fail"}, output}, +// } +// for _, tt := range tests { +// t.Run(tt.name, func(t *testing.T) { +// e := &GcpRoleNotVerified{ +// role: tt.fields.role, +// } +// if got := e.Error(); got != tt.want { +// t.Errorf("Error() = %v, want %v", got, tt.want) +// } +// }) +// } +//} func TestVerifyRole(t *testing.T) { type args struct { diff --git a/src/coverage/aws.md b/src/coverage/aws.md index 3c6c40c9..a7b2f0d2 100644 --- a/src/coverage/aws.md +++ b/src/coverage/aws.md @@ -1,4 +1,19 @@ # todo aws -Resource percentage coverage 100.00 +Resource percentage coverage 99.08 Datasource percentage coverage 100.00 + +./resource.ps1 aws_dsql_cluster +./resource.ps1 aws_dsql_cluster_peering +./resource.ps1 aws_lightsail_bucket_access_key +./resource.ps1 aws_prometheus_workspace_configuration +./resource.ps1 aws_s3control_directory_bucket_access_point_scope +./resource.ps1 aws_vpc_route_server +./resource.ps1 aws_vpc_route_server_association +./resource.ps1 aws_vpc_route_server_endpoint +./resource.ps1 aws_vpc_route_server_peer +./resource.ps1 aws_vpc_route_server_propagation +./resource.ps1 aws_vpc_route_server_vpc_association +./resource.ps1 aws_workspacesweb_data_protection_settings +./resource.ps1 aws_workspacesweb_ip_access_settings +./resource.ps1 aws_workspacesweb_user_access_logging_settings diff --git a/src/coverage/azure.md b/src/coverage/azure.md index e77d2559..1a139d00 100755 --- a/src/coverage/azure.md +++ b/src/coverage/azure.md @@ -1,7 +1,7 @@ # todo azure Resource percentage coverage 4.50 -Datasource percentage coverage 34.56 +Datasource percentage coverage 34.17 ./resource.ps1 azurerm_aadb2c_directory ./resource.ps1 azurerm_active_directory_domain_service @@ -727,6 +727,7 @@ Datasource percentage coverage 34.56 ./resource.ps1 azurerm_public_ip ./resource.ps1 azurerm_public_ip_prefix ./resource.ps1 azurerm_purview_account +./resource.ps1 azurerm_qumulo_file_system ./resource.ps1 azurerm_recovery_services_vault ./resource.ps1 azurerm_recovery_services_vault_resource_guard_association ./resource.ps1 azurerm_redhat_openshift_cluster @@ -1102,7 +1103,11 @@ Datasource percentage coverage 34.56 ./resource.ps1 azurerm_dedicated_host -type data ./resource.ps1 azurerm_dedicated_host_group -type data ./resource.ps1 azurerm_dev_center -type data +./resource.ps1 azurerm_dev_center_catalog -type data +./resource.ps1 azurerm_dev_center_gallery -type data +./resource.ps1 azurerm_dev_center_network_connection -type data ./resource.ps1 azurerm_dev_center_project -type data +./resource.ps1 azurerm_dev_center_project_environment_type -type data ./resource.ps1 azurerm_digital_twins_instance -type data ./resource.ps1 azurerm_disk_access -type data ./resource.ps1 azurerm_disk_encryption_set -type data diff --git a/src/coverage/google.md b/src/coverage/google.md index b6cd41ee..d3e12850 100755 --- a/src/coverage/google.md +++ b/src/coverage/google.md @@ -1,6 +1,6 @@ # todo google -Resource percentage coverage 16.95 +Resource percentage coverage 16.87 Datasource percentage coverage 64.63 ./resource.ps1 google_access_context_manager_access_level_condition @@ -39,6 +39,7 @@ Datasource percentage coverage 64.63 ./resource.ps1 google_apigee_sync_authorization ./resource.ps1 google_apigee_target_server ./resource.ps1 google_apihub_api_hub_instance +./resource.ps1 google_apihub_curation ./resource.ps1 google_apihub_host_project_registration ./resource.ps1 google_apikeys_key ./resource.ps1 google_app_engine_application @@ -226,6 +227,8 @@ Datasource percentage coverage 64.63 ./resource.ps1 google_compute_instant_snapshot_iam_policy ./resource.ps1 google_compute_interconnect ./resource.ps1 google_compute_interconnect_attachment +./resource.ps1 google_compute_interconnect_attachment_group +./resource.ps1 google_compute_interconnect_group ./resource.ps1 google_compute_machine_image ./resource.ps1 google_compute_machine_image_iam_binding ./resource.ps1 google_compute_machine_image_iam_member @@ -302,6 +305,7 @@ Datasource percentage coverage 64.63 ./resource.ps1 google_compute_snapshot_iam_binding ./resource.ps1 google_compute_snapshot_iam_member ./resource.ps1 google_compute_snapshot_iam_policy +./resource.ps1 google_compute_snapshot_settings ./resource.ps1 google_compute_ssl_certificate ./resource.ps1 google_compute_ssl_policy ./resource.ps1 google_compute_storage_pool @@ -321,6 +325,7 @@ Datasource percentage coverage 64.63 ./resource.ps1 google_compute_url_map ./resource.ps1 google_compute_vpn_gateway ./resource.ps1 google_compute_vpn_tunnel +./resource.ps1 google_compute_wire_group ./resource.ps1 google_container_analysis_note ./resource.ps1 google_container_analysis_note_iam_binding ./resource.ps1 google_container_analysis_note_iam_member @@ -457,6 +462,7 @@ Datasource percentage coverage 64.63 ./resource.ps1 google_dialogflow_cx_intent ./resource.ps1 google_dialogflow_cx_page ./resource.ps1 google_dialogflow_cx_security_settings +./resource.ps1 google_dialogflow_cx_tool ./resource.ps1 google_dialogflow_cx_version ./resource.ps1 google_dialogflow_cx_webhook ./resource.ps1 google_dialogflow_entity_type diff --git a/src/parse/aws-members.json b/src/parse/aws-members.json index c32cf407..14fd6821 100755 --- a/src/parse/aws-members.json +++ b/src/parse/aws-members.json @@ -1,4 +1,2121 @@ -{ - "dataSources": null, - "resources": null -} +{ + "dataSources": [ + "aws_account_primary_contact", + "aws_acm_certificate", + "aws_acmpca_certificate", + "aws_acmpca_certificate_authority", + "aws_ami", + "aws_ami_ids", + "aws_api_gateway_api_key", + "aws_api_gateway_api_keys", + "aws_api_gateway_authorizer", + "aws_api_gateway_authorizers", + "aws_api_gateway_domain_name", + "aws_api_gateway_export", + "aws_api_gateway_resource", + "aws_api_gateway_rest_api", + "aws_api_gateway_sdk", + "aws_api_gateway_vpc_link", + "aws_apigatewayv2_api", + "aws_apigatewayv2_apis", + "aws_apigatewayv2_export", + "aws_apigatewayv2_vpc_link", + "aws_appconfig_configuration_profile", + "aws_appconfig_configuration_profiles", + "aws_appconfig_environment", + "aws_appconfig_environments", + "aws_appintegrations_event_integration", + "aws_appmesh_gateway_route", + "aws_appmesh_mesh", + "aws_appmesh_route", + "aws_appmesh_virtual_gateway", + "aws_appmesh_virtual_node", + "aws_appmesh_virtual_router", + "aws_appmesh_virtual_service", + "aws_apprunner_hosted_zone_id", + "aws_appstream_image", + "aws_arn", + "aws_athena_named_query", + "aws_auditmanager_control", + "aws_auditmanager_framework", + "aws_autoscaling_group", + "aws_autoscaling_groups", + "aws_availability_zone", + "aws_availability_zones", + "aws_backup_framework", + "aws_backup_plan", + "aws_backup_report_plan", + "aws_backup_selection", + "aws_backup_vault", + "aws_batch_compute_environment", + "aws_batch_job_definition", + "aws_batch_job_queue", + "aws_batch_scheduling_policy", + "aws_bedrock_custom_model", + "aws_bedrock_custom_models", + "aws_bedrock_foundation_model", + "aws_bedrock_foundation_models", + "aws_bedrock_inference_profile", + "aws_bedrock_inference_profiles", + "aws_bedrockagent_agent_versions", + "aws_billing_service_account", + "aws_budgets_budget", + "aws_caller_identity", + "aws_canonical_user_id", + "aws_ce_tags", + "aws_chatbot_slack_workspace", + "aws_cloudcontrolapi_resource", + "aws_cloudformation_export", + "aws_cloudformation_stack", + "aws_cloudformation_type", + "aws_cloudfront_cache_policy", + "aws_cloudfront_distribution", + "aws_cloudfront_function", + "aws_cloudfront_log_delivery_canonical_user_id", + "aws_cloudfront_origin_access_control", + "aws_cloudfront_origin_access_identities", + "aws_cloudfront_origin_access_identity", + "aws_cloudfront_origin_request_policy", + "aws_cloudfront_realtime_log_config", + "aws_cloudfront_response_headers_policy", + "aws_cloudhsm_v2_cluster", + "aws_cloudtrail_service_account", + "aws_cloudwatch_contributor_managed_insight_rules", + "aws_cloudwatch_event_bus", + "aws_cloudwatch_event_buses", + "aws_cloudwatch_event_connection", + "aws_cloudwatch_event_source", + "aws_cloudwatch_log_data_protection_policy_document", + "aws_cloudwatch_log_group", + "aws_cloudwatch_log_groups", + "aws_codeartifact_authorization_token", + "aws_codeartifact_repository_endpoint", + "aws_codebuild_fleet", + "aws_codecatalyst_dev_environment", + "aws_codecommit_approval_rule_template", + "aws_codecommit_repository", + "aws_codeguruprofiler_profiling_group", + "aws_codestarconnections_connection", + "aws_cognito_identity_pool", + "aws_cognito_user_group", + "aws_cognito_user_groups", + "aws_cognito_user_pool", + "aws_cognito_user_pool_client", + "aws_cognito_user_pool_clients", + "aws_cognito_user_pool_signing_certificate", + "aws_cognito_user_pools", + "aws_connect_bot_association", + "aws_connect_contact_flow", + "aws_connect_contact_flow_module", + "aws_connect_hours_of_operation", + "aws_connect_instance", + "aws_connect_instance_storage_config", + "aws_connect_lambda_function_association", + "aws_connect_prompt", + "aws_connect_queue", + "aws_connect_quick_connect", + "aws_connect_routing_profile", + "aws_connect_security_profile", + "aws_connect_user", + "aws_connect_user_hierarchy_group", + "aws_connect_user_hierarchy_structure", + "aws_connect_vocabulary", + "aws_controltower_controls", + "aws_cur_report_definition", + "aws_customer_gateway", + "aws_datapipeline_pipeline", + "aws_datapipeline_pipeline_definition", + "aws_datazone_domain", + "aws_datazone_environment_blueprint", + "aws_db_cluster_snapshot", + "aws_db_event_categories", + "aws_db_instance", + "aws_db_instances", + "aws_db_parameter_group", + "aws_db_proxy", + "aws_db_snapshot", + "aws_db_subnet_group", + "aws_default_tags", + "aws_devopsguru_notification_channel", + "aws_devopsguru_resource_collection", + "aws_directory_service_directory", + "aws_dms_certificate", + "aws_dms_endpoint", + "aws_dms_replication_instance", + "aws_dms_replication_subnet_group", + "aws_dms_replication_task", + "aws_docdb_engine_version", + "aws_docdb_orderable_db_instance", + "aws_dx_connection", + "aws_dx_gateway", + "aws_dx_location", + "aws_dx_locations", + "aws_dx_router_configuration", + "aws_dynamodb_table", + "aws_dynamodb_table_item", + "aws_dynamodb_tables", + "aws_ebs_default_kms_key", + "aws_ebs_encryption_by_default", + "aws_ebs_snapshot", + "aws_ebs_snapshot_ids", + "aws_ebs_volume", + "aws_ebs_volumes", + "aws_ec2_capacity_block_offering", + "aws_ec2_client_vpn_endpoint", + "aws_ec2_coip_pool", + "aws_ec2_coip_pools", + "aws_ec2_host", + "aws_ec2_instance_type", + "aws_ec2_instance_type_offering", + "aws_ec2_instance_type_offerings", + "aws_ec2_instance_types", + "aws_ec2_local_gateway", + "aws_ec2_local_gateway_route_table", + "aws_ec2_local_gateway_route_tables", + "aws_ec2_local_gateway_virtual_interface", + "aws_ec2_local_gateway_virtual_interface_group", + "aws_ec2_local_gateway_virtual_interface_groups", + "aws_ec2_local_gateways", + "aws_ec2_managed_prefix_list", + "aws_ec2_managed_prefix_lists", + "aws_ec2_network_insights_analysis", + "aws_ec2_network_insights_path", + "aws_ec2_public_ipv4_pool", + "aws_ec2_public_ipv4_pools", + "aws_ec2_serial_console_access", + "aws_ec2_spot_price", + "aws_ec2_transit_gateway", + "aws_ec2_transit_gateway_attachment", + "aws_ec2_transit_gateway_attachments", + "aws_ec2_transit_gateway_connect", + "aws_ec2_transit_gateway_connect_peer", + "aws_ec2_transit_gateway_dx_gateway_attachment", + "aws_ec2_transit_gateway_multicast_domain", + "aws_ec2_transit_gateway_peering_attachment", + "aws_ec2_transit_gateway_peering_attachments", + "aws_ec2_transit_gateway_route_table", + "aws_ec2_transit_gateway_route_table_associations", + "aws_ec2_transit_gateway_route_table_propagations", + "aws_ec2_transit_gateway_route_table_routes", + "aws_ec2_transit_gateway_route_tables", + "aws_ec2_transit_gateway_vpc_attachment", + "aws_ec2_transit_gateway_vpc_attachments", + "aws_ec2_transit_gateway_vpn_attachment", + "aws_ecr_authorization_token", + "aws_ecr_image", + "aws_ecr_lifecycle_policy_document", + "aws_ecr_pull_through_cache_rule", + "aws_ecr_repositories", + "aws_ecr_repository", + "aws_ecr_repository_creation_template", + "aws_ecrpublic_authorization_token", + "aws_ecs_cluster", + "aws_ecs_clusters", + "aws_ecs_container_definition", + "aws_ecs_service", + "aws_ecs_task_definition", + "aws_ecs_task_execution", + "aws_efs_access_point", + "aws_efs_access_points", + "aws_efs_file_system", + "aws_efs_mount_target", + "aws_eip", + "aws_eips", + "aws_eks_access_entry", + "aws_eks_addon", + "aws_eks_addon_version", + "aws_eks_cluster", + "aws_eks_cluster_auth", + "aws_eks_cluster_versions", + "aws_eks_clusters", + "aws_eks_node_group", + "aws_eks_node_groups", + "aws_elastic_beanstalk_application", + "aws_elastic_beanstalk_hosted_zone", + "aws_elastic_beanstalk_solution_stack", + "aws_elasticache_cluster", + "aws_elasticache_replication_group", + "aws_elasticache_reserved_cache_node_offering", + "aws_elasticache_serverless_cache", + "aws_elasticache_user", + "aws_elasticsearch_domain", + "aws_elb", + "aws_elb_hosted_zone_id", + "aws_elb_service_account", + "aws_emr_release_labels", + "aws_emr_supported_instance_types", + "aws_emrcontainers_virtual_cluster", + "aws_fis_experiment_templates", + "aws_fsx_ontap_file_system", + "aws_fsx_ontap_storage_virtual_machine", + "aws_fsx_ontap_storage_virtual_machines", + "aws_fsx_openzfs_snapshot", + "aws_fsx_windows_file_system", + "aws_globalaccelerator_accelerator", + "aws_globalaccelerator_custom_routing_accelerator", + "aws_glue_catalog_table", + "aws_glue_connection", + "aws_glue_data_catalog_encryption_settings", + "aws_glue_registry", + "aws_glue_script", + "aws_grafana_workspace", + "aws_guardduty_detector", + "aws_guardduty_finding_ids", + "aws_iam_access_keys", + "aws_iam_account_alias", + "aws_iam_group", + "aws_iam_instance_profile", + "aws_iam_instance_profiles", + "aws_iam_openid_connect_provider", + "aws_iam_policy", + "aws_iam_policy_document", + "aws_iam_principal_policy_simulation", + "aws_iam_role", + "aws_iam_roles", + "aws_iam_saml_provider", + "aws_iam_server_certificate", + "aws_iam_session_context", + "aws_iam_user", + "aws_iam_user_ssh_key", + "aws_iam_users", + "aws_identitystore_group", + "aws_identitystore_group_memberships", + "aws_identitystore_groups", + "aws_identitystore_user", + "aws_identitystore_users", + "aws_imagebuilder_component", + "aws_imagebuilder_components", + "aws_imagebuilder_container_recipe", + "aws_imagebuilder_container_recipes", + "aws_imagebuilder_distribution_configuration", + "aws_imagebuilder_distribution_configurations", + "aws_imagebuilder_image", + "aws_imagebuilder_image_pipeline", + "aws_imagebuilder_image_pipelines", + "aws_imagebuilder_image_recipe", + "aws_imagebuilder_image_recipes", + "aws_imagebuilder_infrastructure_configuration", + "aws_imagebuilder_infrastructure_configurations", + "aws_inspector_rules_packages", + "aws_instance", + "aws_instances", + "aws_internet_gateway", + "aws_iot_endpoint", + "aws_iot_registration_code", + "aws_ip_ranges", + "aws_ivs_stream_key", + "aws_kendra_experience", + "aws_kendra_faq", + "aws_kendra_index", + "aws_kendra_query_suggestions_block_list", + "aws_kendra_thesaurus", + "aws_key_pair", + "aws_kinesis_firehose_delivery_stream", + "aws_kinesis_stream", + "aws_kinesis_stream_consumer", + "aws_kms_alias", + "aws_kms_ciphertext", + "aws_kms_custom_key_store", + "aws_kms_key", + "aws_kms_public_key", + "aws_kms_secret", + "aws_kms_secrets", + "aws_lakeformation_data_lake_settings", + "aws_lakeformation_permissions", + "aws_lakeformation_resource", + "aws_lambda_alias", + "aws_lambda_code_signing_config", + "aws_lambda_function", + "aws_lambda_function_url", + "aws_lambda_functions", + "aws_lambda_invocation", + "aws_lambda_layer_version", + "aws_launch_configuration", + "aws_launch_template", + "aws_lb", + "aws_lb_hosted_zone_id", + "aws_lb_listener", + "aws_lb_listener_rule", + "aws_lb_target_group", + "aws_lb_trust_store", + "aws_lbs", + "aws_lex_bot", + "aws_lex_bot_alias", + "aws_lex_intent", + "aws_lex_slot_type", + "aws_licensemanager_grants", + "aws_licensemanager_received_license", + "aws_licensemanager_received_licenses", + "aws_location_geofence_collection", + "aws_location_map", + "aws_location_place_index", + "aws_location_route_calculator", + "aws_location_tracker", + "aws_location_tracker_association", + "aws_location_tracker_associations", + "aws_medialive_input", + "aws_mq_broker", + "aws_mq_broker_engine_types", + "aws_mq_broker_instance_type_offerings", + "aws_msk_bootstrap_brokers", + "aws_msk_broker_nodes", + "aws_msk_cluster", + "aws_msk_configuration", + "aws_msk_kafka_version", + "aws_msk_vpc_connection", + "aws_mskconnect_connector", + "aws_mskconnect_custom_plugin", + "aws_mskconnect_worker_configuration", + "aws_nat_gateway", + "aws_nat_gateways", + "aws_neptune_engine_version", + "aws_neptune_orderable_db_instance", + "aws_network_acls", + "aws_network_interface", + "aws_network_interfaces", + "aws_networkfirewall_firewall", + "aws_networkfirewall_firewall_policy", + "aws_networkfirewall_resource_policy", + "aws_networkmanager_connection", + "aws_networkmanager_connections", + "aws_networkmanager_core_network_policy_document", + "aws_networkmanager_device", + "aws_networkmanager_devices", + "aws_networkmanager_global_network", + "aws_networkmanager_global_networks", + "aws_networkmanager_link", + "aws_networkmanager_links", + "aws_networkmanager_site", + "aws_networkmanager_sites", + "aws_oam_link", + "aws_oam_links", + "aws_oam_sink", + "aws_oam_sinks", + "aws_opensearch_domain", + "aws_opensearchserverless_access_policy", + "aws_opensearchserverless_collection", + "aws_opensearchserverless_lifecycle_policy", + "aws_opensearchserverless_security_config", + "aws_opensearchserverless_security_policy", + "aws_opensearchserverless_vpc_endpoint", + "aws_organizations_delegated_administrators", + "aws_organizations_delegated_services", + "aws_organizations_organization", + "aws_organizations_organizational_unit", + "aws_organizations_organizational_unit_child_accounts", + "aws_organizations_organizational_unit_descendant_accounts", + "aws_organizations_organizational_unit_descendant_organizational_units", + "aws_organizations_organizational_units", + "aws_organizations_policies", + "aws_organizations_policies_for_target", + "aws_organizations_policy", + "aws_organizations_resource_tags", + "aws_outposts_asset", + "aws_outposts_assets", + "aws_outposts_outpost", + "aws_outposts_outpost_instance_type", + "aws_outposts_outpost_instance_types", + "aws_outposts_outposts", + "aws_outposts_site", + "aws_outposts_sites", + "aws_partition", + "aws_polly_voices", + "aws_prefix_list", + "aws_pricing_product", + "aws_prometheus_default_scraper_configuration", + "aws_prometheus_workspace", + "aws_prometheus_workspaces", + "aws_qldb_ledger", + "aws_quicksight_analysis", + "aws_quicksight_data_set", + "aws_quicksight_group", + "aws_quicksight_theme", + "aws_quicksight_user", + "aws_ram_resource_share", + "aws_rds_certificate", + "aws_rds_cluster", + "aws_rds_cluster_parameter_group", + "aws_rds_clusters", + "aws_rds_engine_version", + "aws_rds_orderable_db_instance", + "aws_rds_reserved_instance_offering", + "aws_redshift_cluster", + "aws_redshift_cluster_credentials", + "aws_redshift_data_shares", + "aws_redshift_orderable_cluster", + "aws_redshift_producer_data_shares", + "aws_redshift_service_account", + "aws_redshift_subnet_group", + "aws_redshiftserverless_credentials", + "aws_redshiftserverless_namespace", + "aws_redshiftserverless_workgroup", + "aws_region", + "aws_regions", + "aws_resourceexplorer2_search", + "aws_resourcegroupstaggingapi_resources", + "aws_route", + "aws_route53_delegation_set", + "aws_route53_records", + "aws_route53_resolver_endpoint", + "aws_route53_resolver_firewall_config", + "aws_route53_resolver_firewall_domain_list", + "aws_route53_resolver_firewall_rule_group", + "aws_route53_resolver_firewall_rule_group_association", + "aws_route53_resolver_firewall_rules", + "aws_route53_resolver_query_log_config", + "aws_route53_resolver_rule", + "aws_route53_resolver_rules", + "aws_route53_traffic_policy_document", + "aws_route53_zone", + "aws_route53_zones", + "aws_route53profiles_profiles", + "aws_route_table", + "aws_route_tables", + "aws_s3_account_public_access_block", + "aws_s3_bucket", + "aws_s3_bucket_object", + "aws_s3_bucket_objects", + "aws_s3_bucket_policy", + "aws_s3_directory_buckets", + "aws_s3_object", + "aws_s3_objects", + "aws_s3control_multi_region_access_point", + "aws_sagemaker_prebuilt_ecr_image", + "aws_secretsmanager_random_password", + "aws_secretsmanager_secret", + "aws_secretsmanager_secret_rotation", + "aws_secretsmanager_secret_version", + "aws_secretsmanager_secret_versions", + "aws_secretsmanager_secrets", + "aws_security_group", + "aws_security_groups", + "aws_serverlessapplicationrepository_application", + "aws_service", + "aws_service_discovery_dns_namespace", + "aws_service_discovery_http_namespace", + "aws_service_discovery_service", + "aws_service_principal", + "aws_servicecatalog_constraint", + "aws_servicecatalog_launch_paths", + "aws_servicecatalog_portfolio", + "aws_servicecatalog_portfolio_constraints", + "aws_servicecatalog_product", + "aws_servicecatalog_provisioning_artifacts", + "aws_servicecatalogappregistry_application", + "aws_servicecatalogappregistry_attribute_group", + "aws_servicecatalogappregistry_attribute_group_associations", + "aws_servicequotas_service", + "aws_servicequotas_service_quota", + "aws_servicequotas_templates", + "aws_ses_active_receipt_rule_set", + "aws_ses_domain_identity", + "aws_ses_email_identity", + "aws_sesv2_configuration_set", + "aws_sesv2_dedicated_ip_pool", + "aws_sesv2_email_identity", + "aws_sesv2_email_identity_mail_from_attributes", + "aws_sfn_activity", + "aws_sfn_alias", + "aws_sfn_state_machine", + "aws_sfn_state_machine_versions", + "aws_shield_protection", + "aws_signer_signing_job", + "aws_signer_signing_profile", + "aws_sns_topic", + "aws_spot_datafeed_subscription", + "aws_sqs_queue", + "aws_sqs_queues", + "aws_ssm_document", + "aws_ssm_instances", + "aws_ssm_maintenance_windows", + "aws_ssm_parameter", + "aws_ssm_parameters_by_path", + "aws_ssm_patch_baseline", + "aws_ssm_patch_baselines", + "aws_ssmcontacts_contact", + "aws_ssmcontacts_contact_channel", + "aws_ssmcontacts_plan", + "aws_ssmcontacts_rotation", + "aws_ssmincidents_replication_set", + "aws_ssmincidents_response_plan", + "aws_ssoadmin_application", + "aws_ssoadmin_application_assignments", + "aws_ssoadmin_application_providers", + "aws_ssoadmin_instances", + "aws_ssoadmin_permission_set", + "aws_ssoadmin_permission_sets", + "aws_ssoadmin_principal_application_assignments", + "aws_storagegateway_local_disk", + "aws_subnet", + "aws_subnet_ids", + "aws_subnets", + "aws_synthetics_runtime_version", + "aws_synthetics_runtime_versions", + "aws_timestreamwrite_database", + "aws_timestreamwrite_table", + "aws_transfer_connector", + "aws_transfer_server", + "aws_verifiedpermissions_policy_store", + "aws_vpc", + "aws_vpc_dhcp_options", + "aws_vpc_endpoint", + "aws_vpc_endpoint_associations", + "aws_vpc_endpoint_service", + "aws_vpc_ipam", + "aws_vpc_ipam_pool", + "aws_vpc_ipam_pool_cidrs", + "aws_vpc_ipam_pools", + "aws_vpc_ipam_preview_next_cidr", + "aws_vpc_ipams", + "aws_vpc_peering_connection", + "aws_vpc_peering_connections", + "aws_vpc_security_group_rule", + "aws_vpc_security_group_rules", + "aws_vpclattice_auth_policy", + "aws_vpclattice_listener", + "aws_vpclattice_resource_policy", + "aws_vpclattice_service", + "aws_vpclattice_service_network", + "aws_vpcs", + "aws_vpn_gateway", + "aws_waf_ipset", + "aws_waf_rate_based_rule", + "aws_waf_rule", + "aws_waf_subscribed_rule_group", + "aws_waf_web_acl", + "aws_wafregional_ipset", + "aws_wafregional_rate_based_rule", + "aws_wafregional_rule", + "aws_wafregional_subscribed_rule_group", + "aws_wafregional_web_acl", + "aws_wafv2_ip_set", + "aws_wafv2_regex_pattern_set", + "aws_wafv2_rule_group", + "aws_wafv2_web_acl", + "aws_workspaces_bundle", + "aws_workspaces_directory", + "aws_workspaces_image" + ], + "resources": [ + "aws_accessanalyzer_analyzer", + "aws_accessanalyzer_archive_rule", + "aws_account_alternate_contact", + "aws_account_primary_contact", + "aws_account_region", + "aws_acm_certificate", + "aws_acm_certificate_validation", + "aws_acmpca_certificate", + "aws_acmpca_certificate_authority", + "aws_acmpca_certificate_authority_certificate", + "aws_acmpca_permission", + "aws_acmpca_policy", + "aws_alb", + "aws_ami", + "aws_ami_copy", + "aws_ami_from_instance", + "aws_ami_launch_permission", + "aws_amplify_app", + "aws_amplify_backend_environment", + "aws_amplify_branch", + "aws_amplify_domain_association", + "aws_amplify_webhook", + "aws_api_gateway_account", + "aws_api_gateway_api_key", + "aws_api_gateway_authorizer", + "aws_api_gateway_base_path_mapping", + "aws_api_gateway_client_certificate", + "aws_api_gateway_deployment", + "aws_api_gateway_documentation_part", + "aws_api_gateway_documentation_version", + "aws_api_gateway_domain_name", + "aws_api_gateway_domain_name_access_association", + "aws_api_gateway_gateway_response", + "aws_api_gateway_integration", + "aws_api_gateway_integration_response", + "aws_api_gateway_method", + "aws_api_gateway_method_response", + "aws_api_gateway_method_settings", + "aws_api_gateway_model", + "aws_api_gateway_request_validator", + "aws_api_gateway_resource", + "aws_api_gateway_rest_api", + "aws_api_gateway_rest_api_policy", + "aws_api_gateway_rest_api_put", + "aws_api_gateway_stage", + "aws_api_gateway_usage_plan", + "aws_api_gateway_usage_plan_key", + "aws_api_gateway_vpc_link", + "aws_apigatewayv2_api", + "aws_apigatewayv2_api_mapping", + "aws_apigatewayv2_authorizer", + "aws_apigatewayv2_deployment", + "aws_apigatewayv2_domain_name", + "aws_apigatewayv2_integration", + "aws_apigatewayv2_integration_response", + "aws_apigatewayv2_model", + "aws_apigatewayv2_route", + "aws_apigatewayv2_route_response", + "aws_apigatewayv2_stage", + "aws_apigatewayv2_vpc_link", + "aws_app_cookie_stickiness_policy", + "aws_appautoscaling_policy", + "aws_appautoscaling_scheduled_action", + "aws_appautoscaling_target", + "aws_appconfig_application", + "aws_appconfig_configuration_profile", + "aws_appconfig_deployment", + "aws_appconfig_deployment_strategy", + "aws_appconfig_environment", + "aws_appconfig_extension", + "aws_appconfig_extension_association", + "aws_appconfig_hosted_configuration_version", + "aws_appfabric_app_authorization", + "aws_appfabric_app_authorization_connection", + "aws_appfabric_app_bundle", + "aws_appfabric_ingestion", + "aws_appfabric_ingestion_destination", + "aws_appflow_connector_profile", + "aws_appflow_flow", + "aws_appintegrations_data_integration", + "aws_appintegrations_event_integration", + "aws_applicationinsights_application", + "aws_appmesh_gateway_route", + "aws_appmesh_mesh", + "aws_appmesh_route", + "aws_appmesh_virtual_gateway", + "aws_appmesh_virtual_node", + "aws_appmesh_virtual_router", + "aws_appmesh_virtual_service", + "aws_apprunner_auto_scaling_configuration_version", + "aws_apprunner_connection", + "aws_apprunner_custom_domain_association", + "aws_apprunner_default_auto_scaling_configuration_version", + "aws_apprunner_deployment", + "aws_apprunner_observability_configuration", + "aws_apprunner_service", + "aws_apprunner_vpc_connector", + "aws_apprunner_vpc_ingress_connection", + "aws_appstream_directory_config", + "aws_appstream_fleet", + "aws_appstream_fleet_stack_association", + "aws_appstream_image_builder", + "aws_appstream_stack", + "aws_appstream_user", + "aws_appstream_user_stack_association", + "aws_appsync_api_cache", + "aws_appsync_api_key", + "aws_appsync_datasource", + "aws_appsync_domain_name", + "aws_appsync_domain_name_api_association", + "aws_appsync_function", + "aws_appsync_graphql_api", + "aws_appsync_resolver", + "aws_appsync_source_api_association", + "aws_appsync_type", + "aws_athena_capacity_reservation", + "aws_athena_data_catalog", + "aws_athena_database", + "aws_athena_named_query", + "aws_athena_prepared_statement", + "aws_athena_workgroup", + "aws_auditmanager_account_registration", + "aws_auditmanager_assessment", + "aws_auditmanager_assessment_delegation", + "aws_auditmanager_assessment_report", + "aws_auditmanager_control", + "aws_auditmanager_framework", + "aws_auditmanager_framework_share", + "aws_auditmanager_organization_admin_account_registration", + "aws_autoscaling_attachment", + "aws_autoscaling_group", + "aws_autoscaling_group_tag", + "aws_autoscaling_lifecycle_hook", + "aws_autoscaling_notification", + "aws_autoscaling_policy", + "aws_autoscaling_schedule", + "aws_autoscaling_traffic_source_attachment", + "aws_autoscalingplans_scaling_plan", + "aws_backup_framework", + "aws_backup_global_settings", + "aws_backup_logically_air_gapped_vault", + "aws_backup_plan", + "aws_backup_region_settings", + "aws_backup_report_plan", + "aws_backup_selection", + "aws_backup_vault", + "aws_backup_vault_lock_configuration", + "aws_backup_vault_notifications", + "aws_backup_vault_policy", + "aws_batch_compute_environment", + "aws_batch_job_definition", + "aws_batch_job_queue", + "aws_batch_scheduling_policy", + "aws_bcmdataexports_export", + "aws_bedrock_custom_model", + "aws_bedrock_guardrail", + "aws_bedrock_guardrail_version", + "aws_bedrock_inference_profile", + "aws_bedrock_model_invocation_logging_configuration", + "aws_bedrock_provisioned_model_throughput", + "aws_bedrockagent_agent", + "aws_bedrockagent_agent_action_group", + "aws_bedrockagent_agent_alias", + "aws_bedrockagent_agent_collaborator", + "aws_bedrockagent_agent_knowledge_base_association", + "aws_bedrockagent_data_source", + "aws_bedrockagent_knowledge_base", + "aws_bedrockagent_prompt", + "aws_budgets_budget", + "aws_budgets_budget_action", + "aws_ce_anomaly_monitor", + "aws_ce_anomaly_subscription", + "aws_ce_cost_allocation_tag", + "aws_ce_cost_category", + "aws_chatbot_slack_channel_configuration", + "aws_chatbot_teams_channel_configuration", + "aws_chime_voice_connector", + "aws_chime_voice_connector_group", + "aws_chime_voice_connector_logging", + "aws_chime_voice_connector_origination", + "aws_chime_voice_connector_streaming", + "aws_chime_voice_connector_termination", + "aws_chime_voice_connector_termination_credentials", + "aws_chimesdkmediapipelines_media_insights_pipeline_configuration", + "aws_chimesdkvoice_global_settings", + "aws_chimesdkvoice_sip_media_application", + "aws_chimesdkvoice_sip_rule", + "aws_chimesdkvoice_voice_profile_domain", + "aws_cleanrooms_collaboration", + "aws_cleanrooms_configured_table", + "aws_cleanrooms_membership", + "aws_cloud9_environment_ec2", + "aws_cloud9_environment_membership", + "aws_cloudcontrolapi_resource", + "aws_cloudformation_stack", + "aws_cloudformation_stack_instances", + "aws_cloudformation_stack_set", + "aws_cloudformation_stack_set_instance", + "aws_cloudformation_type", + "aws_cloudfront_cache_policy", + "aws_cloudfront_continuous_deployment_policy", + "aws_cloudfront_distribution", + "aws_cloudfront_field_level_encryption_config", + "aws_cloudfront_field_level_encryption_profile", + "aws_cloudfront_function", + "aws_cloudfront_key_group", + "aws_cloudfront_key_value_store", + "aws_cloudfront_monitoring_subscription", + "aws_cloudfront_origin_access_control", + "aws_cloudfront_origin_access_identity", + "aws_cloudfront_origin_request_policy", + "aws_cloudfront_public_key", + "aws_cloudfront_realtime_log_config", + "aws_cloudfront_response_headers_policy", + "aws_cloudfront_vpc_origin", + "aws_cloudfrontkeyvaluestore_key", + "aws_cloudfrontkeyvaluestore_keys_exclusive", + "aws_cloudhsm_v2_cluster", + "aws_cloudhsm_v2_hsm", + "aws_cloudsearch_domain", + "aws_cloudsearch_domain_service_access_policy", + "aws_cloudtrail", + "aws_cloudtrail_event_data_store", + "aws_cloudtrail_organization_delegated_admin_account", + "aws_cloudwatch_composite_alarm", + "aws_cloudwatch_contributor_insight_rule", + "aws_cloudwatch_contributor_managed_insight_rule", + "aws_cloudwatch_dashboard", + "aws_cloudwatch_event_api_destination", + "aws_cloudwatch_event_archive", + "aws_cloudwatch_event_bus", + "aws_cloudwatch_event_bus_policy", + "aws_cloudwatch_event_connection", + "aws_cloudwatch_event_endpoint", + "aws_cloudwatch_event_permission", + "aws_cloudwatch_event_rule", + "aws_cloudwatch_event_target", + "aws_cloudwatch_log_account_policy", + "aws_cloudwatch_log_anomaly_detector", + "aws_cloudwatch_log_data_protection_policy", + "aws_cloudwatch_log_delivery", + "aws_cloudwatch_log_delivery_destination", + "aws_cloudwatch_log_delivery_destination_policy", + "aws_cloudwatch_log_delivery_source", + "aws_cloudwatch_log_destination", + "aws_cloudwatch_log_destination_policy", + "aws_cloudwatch_log_group", + "aws_cloudwatch_log_index_policy", + "aws_cloudwatch_log_metric_filter", + "aws_cloudwatch_log_resource_policy", + "aws_cloudwatch_log_stream", + "aws_cloudwatch_log_subscription_filter", + "aws_cloudwatch_metric_alarm", + "aws_cloudwatch_metric_stream", + "aws_cloudwatch_query_definition", + "aws_codeartifact_domain", + "aws_codeartifact_domain_permissions_policy", + "aws_codeartifact_repository", + "aws_codeartifact_repository_permissions_policy", + "aws_codebuild_fleet", + "aws_codebuild_project", + "aws_codebuild_report_group", + "aws_codebuild_resource_policy", + "aws_codebuild_source_credential", + "aws_codebuild_webhook", + "aws_codecatalyst_dev_environment", + "aws_codecatalyst_project", + "aws_codecatalyst_source_repository", + "aws_codecommit_approval_rule_template", + "aws_codecommit_approval_rule_template_association", + "aws_codecommit_repository", + "aws_codecommit_trigger", + "aws_codeconnections_connection", + "aws_codeconnections_host", + "aws_codedeploy_app", + "aws_codedeploy_deployment_config", + "aws_codedeploy_deployment_group", + "aws_codeguruprofiler_profiling_group", + "aws_codegurureviewer_repository_association", + "aws_codepipeline", + "aws_codepipeline_custom_action_type", + "aws_codepipeline_webhook", + "aws_codestarconnections_connection", + "aws_codestarconnections_host", + "aws_codestarnotifications_notification_rule", + "aws_cognito_identity_pool", + "aws_cognito_identity_pool_provider_principal_tag", + "aws_cognito_identity_pool_roles_attachment", + "aws_cognito_identity_provider", + "aws_cognito_managed_user_pool_client", + "aws_cognito_resource_server", + "aws_cognito_risk_configuration", + "aws_cognito_user", + "aws_cognito_user_group", + "aws_cognito_user_in_group", + "aws_cognito_user_pool", + "aws_cognito_user_pool_client", + "aws_cognito_user_pool_domain", + "aws_cognito_user_pool_ui_customization", + "aws_comprehend_document_classifier", + "aws_comprehend_entity_recognizer", + "aws_computeoptimizer_enrollment_status", + "aws_computeoptimizer_recommendation_preferences", + "aws_config_aggregate_authorization", + "aws_config_config_rule", + "aws_config_configuration_aggregator", + "aws_config_configuration_recorder", + "aws_config_configuration_recorder_status", + "aws_config_conformance_pack", + "aws_config_delivery_channel", + "aws_config_organization_conformance_pack", + "aws_config_organization_custom_policy_rule", + "aws_config_organization_custom_rule", + "aws_config_organization_managed_rule", + "aws_config_remediation_configuration", + "aws_config_retention_configuration", + "aws_connect_bot_association", + "aws_connect_contact_flow", + "aws_connect_contact_flow_module", + "aws_connect_hours_of_operation", + "aws_connect_instance", + "aws_connect_instance_storage_config", + "aws_connect_lambda_function_association", + "aws_connect_phone_number", + "aws_connect_queue", + "aws_connect_quick_connect", + "aws_connect_routing_profile", + "aws_connect_security_profile", + "aws_connect_user", + "aws_connect_user_hierarchy_group", + "aws_connect_user_hierarchy_structure", + "aws_connect_vocabulary", + "aws_controltower_control", + "aws_controltower_landing_zone", + "aws_costoptimizationhub_enrollment_status", + "aws_costoptimizationhub_preferences", + "aws_cur_report_definition", + "aws_customer_gateway", + "aws_customerprofiles_domain", + "aws_customerprofiles_profile", + "aws_dataexchange_data_set", + "aws_dataexchange_event_action", + "aws_dataexchange_revision", + "aws_dataexchange_revision_assets", + "aws_datapipeline_pipeline", + "aws_datapipeline_pipeline_definition", + "aws_datasync_agent", + "aws_datasync_location_azure_blob", + "aws_datasync_location_efs", + "aws_datasync_location_fsx_lustre_file_system", + "aws_datasync_location_fsx_ontap_file_system", + "aws_datasync_location_fsx_openzfs_file_system", + "aws_datasync_location_fsx_windows_file_system", + "aws_datasync_location_hdfs", + "aws_datasync_location_nfs", + "aws_datasync_location_object_storage", + "aws_datasync_location_s3", + "aws_datasync_location_smb", + "aws_datasync_task", + "aws_datazone_asset_type", + "aws_datazone_domain", + "aws_datazone_environment", + "aws_datazone_environment_blueprint_configuration", + "aws_datazone_environment_profile", + "aws_datazone_form_type", + "aws_datazone_glossary", + "aws_datazone_glossary_term", + "aws_datazone_project", + "aws_datazone_user_profile", + "aws_dax_cluster", + "aws_dax_parameter_group", + "aws_dax_subnet_group", + "aws_db_cluster_snapshot", + "aws_db_event_subscription", + "aws_db_instance", + "aws_db_instance_automated_backups_replication", + "aws_db_instance_role_association", + "aws_db_option_group", + "aws_db_parameter_group", + "aws_db_proxy", + "aws_db_proxy_default_target_group", + "aws_db_proxy_endpoint", + "aws_db_proxy_target", + "aws_db_snapshot", + "aws_db_snapshot_copy", + "aws_db_subnet_group", + "aws_default_network_acl", + "aws_default_route_table", + "aws_default_security_group", + "aws_default_subnet", + "aws_default_vpc", + "aws_default_vpc_dhcp_options", + "aws_detective_graph", + "aws_detective_invitation_accepter", + "aws_detective_member", + "aws_detective_organization_admin_account", + "aws_detective_organization_configuration", + "aws_devicefarm_device_pool", + "aws_devicefarm_instance_profile", + "aws_devicefarm_network_profile", + "aws_devicefarm_project", + "aws_devicefarm_upload", + "aws_devopsguru_event_sources_config", + "aws_devopsguru_notification_channel", + "aws_devopsguru_resource_collection", + "aws_devopsguru_service_integration", + "aws_directory_service_conditional_forwarder", + "aws_directory_service_directory", + "aws_directory_service_log_subscription", + "aws_directory_service_radius_settings", + "aws_directory_service_region", + "aws_directory_service_shared_directory", + "aws_directory_service_shared_directory_accepter", + "aws_directory_service_trust", + "aws_dlm_lifecycle_policy", + "aws_dms_certificate", + "aws_dms_endpoint", + "aws_dms_event_subscription", + "aws_dms_replication_config", + "aws_dms_replication_instance", + "aws_dms_replication_subnet_group", + "aws_dms_replication_task", + "aws_dms_s3_endpoint", + "aws_docdb_cluster", + "aws_docdb_cluster_instance", + "aws_docdb_cluster_parameter_group", + "aws_docdb_cluster_snapshot", + "aws_docdb_event_subscription", + "aws_docdb_global_cluster", + "aws_docdb_subnet_group", + "aws_docdbelastic_cluster", + "aws_drs_replication_configuration_template", + "aws_dsql_cluster", + "aws_dsql_cluster_peering", + "aws_dx_bgp_peer", + "aws_dx_connection", + "aws_dx_connection_association", + "aws_dx_connection_confirmation", + "aws_dx_gateway", + "aws_dx_gateway_association", + "aws_dx_gateway_association_proposal", + "aws_dx_hosted_connection", + "aws_dx_hosted_private_virtual_interface", + "aws_dx_hosted_private_virtual_interface_accepter", + "aws_dx_hosted_public_virtual_interface", + "aws_dx_hosted_public_virtual_interface_accepter", + "aws_dx_hosted_transit_virtual_interface", + "aws_dx_hosted_transit_virtual_interface_accepter", + "aws_dx_lag", + "aws_dx_macsec_key_association", + "aws_dx_private_virtual_interface", + "aws_dx_public_virtual_interface", + "aws_dx_transit_virtual_interface", + "aws_dynamodb_contributor_insights", + "aws_dynamodb_global_table", + "aws_dynamodb_kinesis_streaming_destination", + "aws_dynamodb_resource_policy", + "aws_dynamodb_table", + "aws_dynamodb_table_export", + "aws_dynamodb_table_item", + "aws_dynamodb_table_replica", + "aws_dynamodb_tag", + "aws_ebs_default_kms_key", + "aws_ebs_encryption_by_default", + "aws_ebs_fast_snapshot_restore", + "aws_ebs_snapshot", + "aws_ebs_snapshot_block_public_access", + "aws_ebs_snapshot_copy", + "aws_ebs_snapshot_import", + "aws_ebs_volume", + "aws_ec2_availability_zone_group", + "aws_ec2_capacity_block_reservation", + "aws_ec2_capacity_reservation", + "aws_ec2_carrier_gateway", + "aws_ec2_client_vpn_authorization_rule", + "aws_ec2_client_vpn_endpoint", + "aws_ec2_client_vpn_network_association", + "aws_ec2_client_vpn_route", + "aws_ec2_default_credit_specification", + "aws_ec2_fleet", + "aws_ec2_host", + "aws_ec2_image_block_public_access", + "aws_ec2_instance", + "aws_ec2_instance_connect_endpoint", + "aws_ec2_instance_metadata_defaults", + "aws_ec2_instance_state", + "aws_ec2_local_gateway_route", + "aws_ec2_local_gateway_route_table_vpc_association", + "aws_ec2_managed_prefix_list", + "aws_ec2_managed_prefix_list_entry", + "aws_ec2_network_insights_analysis", + "aws_ec2_network_insights_path", + "aws_ec2_serial_console_access", + "aws_ec2_subnet_cidr_reservation", + "aws_ec2_tag", + "aws_ec2_traffic_mirror_filter", + "aws_ec2_traffic_mirror_filter_rule", + "aws_ec2_traffic_mirror_session", + "aws_ec2_traffic_mirror_target", + "aws_ec2_transit_gateway", + "aws_ec2_transit_gateway_connect", + "aws_ec2_transit_gateway_connect_peer", + "aws_ec2_transit_gateway_default_route_table_association", + "aws_ec2_transit_gateway_default_route_table_propagation", + "aws_ec2_transit_gateway_multicast_domain", + "aws_ec2_transit_gateway_multicast_domain_association", + "aws_ec2_transit_gateway_multicast_group_member", + "aws_ec2_transit_gateway_multicast_group_source", + "aws_ec2_transit_gateway_peering_attachment", + "aws_ec2_transit_gateway_peering_attachment_accepter", + "aws_ec2_transit_gateway_policy_table", + "aws_ec2_transit_gateway_policy_table_association", + "aws_ec2_transit_gateway_prefix_list_reference", + "aws_ec2_transit_gateway_route", + "aws_ec2_transit_gateway_route_table", + "aws_ec2_transit_gateway_route_table_association", + "aws_ec2_transit_gateway_route_table_propagation", + "aws_ec2_transit_gateway_vpc_attachment", + "aws_ec2_transit_gateway_vpc_attachment_accepter", + "aws_ecr_account_setting", + "aws_ecr_lifecycle_policy", + "aws_ecr_pull_through_cache_rule", + "aws_ecr_registry_policy", + "aws_ecr_registry_scanning_configuration", + "aws_ecr_replication_configuration", + "aws_ecr_repository", + "aws_ecr_repository_creation_template", + "aws_ecr_repository_policy", + "aws_ecrpublic_repository", + "aws_ecrpublic_repository_policy", + "aws_ecs_account_setting_default", + "aws_ecs_capacity_provider", + "aws_ecs_cluster", + "aws_ecs_cluster_capacity_providers", + "aws_ecs_service", + "aws_ecs_tag", + "aws_ecs_task_definition", + "aws_ecs_task_set", + "aws_efs_access_point", + "aws_efs_backup_policy", + "aws_efs_file_system", + "aws_efs_file_system_policy", + "aws_efs_mount_target", + "aws_efs_replication_configuration", + "aws_egress_only_internet_gateway", + "aws_eip", + "aws_eip_association", + "aws_eip_domain_name", + "aws_eks_access_entry", + "aws_eks_access_policy_association", + "aws_eks_addon", + "aws_eks_cluster", + "aws_eks_fargate_profile", + "aws_eks_identity_provider_config", + "aws_eks_node_group", + "aws_eks_pod_identity_association", + "aws_elastic_beanstalk_application", + "aws_elastic_beanstalk_application_version", + "aws_elastic_beanstalk_configuration_template", + "aws_elastic_beanstalk_environment", + "aws_elasticache_cluster", + "aws_elasticache_global_replication_group", + "aws_elasticache_parameter_group", + "aws_elasticache_replication_group", + "aws_elasticache_reserved_cache_node", + "aws_elasticache_serverless_cache", + "aws_elasticache_subnet_group", + "aws_elasticache_user", + "aws_elasticache_user_group", + "aws_elasticache_user_group_association", + "aws_elasticsearch_domain", + "aws_elasticsearch_domain_policy", + "aws_elasticsearch_domain_saml_options", + "aws_elasticsearch_vpc_endpoint", + "aws_elastictranscoder_pipeline", + "aws_elastictranscoder_preset", + "aws_elb", + "aws_elb_attachment", + "aws_emr_block_public_access_configuration", + "aws_emr_cluster", + "aws_emr_instance_fleet", + "aws_emr_instance_group", + "aws_emr_managed_scaling_policy", + "aws_emr_security_configuration", + "aws_emr_studio", + "aws_emr_studio_session_mapping", + "aws_emrcontainers_job_template", + "aws_emrcontainers_virtual_cluster", + "aws_emrserverless_application", + "aws_evidently_feature", + "aws_evidently_launch", + "aws_evidently_project", + "aws_evidently_segment", + "aws_finspace_kx_cluster", + "aws_finspace_kx_database", + "aws_finspace_kx_dataview", + "aws_finspace_kx_environment", + "aws_finspace_kx_scaling_group", + "aws_finspace_kx_user", + "aws_finspace_kx_volume", + "aws_fis_experiment_template", + "aws_flow_log", + "aws_fms_admin_account", + "aws_fms_policy", + "aws_fms_resource_set", + "aws_fsx_backup", + "aws_fsx_data_repository_association", + "aws_fsx_file_cache", + "aws_fsx_lustre_file_system", + "aws_fsx_ontap_file_system", + "aws_fsx_ontap_storage_virtual_machine", + "aws_fsx_ontap_volume", + "aws_fsx_openzfs_file_system", + "aws_fsx_openzfs_snapshot", + "aws_fsx_openzfs_volume", + "aws_fsx_windows_file_system", + "aws_gamelift_alias", + "aws_gamelift_build", + "aws_gamelift_fleet", + "aws_gamelift_game_server_group", + "aws_gamelift_game_session_queue", + "aws_gamelift_script", + "aws_glacier_vault", + "aws_glacier_vault_lock", + "aws_globalaccelerator_accelerator", + "aws_globalaccelerator_cross_account_attachment", + "aws_globalaccelerator_custom_routing_accelerator", + "aws_globalaccelerator_custom_routing_endpoint_group", + "aws_globalaccelerator_custom_routing_listener", + "aws_globalaccelerator_endpoint_group", + "aws_globalaccelerator_listener", + "aws_glue_catalog_database", + "aws_glue_catalog_table", + "aws_glue_catalog_table_optimizer", + "aws_glue_classifier", + "aws_glue_connection", + "aws_glue_crawler", + "aws_glue_data_catalog_encryption_settings", + "aws_glue_data_quality_ruleset", + "aws_glue_dev_endpoint", + "aws_glue_job", + "aws_glue_ml_transform", + "aws_glue_partition", + "aws_glue_partition_index", + "aws_glue_registry", + "aws_glue_resource_policy", + "aws_glue_schema", + "aws_glue_security_configuration", + "aws_glue_trigger", + "aws_glue_user_defined_function", + "aws_glue_workflow", + "aws_grafana_license_association", + "aws_grafana_role_association", + "aws_grafana_workspace", + "aws_grafana_workspace_api_key", + "aws_grafana_workspace_saml_configuration", + "aws_grafana_workspace_service_account", + "aws_grafana_workspace_service_account_token", + "aws_guardduty_detector", + "aws_guardduty_detector_feature", + "aws_guardduty_filter", + "aws_guardduty_invite_accepter", + "aws_guardduty_ipset", + "aws_guardduty_malware_protection_plan", + "aws_guardduty_member", + "aws_guardduty_member_detector_feature", + "aws_guardduty_organization_admin_account", + "aws_guardduty_organization_configuration", + "aws_guardduty_organization_configuration_feature", + "aws_guardduty_publishing_destination", + "aws_guardduty_threatintelset", + "aws_iam_access_key", + "aws_iam_account_alias", + "aws_iam_account_password_policy", + "aws_iam_group", + "aws_iam_group_membership", + "aws_iam_group_policies_exclusive", + "aws_iam_group_policy", + "aws_iam_group_policy_attachment", + "aws_iam_group_policy_attachments_exclusive", + "aws_iam_instance_profile", + "aws_iam_openid_connect_provider", + "aws_iam_organizations_features", + "aws_iam_policy", + "aws_iam_policy_attachment", + "aws_iam_role", + "aws_iam_role_policies_exclusive", + "aws_iam_role_policy", + "aws_iam_role_policy_attachment", + "aws_iam_role_policy_attachments_exclusive", + "aws_iam_saml_provider", + "aws_iam_security_token_service_preferences", + "aws_iam_server_certificate", + "aws_iam_service_linked_role", + "aws_iam_service_specific_credential", + "aws_iam_signing_certificate", + "aws_iam_user", + "aws_iam_user_group_membership", + "aws_iam_user_login_profile", + "aws_iam_user_policies_exclusive", + "aws_iam_user_policy", + "aws_iam_user_policy_attachment", + "aws_iam_user_policy_attachments_exclusive", + "aws_iam_user_ssh_key", + "aws_iam_virtual_mfa_device", + "aws_identitystore_group", + "aws_identitystore_group_membership", + "aws_identitystore_user", + "aws_imagebuilder_component", + "aws_imagebuilder_container_recipe", + "aws_imagebuilder_distribution_configuration", + "aws_imagebuilder_image", + "aws_imagebuilder_image_pipeline", + "aws_imagebuilder_image_recipe", + "aws_imagebuilder_infrastructure_configuration", + "aws_imagebuilder_lifecycle_policy", + "aws_imagebuilder_workflow", + "aws_inspector2_delegated_admin_account", + "aws_inspector2_enabler", + "aws_inspector2_filter", + "aws_inspector2_member_association", + "aws_inspector2_organization_configuration", + "aws_inspector_assessment_target", + "aws_inspector_assessment_template", + "aws_inspector_resource_group", + "aws_instance", + "aws_internet_gateway", + "aws_internet_gateway_attachment", + "aws_internetmonitor_monitor", + "aws_iot_authorizer", + "aws_iot_billing_group", + "aws_iot_ca_certificate", + "aws_iot_certificate", + "aws_iot_domain_configuration", + "aws_iot_event_configurations", + "aws_iot_indexing_configuration", + "aws_iot_logging_options", + "aws_iot_policy", + "aws_iot_policy_attachment", + "aws_iot_provisioning_template", + "aws_iot_role_alias", + "aws_iot_thing", + "aws_iot_thing_group", + "aws_iot_thing_group_membership", + "aws_iot_thing_principal_attachment", + "aws_iot_thing_type", + "aws_iot_topic_rule", + "aws_iot_topic_rule_destination", + "aws_ivs_channel", + "aws_ivs_playback_key_pair", + "aws_ivs_recording_configuration", + "aws_ivschat_logging_configuration", + "aws_ivschat_room", + "aws_kendra_data_source", + "aws_kendra_experience", + "aws_kendra_faq", + "aws_kendra_index", + "aws_kendra_query_suggestions_block_list", + "aws_kendra_thesaurus", + "aws_key_pair", + "aws_keyspaces_keyspace", + "aws_keyspaces_table", + "aws_kinesis_analytics_application", + "aws_kinesis_firehose_delivery_stream", + "aws_kinesis_resource_policy", + "aws_kinesis_stream", + "aws_kinesis_stream_consumer", + "aws_kinesis_video_stream", + "aws_kinesisanalyticsv2_application", + "aws_kinesisanalyticsv2_application_snapshot", + "aws_kms_alias", + "aws_kms_ciphertext", + "aws_kms_custom_key_store", + "aws_kms_external_key", + "aws_kms_grant", + "aws_kms_key", + "aws_kms_key_policy", + "aws_kms_replica_external_key", + "aws_kms_replica_key", + "aws_lakeformation_data_cells_filter", + "aws_lakeformation_data_lake_settings", + "aws_lakeformation_lf_tag", + "aws_lakeformation_opt_in", + "aws_lakeformation_permissions", + "aws_lakeformation_resource", + "aws_lakeformation_resource_lf_tag", + "aws_lakeformation_resource_lf_tags", + "aws_lambda_alias", + "aws_lambda_code_signing_config", + "aws_lambda_event_source_mapping", + "aws_lambda_function", + "aws_lambda_function_event_invoke_config", + "aws_lambda_function_recursion_config", + "aws_lambda_function_url", + "aws_lambda_invocation", + "aws_lambda_layer_version", + "aws_lambda_layer_version_permission", + "aws_lambda_permission", + "aws_lambda_provisioned_concurrency_config", + "aws_lambda_runtime_management_config", + "aws_launch_configuration", + "aws_launch_template", + "aws_lb", + "aws_lb_cookie_stickiness_policy", + "aws_lb_listener", + "aws_lb_listener_certificate", + "aws_lb_listener_rule", + "aws_lb_ssl_negotiation_policy", + "aws_lb_target_group", + "aws_lb_target_group_attachment", + "aws_lb_trust_store", + "aws_lb_trust_store_revocation", + "aws_lex_bot", + "aws_lex_bot_alias", + "aws_lex_intent", + "aws_lex_slot_type", + "aws_lexv2models_bot", + "aws_lexv2models_bot_locale", + "aws_lexv2models_bot_version", + "aws_lexv2models_intent", + "aws_lexv2models_slot", + "aws_lexv2models_slot_type", + "aws_licensemanager_association", + "aws_licensemanager_grant", + "aws_licensemanager_grant_accepter", + "aws_licensemanager_license_configuration", + "aws_lightsail_bucket", + "aws_lightsail_bucket_access_key", + "aws_lightsail_bucket_resource_access", + "aws_lightsail_certificate", + "aws_lightsail_container_service", + "aws_lightsail_container_service_deployment_version", + "aws_lightsail_database", + "aws_lightsail_disk", + "aws_lightsail_disk_attachment", + "aws_lightsail_distribution", + "aws_lightsail_domain", + "aws_lightsail_domain_entry", + "aws_lightsail_instance", + "aws_lightsail_instance_public_ports", + "aws_lightsail_key_pair", + "aws_lightsail_lb", + "aws_lightsail_lb_attachment", + "aws_lightsail_lb_certificate", + "aws_lightsail_lb_certificate_attachment", + "aws_lightsail_lb_https_redirection_policy", + "aws_lightsail_lb_stickiness_policy", + "aws_lightsail_static_ip", + "aws_lightsail_static_ip_attachment", + "aws_load_balancer_backend_server_policy", + "aws_load_balancer_listener_policy", + "aws_load_balancer_policy", + "aws_location_geofence_collection", + "aws_location_map", + "aws_location_place_index", + "aws_location_route_calculator", + "aws_location_tracker", + "aws_location_tracker_association", + "aws_m2_application", + "aws_m2_deployment", + "aws_m2_environment", + "aws_macie2_account", + "aws_macie2_classification_export_configuration", + "aws_macie2_classification_job", + "aws_macie2_custom_data_identifier", + "aws_macie2_findings_filter", + "aws_macie2_invitation_accepter", + "aws_macie2_member", + "aws_macie2_organization_admin_account", + "aws_macie2_organization_configuration", + "aws_main_route_table_association", + "aws_media_convert_queue", + "aws_media_package_channel", + "aws_media_packagev2_channel_group", + "aws_media_store_container", + "aws_media_store_container_policy", + "aws_medialive_channel", + "aws_medialive_input", + "aws_medialive_input_security_group", + "aws_medialive_multiplex", + "aws_medialive_multiplex_program", + "aws_memorydb_acl", + "aws_memorydb_cluster", + "aws_memorydb_multi_region_cluster", + "aws_memorydb_parameter_group", + "aws_memorydb_snapshot", + "aws_memorydb_subnet_group", + "aws_memorydb_user", + "aws_mq_broker", + "aws_mq_configuration", + "aws_msk_cluster", + "aws_msk_cluster_policy", + "aws_msk_configuration", + "aws_msk_replicator", + "aws_msk_scram_secret_association", + "aws_msk_serverless_cluster", + "aws_msk_single_scram_secret_association", + "aws_msk_vpc_connection", + "aws_mskconnect_connector", + "aws_mskconnect_custom_plugin", + "aws_mskconnect_worker_configuration", + "aws_mwaa_environment", + "aws_nat_gateway", + "aws_neptune_cluster", + "aws_neptune_cluster_endpoint", + "aws_neptune_cluster_instance", + "aws_neptune_cluster_parameter_group", + "aws_neptune_cluster_snapshot", + "aws_neptune_event_subscription", + "aws_neptune_global_cluster", + "aws_neptune_parameter_group", + "aws_neptune_subnet_group", + "aws_neptunegraph_graph", + "aws_network_acl", + "aws_network_acl_association", + "aws_network_acl_rule", + "aws_network_interface", + "aws_network_interface_attachment", + "aws_network_interface_permission", + "aws_network_interface_sg_attachment", + "aws_networkfirewall_firewall", + "aws_networkfirewall_firewall_policy", + "aws_networkfirewall_logging_configuration", + "aws_networkfirewall_resource_policy", + "aws_networkfirewall_rule_group", + "aws_networkfirewall_tls_inspection_configuration", + "aws_networkmanager_attachment_accepter", + "aws_networkmanager_connect_attachment", + "aws_networkmanager_connect_peer", + "aws_networkmanager_connection", + "aws_networkmanager_core_network", + "aws_networkmanager_core_network_policy_attachment", + "aws_networkmanager_customer_gateway_association", + "aws_networkmanager_device", + "aws_networkmanager_dx_gateway_attachment", + "aws_networkmanager_global_network", + "aws_networkmanager_link", + "aws_networkmanager_link_association", + "aws_networkmanager_site", + "aws_networkmanager_site_to_site_vpn_attachment", + "aws_networkmanager_transit_gateway_connect_peer_association", + "aws_networkmanager_transit_gateway_peering", + "aws_networkmanager_transit_gateway_registration", + "aws_networkmanager_transit_gateway_route_table_attachment", + "aws_networkmanager_vpc_attachment", + "aws_networkmonitor_monitor", + "aws_networkmonitor_probe", + "aws_notifications_channel_association", + "aws_notifications_event_rule", + "aws_notifications_notification_configuration", + "aws_notifications_notification_hub", + "aws_notificationscontacts_email_contact", + "aws_oam_link", + "aws_oam_sink", + "aws_oam_sink_policy", + "aws_opensearch_authorize_vpc_endpoint_access", + "aws_opensearch_domain", + "aws_opensearch_domain_policy", + "aws_opensearch_domain_saml_options", + "aws_opensearch_inbound_connection_accepter", + "aws_opensearch_outbound_connection", + "aws_opensearch_package", + "aws_opensearch_package_association", + "aws_opensearch_vpc_endpoint", + "aws_opensearchserverless_access_policy", + "aws_opensearchserverless_collection", + "aws_opensearchserverless_lifecycle_policy", + "aws_opensearchserverless_security_config", + "aws_opensearchserverless_security_policy", + "aws_opensearchserverless_vpc_endpoint", + "aws_opsworks_application", + "aws_opsworks_custom_layer", + "aws_opsworks_ecs_cluster_layer", + "aws_opsworks_ganglia_layer", + "aws_opsworks_haproxy_layer", + "aws_opsworks_instance", + "aws_opsworks_java_app_layer", + "aws_opsworks_memcached_layer", + "aws_opsworks_mysql_layer", + "aws_opsworks_nodejs_app_layer", + "aws_opsworks_permission", + "aws_opsworks_php_app_layer", + "aws_opsworks_rails_app_layer", + "aws_opsworks_rds_db_instance", + "aws_opsworks_stack", + "aws_opsworks_static_web_layer", + "aws_opsworks_user_profile", + "aws_organizations_account", + "aws_organizations_delegated_administrator", + "aws_organizations_organization", + "aws_organizations_organizational_unit", + "aws_organizations_policy", + "aws_organizations_policy_attachment", + "aws_organizations_resource_policy", + "aws_osis_pipeline", + "aws_paymentcryptography_key", + "aws_paymentcryptography_key_alias", + "aws_pinpoint_adm_channel", + "aws_pinpoint_apns_channel", + "aws_pinpoint_apns_sandbox_channel", + "aws_pinpoint_apns_voip_channel", + "aws_pinpoint_apns_voip_sandbox_channel", + "aws_pinpoint_app", + "aws_pinpoint_baidu_channel", + "aws_pinpoint_email_channel", + "aws_pinpoint_email_template", + "aws_pinpoint_event_stream", + "aws_pinpoint_gcm_channel", + "aws_pinpoint_sms_channel", + "aws_pinpointsmsvoicev2_configuration_set", + "aws_pinpointsmsvoicev2_opt_out_list", + "aws_pinpointsmsvoicev2_phone_number", + "aws_pipes_pipe", + "aws_placement_group", + "aws_prometheus_alert_manager_definition", + "aws_prometheus_rule_group_namespace", + "aws_prometheus_scraper", + "aws_prometheus_workspace", + "aws_prometheus_workspace_configuration", + "aws_proxy_protocol_policy", + "aws_qbusiness_application", + "aws_qldb_ledger", + "aws_qldb_stream", + "aws_quicksight_account_settings", + "aws_quicksight_account_subscription", + "aws_quicksight_analysis", + "aws_quicksight_dashboard", + "aws_quicksight_data_set", + "aws_quicksight_data_source", + "aws_quicksight_folder", + "aws_quicksight_folder_membership", + "aws_quicksight_group", + "aws_quicksight_group_membership", + "aws_quicksight_iam_policy_assignment", + "aws_quicksight_ingestion", + "aws_quicksight_namespace", + "aws_quicksight_refresh_schedule", + "aws_quicksight_role_membership", + "aws_quicksight_template", + "aws_quicksight_template_alias", + "aws_quicksight_theme", + "aws_quicksight_user", + "aws_quicksight_vpc_connection", + "aws_ram_principal_association", + "aws_ram_resource_association", + "aws_ram_resource_share", + "aws_ram_resource_share_accepter", + "aws_ram_sharing_with_organization", + "aws_rbin_rule", + "aws_rds_certificate", + "aws_rds_cluster", + "aws_rds_cluster_activity_stream", + "aws_rds_cluster_endpoint", + "aws_rds_cluster_instance", + "aws_rds_cluster_parameter_group", + "aws_rds_cluster_role_association", + "aws_rds_cluster_snapshot_copy", + "aws_rds_custom_db_engine_version", + "aws_rds_export_task", + "aws_rds_global_cluster", + "aws_rds_instance_state", + "aws_rds_integration", + "aws_rds_reserved_instance", + "aws_rds_shard_group", + "aws_redshift_authentication_profile", + "aws_redshift_cluster", + "aws_redshift_cluster_iam_roles", + "aws_redshift_cluster_snapshot", + "aws_redshift_data_share_authorization", + "aws_redshift_data_share_consumer_association", + "aws_redshift_endpoint_access", + "aws_redshift_endpoint_authorization", + "aws_redshift_event_subscription", + "aws_redshift_hsm_client_certificate", + "aws_redshift_hsm_configuration", + "aws_redshift_integration", + "aws_redshift_logging", + "aws_redshift_parameter_group", + "aws_redshift_partner", + "aws_redshift_resource_policy", + "aws_redshift_scheduled_action", + "aws_redshift_snapshot_copy", + "aws_redshift_snapshot_copy_grant", + "aws_redshift_snapshot_schedule", + "aws_redshift_snapshot_schedule_association", + "aws_redshift_subnet_group", + "aws_redshift_usage_limit", + "aws_redshiftdata_statement", + "aws_redshiftserverless_custom_domain_association", + "aws_redshiftserverless_endpoint_access", + "aws_redshiftserverless_namespace", + "aws_redshiftserverless_resource_policy", + "aws_redshiftserverless_snapshot", + "aws_redshiftserverless_usage_limit", + "aws_redshiftserverless_workgroup", + "aws_rekognition_collection", + "aws_rekognition_project", + "aws_rekognition_stream_processor", + "aws_resiliencehub_resiliency_policy", + "aws_resourceexplorer2_index", + "aws_resourceexplorer2_view", + "aws_resourcegroups_group", + "aws_resourcegroups_resource", + "aws_rolesanywhere_profile", + "aws_rolesanywhere_trust_anchor", + "aws_route", + "aws_route53_cidr_collection", + "aws_route53_cidr_location", + "aws_route53_delegation_set", + "aws_route53_health_check", + "aws_route53_hosted_zone_dnssec", + "aws_route53_key_signing_key", + "aws_route53_query_log", + "aws_route53_record", + "aws_route53_records_exclusive", + "aws_route53_resolver_config", + "aws_route53_resolver_dnssec_config", + "aws_route53_resolver_endpoint", + "aws_route53_resolver_firewall_config", + "aws_route53_resolver_firewall_domain_list", + "aws_route53_resolver_firewall_rule", + "aws_route53_resolver_firewall_rule_group", + "aws_route53_resolver_firewall_rule_group_association", + "aws_route53_resolver_query_log_config", + "aws_route53_resolver_query_log_config_association", + "aws_route53_resolver_rule", + "aws_route53_resolver_rule_association", + "aws_route53_traffic_policy", + "aws_route53_traffic_policy_instance", + "aws_route53_vpc_association_authorization", + "aws_route53_zone", + "aws_route53_zone_association", + "aws_route53domains_delegation_signer_record", + "aws_route53domains_domain", + "aws_route53domains_registered_domain", + "aws_route53profiles_association", + "aws_route53profiles_profile", + "aws_route53profiles_resource_association", + "aws_route53recoverycontrolconfig_cluster", + "aws_route53recoverycontrolconfig_control_panel", + "aws_route53recoverycontrolconfig_routing_control", + "aws_route53recoverycontrolconfig_safety_rule", + "aws_route53recoveryreadiness_cell", + "aws_route53recoveryreadiness_readiness_check", + "aws_route53recoveryreadiness_recovery_group", + "aws_route53recoveryreadiness_resource_set", + "aws_route_table", + "aws_route_table_association", + "aws_rum_app_monitor", + "aws_rum_metrics_destination", + "aws_s3_access_point", + "aws_s3_account_public_access_block", + "aws_s3_bucket", + "aws_s3_bucket_accelerate_configuration", + "aws_s3_bucket_acl", + "aws_s3_bucket_analytics_configuration", + "aws_s3_bucket_cors_configuration", + "aws_s3_bucket_intelligent_tiering_configuration", + "aws_s3_bucket_inventory", + "aws_s3_bucket_lifecycle_configuration", + "aws_s3_bucket_logging", + "aws_s3_bucket_metric", + "aws_s3_bucket_notification", + "aws_s3_bucket_object", + "aws_s3_bucket_object_lock_configuration", + "aws_s3_bucket_ownership_controls", + "aws_s3_bucket_policy", + "aws_s3_bucket_public_access_block", + "aws_s3_bucket_replication_configuration", + "aws_s3_bucket_request_payment_configuration", + "aws_s3_bucket_server_side_encryption_configuration", + "aws_s3_bucket_versioning", + "aws_s3_bucket_website_configuration", + "aws_s3_directory_bucket", + "aws_s3_object", + "aws_s3_object_copy", + "aws_s3control_access_grant", + "aws_s3control_access_grants_instance", + "aws_s3control_access_grants_instance_resource_policy", + "aws_s3control_access_grants_location", + "aws_s3control_access_point_policy", + "aws_s3control_bucket", + "aws_s3control_bucket_lifecycle_configuration", + "aws_s3control_bucket_policy", + "aws_s3control_directory_bucket_access_point_scope", + "aws_s3control_multi_region_access_point", + "aws_s3control_multi_region_access_point_policy", + "aws_s3control_object_lambda_access_point", + "aws_s3control_object_lambda_access_point_policy", + "aws_s3control_storage_lens_configuration", + "aws_s3outposts_endpoint", + "aws_s3tables_namespace", + "aws_s3tables_table", + "aws_s3tables_table_bucket", + "aws_s3tables_table_bucket_policy", + "aws_s3tables_table_policy", + "aws_sagemaker_app", + "aws_sagemaker_app_image_config", + "aws_sagemaker_code_repository", + "aws_sagemaker_data_quality_job_definition", + "aws_sagemaker_device", + "aws_sagemaker_device_fleet", + "aws_sagemaker_domain", + "aws_sagemaker_endpoint", + "aws_sagemaker_endpoint_configuration", + "aws_sagemaker_feature_group", + "aws_sagemaker_flow_definition", + "aws_sagemaker_hub", + "aws_sagemaker_human_task_ui", + "aws_sagemaker_image", + "aws_sagemaker_image_version", + "aws_sagemaker_mlflow_tracking_server", + "aws_sagemaker_model", + "aws_sagemaker_model_package_group", + "aws_sagemaker_model_package_group_policy", + "aws_sagemaker_monitoring_schedule", + "aws_sagemaker_notebook_instance", + "aws_sagemaker_notebook_instance_lifecycle_configuration", + "aws_sagemaker_pipeline", + "aws_sagemaker_project", + "aws_sagemaker_servicecatalog_portfolio_status", + "aws_sagemaker_space", + "aws_sagemaker_studio_lifecycle_config", + "aws_sagemaker_user_profile", + "aws_sagemaker_workforce", + "aws_sagemaker_workteam", + "aws_scheduler_schedule", + "aws_scheduler_schedule_group", + "aws_schemas_discoverer", + "aws_schemas_registry", + "aws_schemas_registry_policy", + "aws_schemas_schema", + "aws_secretsmanager_secret", + "aws_secretsmanager_secret_policy", + "aws_secretsmanager_secret_rotation", + "aws_secretsmanager_secret_version", + "aws_security_group", + "aws_security_group_rule", + "aws_securityhub_account", + "aws_securityhub_action_target", + "aws_securityhub_automation_rule", + "aws_securityhub_configuration_policy", + "aws_securityhub_configuration_policy_association", + "aws_securityhub_finding_aggregator", + "aws_securityhub_insight", + "aws_securityhub_invite_accepter", + "aws_securityhub_member", + "aws_securityhub_organization_admin_account", + "aws_securityhub_organization_configuration", + "aws_securityhub_product_subscription", + "aws_securityhub_standards_control", + "aws_securityhub_standards_control_association", + "aws_securityhub_standards_subscription", + "aws_securitylake_aws_log_source", + "aws_securitylake_custom_log_source", + "aws_securitylake_data_lake", + "aws_securitylake_subscriber", + "aws_securitylake_subscriber_notification", + "aws_serverlessapplicationrepository_cloudformation_stack", + "aws_service_discovery_http_namespace", + "aws_service_discovery_instance", + "aws_service_discovery_private_dns_namespace", + "aws_service_discovery_public_dns_namespace", + "aws_service_discovery_service", + "aws_servicecatalog_budget_resource_association", + "aws_servicecatalog_constraint", + "aws_servicecatalog_organizations_access", + "aws_servicecatalog_portfolio", + "aws_servicecatalog_portfolio_share", + "aws_servicecatalog_principal_portfolio_association", + "aws_servicecatalog_product", + "aws_servicecatalog_product_portfolio_association", + "aws_servicecatalog_provisioned_product", + "aws_servicecatalog_provisioning_artifact", + "aws_servicecatalog_service_action", + "aws_servicecatalog_tag_option", + "aws_servicecatalog_tag_option_resource_association", + "aws_servicecatalogappregistry_application", + "aws_servicecatalogappregistry_attribute_group", + "aws_servicecatalogappregistry_attribute_group_association", + "aws_servicequotas_service_quota", + "aws_servicequotas_template", + "aws_servicequotas_template_association", + "aws_ses_active_receipt_rule_set", + "aws_ses_configuration_set", + "aws_ses_domain_dkim", + "aws_ses_domain_identity", + "aws_ses_domain_identity_verification", + "aws_ses_domain_mail_from", + "aws_ses_email_identity", + "aws_ses_event_destination", + "aws_ses_identity_notification_topic", + "aws_ses_identity_policy", + "aws_ses_receipt_filter", + "aws_ses_receipt_rule", + "aws_ses_receipt_rule_set", + "aws_ses_template", + "aws_sesv2_account_suppression_attributes", + "aws_sesv2_account_vdm_attributes", + "aws_sesv2_configuration_set", + "aws_sesv2_configuration_set_event_destination", + "aws_sesv2_contact_list", + "aws_sesv2_dedicated_ip_assignment", + "aws_sesv2_dedicated_ip_pool", + "aws_sesv2_email_identity", + "aws_sesv2_email_identity_feedback_attributes", + "aws_sesv2_email_identity_mail_from_attributes", + "aws_sesv2_email_identity_policy", + "aws_sfn_activity", + "aws_sfn_alias", + "aws_sfn_state_machine", + "aws_shield_application_layer_automatic_response", + "aws_shield_drt_access_log_bucket_association", + "aws_shield_drt_access_role_arn_association", + "aws_shield_proactive_engagement", + "aws_shield_protection", + "aws_shield_protection_group", + "aws_shield_protection_health_check_association", + "aws_shield_subscription", + "aws_signer_signing_job", + "aws_signer_signing_profile", + "aws_signer_signing_profile_permission", + "aws_simpledb_domain", + "aws_snapshot_create_volume_permission", + "aws_sns_platform_application", + "aws_sns_sms_preferences", + "aws_sns_topic", + "aws_sns_topic_data_protection_policy", + "aws_sns_topic_policy", + "aws_sns_topic_subscription", + "aws_spot_datafeed_subscription", + "aws_spot_fleet_request", + "aws_spot_instance_request", + "aws_sqs_queue", + "aws_sqs_queue_policy", + "aws_sqs_queue_redrive_allow_policy", + "aws_sqs_queue_redrive_policy", + "aws_ssm_activation", + "aws_ssm_association", + "aws_ssm_default_patch_baseline", + "aws_ssm_document", + "aws_ssm_maintenance_window", + "aws_ssm_maintenance_window_target", + "aws_ssm_maintenance_window_task", + "aws_ssm_parameter", + "aws_ssm_patch_baseline", + "aws_ssm_patch_group", + "aws_ssm_resource_data_sync", + "aws_ssm_service_setting", + "aws_ssmcontacts_contact", + "aws_ssmcontacts_contact_channel", + "aws_ssmcontacts_plan", + "aws_ssmcontacts_rotation", + "aws_ssmincidents_replication_set", + "aws_ssmincidents_response_plan", + "aws_ssmquicksetup_configuration_manager", + "aws_ssoadmin_account_assignment", + "aws_ssoadmin_application", + "aws_ssoadmin_application_access_scope", + "aws_ssoadmin_application_assignment", + "aws_ssoadmin_application_assignment_configuration", + "aws_ssoadmin_customer_managed_policy_attachment", + "aws_ssoadmin_instance_access_control_attributes", + "aws_ssoadmin_managed_policy_attachment", + "aws_ssoadmin_permission_set", + "aws_ssoadmin_permission_set_inline_policy", + "aws_ssoadmin_permissions_boundary_attachment", + "aws_ssoadmin_trusted_token_issuer", + "aws_storagegateway_cache", + "aws_storagegateway_cached_iscsi_volume", + "aws_storagegateway_file_system_association", + "aws_storagegateway_gateway", + "aws_storagegateway_nfs_file_share", + "aws_storagegateway_smb_file_share", + "aws_storagegateway_stored_iscsi_volume", + "aws_storagegateway_tape_pool", + "aws_storagegateway_upload_buffer", + "aws_storagegateway_working_storage", + "aws_subnet", + "aws_swf_domain", + "aws_synthetics_canary", + "aws_synthetics_group", + "aws_synthetics_group_association", + "aws_timestreaminfluxdb_db_instance", + "aws_timestreamquery_scheduled_query", + "aws_timestreamwrite_database", + "aws_timestreamwrite_table", + "aws_transcribe_language_model", + "aws_transcribe_medical_vocabulary", + "aws_transcribe_vocabulary", + "aws_transcribe_vocabulary_filter", + "aws_transfer_access", + "aws_transfer_agreement", + "aws_transfer_certificate", + "aws_transfer_connector", + "aws_transfer_profile", + "aws_transfer_server", + "aws_transfer_ssh_key", + "aws_transfer_tag", + "aws_transfer_user", + "aws_transfer_workflow", + "aws_verifiedaccess_endpoint", + "aws_verifiedaccess_group", + "aws_verifiedaccess_instance", + "aws_verifiedaccess_instance_logging_configuration", + "aws_verifiedaccess_instance_trust_provider_attachment", + "aws_verifiedaccess_trust_provider", + "aws_verifiedpermissions_identity_source", + "aws_verifiedpermissions_policy", + "aws_verifiedpermissions_policy_store", + "aws_verifiedpermissions_policy_template", + "aws_verifiedpermissions_schema", + "aws_volume_attachment", + "aws_vpc", + "aws_vpc_block_public_access_exclusion", + "aws_vpc_block_public_access_options", + "aws_vpc_dhcp_options", + "aws_vpc_dhcp_options_association", + "aws_vpc_endpoint", + "aws_vpc_endpoint_connection_accepter", + "aws_vpc_endpoint_connection_notification", + "aws_vpc_endpoint_policy", + "aws_vpc_endpoint_private_dns", + "aws_vpc_endpoint_route_table_association", + "aws_vpc_endpoint_security_group_association", + "aws_vpc_endpoint_service", + "aws_vpc_endpoint_service_allowed_principal", + "aws_vpc_endpoint_service_private_dns_verification", + "aws_vpc_endpoint_subnet_association", + "aws_vpc_ipam", + "aws_vpc_ipam_organization_admin_account", + "aws_vpc_ipam_pool", + "aws_vpc_ipam_pool_cidr", + "aws_vpc_ipam_pool_cidr_allocation", + "aws_vpc_ipam_preview_next_cidr", + "aws_vpc_ipam_resource_discovery", + "aws_vpc_ipam_resource_discovery_association", + "aws_vpc_ipam_scope", + "aws_vpc_ipv4_cidr_block_association", + "aws_vpc_ipv6_cidr_block_association", + "aws_vpc_network_performance_metric_subscription", + "aws_vpc_peering_connection", + "aws_vpc_peering_connection_accepter", + "aws_vpc_peering_connection_options", + "aws_vpc_route_server", + "aws_vpc_route_server_association", + "aws_vpc_route_server_endpoint", + "aws_vpc_route_server_peer", + "aws_vpc_route_server_propagation", + "aws_vpc_route_server_vpc_association", + "aws_vpc_security_group_egress_rule", + "aws_vpc_security_group_ingress_rule", + "aws_vpc_security_group_vpc_association", + "aws_vpclattice_access_log_subscription", + "aws_vpclattice_auth_policy", + "aws_vpclattice_listener", + "aws_vpclattice_listener_rule", + "aws_vpclattice_resource_configuration", + "aws_vpclattice_resource_gateway", + "aws_vpclattice_resource_policy", + "aws_vpclattice_service", + "aws_vpclattice_service_network", + "aws_vpclattice_service_network_resource_association", + "aws_vpclattice_service_network_service_association", + "aws_vpclattice_service_network_vpc_association", + "aws_vpclattice_target_group", + "aws_vpclattice_target_group_attachment", + "aws_vpn_connection", + "aws_vpn_connection_route", + "aws_vpn_gateway", + "aws_vpn_gateway_attachment", + "aws_vpn_gateway_route_propagation", + "aws_waf_byte_match_set", + "aws_waf_geo_match_set", + "aws_waf_ipset", + "aws_waf_rate_based_rule", + "aws_waf_regex_match_set", + "aws_waf_regex_pattern_set", + "aws_waf_rule", + "aws_waf_rule_group", + "aws_waf_size_constraint_set", + "aws_waf_sql_injection_match_set", + "aws_waf_web_acl", + "aws_waf_xss_match_set", + "aws_wafregional_byte_match_set", + "aws_wafregional_geo_match_set", + "aws_wafregional_ipset", + "aws_wafregional_rate_based_rule", + "aws_wafregional_regex_match_set", + "aws_wafregional_regex_pattern_set", + "aws_wafregional_rule", + "aws_wafregional_rule_group", + "aws_wafregional_size_constraint_set", + "aws_wafregional_sql_injection_match_set", + "aws_wafregional_web_acl", + "aws_wafregional_web_acl_association", + "aws_wafregional_xss_match_set", + "aws_wafv2_api_key", + "aws_wafv2_ip_set", + "aws_wafv2_regex_pattern_set", + "aws_wafv2_rule_group", + "aws_wafv2_web_acl", + "aws_wafv2_web_acl_association", + "aws_wafv2_web_acl_logging_configuration", + "aws_worklink_fleet", + "aws_worklink_website_certificate_authority_association", + "aws_workspaces_connection_alias", + "aws_workspaces_directory", + "aws_workspaces_ip_group", + "aws_workspaces_workspace", + "aws_workspacesweb_browser_settings", + "aws_workspacesweb_data_protection_settings", + "aws_workspacesweb_ip_access_settings", + "aws_workspacesweb_network_settings", + "aws_workspacesweb_user_access_logging_settings", + "aws_workspacesweb_user_settings", + "aws_xray_encryption_config", + "aws_xray_group", + "aws_xray_resource_policy", + "aws_xray_sampling_rule" + ] +} diff --git a/src/parse/azurerm-members.json b/src/parse/azurerm-members.json index c32cf407..e4e929c8 100755 --- a/src/parse/azurerm-members.json +++ b/src/parse/azurerm-members.json @@ -1,4 +1,1453 @@ -{ - "dataSources": null, - "resources": null -} +{ + "dataSources": [ + "azurerm_aadb2c_directory", + "azurerm_active_directory_domain_service", + "azurerm_advisor_recommendations", + "azurerm_api_management", + "azurerm_api_management_api", + "azurerm_api_management_api_version_set", + "azurerm_api_management_gateway", + "azurerm_api_management_gateway_host_name_configuration", + "azurerm_api_management_group", + "azurerm_api_management_product", + "azurerm_api_management_subscription", + "azurerm_api_management_user", + "azurerm_app_configuration", + "azurerm_app_configuration_key", + "azurerm_app_configuration_keys", + "azurerm_app_service", + "azurerm_app_service_certificate", + "azurerm_app_service_certificate_order", + "azurerm_app_service_environment_v3", + "azurerm_app_service_plan", + "azurerm_application_gateway", + "azurerm_application_insights", + "azurerm_application_security_group", + "azurerm_arc_machine", + "azurerm_arc_resource_bridge_appliance", + "azurerm_attestation", + "azurerm_automation_account", + "azurerm_automation_runbook", + "azurerm_automation_variable_bool", + "azurerm_automation_variable_datetime", + "azurerm_automation_variable_int", + "azurerm_automation_variable_object", + "azurerm_automation_variable_string", + "azurerm_automation_variables", + "azurerm_availability_set", + "azurerm_backup_policy_file_share", + "azurerm_backup_policy_vm", + "azurerm_bastion_host", + "azurerm_batch_account", + "azurerm_batch_application", + "azurerm_batch_certificate", + "azurerm_batch_pool", + "azurerm_billing_enrollment_account_scope", + "azurerm_billing_mca_account_scope", + "azurerm_billing_mpa_account_scope", + "azurerm_blueprint_definition", + "azurerm_blueprint_published_version", + "azurerm_cdn_frontdoor_custom_domain", + "azurerm_cdn_frontdoor_endpoint", + "azurerm_cdn_frontdoor_firewall_policy", + "azurerm_cdn_frontdoor_origin_group", + "azurerm_cdn_frontdoor_profile", + "azurerm_cdn_frontdoor_rule_set", + "azurerm_cdn_frontdoor_secret", + "azurerm_cdn_profile", + "azurerm_client_config", + "azurerm_cognitive_account", + "azurerm_communication_service", + "azurerm_confidential_ledger", + "azurerm_consumption_budget_resource_group", + "azurerm_consumption_budget_subscription", + "azurerm_container_app", + "azurerm_container_app_environment.", + "azurerm_container_app_environment_certificate.", + "azurerm_container_app_environment_dapr_component.", + "azurerm_container_group", + "azurerm_container_registry", + "azurerm_container_registry_cache_rule", + "azurerm_container_registry_scope_map", + "azurerm_container_registry_token", + "azurerm_cosmosdb_account", + "azurerm_cosmosdb_mongo_database", + "azurerm_cosmosdb_restorable_database_accounts", + "azurerm_cosmosdb_sql_database", + "azurerm_dashboard_grafana", + "azurerm_data_factory", + "azurerm_data_factory_trigger_schedule", + "azurerm_data_factory_trigger_schedules", + "azurerm_data_lake_store", + "azurerm_data_protection_backup_vault", + "azurerm_data_share", + "azurerm_data_share_account", + "azurerm_data_share_dataset_blob_storage", + "azurerm_data_share_dataset_data_lake_gen1", + "azurerm_data_share_dataset_data_lake_gen2", + "azurerm_data_share_dataset_kusto_cluster", + "azurerm_data_share_dataset_kusto_database", + "azurerm_database_migration_project", + "azurerm_database_migration_service", + "azurerm_databricks_access_connector", + "azurerm_databricks_workspace", + "azurerm_databricks_workspace_private_endpoint_connection", + "azurerm_dedicated_host", + "azurerm_dedicated_host_group", + "azurerm_dev_center", + "azurerm_dev_center_catalog", + "azurerm_dev_center_gallery", + "azurerm_dev_center_network_connection", + "azurerm_dev_center_project", + "azurerm_dev_center_project_environment_type", + "azurerm_digital_twins_instance", + "azurerm_disk_access", + "azurerm_disk_encryption_set", + "azurerm_dns_a_record", + "azurerm_dns_aaaa_record", + "azurerm_dns_caa_record", + "azurerm_dns_cname_record", + "azurerm_dns_mx_record", + "azurerm_dns_ns_record", + "azurerm_dns_ptr_record", + "azurerm_dns_soa_record", + "azurerm_dns_srv_record", + "azurerm_dns_txt_record", + "azurerm_dns_zone", + "azurerm_dynatrace_monitor", + "azurerm_elastic_cloud_elasticsearch", + "azurerm_elastic_san", + "azurerm_elastic_san_volume_group", + "azurerm_elastic_san_volume_snapshot", + "azurerm_eventgrid_domain", + "azurerm_eventgrid_domain_topic", + "azurerm_eventgrid_system_topic", + "azurerm_eventgrid_topic", + "azurerm_eventhub", + "azurerm_eventhub_cluster", + "azurerm_eventhub_consumer_group", + "azurerm_eventhub_namespace", + "azurerm_eventhub_namespace_authorization_rule", + "azurerm_eventhub_sas", + "azurerm_express_route_circuit", + "azurerm_express_route_circuit_peering", + "azurerm_extended_location_custom_location", + "azurerm_extended_locations", + "azurerm_firewall", + "azurerm_firewall_policy", + "azurerm_function_app", + "azurerm_function_app_host_keys", + "azurerm_hdinsight_cluster", + "azurerm_healthcare_dicom_service", + "azurerm_healthcare_fhir_service", + "azurerm_healthcare_medtech_service", + "azurerm_healthcare_service", + "azurerm_healthcare_workspace", + "azurerm_image", + "azurerm_images", + "azurerm_iothub", + "azurerm_iothub_dps", + "azurerm_iothub_dps_shared_access_policy", + "azurerm_iothub_shared_access_policy", + "azurerm_ip_group", + "azurerm_ip_groups", + "azurerm_key_vault", + "azurerm_key_vault_access_policy", + "azurerm_key_vault_certificate", + "azurerm_key_vault_certificate_data", + "azurerm_key_vault_certificate_issuer", + "azurerm_key_vault_certificates", + "azurerm_key_vault_encrypted_value", + "azurerm_key_vault_key", + "azurerm_key_vault_managed_hardware_security_module", + "azurerm_key_vault_managed_hardware_security_module_key", + "azurerm_key_vault_managed_hardware_security_module_role_definition", + "azurerm_key_vault_secret", + "azurerm_key_vault_secrets", + "azurerm_kubernetes_cluster", + "azurerm_kubernetes_cluster_node_pool", + "azurerm_kubernetes_fleet_manager", + "azurerm_kubernetes_node_pool_snapshot", + "azurerm_kubernetes_service_versions", + "azurerm_kusto_cluster", + "azurerm_kusto_database", + "azurerm_lb", + "azurerm_lb_backend_address_pool", + "azurerm_lb_outbound_rule", + "azurerm_lb_rule", + "azurerm_linux_function_app", + "azurerm_linux_web_app", + "azurerm_local_network_gateway", + "azurerm_location", + "azurerm_log_analytics_workspace", + "azurerm_logic_app_integration_account", + "azurerm_logic_app_standard", + "azurerm_logic_app_workflow", + "azurerm_machine_learning_workspace", + "azurerm_maintenance_configuration", + "azurerm_managed_api", + "azurerm_managed_application_definition", + "azurerm_managed_disk", + "azurerm_management_group", + "azurerm_management_group_template_deployment", + "azurerm_maps_account", + "azurerm_monitor_action_group", + "azurerm_monitor_data_collection_endpoint", + "azurerm_monitor_data_collection_rule", + "azurerm_monitor_diagnostic_categories", + "azurerm_monitor_scheduled_query_rules_alert", + "azurerm_monitor_scheduled_query_rules_log", + "azurerm_monitor_workspace", + "azurerm_mssql_database", + "azurerm_mssql_elasticpool", + "azurerm_mssql_managed_database", + "azurerm_mssql_managed_instance", + "azurerm_mssql_server", + "azurerm_nat_gateway", + "azurerm_netapp_account", + "azurerm_netapp_account_encryption", + "azurerm_netapp_pool", + "azurerm_netapp_snapshot", + "azurerm_netapp_snapshot_policy", + "azurerm_netapp_volume", + "azurerm_netapp_volume_group_oracle", + "azurerm_netapp_volume_group_sap_hana", + "azurerm_netapp_volume_quota_rule", + "azurerm_network_ddos_protection_plan", + "azurerm_network_interface", + "azurerm_network_manager_connectivity_configuration", + "azurerm_network_security_group", + "azurerm_network_service_tags", + "azurerm_network_watcher", + "azurerm_nginx_api_key", + "azurerm_nginx_certificate", + "azurerm_nginx_configuration", + "azurerm_nginx_deployment", + "azurerm_notification_hub", + "azurerm_notification_hub_namespace", + "azurerm_oracle_adbs_character_sets", + "azurerm_oracle_adbs_national_character_sets", + "azurerm_oracle_autonomous_database", + "azurerm_oracle_cloud_vm_cluster", + "azurerm_oracle_db_nodes", + "azurerm_oracle_db_servers", + "azurerm_oracle_db_system_shapes", + "azurerm_oracle_exadata_infrastructure", + "azurerm_oracle_gi_versions", + "azurerm_orchestrated_virtual_machine_scale_set", + "azurerm_palo_alto_local_rulestack", + "azurerm_platform_image", + "azurerm_policy_assignment", + "azurerm_policy_definition", + "azurerm_policy_definition_built_in", + "azurerm_policy_set_definition", + "azurerm_policy_virtual_machine_configuration_assignment", + "azurerm_portal_dashboard", + "azurerm_postgresql_flexible_server", + "azurerm_postgresql_server", + "azurerm_private_dns_a_record", + "azurerm_private_dns_aaaa_record", + "azurerm_private_dns_cname_record", + "azurerm_private_dns_mx_record", + "azurerm_private_dns_ptr_record", + "azurerm_private_dns_resolver", + "azurerm_private_dns_resolver_dns_forwarding_ruleset", + "azurerm_private_dns_resolver_forwarding_rule", + "azurerm_private_dns_resolver_inbound_endpoint", + "azurerm_private_dns_resolver_outbound_endpoint", + "azurerm_private_dns_resolver_virtual_network_link", + "azurerm_private_dns_soa_record", + "azurerm_private_dns_srv_record", + "azurerm_private_dns_txt_record", + "azurerm_private_dns_zone", + "azurerm_private_dns_zone_virtual_network_link", + "azurerm_private_endpoint_connection", + "azurerm_private_link_service", + "azurerm_private_link_service_endpoint_connections", + "azurerm_proximity_placement_group", + "azurerm_public_ip", + "azurerm_public_ip_prefix", + "azurerm_public_ips", + "azurerm_public_maintenance_configurations", + "azurerm_recovery_services_vault", + "azurerm_redis_cache", + "azurerm_redis_enterprise_database", + "azurerm_resource_group", + "azurerm_resource_group_template_deployment", + "azurerm_resources", + "azurerm_role_assignments", + "azurerm_role_definition", + "azurerm_role_management_policy", + "azurerm_route_filter", + "azurerm_route_table", + "azurerm_sentinel_alert_rule", + "azurerm_sentinel_alert_rule_anomaly", + "azurerm_sentinel_alert_rule_template", + "azurerm_service_plan", + "azurerm_servicebus_namespace", + "azurerm_servicebus_namespace_authorization_rule", + "azurerm_servicebus_namespace_disaster_recovery_config", + "azurerm_servicebus_queue", + "azurerm_servicebus_queue_authorization_rule", + "azurerm_servicebus_subscription", + "azurerm_servicebus_topic", + "azurerm_servicebus_topic_authorization_rule", + "azurerm_shared_image", + "azurerm_shared_image_gallery", + "azurerm_shared_image_version", + "azurerm_shared_image_versions", + "azurerm_signalr_service", + "azurerm_site_recovery_fabric", + "azurerm_site_recovery_protection_container", + "azurerm_site_recovery_replication_policy", + "azurerm_snapshot", + "azurerm_source_control_token", + "azurerm_spring_cloud_app", + "azurerm_spring_cloud_service", + "azurerm_ssh_public_key", + "azurerm_stack_hci_cluster", + "azurerm_stack_hci_storage_path", + "azurerm_static_web_app", + "azurerm_storage_account", + "azurerm_storage_account_blob_container_sas", + "azurerm_storage_account_sas", + "azurerm_storage_blob", + "azurerm_storage_container", + "azurerm_storage_containers", + "azurerm_storage_encryption_scope", + "azurerm_storage_management_policy", + "azurerm_storage_queue", + "azurerm_storage_share", + "azurerm_storage_sync", + "azurerm_storage_sync_group", + "azurerm_storage_table", + "azurerm_storage_table_entity", + "azurerm_stream_analytics_job", + "azurerm_subnet", + "azurerm_subscription", + "azurerm_subscription_template_deployment", + "azurerm_subscriptions", + "azurerm_synapse_workspace", + "azurerm_system_center_virtual_machine_manager_inventory_items", + "azurerm_template_spec_version", + "azurerm_tenant_template_deployment", + "azurerm_traffic_manager_geographical_location", + "azurerm_traffic_manager_profile", + "azurerm_user_assigned_identity", + "azurerm_virtual_desktop_application_group", + "azurerm_virtual_desktop_host_pool", + "azurerm_virtual_desktop_workspace", + "azurerm_virtual_hub", + "azurerm_virtual_hub_connection", + "azurerm_virtual_hub_route_table", + "azurerm_virtual_machine", + "azurerm_virtual_machine_scale_set", + "azurerm_virtual_network", + "azurerm_virtual_network_gateway", + "azurerm_virtual_network_gateway_connection", + "azurerm_virtual_network_peering", + "azurerm_virtual_wan", + "azurerm_vmware_private_cloud", + "azurerm_vpn_gateway", + "azurerm_vpn_server_configuration", + "azurerm_web_application_firewall_policy", + "azurerm_web_pubsub", + "azurerm_web_pubsub_private_link_resource", + "azurerm_windows_function_app", + "azurerm_windows_web_app", + "netapp_backup_policy", + "netapp_backup_vault" + ], + "resources": [ + "azurerm_aadb2c_directory", + "azurerm_active_directory_domain_service", + "azurerm_active_directory_domain_service_replica_set", + "azurerm_active_directory_domain_service_trust", + "azurerm_advanced_threat_protection", + "azurerm_advisor_suppression", + "azurerm_ai_foundry", + "azurerm_ai_foundry_project", + "azurerm_ai_services", + "azurerm_analysis_services_server", + "azurerm_api_connection", + "azurerm_api_management", + "azurerm_api_management_api", + "azurerm_api_management_api_diagnostic", + "azurerm_api_management_api_operation", + "azurerm_api_management_api_operation_policy", + "azurerm_api_management_api_operation_tag", + "azurerm_api_management_api_policy", + "azurerm_api_management_api_release", + "azurerm_api_management_api_schema", + "azurerm_api_management_api_tag", + "azurerm_api_management_api_tag_description", + "azurerm_api_management_api_version_set", + "azurerm_api_management_authorization_server", + "azurerm_api_management_backend", + "azurerm_api_management_certificate", + "azurerm_api_management_custom_domain", + "azurerm_api_management_diagnostic", + "azurerm_api_management_email_template", + "azurerm_api_management_gateway", + "azurerm_api_management_gateway_api", + "azurerm_api_management_gateway_certificate_authority", + "azurerm_api_management_gateway_host_name_configuration", + "azurerm_api_management_global_schema", + "azurerm_api_management_group", + "azurerm_api_management_group_user", + "azurerm_api_management_identity_provider_aad", + "azurerm_api_management_identity_provider_aadb2c", + "azurerm_api_management_identity_provider_facebook", + "azurerm_api_management_identity_provider_google", + "azurerm_api_management_identity_provider_microsoft", + "azurerm_api_management_identity_provider_twitter", + "azurerm_api_management_logger", + "azurerm_api_management_named_value", + "azurerm_api_management_notification_recipient_email", + "azurerm_api_management_notification_recipient_user", + "azurerm_api_management_openid_connect_provider", + "azurerm_api_management_policy", + "azurerm_api_management_policy_fragment", + "azurerm_api_management_product", + "azurerm_api_management_product_api", + "azurerm_api_management_product_group", + "azurerm_api_management_product_policy", + "azurerm_api_management_product_tag", + "azurerm_api_management_redis_cache", + "azurerm_api_management_subscription", + "azurerm_api_management_tag", + "azurerm_api_management_user", + "azurerm_app_configuration", + "azurerm_app_configuration_feature", + "azurerm_app_configuration_key", + "azurerm_app_service", + "azurerm_app_service_active_slot", + "azurerm_app_service_certificate", + "azurerm_app_service_certificate_binding", + "azurerm_app_service_certificate_order", + "azurerm_app_service_connection", + "azurerm_app_service_custom_hostname_binding", + "azurerm_app_service_environment_v3", + "azurerm_app_service_hybrid_connection", + "azurerm_app_service_managed_certificate", + "azurerm_app_service_plan", + "azurerm_app_service_public_certificate", + "azurerm_app_service_slot", + "azurerm_app_service_slot_custom_hostname_binding", + "azurerm_app_service_slot_virtual_network_swift_connection", + "azurerm_app_service_source_control", + "azurerm_app_service_source_control_slot", + "azurerm_app_service_source_control_token", + "azurerm_app_service_virtual_network_swift_connection", + "azurerm_application_gateway", + "azurerm_application_insights", + "azurerm_application_insights_analytics_item", + "azurerm_application_insights_api_key", + "azurerm_application_insights_smart_detection_rule", + "azurerm_application_insights_workbook", + "azurerm_application_insights_workbook_template", + "azurerm_application_load_balancer", + "azurerm_application_load_balancer_frontend", + "azurerm_application_load_balancer_subnet_association", + "azurerm_application_security_group", + "azurerm_arc_kubernetes_cluster", + "azurerm_arc_kubernetes_cluster_extension", + "azurerm_arc_kubernetes_flux_configuration", + "azurerm_arc_kubernetes_provisioned_cluster", + "azurerm_arc_machine", + "azurerm_arc_machine_automanage_configuration_assignment", + "azurerm_arc_machine_extension", + "azurerm_arc_private_link_scope", + "azurerm_arc_resource_bridge_appliance", + "azurerm_attestation_provider", + "azurerm_automanage_configuration", + "azurerm_automation_account", + "azurerm_automation_certificate", + "azurerm_automation_connection", + "azurerm_automation_connection_certificate", + "azurerm_automation_connection_classic_certificate", + "azurerm_automation_connection_service_principal", + "azurerm_automation_connection_type", + "azurerm_automation_credential", + "azurerm_automation_dsc_configuration", + "azurerm_automation_dsc_nodeconfiguration", + "azurerm_automation_hybrid_runbook_worker", + "azurerm_automation_hybrid_runbook_worker_group", + "azurerm_automation_job_schedule", + "azurerm_automation_module", + "azurerm_automation_powershell72_module", + "azurerm_automation_python3_package", + "azurerm_automation_runbook", + "azurerm_automation_schedule", + "azurerm_automation_software_update_configuration", + "azurerm_automation_source_control", + "azurerm_automation_variable_bool", + "azurerm_automation_variable_datetime", + "azurerm_automation_variable_int", + "azurerm_automation_variable_object", + "azurerm_automation_variable_string", + "azurerm_automation_watcher", + "azurerm_automation_webhook", + "azurerm_availability_set", + "azurerm_backup_container_storage_account", + "azurerm_backup_policy_file_share", + "azurerm_backup_policy_vm", + "azurerm_backup_policy_vm_workload", + "azurerm_backup_protected_file_share", + "azurerm_backup_protected_vm", + "azurerm_bastion_host", + "azurerm_batch_account", + "azurerm_batch_application", + "azurerm_batch_certificate", + "azurerm_batch_job", + "azurerm_batch_pool", + "azurerm_billing_account_cost_management_export", + "azurerm_blueprint_assignment", + "azurerm_bot_channel_alexa", + "azurerm_bot_channel_direct_line_speech", + "azurerm_bot_channel_directline", + "azurerm_bot_channel_email", + "azurerm_bot_channel_facebook", + "azurerm_bot_channel_line", + "azurerm_bot_channel_ms_teams", + "azurerm_bot_channel_slack", + "azurerm_bot_channel_sms", + "azurerm_bot_channel_web_chat", + "azurerm_bot_channels_registration", + "azurerm_bot_connection", + "azurerm_bot_service_azure_bot", + "azurerm_bot_web_app", + "azurerm_capacity_reservation", + "azurerm_capacity_reservation_group", + "azurerm_cdn_endpoint", + "azurerm_cdn_endpoint_custom_domain", + "azurerm_cdn_frontdoor_custom_domain", + "azurerm_cdn_frontdoor_custom_domain_association", + "azurerm_cdn_frontdoor_endpoint", + "azurerm_cdn_frontdoor_firewall_policy", + "azurerm_cdn_frontdoor_origin", + "azurerm_cdn_frontdoor_origin_group", + "azurerm_cdn_frontdoor_profile", + "azurerm_cdn_frontdoor_route", + "azurerm_cdn_frontdoor_rule", + "azurerm_cdn_frontdoor_rule_set", + "azurerm_cdn_frontdoor_secret", + "azurerm_cdn_frontdoor_security_policy", + "azurerm_cdn_profile", + "azurerm_chaos_studio_capability", + "azurerm_chaos_studio_experiment", + "azurerm_chaos_studio_target", + "azurerm_cognitive_account", + "azurerm_cognitive_account_customer_managed_key", + "azurerm_cognitive_account_rai_blocklist", + "azurerm_cognitive_account_rai_policy", + "azurerm_cognitive_deployment", + "azurerm_communication_service", + "azurerm_communication_service_email_domain_association", + "azurerm_confidential_ledger", + "azurerm_consumption_budget_management_group", + "azurerm_consumption_budget_resource_group", + "azurerm_consumption_budget_subscription", + "azurerm_container_app", + "azurerm_container_app_custom_domain", + "azurerm_container_app_environment", + "azurerm_container_app_environment_certificate", + "azurerm_container_app_environment_custom_domain", + "azurerm_container_app_environment_dapr_component", + "azurerm_container_app_environment_storage", + "azurerm_container_app_job", + "azurerm_container_connected_registry", + "azurerm_container_group", + "azurerm_container_registry", + "azurerm_container_registry_agent_pool", + "azurerm_container_registry_cache_rule", + "azurerm_container_registry_credential_set", + "azurerm_container_registry_scope_map", + "azurerm_container_registry_task", + "azurerm_container_registry_task_schedule_run_now", + "azurerm_container_registry_token", + "azurerm_container_registry_token_password", + "azurerm_container_registry_webhook", + "azurerm_cosmosdb_account", + "azurerm_cosmosdb_cassandra_cluster", + "azurerm_cosmosdb_cassandra_datacenter", + "azurerm_cosmosdb_cassandra_keyspace", + "azurerm_cosmosdb_cassandra_table", + "azurerm_cosmosdb_gremlin_database", + "azurerm_cosmosdb_gremlin_graph", + "azurerm_cosmosdb_mongo_collection", + "azurerm_cosmosdb_mongo_database", + "azurerm_cosmosdb_mongo_role_definition", + "azurerm_cosmosdb_mongo_user_definition", + "azurerm_cosmosdb_postgresql_cluster", + "azurerm_cosmosdb_postgresql_coordinator_configuration", + "azurerm_cosmosdb_postgresql_firewall_rule", + "azurerm_cosmosdb_postgresql_node_configuration", + "azurerm_cosmosdb_postgresql_role", + "azurerm_cosmosdb_sql_container", + "azurerm_cosmosdb_sql_database", + "azurerm_cosmosdb_sql_dedicated_gateway", + "azurerm_cosmosdb_sql_function", + "azurerm_cosmosdb_sql_role_assignment", + "azurerm_cosmosdb_sql_role_definition", + "azurerm_cosmosdb_sql_stored_procedure", + "azurerm_cosmosdb_sql_trigger", + "azurerm_cosmosdb_table", + "azurerm_cost_anomaly_alert", + "azurerm_cost_management_scheduled_action", + "azurerm_custom_ip_prefix", + "azurerm_custom_provider", + "azurerm_dashboard", + "azurerm_dashboard_grafana", + "azurerm_dashboard_grafana_managed_private_endpoint", + "azurerm_data_factory", + "azurerm_data_factory_credential_service_principal", + "azurerm_data_factory_credential_user_managed_identity", + "azurerm_data_factory_custom_dataset", + "azurerm_data_factory_data_flow", + "azurerm_data_factory_dataset_azure_blob", + "azurerm_data_factory_dataset_azure_sql_table", + "azurerm_data_factory_dataset_binary", + "azurerm_data_factory_dataset_cosmosdb_sqlapi", + "azurerm_data_factory_dataset_delimited_text", + "azurerm_data_factory_dataset_http", + "azurerm_data_factory_dataset_json", + "azurerm_data_factory_dataset_mysql", + "azurerm_data_factory_dataset_parquet", + "azurerm_data_factory_dataset_postgresql", + "azurerm_data_factory_dataset_snowflake", + "azurerm_data_factory_dataset_sql_server_table", + "azurerm_data_factory_flowlet_data_flow", + "azurerm_data_factory_integration_runtime_azure", + "azurerm_data_factory_integration_runtime_azure_ssis", + "azurerm_data_factory_integration_runtime_self_hosted", + "azurerm_data_factory_linked_custom_service", + "azurerm_data_factory_linked_service_azure_blob_storage", + "azurerm_data_factory_linked_service_azure_databricks", + "azurerm_data_factory_linked_service_azure_file_storage", + "azurerm_data_factory_linked_service_azure_function", + "azurerm_data_factory_linked_service_azure_search", + "azurerm_data_factory_linked_service_azure_sql_database", + "azurerm_data_factory_linked_service_azure_table_storage", + "azurerm_data_factory_linked_service_cosmosdb", + "azurerm_data_factory_linked_service_cosmosdb_mongoapi", + "azurerm_data_factory_linked_service_data_lake_storage_gen2", + "azurerm_data_factory_linked_service_key_vault", + "azurerm_data_factory_linked_service_kusto", + "azurerm_data_factory_linked_service_mysql", + "azurerm_data_factory_linked_service_odata", + "azurerm_data_factory_linked_service_odbc", + "azurerm_data_factory_linked_service_postgresql", + "azurerm_data_factory_linked_service_sftp", + "azurerm_data_factory_linked_service_snowflake", + "azurerm_data_factory_linked_service_sql_server", + "azurerm_data_factory_linked_service_synapse", + "azurerm_data_factory_linked_service_web", + "azurerm_data_factory_managed_private_endpoint", + "azurerm_data_factory_pipeline", + "azurerm_data_factory_trigger_blob_event", + "azurerm_data_factory_trigger_custom_event", + "azurerm_data_factory_trigger_schedule", + "azurerm_data_factory_trigger_tumbling_window", + "azurerm_data_protection_backup_instance_blob_storage", + "azurerm_data_protection_backup_instance_disk", + "azurerm_data_protection_backup_instance_kubernetes_cluster", + "azurerm_data_protection_backup_instance_mysql_flexible_server", + "azurerm_data_protection_backup_instance_postgresql", + "azurerm_data_protection_backup_instance_postgresql_flexible_server", + "azurerm_data_protection_backup_policy_blob_storage", + "azurerm_data_protection_backup_policy_disk", + "azurerm_data_protection_backup_policy_kubernetes_cluster", + "azurerm_data_protection_backup_policy_mysql_flexible_server", + "azurerm_data_protection_backup_policy_postgresql", + "azurerm_data_protection_backup_policy_postgresql_flexible_server", + "azurerm_data_protection_backup_vault", + "azurerm_data_protection_backup_vault_customer_managed_key", + "azurerm_data_protection_resource_guard", + "azurerm_data_share", + "azurerm_data_share_account", + "azurerm_data_share_dataset_blob_storage", + "azurerm_data_share_dataset_data_lake_gen2", + "azurerm_data_share_dataset_kusto_cluster", + "azurerm_data_share_dataset_kusto_database", + "azurerm_database_migration_project", + "azurerm_database_migration_service", + "azurerm_databox_edge_device", + "azurerm_databricks_access_connector", + "azurerm_databricks_virtual_network_peering", + "azurerm_databricks_workspace", + "azurerm_databricks_workspace_root_dbfs_customer_managed_key", + "azurerm_datadog_monitor", + "azurerm_datadog_monitor_sso_configuration", + "azurerm_datadog_monitor_tag_rule", + "azurerm_dedicated_hardware_security_module", + "azurerm_dedicated_host", + "azurerm_dedicated_host_group", + "azurerm_dev_center", + "azurerm_dev_center_attached_network", + "azurerm_dev_center_catalog", + "azurerm_dev_center_dev_box_definition", + "azurerm_dev_center_environment_type", + "azurerm_dev_center_gallery", + "azurerm_dev_center_network_connection", + "azurerm_dev_center_project", + "azurerm_dev_center_project_environment_type", + "azurerm_dev_center_project_pool", + "azurerm_digital_twins_endpoint_eventgrid", + "azurerm_digital_twins_endpoint_eventhub", + "azurerm_digital_twins_endpoint_servicebus", + "azurerm_digital_twins_instance", + "azurerm_digital_twins_time_series_database_connection", + "azurerm_disk_access", + "azurerm_disk_encryption_set", + "azurerm_dns_a_record", + "azurerm_dns_aaaa_record", + "azurerm_dns_caa_record", + "azurerm_dns_cname_record", + "azurerm_dns_mx_record", + "azurerm_dns_ns_record", + "azurerm_dns_ptr_record", + "azurerm_dns_srv_record", + "azurerm_dns_txt_record", + "azurerm_dns_zone", + "azurerm_dynatrace_monitor", + "azurerm_dynatrace_tag_rules", + "azurerm_elastic_cloud_elasticsearch", + "azurerm_elastic_san", + "azurerm_elastic_san_volume", + "azurerm_elastic_san_volume_group", + "azurerm_email_communication_service", + "azurerm_email_communication_service_domain", + "azurerm_eventgrid_domain", + "azurerm_eventgrid_domain_topic", + "azurerm_eventgrid_event_subscription", + "azurerm_eventgrid_namespace", + "azurerm_eventgrid_partner_configuration", + "azurerm_eventgrid_system_topic", + "azurerm_eventgrid_system_topic_event_subscription", + "azurerm_eventgrid_topic", + "azurerm_eventhub", + "azurerm_eventhub_authorization_rule", + "azurerm_eventhub_cluster", + "azurerm_eventhub_consumer_group", + "azurerm_eventhub_namespace", + "azurerm_eventhub_namespace_authorization_rule", + "azurerm_eventhub_namespace_customer_managed_key", + "azurerm_eventhub_namespace_disaster_recovery_config", + "azurerm_eventhub_namespace_schema_group", + "azurerm_express_route_circuit", + "azurerm_express_route_circuit_authorization", + "azurerm_express_route_circuit_connection", + "azurerm_express_route_circuit_peering", + "azurerm_express_route_connection", + "azurerm_express_route_gateway", + "azurerm_express_route_port", + "azurerm_express_route_port_authorization", + "azurerm_extended_location_custom_location", + "azurerm_fabric_capacity", + "azurerm_federated_identity_credential", + "azurerm_firewall", + "azurerm_firewall_application_rule_collection", + "azurerm_firewall_nat_rule_collection", + "azurerm_firewall_network_rule_collection", + "azurerm_firewall_policy", + "azurerm_firewall_policy_rule_collection_group", + "azurerm_fluid_relay_server", + "azurerm_frontdoor", + "azurerm_frontdoor_custom_https_configuration", + "azurerm_frontdoor_firewall_policy", + "azurerm_frontdoor_rules_engine", + "azurerm_function_app", + "azurerm_function_app_active_slot", + "azurerm_function_app_connection", + "azurerm_function_app_flex_consumption", + "azurerm_function_app_function", + "azurerm_function_app_hybrid_connection", + "azurerm_function_app_slot", + "azurerm_gallery_application", + "azurerm_gallery_application_version", + "azurerm_graph_services_account", + "azurerm_hdinsight_hadoop_cluster", + "azurerm_hdinsight_hbase_cluster", + "azurerm_hdinsight_interactive_query_cluster", + "azurerm_hdinsight_kafka_cluster", + "azurerm_hdinsight_spark_cluster", + "azurerm_healthbot", + "azurerm_healthcare_dicom_service", + "azurerm_healthcare_fhir_service", + "azurerm_healthcare_medtech_service", + "azurerm_healthcare_medtech_service_fhir_destination", + "azurerm_healthcare_service", + "azurerm_healthcare_workspace", + "azurerm_hpc_cache", + "azurerm_hpc_cache_access_policy", + "azurerm_hpc_cache_blob_nfs_target", + "azurerm_hpc_cache_blob_target", + "azurerm_hpc_cache_nfs_target", + "azurerm_image", + "azurerm_iot_security_device_group", + "azurerm_iot_security_solution", + "azurerm_iotcentral_application", + "azurerm_iotcentral_application_network_rule_set", + "azurerm_iotcentral_organization", + "azurerm_iothub", + "azurerm_iothub_certificate", + "azurerm_iothub_consumer_group", + "azurerm_iothub_device_update_account", + "azurerm_iothub_device_update_instance", + "azurerm_iothub_dps", + "azurerm_iothub_dps_certificate", + "azurerm_iothub_dps_shared_access_policy", + "azurerm_iothub_endpoint_cosmosdb_account", + "azurerm_iothub_endpoint_eventhub", + "azurerm_iothub_endpoint_servicebus_queue", + "azurerm_iothub_endpoint_servicebus_topic", + "azurerm_iothub_endpoint_storage_container", + "azurerm_iothub_enrichment", + "azurerm_iothub_fallback_route", + "azurerm_iothub_file_upload", + "azurerm_iothub_route", + "azurerm_iothub_shared_access_policy", + "azurerm_ip_group", + "azurerm_ip_group_cidr", + "azurerm_key_vault", + "azurerm_key_vault_access_policy", + "azurerm_key_vault_certificate", + "azurerm_key_vault_certificate_contacts", + "azurerm_key_vault_certificate_issuer", + "azurerm_key_vault_key", + "azurerm_key_vault_managed_hardware_security_module", + "azurerm_key_vault_managed_hardware_security_module_key", + "azurerm_key_vault_managed_hardware_security_module_key_rotation_policy", + "azurerm_key_vault_managed_hardware_security_module_role_assignment", + "azurerm_key_vault_managed_hardware_security_module_role_definition", + "azurerm_key_vault_managed_storage_account", + "azurerm_key_vault_managed_storage_account_sas_token_definition", + "azurerm_key_vault_secret", + "azurerm_kubernetes_cluster", + "azurerm_kubernetes_cluster_extension", + "azurerm_kubernetes_cluster_node_pool", + "azurerm_kubernetes_cluster_trusted_access_role_binding", + "azurerm_kubernetes_fleet_manager", + "azurerm_kubernetes_fleet_member", + "azurerm_kubernetes_fleet_update_run", + "azurerm_kubernetes_fleet_update_strategy", + "azurerm_kubernetes_flux_configuration", + "azurerm_kusto_attached_database_configuration", + "azurerm_kusto_cluster", + "azurerm_kusto_cluster_customer_managed_key", + "azurerm_kusto_cluster_managed_private_endpoint", + "azurerm_kusto_cluster_principal_assignment", + "azurerm_kusto_cosmosdb_data_connection", + "azurerm_kusto_database", + "azurerm_kusto_database_principal_assignment", + "azurerm_kusto_eventgrid_data_connection", + "azurerm_kusto_eventhub_data_connection", + "azurerm_kusto_iothub_data_connection", + "azurerm_kusto_script", + "azurerm_lb", + "azurerm_lb_backend_address_pool", + "azurerm_lb_backend_address_pool_address", + "azurerm_lb_nat_pool", + "azurerm_lb_nat_rule", + "azurerm_lb_outbound_rule", + "azurerm_lb_probe", + "azurerm_lb_rule", + "azurerm_lighthouse_assignment", + "azurerm_lighthouse_definition", + "azurerm_linux_function_app", + "azurerm_linux_function_app_slot", + "azurerm_linux_virtual_machine", + "azurerm_linux_virtual_machine_scale_set", + "azurerm_linux_web_app", + "azurerm_linux_web_app_slot", + "azurerm_local_network_gateway", + "azurerm_log_analytics_cluster", + "azurerm_log_analytics_cluster_customer_managed_key", + "azurerm_log_analytics_data_export_rule", + "azurerm_log_analytics_datasource_windows_event", + "azurerm_log_analytics_datasource_windows_performance_counter", + "azurerm_log_analytics_linked_service", + "azurerm_log_analytics_linked_storage_account", + "azurerm_log_analytics_query_pack", + "azurerm_log_analytics_query_pack_query", + "azurerm_log_analytics_saved_search", + "azurerm_log_analytics_solution", + "azurerm_log_analytics_storage_insights", + "azurerm_log_analytics_workspace", + "azurerm_log_analytics_workspace_table", + "azurerm_logic_app_action_custom", + "azurerm_logic_app_action_http", + "azurerm_logic_app_integration_account", + "azurerm_logic_app_integration_account_agreement", + "azurerm_logic_app_integration_account_assembly", + "azurerm_logic_app_integration_account_batch_configuration", + "azurerm_logic_app_integration_account_certificate", + "azurerm_logic_app_integration_account_map", + "azurerm_logic_app_integration_account_partner", + "azurerm_logic_app_integration_account_schema", + "azurerm_logic_app_integration_account_session", + "azurerm_logic_app_standard", + "azurerm_logic_app_trigger_custom", + "azurerm_logic_app_trigger_http_request", + "azurerm_logic_app_trigger_recurrence", + "azurerm_logic_app_workflow", + "azurerm_machine_learning_compute_cluster", + "azurerm_machine_learning_compute_instance", + "azurerm_machine_learning_datastore_blobstorage", + "azurerm_machine_learning_datastore_datalake_gen2", + "azurerm_machine_learning_datastore_fileshare", + "azurerm_machine_learning_inference_cluster", + "azurerm_machine_learning_synapse_spark", + "azurerm_machine_learning_workspace", + "azurerm_machine_learning_workspace_network_outbound_rule_fqdn", + "azurerm_machine_learning_workspace_network_outbound_rule_private_endpoint", + "azurerm_machine_learning_workspace_network_outbound_rule_service_tag", + "azurerm_maintenance_assignment_dedicated_host", + "azurerm_maintenance_assignment_dynamic_scope", + "azurerm_maintenance_assignment_virtual_machine", + "azurerm_maintenance_assignment_virtual_machine_scale_set", + "azurerm_maintenance_configuration", + "azurerm_managed_application", + "azurerm_managed_application_definition", + "azurerm_managed_disk", + "azurerm_managed_disk_sas_token", + "azurerm_managed_lustre_file_system", + "azurerm_management_group", + "azurerm_management_group_policy_assignment", + "azurerm_management_group_policy_exemption", + "azurerm_management_group_policy_remediation", + "azurerm_management_group_subscription_association", + "azurerm_management_group_template_deployment", + "azurerm_management_lock", + "azurerm_maps_account", + "azurerm_maps_creator", + "azurerm_marketplace_agreement", + "azurerm_marketplace_role_assignment", + "azurerm_media_services_account", + "azurerm_media_transform", + "azurerm_mobile_network", + "azurerm_mobile_network_attached_data_network", + "azurerm_mobile_network_data_network", + "azurerm_mobile_network_packet_core_control_plane", + "azurerm_mobile_network_packet_core_data_plane", + "azurerm_mobile_network_service", + "azurerm_mobile_network_sim", + "azurerm_mobile_network_sim_group", + "azurerm_mobile_network_sim_policy", + "azurerm_mobile_network_site", + "azurerm_mobile_network_slice", + "azurerm_mongo_cluster", + "azurerm_monitor_aad_diagnostic_setting", + "azurerm_monitor_action_group", + "azurerm_monitor_activity_log_alert", + "azurerm_monitor_alert_processing_rule_action_group", + "azurerm_monitor_alert_processing_rule_suppression", + "azurerm_monitor_alert_prometheus_rule_group", + "azurerm_monitor_autoscale_setting", + "azurerm_monitor_data_collection_endpoint", + "azurerm_monitor_data_collection_rule", + "azurerm_monitor_data_collection_rule_association", + "azurerm_monitor_diagnostic_setting", + "azurerm_monitor_metric_alert", + "azurerm_monitor_private_link_scope", + "azurerm_monitor_private_link_scoped_service", + "azurerm_monitor_scheduled_query_rules_alert", + "azurerm_monitor_scheduled_query_rules_alert_v2", + "azurerm_monitor_scheduled_query_rules_log", + "azurerm_monitor_smart_detector_alert_rule", + "azurerm_monitor_workspace", + "azurerm_mssql_database", + "azurerm_mssql_database_extended_auditing_policy", + "azurerm_mssql_database_vulnerability_assessment_rule_baseline", + "azurerm_mssql_elasticpool", + "azurerm_mssql_failover_group", + "azurerm_mssql_firewall_rule", + "azurerm_mssql_job", + "azurerm_mssql_job_agent", + "azurerm_mssql_job_credential", + "azurerm_mssql_job_schedule", + "azurerm_mssql_job_step", + "azurerm_mssql_job_target_group", + "azurerm_mssql_managed_database", + "azurerm_mssql_managed_instance", + "azurerm_mssql_managed_instance_active_directory_administrator", + "azurerm_mssql_managed_instance_failover_group", + "azurerm_mssql_managed_instance_security_alert_policy", + "azurerm_mssql_managed_instance_transparent_data_encryption", + "azurerm_mssql_managed_instance_vulnerability_assessment", + "azurerm_mssql_outbound_firewall_rule", + "azurerm_mssql_server", + "azurerm_mssql_server_dns_alias", + "azurerm_mssql_server_extended_auditing_policy", + "azurerm_mssql_server_microsoft_support_auditing_policy", + "azurerm_mssql_server_security_alert_policy", + "azurerm_mssql_server_transparent_data_encryption", + "azurerm_mssql_server_vulnerability_assessment", + "azurerm_mssql_virtual_machine", + "azurerm_mssql_virtual_machine_availability_group_listener", + "azurerm_mssql_virtual_machine_group", + "azurerm_mssql_virtual_network_rule", + "azurerm_mysql_flexible_database", + "azurerm_mysql_flexible_server", + "azurerm_mysql_flexible_server_active_directory_administrator", + "azurerm_mysql_flexible_server_configuration", + "azurerm_mysql_flexible_server_firewall_rule", + "azurerm_nat_gateway", + "azurerm_nat_gateway_public_ip_association", + "azurerm_nat_gateway_public_ip_prefix_association", + "azurerm_netapp_account", + "azurerm_netapp_account_encryption", + "azurerm_netapp_backup_policy", + "azurerm_netapp_backup_vault", + "azurerm_netapp_pool", + "azurerm_netapp_snapshot", + "azurerm_netapp_snapshot_policy", + "azurerm_netapp_volume", + "azurerm_netapp_volume_group_oracle", + "azurerm_netapp_volume_group_sap_hana", + "azurerm_netapp_volume_quota_rule", + "azurerm_network_connection_monitor", + "azurerm_network_ddos_protection_plan", + "azurerm_network_function_azure_traffic_collector", + "azurerm_network_function_collector_policy", + "azurerm_network_interface", + "azurerm_network_interface_application_gateway_backend_address_pool_association", + "azurerm_network_interface_application_security_group_association", + "azurerm_network_interface_backend_address_pool_association", + "azurerm_network_interface_nat_rule_association", + "azurerm_network_interface_security_group_association", + "azurerm_network_manager", + "azurerm_network_manager_admin_rule", + "azurerm_network_manager_admin_rule_collection", + "azurerm_network_manager_connectivity_configuration", + "azurerm_network_manager_deployment", + "azurerm_network_manager_ipam_pool", + "azurerm_network_manager_management_group_connection", + "azurerm_network_manager_network_group", + "azurerm_network_manager_routing_configuration", + "azurerm_network_manager_scope_connection", + "azurerm_network_manager_security_admin_configuration", + "azurerm_network_manager_static_member", + "azurerm_network_manager_subscription_connection", + "azurerm_network_manager_verifier_workspace", + "azurerm_network_profile", + "azurerm_network_security_group", + "azurerm_network_security_rule", + "azurerm_network_watcher", + "azurerm_network_watcher_flow_log", + "azurerm_new_relic_monitor", + "azurerm_new_relic_tag_rule", + "azurerm_nginx_api_key", + "azurerm_nginx_certificate", + "azurerm_nginx_configuration", + "azurerm_nginx_deployment", + "azurerm_notification_hub", + "azurerm_notification_hub_authorization_rule", + "azurerm_notification_hub_namespace", + "azurerm_oracle_autonomous_database", + "azurerm_oracle_cloud_vm_cluster", + "azurerm_oracle_exadata_infrastructure", + "azurerm_orbital_contact", + "azurerm_orbital_contact_profile", + "azurerm_orbital_spacecraft", + "azurerm_orchestrated_virtual_machine_scale_set", + "azurerm_palo_alto_local_rulestack", + "azurerm_palo_alto_local_rulestack_certificate", + "azurerm_palo_alto_local_rulestack_fqdn_list", + "azurerm_palo_alto_local_rulestack_outbound_trust_certificate_association", + "azurerm_palo_alto_local_rulestack_outbound_untrust_certificate_association", + "azurerm_palo_alto_local_rulestack_prefix_list", + "azurerm_palo_alto_local_rulestack_rule", + "azurerm_palo_alto_next_generation_firewall_virtual_hub_local_rulestack", + "azurerm_palo_alto_next_generation_firewall_virtual_hub_panorama", + "azurerm_palo_alto_next_generation_firewall_virtual_network_local_rulestack", + "azurerm_palo_alto_next_generation_firewall_virtual_network_panorama", + "azurerm_palo_alto_virtual_network_appliance", + "azurerm_pim_active_role_assignment", + "azurerm_pim_eligible_role_assignment", + "azurerm_point_to_site_vpn_gateway", + "azurerm_policy_definition", + "azurerm_policy_set_definition", + "azurerm_policy_virtual_machine_configuration_assignment", + "azurerm_portal_dashboard", + "azurerm_portal_tenant_configuration", + "azurerm_postgresql_active_directory_administrator", + "azurerm_postgresql_configuration", + "azurerm_postgresql_database", + "azurerm_postgresql_firewall_rule", + "azurerm_postgresql_flexible_server", + "azurerm_postgresql_flexible_server_active_directory_administrator", + "azurerm_postgresql_flexible_server_configuration", + "azurerm_postgresql_flexible_server_database", + "azurerm_postgresql_flexible_server_firewall_rule", + "azurerm_postgresql_flexible_server_virtual_endpoint", + "azurerm_postgresql_server", + "azurerm_postgresql_server_key", + "azurerm_postgresql_virtual_network_rule", + "azurerm_powerbi_embedded", + "azurerm_private_dns_a_record", + "azurerm_private_dns_aaaa_record", + "azurerm_private_dns_cname_record", + "azurerm_private_dns_mx_record", + "azurerm_private_dns_ptr_record", + "azurerm_private_dns_resolver", + "azurerm_private_dns_resolver_dns_forwarding_ruleset", + "azurerm_private_dns_resolver_forwarding_rule", + "azurerm_private_dns_resolver_inbound_endpoint", + "azurerm_private_dns_resolver_outbound_endpoint", + "azurerm_private_dns_resolver_virtual_network_link", + "azurerm_private_dns_soa_record", + "azurerm_private_dns_srv_record", + "azurerm_private_dns_txt_record", + "azurerm_private_dns_zone", + "azurerm_private_dns_zone_virtual_network_link", + "azurerm_private_endpoint", + "azurerm_private_endpoint_application_security_group_association", + "azurerm_private_link_service", + "azurerm_proximity_placement_group", + "azurerm_public_ip", + "azurerm_public_ip_prefix", + "azurerm_purview_account", + "azurerm_qumulo_file_system", + "azurerm_recovery_services_vault", + "azurerm_recovery_services_vault_resource_guard_association", + "azurerm_redhat_openshift_cluster", + "azurerm_redis_cache", + "azurerm_redis_cache_access_policy", + "azurerm_redis_cache_access_policy_assignment", + "azurerm_redis_enterprise_cluster", + "azurerm_redis_enterprise_database", + "azurerm_redis_firewall_rule", + "azurerm_redis_linked_server", + "azurerm_relay_hybrid_connection", + "azurerm_relay_hybrid_connection_authorization_rule", + "azurerm_relay_namespace", + "azurerm_relay_namespace_authorization_rule", + "azurerm_resource_deployment_script_azure_cli", + "azurerm_resource_deployment_script_azure_power_shell", + "azurerm_resource_group", + "azurerm_resource_group_cost_management_export", + "azurerm_resource_group_cost_management_view", + "azurerm_resource_group_policy_assignment", + "azurerm_resource_group_policy_exemption", + "azurerm_resource_group_policy_remediation", + "azurerm_resource_group_template_deployment", + "azurerm_resource_management_private_link", + "azurerm_resource_management_private_link_association", + "azurerm_resource_policy_assignment", + "azurerm_resource_policy_exemption", + "azurerm_resource_policy_remediation", + "azurerm_resource_provider_registration", + "azurerm_role_assignment", + "azurerm_role_definition", + "azurerm_role_management_policy", + "azurerm_route", + "azurerm_route_filter", + "azurerm_route_map", + "azurerm_route_server", + "azurerm_route_server_bgp_connection", + "azurerm_route_table", + "azurerm_search_service", + "azurerm_search_shared_private_link_service", + "azurerm_security_center_assessment", + "azurerm_security_center_assessment_policy", + "azurerm_security_center_auto_provisioning", + "azurerm_security_center_automation", + "azurerm_security_center_contact", + "azurerm_security_center_server_vulnerability_assessment_virtual_machine", + "azurerm_security_center_server_vulnerability_assessments_setting", + "azurerm_security_center_setting", + "azurerm_security_center_storage_defender", + "azurerm_security_center_subscription_pricing", + "azurerm_security_center_workspace", + "azurerm_sentinel_alert_rule_anomaly_built_in", + "azurerm_sentinel_alert_rule_anomaly_duplicate", + "azurerm_sentinel_alert_rule_fusion", + "azurerm_sentinel_alert_rule_machine_learning_behavior_analytics", + "azurerm_sentinel_alert_rule_ms_security_incident", + "azurerm_sentinel_alert_rule_nrt", + "azurerm_sentinel_alert_rule_scheduled", + "azurerm_sentinel_alert_rule_threat_intelligence", + "azurerm_sentinel_automation_rule", + "azurerm_sentinel_data_connector_aws_cloud_trail", + "azurerm_sentinel_data_connector_aws_s3", + "azurerm_sentinel_data_connector_azure_active_directory", + "azurerm_sentinel_data_connector_azure_advanced_threat_protection", + "azurerm_sentinel_data_connector_azure_security_center", + "azurerm_sentinel_data_connector_dynamics_365", + "azurerm_sentinel_data_connector_iot", + "azurerm_sentinel_data_connector_microsoft_cloud_app_security", + "azurerm_sentinel_data_connector_microsoft_defender_advanced_threat_protection", + "azurerm_sentinel_data_connector_microsoft_threat_intelligence", + "azurerm_sentinel_data_connector_microsoft_threat_protection", + "azurerm_sentinel_data_connector_office_365", + "azurerm_sentinel_data_connector_office_365_project", + "azurerm_sentinel_data_connector_office_atp", + "azurerm_sentinel_data_connector_office_irm", + "azurerm_sentinel_data_connector_office_power_bi", + "azurerm_sentinel_data_connector_threat_intelligence", + "azurerm_sentinel_data_connector_threat_intelligence_taxii", + "azurerm_sentinel_log_analytics_workspace_onboarding", + "azurerm_sentinel_metadata", + "azurerm_sentinel_threat_intelligence_indicator", + "azurerm_sentinel_watchlist", + "azurerm_sentinel_watchlist_item", + "azurerm_service_fabric_cluster", + "azurerm_service_fabric_managed_cluster", + "azurerm_service_plan", + "azurerm_servicebus_namespace", + "azurerm_servicebus_namespace_authorization_rule", + "azurerm_servicebus_namespace_customer_managed_key", + "azurerm_servicebus_namespace_disaster_recovery_config", + "azurerm_servicebus_queue", + "azurerm_servicebus_queue_authorization_rule", + "azurerm_servicebus_subscription", + "azurerm_servicebus_subscription_rule", + "azurerm_servicebus_topic", + "azurerm_servicebus_topic_authorization_rule", + "azurerm_shared_image", + "azurerm_shared_image_gallery", + "azurerm_shared_image_version", + "azurerm_signalr_service", + "azurerm_signalr_service_custom_certificate", + "azurerm_signalr_service_custom_domain", + "azurerm_signalr_service_network_acl", + "azurerm_signalr_shared_private_link_resource", + "azurerm_site_recovery_fabric", + "azurerm_site_recovery_hyperv_network_mapping", + "azurerm_site_recovery_hyperv_replication_policy", + "azurerm_site_recovery_hyperv_replication_policy_association", + "azurerm_site_recovery_network_mapping", + "azurerm_site_recovery_protection_container", + "azurerm_site_recovery_protection_container_mapping", + "azurerm_site_recovery_replicated_vm", + "azurerm_site_recovery_replication_policy", + "azurerm_site_recovery_replication_recovery_plan", + "azurerm_site_recovery_services_vault_hyperv_site", + "azurerm_site_recovery_vmware_replicated_vm", + "azurerm_site_recovery_vmware_replication_policy", + "azurerm_site_recovery_vmware_replication_policy_association", + "azurerm_snapshot", + "azurerm_source_control_token", + "azurerm_spatial_anchors_account", + "azurerm_spring_cloud_accelerator", + "azurerm_spring_cloud_active_deployment", + "azurerm_spring_cloud_api_portal", + "azurerm_spring_cloud_api_portal_custom_domain", + "azurerm_spring_cloud_app", + "azurerm_spring_cloud_app_cosmosdb_association", + "azurerm_spring_cloud_app_dynamics_application_performance_monitoring", + "azurerm_spring_cloud_app_mysql_association", + "azurerm_spring_cloud_app_redis_association", + "azurerm_spring_cloud_application_insights_application_performance_monitoring", + "azurerm_spring_cloud_application_live_view", + "azurerm_spring_cloud_build_deployment", + "azurerm_spring_cloud_build_pack_binding", + "azurerm_spring_cloud_builder", + "azurerm_spring_cloud_certificate", + "azurerm_spring_cloud_configuration_service", + "azurerm_spring_cloud_connection", + "azurerm_spring_cloud_container_deployment", + "azurerm_spring_cloud_custom_domain", + "azurerm_spring_cloud_customized_accelerator", + "azurerm_spring_cloud_dev_tool_portal", + "azurerm_spring_cloud_dynatrace_application_performance_monitoring", + "azurerm_spring_cloud_elastic_application_performance_monitoring", + "azurerm_spring_cloud_gateway", + "azurerm_spring_cloud_gateway_custom_domain", + "azurerm_spring_cloud_gateway_route_config", + "azurerm_spring_cloud_java_deployment", + "azurerm_spring_cloud_new_relic_application_performance_monitoring", + "azurerm_spring_cloud_service", + "azurerm_spring_cloud_storage", + "azurerm_sql_firewall_rule", + "azurerm_sql_server", + "azurerm_sql_virtual_network_rule", + "azurerm_ssh_public_key", + "azurerm_stack_hci_cluster", + "azurerm_stack_hci_deployment_setting", + "azurerm_stack_hci_extension", + "azurerm_stack_hci_logical_network", + "azurerm_stack_hci_marketplace_gallery_image", + "azurerm_stack_hci_network_interface", + "azurerm_stack_hci_storage_path", + "azurerm_stack_hci_virtual_hard_disk", + "azurerm_static_site", + "azurerm_static_site_custom_domain", + "azurerm_static_web_app", + "azurerm_static_web_app_custom_domain", + "azurerm_static_web_app_function_app_registration", + "azurerm_storage_account", + "azurerm_storage_account_customer_managed_key", + "azurerm_storage_account_local_user", + "azurerm_storage_account_network_rules", + "azurerm_storage_account_queue_properties", + "azurerm_storage_account_static_website", + "azurerm_storage_blob", + "azurerm_storage_blob_inventory_policy", + "azurerm_storage_container", + "azurerm_storage_container_immutability_policy", + "azurerm_storage_data_lake_gen2_filesystem", + "azurerm_storage_data_lake_gen2_path", + "azurerm_storage_encryption_scope", + "azurerm_storage_management_policy", + "azurerm_storage_mover", + "azurerm_storage_mover_agent", + "azurerm_storage_mover_job_definition", + "azurerm_storage_mover_project", + "azurerm_storage_mover_source_endpoint", + "azurerm_storage_mover_target_endpoint", + "azurerm_storage_object_replication", + "azurerm_storage_queue", + "azurerm_storage_share", + "azurerm_storage_share_directory", + "azurerm_storage_share_file", + "azurerm_storage_sync", + "azurerm_storage_sync_cloud_endpoint", + "azurerm_storage_sync_group", + "azurerm_storage_sync_server_endpoint", + "azurerm_storage_table", + "azurerm_storage_table_entity", + "azurerm_stream_analytics_cluster", + "azurerm_stream_analytics_function_javascript_uda", + "azurerm_stream_analytics_function_javascript_udf", + "azurerm_stream_analytics_job", + "azurerm_stream_analytics_job_schedule", + "azurerm_stream_analytics_job_storage_account", + "azurerm_stream_analytics_managed_private_endpoint", + "azurerm_stream_analytics_output_blob", + "azurerm_stream_analytics_output_cosmosdb", + "azurerm_stream_analytics_output_eventhub", + "azurerm_stream_analytics_output_function", + "azurerm_stream_analytics_output_mssql", + "azurerm_stream_analytics_output_powerbi", + "azurerm_stream_analytics_output_servicebus_queue", + "azurerm_stream_analytics_output_servicebus_topic", + "azurerm_stream_analytics_output_synapse", + "azurerm_stream_analytics_output_table", + "azurerm_stream_analytics_reference_input_blob", + "azurerm_stream_analytics_reference_input_mssql", + "azurerm_stream_analytics_stream_input_blob", + "azurerm_stream_analytics_stream_input_eventhub", + "azurerm_stream_analytics_stream_input_eventhub_v2", + "azurerm_stream_analytics_stream_input_iothub", + "azurerm_subnet", + "azurerm_subnet_nat_gateway_association", + "azurerm_subnet_network_security_group_association", + "azurerm_subnet_route_table_association", + "azurerm_subnet_service_endpoint_storage_policy", + "azurerm_subscription", + "azurerm_subscription_cost_management_export", + "azurerm_subscription_cost_management_view", + "azurerm_subscription_policy_assignment", + "azurerm_subscription_policy_exemption", + "azurerm_subscription_policy_remediation", + "azurerm_subscription_template_deployment", + "azurerm_synapse_firewall_rule", + "azurerm_synapse_integration_runtime_azure", + "azurerm_synapse_integration_runtime_self_hosted", + "azurerm_synapse_linked_service", + "azurerm_synapse_managed_private_endpoint", + "azurerm_synapse_private_link_hub", + "azurerm_synapse_role_assignment", + "azurerm_synapse_spark_pool", + "azurerm_synapse_sql_pool", + "azurerm_synapse_sql_pool_extended_auditing_policy", + "azurerm_synapse_sql_pool_security_alert_policy", + "azurerm_synapse_sql_pool_vulnerability_assessment", + "azurerm_synapse_sql_pool_vulnerability_assessment_baseline", + "azurerm_synapse_sql_pool_workload_classifier", + "azurerm_synapse_sql_pool_workload_group", + "azurerm_synapse_workspace", + "azurerm_synapse_workspace_aad_admin", + "azurerm_synapse_workspace_extended_auditing_policy", + "azurerm_synapse_workspace_key", + "azurerm_synapse_workspace_security_alert_policy", + "azurerm_synapse_workspace_sql_aad_admin", + "azurerm_synapse_workspace_vulnerability_assessment", + "azurerm_system_center_virtual_machine_manager_availability_set", + "azurerm_system_center_virtual_machine_manager_cloud", + "azurerm_system_center_virtual_machine_manager_server", + "azurerm_system_center_virtual_machine_manager_virtual_machine_instance", + "azurerm_system_center_virtual_machine_manager_virtual_machine_instance_guest_agent", + "azurerm_system_center_virtual_machine_manager_virtual_machine_template", + "azurerm_system_center_virtual_machine_manager_virtual_network", + "azurerm_tenant_template_deployment", + "azurerm_traffic_manager_azure_endpoint", + "azurerm_traffic_manager_external_endpoint", + "azurerm_traffic_manager_nested_endpoint", + "azurerm_traffic_manager_profile", + "azurerm_trusted_signing_account", + "azurerm_user_assigned_identity", + "azurerm_video_indexer_account", + "azurerm_virtual_desktop_application", + "azurerm_virtual_desktop_application_group", + "azurerm_virtual_desktop_host_pool", + "azurerm_virtual_desktop_host_pool_registration_info", + "azurerm_virtual_desktop_scaling_plan", + "azurerm_virtual_desktop_scaling_plan_host_pool_association", + "azurerm_virtual_desktop_workspace", + "azurerm_virtual_desktop_workspace_application_group_association", + "azurerm_virtual_hub", + "azurerm_virtual_hub_bgp_connection", + "azurerm_virtual_hub_connection", + "azurerm_virtual_hub_ip", + "azurerm_virtual_hub_route_table", + "azurerm_virtual_hub_route_table_route", + "azurerm_virtual_hub_routing_intent", + "azurerm_virtual_hub_security_partner_provider", + "azurerm_virtual_machine", + "azurerm_virtual_machine_automanage_configuration_assignment", + "azurerm_virtual_machine_data_disk_attachment", + "azurerm_virtual_machine_extension", + "azurerm_virtual_machine_gallery_application_assignment", + "azurerm_virtual_machine_implicit_data_disk_from_source", + "azurerm_virtual_machine_packet_capture", + "azurerm_virtual_machine_restore_point", + "azurerm_virtual_machine_restore_point_collection", + "azurerm_virtual_machine_run_command", + "azurerm_virtual_machine_scale_set", + "azurerm_virtual_machine_scale_set_extension", + "azurerm_virtual_machine_scale_set_packet_capture", + "azurerm_virtual_machine_scale_set_standby_pool", + "azurerm_virtual_network", + "azurerm_virtual_network_dns_servers", + "azurerm_virtual_network_gateway", + "azurerm_virtual_network_gateway_connection", + "azurerm_virtual_network_gateway_nat_rule", + "azurerm_virtual_network_peering", + "azurerm_virtual_wan", + "azurerm_vmware_cluster", + "azurerm_vmware_express_route_authorization", + "azurerm_vmware_netapp_volume_attachment", + "azurerm_vmware_private_cloud", + "azurerm_voice_services_communications_gateway", + "azurerm_vpn_gateway", + "azurerm_vpn_gateway_connection", + "azurerm_vpn_gateway_nat_rule", + "azurerm_vpn_server_configuration", + "azurerm_vpn_server_configuration_policy_group", + "azurerm_vpn_site", + "azurerm_web_app_active_slot", + "azurerm_web_app_hybrid_connection", + "azurerm_web_application_firewall_policy", + "azurerm_web_pubsub", + "azurerm_web_pubsub_custom_certificate", + "azurerm_web_pubsub_custom_domain", + "azurerm_web_pubsub_hub", + "azurerm_web_pubsub_network_acl", + "azurerm_web_pubsub_service", + "azurerm_web_pubsub_shared_private_link_resource", + "azurerm_web_pubsub_socketio", + "azurerm_windows_function_app", + "azurerm_windows_function_app_slot", + "azurerm_windows_virtual_machine", + "azurerm_windows_virtual_machine_scale_set", + "azurerm_windows_web_app", + "azurerm_windows_web_app_slot", + "azurerm_workloads_sap_discovery_virtual_instance", + "azurerm_workloads_sap_single_node_virtual_instance", + "azurerm_workloads_sap_three_tier_virtual_instance" + ] +} diff --git a/src/parse/google-members.json b/src/parse/google-members.json index c32cf407..562f6f9c 100755 --- a/src/parse/google-members.json +++ b/src/parse/google-members.json @@ -1,4 +1,1556 @@ -{ - "dataSources": null, - "resources": null -} +{ + "dataSources": [ + "google_access_approval_folder_service_account", + "google_access_approval_organization_service_account", + "google_access_approval_project_service_account", + "google_access_context_manager_access_policy", + "google_access_context_manager_access_policy_iam_policy", + "google_active_folder", + "google_alloydb_cluster", + "google_alloydb_instance", + "google_alloydb_locations", + "google_alloydb_supported_database_flags", + "google_api_gateway_api_config_iam_policy", + "google_api_gateway_api_iam_policy", + "google_api_gateway_gateway_iam_policy", + "google_apigee_environment_iam_policy", + "google_app_engine_default_service_account", + "google_apphub_application", + "google_apphub_discovered_service", + "google_apphub_discovered_workload", + "google_artifact_registry_docker_image", + "google_artifact_registry_locations", + "google_artifact_registry_repository", + "google_artifact_registry_repository_iam_policy", + "google_backup_dr_backup", + "google_backup_dr_backup_plan_association", + "google_backup_dr_backup_vault", + "google_backup_dr_data_source", + "google_beyondcorp_app_connection", + "google_beyondcorp_app_connector", + "google_beyondcorp_app_gateway", + "google_beyondcorp_application_iam_policy", + "google_beyondcorp_security_gateway", + "google_beyondcorp_security_gateway_application_iam_policy", + "google_beyondcorp_security_gateway_iam_policy", + "google_bigquery_analytics_hub_data_exchange_iam_policy", + "google_bigquery_analytics_hub_listing_iam_policy", + "google_bigquery_connection_iam_policy", + "google_bigquery_datapolicy_data_policy_iam_policy", + "google_bigquery_dataset", + "google_bigquery_dataset_iam_policy", + "google_bigquery_datasets", + "google_bigquery_default_service_account", + "google_bigquery_table", + "google_bigquery_table_iam_policy", + "google_bigquery_tables", + "google_bigtable_instance_iam_policy", + "google_bigtable_table_iam_policy", + "google_billing_account", + "google_billing_account_iam_policy", + "google_binary_authorization_attestor_iam_policy", + "google_certificate_manager_certificate_map", + "google_certificate_manager_certificates", + "google_client_config", + "google_client_openid_userinfo", + "google_cloud_identity_group_lookup", + "google_cloud_identity_group_memberships", + "google_cloud_identity_group_transitive_memberships", + "google_cloud_identity_groups", + "google_cloud_quotas_quota_info", + "google_cloud_quotas_quota_infos", + "google_cloud_run_locations", + "google_cloud_run_service", + "google_cloud_run_service_iam_policy", + "google_cloud_run_v2_job", + "google_cloud_run_v2_job_iam_policy", + "google_cloud_run_v2_service", + "google_cloud_run_v2_service_iam_policy", + "google_cloud_run_v2_worker_pool", + "google_cloud_run_v2_worker_pool_iam_policy", + "google_cloud_tasks_queue_iam_policy", + "google_cloudbuild_trigger", + "google_cloudbuildv2_connection_iam_policy", + "google_clouddeploy_custom_target_type_iam_policy", + "google_clouddeploy_delivery_pipeline_iam_policy", + "google_clouddeploy_target_iam_policy", + "google_cloudfunctions2_function", + "google_cloudfunctions2_function_iam_policy", + "google_cloudfunctions_function", + "google_cloudfunctions_function_iam_policy", + "google_colab_runtime_template_iam_policy", + "google_composer_environment", + "google_composer_image_versions", + "google_composer_user_workloads_config_map", + "google_composer_user_workloads_secret", + "google_compute_address", + "google_compute_addresses", + "google_compute_backend_bucket", + "google_compute_backend_bucket_iam_policy", + "google_compute_backend_service", + "google_compute_backend_service_iam_policy", + "google_compute_default_service_account", + "google_compute_disk", + "google_compute_disk_iam_policy", + "google_compute_forwarding_rule", + "google_compute_forwarding_rules", + "google_compute_global_address", + "google_compute_global_forwarding_rule", + "google_compute_ha_vpn_gateway", + "google_compute_health_check", + "google_compute_image", + "google_compute_image_iam_policy", + "google_compute_images", + "google_compute_instance", + "google_compute_instance_group", + "google_compute_instance_group_manager", + "google_compute_instance_guest_attributes", + "google_compute_instance_iam_policy", + "google_compute_instance_serial_port", + "google_compute_instance_template", + "google_compute_instance_template_iam_policy", + "google_compute_instant_snapshot_iam_policy", + "google_compute_lb_ip_ranges", + "google_compute_machine_image_iam_policy", + "google_compute_machine_types", + "google_compute_network", + "google_compute_network_endpoint_group", + "google_compute_network_peering", + "google_compute_networks", + "google_compute_node_types", + "google_compute_region_backend_service", + "google_compute_region_backend_service_iam_policy", + "google_compute_region_disk", + "google_compute_region_disk_iam_policy", + "google_compute_region_instance_group", + "google_compute_region_instance_group_manager", + "google_compute_region_instance_template", + "google_compute_region_network_endpoint_group", + "google_compute_region_ssl_certificate", + "google_compute_regions", + "google_compute_reservation", + "google_compute_resource_policy", + "google_compute_router", + "google_compute_router_nat", + "google_compute_router_status", + "google_compute_security_policy", + "google_compute_snapshot", + "google_compute_snapshot_iam_policy", + "google_compute_ssl_certificate", + "google_compute_ssl_policy", + "google_compute_storage_pool_iam_policy", + "google_compute_storage_pool_types", + "google_compute_subnetwork", + "google_compute_subnetwork_iam_policy", + "google_compute_subnetworks", + "google_compute_vpn_gateway", + "google_compute_zones", + "google_container_analysis_note_iam_policy", + "google_container_attached_install_manifest", + "google_container_attached_versions", + "google_container_aws_versions", + "google_container_azure_versions", + "google_container_cluster", + "google_container_engine_versions", + "google_container_registry_image", + "google_container_registry_repository", + "google_data_catalog_entry_group_iam_policy", + "google_data_catalog_policy_tag_iam_policy", + "google_data_catalog_tag_template_iam_policy", + "google_data_catalog_taxonomy_iam_policy", + "google_data_fusion_instance_iam_policy", + "google_dataform_repository_iam_policy", + "google_dataplex_aspect_type_iam_policy", + "google_dataplex_asset_iam_policy", + "google_dataplex_datascan_iam_policy", + "google_dataplex_entry_group_iam_policy", + "google_dataplex_entry_type_iam_policy", + "google_dataplex_glossary_iam_policy", + "google_dataplex_lake_iam_policy", + "google_dataplex_task_iam_policy", + "google_dataplex_zone_iam_policy", + "google_dataproc_autoscaling_policy_iam_policy", + "google_dataproc_cluster_iam_policy", + "google_dataproc_job_iam_policy", + "google_dataproc_metastore_database_iam_policy", + "google_dataproc_metastore_federation_iam_policy", + "google_dataproc_metastore_service", + "google_dataproc_metastore_service_iam_policy", + "google_dataproc_metastore_table_iam_policy", + "google_datastream_static_ips", + "google_dns_keys", + "google_dns_managed_zone", + "google_dns_managed_zone_iam_policy", + "google_dns_managed_zones", + "google_dns_record_set", + "google_endpoints_service_consumers_iam_policy", + "google_endpoints_service_iam_policy", + "google_filestore_instance", + "google_firebase_web_app_config", + "google_folder", + "google_folder_iam_policy", + "google_folder_organization_policy", + "google_folders", + "google_gemini_repository_group_iam_policy", + "google_gke_backup_backup_plan_iam_policy", + "google_gke_backup_restore_plan_iam_policy", + "google_gke_hub_feature", + "google_gke_hub_feature_iam_policy", + "google_gke_hub_membership", + "google_gke_hub_membership_iam_policy", + "google_gke_hub_scope_iam_policy", + "google_healthcare_consent_store_iam_policy", + "google_healthcare_dataset_iam_policy", + "google_healthcare_dicom_store_iam_policy", + "google_healthcare_fhir_store_iam_policy", + "google_healthcare_hl7_v2_store_iam_policy", + "google_iam_policy", + "google_iam_role", + "google_iam_workload_identity_pool", + "google_iam_workload_identity_pool_iam_policy", + "google_iam_workload_identity_pool_provider", + "google_iap_app_engine_service_iam_policy", + "google_iap_app_engine_version_iam_policy", + "google_iap_client", + "google_iap_tunnel_dest_group_iam_policy", + "google_iap_tunnel_iam_policy", + "google_iap_tunnel_instance_iam_policy", + "google_iap_web_backend_service_iam_policy", + "google_iap_web_cloud_run_service_iam_policy", + "google_iap_web_iam_policy", + "google_iap_web_region_backend_service_iam_policy", + "google_iap_web_type_app_engine_iam_policy", + "google_iap_web_type_compute_iam_policy", + "google_kms_autokey_config", + "google_kms_crypto_key", + "google_kms_crypto_key_iam_policy", + "google_kms_crypto_key_latest_version", + "google_kms_crypto_key_version", + "google_kms_crypto_key_versions", + "google_kms_crypto_keys", + "google_kms_ekm_connection_iam_policy", + "google_kms_key_handle", + "google_kms_key_handles", + "google_kms_key_ring", + "google_kms_key_ring_iam_policy", + "google_kms_key_rings", + "google_kms_secret", + "google_kms_secret_asymmetric", + "google_kms_secret_ciphertext", + "google_logging_folder_settings", + "google_logging_log_view_iam_policy", + "google_logging_organization_settings", + "google_logging_project_cmek_settings", + "google_logging_project_settings", + "google_lustre_instance", + "google_memcache_instance", + "google_memorystore_instance", + "google_monitoring_app_engine_service", + "google_monitoring_cluster_istio_service", + "google_monitoring_istio_canonical_service", + "google_monitoring_mesh_istio_service", + "google_monitoring_notification_channel", + "google_monitoring_uptime_check_ips", + "google_netblock_ip_ranges", + "google_network_security_address_group_iam_policy", + "google_notebooks_instance_iam_policy", + "google_notebooks_runtime_iam_policy", + "google_oracle_database_autonomous_database", + "google_oracle_database_autonomous_databases", + "google_oracle_database_cloud_exadata_infrastructure", + "google_oracle_database_cloud_exadata_infrastructures", + "google_oracle_database_cloud_vm_cluster", + "google_oracle_database_cloud_vm_clusters", + "google_oracle_database_db_nodes", + "google_oracle_database_db_servers", + "google_organization", + "google_organization_iam_custom_role", + "google_organization_iam_custom_roles", + "google_organization_iam_policy", + "google_organizations", + "google_parameter_manager_parameter", + "google_parameter_manager_parameter_version", + "google_parameter_manager_parameter_version_render", + "google_parameter_manager_parameters", + "google_parameter_manager_regional_parameter", + "google_parameter_manager_regional_parameter_version", + "google_parameter_manager_regional_parameter_version_render", + "google_parameter_manager_regional_parameters", + "google_privateca_ca_pool_iam_policy", + "google_privateca_certificate_authority", + "google_privateca_certificate_template_iam_policy", + "google_privileged_access_manager_entitlement", + "google_project", + "google_project_ancestry", + "google_project_iam_custom_role", + "google_project_iam_custom_roles", + "google_project_iam_policy", + "google_project_organization_policy", + "google_project_service", + "google_projects", + "google_pubsub_schema_iam_policy", + "google_pubsub_subscription", + "google_pubsub_subscription_iam_policy", + "google_pubsub_topic", + "google_pubsub_topic_iam_policy", + "google_redis_instance", + "google_runtimeconfig_config", + "google_runtimeconfig_config_iam_policy", + "google_runtimeconfig_variable", + "google_scc_source_iam_policy", + "google_scc_v2_organization_source_iam_policy", + "google_secret_manager_regional_secret", + "google_secret_manager_regional_secret_iam_policy", + "google_secret_manager_regional_secret_version", + "google_secret_manager_regional_secret_version_access", + "google_secret_manager_regional_secrets", + "google_secret_manager_secret", + "google_secret_manager_secret_iam_policy", + "google_secret_manager_secret_version", + "google_secret_manager_secret_version_access", + "google_secret_manager_secrets", + "google_secure_source_manager_instance_iam_policy", + "google_secure_source_manager_repository_iam_policy", + "google_service_account", + "google_service_account_access_token", + "google_service_account_iam_policy", + "google_service_account_id_token", + "google_service_account_jwt", + "google_service_account_key", + "google_service_accounts", + "google_service_directory_namespace_iam_policy", + "google_service_directory_service_iam_policy", + "google_site_verification_token", + "google_sourcerepo_repository", + "google_sourcerepo_repository_iam_policy", + "google_spanner_database", + "google_spanner_database_iam_policy", + "google_spanner_instance", + "google_spanner_instance_iam_policy", + "google_sql_backup_run", + "google_sql_ca_certs", + "google_sql_database", + "google_sql_database_instance", + "google_sql_database_instance_latest_recovery_time", + "google_sql_database_instances", + "google_sql_databases", + "google_sql_tiers", + "google_storage_bucket", + "google_storage_bucket_iam_policy", + "google_storage_bucket_object", + "google_storage_bucket_object_content", + "google_storage_bucket_objects", + "google_storage_buckets", + "google_storage_control_folder_intelligence_config", + "google_storage_control_organization_intelligence_config", + "google_storage_control_project_intelligence_config", + "google_storage_object_signed_url", + "google_storage_project_service_account", + "google_storage_transfer_project_service_account", + "google_tags_tag_key", + "google_tags_tag_key_iam_policy", + "google_tags_tag_keys", + "google_tags_tag_value", + "google_tags_tag_value_iam_policy", + "google_tags_tag_values", + "google_tpu_tensorflow_versions", + "google_tpu_v2_accelerator_types", + "google_tpu_v2_runtime_versions", + "google_vertex_ai_endpoint_iam_policy", + "google_vertex_ai_feature_group_iam_policy", + "google_vertex_ai_feature_online_store_featureview_iam_policy", + "google_vertex_ai_feature_online_store_iam_policy", + "google_vertex_ai_featurestore_entitytype_iam_policy", + "google_vertex_ai_featurestore_iam_policy", + "google_vmwareengine_cluster", + "google_vmwareengine_external_access_rule", + "google_vmwareengine_external_address", + "google_vmwareengine_network", + "google_vmwareengine_network_peering", + "google_vmwareengine_network_policy", + "google_vmwareengine_nsx_credentials", + "google_vmwareengine_private_cloud", + "google_vmwareengine_subnet", + "google_vmwareengine_vcenter_credentials", + "google_vpc_access_connector", + "google_workbench_instance_iam_policy", + "google_workstations_workstation_config_iam_policy", + "google_workstations_workstation_iam_policy" + ], + "resources": [ + "google_access_context_manager_access_level", + "google_access_context_manager_access_level_condition", + "google_access_context_manager_access_levels", + "google_access_context_manager_access_policy", + "google_access_context_manager_access_policy_iam_binding", + "google_access_context_manager_access_policy_iam_member", + "google_access_context_manager_access_policy_iam_policy", + "google_access_context_manager_authorized_orgs_desc", + "google_access_context_manager_gcp_user_access_binding", + "google_access_context_manager_service_perimeter", + "google_access_context_manager_service_perimeter_dry_run_egress_policy", + "google_access_context_manager_service_perimeter_dry_run_ingress_policy", + "google_access_context_manager_service_perimeter_dry_run_resource", + "google_access_context_manager_service_perimeter_egress_policy", + "google_access_context_manager_service_perimeter_ingress_policy", + "google_access_context_manager_service_perimeter_resource", + "google_access_context_manager_service_perimeters", + "google_active_directory_domain", + "google_active_directory_domain_trust", + "google_active_directory_peering", + "google_alloydb_backup", + "google_alloydb_cluster", + "google_alloydb_instance", + "google_alloydb_user", + "google_api_gateway_api", + "google_api_gateway_api_config", + "google_api_gateway_api_config_iam_binding", + "google_api_gateway_api_config_iam_member", + "google_api_gateway_api_config_iam_policy", + "google_api_gateway_api_iam_binding", + "google_api_gateway_api_iam_member", + "google_api_gateway_api_iam_policy", + "google_api_gateway_gateway", + "google_api_gateway_gateway_iam_binding", + "google_api_gateway_gateway_iam_member", + "google_api_gateway_gateway_iam_policy", + "google_apigee_addons_config", + "google_apigee_api", + "google_apigee_app_group", + "google_apigee_control_plane_access", + "google_apigee_developer", + "google_apigee_dns_zone", + "google_apigee_env_keystore", + "google_apigee_envgroup", + "google_apigee_envgroup_attachment", + "google_apigee_environment", + "google_apigee_environment_addons_config", + "google_apigee_environment_iam_binding", + "google_apigee_environment_iam_member", + "google_apigee_environment_iam_policy", + "google_apigee_environment_keyvaluemaps", + "google_apigee_environment_keyvaluemaps_entries", + "google_apigee_instance", + "google_apigee_instance_attachment", + "google_apigee_keystores_aliases_self_signed_cert", + "google_apigee_nat_address", + "google_apigee_organization", + "google_apigee_security_monitoring_condition", + "google_apigee_security_profile_v2", + "google_apigee_sync_authorization", + "google_apigee_target_server", + "google_apihub_api_hub_instance", + "google_apihub_curation", + "google_apihub_host_project_registration", + "google_apikeys_key", + "google_app_engine_application", + "google_app_engine_application_url_dispatch_rules", + "google_app_engine_domain_mapping", + "google_app_engine_firewall_rule", + "google_app_engine_flexible_app_version", + "google_app_engine_service_network_settings", + "google_app_engine_service_split_traffic", + "google_app_engine_standard_app_version", + "google_apphub_application", + "google_apphub_service", + "google_apphub_service_project_attachment", + "google_apphub_workload", + "google_artifact_registry_repository", + "google_artifact_registry_repository_iam_binding", + "google_artifact_registry_repository_iam_member", + "google_artifact_registry_repository_iam_policy", + "google_artifact_registry_vpcsc_config", + "google_assured_workloads_workload", + "google_backup_dr_backup_plan", + "google_backup_dr_backup_plan_association", + "google_backup_dr_backup_vault", + "google_backup_dr_management_server", + "google_beyondcorp_app_connection", + "google_beyondcorp_app_connector", + "google_beyondcorp_app_gateway", + "google_beyondcorp_application", + "google_beyondcorp_application_iam_binding", + "google_beyondcorp_application_iam_member", + "google_beyondcorp_application_iam_policy", + "google_beyondcorp_security_gateway", + "google_beyondcorp_security_gateway_application", + "google_beyondcorp_security_gateway_application_iam_binding", + "google_beyondcorp_security_gateway_application_iam_member", + "google_beyondcorp_security_gateway_application_iam_policy", + "google_beyondcorp_security_gateway_iam_binding", + "google_beyondcorp_security_gateway_iam_member", + "google_beyondcorp_security_gateway_iam_policy", + "google_biglake_catalog", + "google_biglake_database", + "google_biglake_table", + "google_bigquery_analytics_hub_data_exchange", + "google_bigquery_analytics_hub_data_exchange_iam_binding", + "google_bigquery_analytics_hub_data_exchange_iam_member", + "google_bigquery_analytics_hub_data_exchange_iam_policy", + "google_bigquery_analytics_hub_listing", + "google_bigquery_analytics_hub_listing_iam_binding", + "google_bigquery_analytics_hub_listing_iam_member", + "google_bigquery_analytics_hub_listing_iam_policy", + "google_bigquery_analytics_hub_listing_subscription", + "google_bigquery_bi_reservation", + "google_bigquery_capacity_commitment", + "google_bigquery_connection", + "google_bigquery_connection_iam_binding", + "google_bigquery_connection_iam_member", + "google_bigquery_connection_iam_policy", + "google_bigquery_data_transfer_config", + "google_bigquery_datapolicy_data_policy", + "google_bigquery_datapolicy_data_policy_iam_binding", + "google_bigquery_datapolicy_data_policy_iam_member", + "google_bigquery_datapolicy_data_policy_iam_policy", + "google_bigquery_dataset", + "google_bigquery_dataset_access", + "google_bigquery_dataset_iam_binding", + "google_bigquery_dataset_iam_member", + "google_bigquery_dataset_iam_policy", + "google_bigquery_job", + "google_bigquery_reservation", + "google_bigquery_reservation_assignment", + "google_bigquery_routine", + "google_bigquery_row_access_policy", + "google_bigquery_table", + "google_bigquery_table_iam_binding", + "google_bigquery_table_iam_member", + "google_bigquery_table_iam_policy", + "google_bigtable_app_profile", + "google_bigtable_authorized_view", + "google_bigtable_gc_policy", + "google_bigtable_instance", + "google_bigtable_instance_iam_binding", + "google_bigtable_instance_iam_member", + "google_bigtable_instance_iam_policy", + "google_bigtable_logical_view", + "google_bigtable_materialized_view", + "google_bigtable_table", + "google_bigtable_table_iam_binding", + "google_bigtable_table_iam_member", + "google_bigtable_table_iam_policy", + "google_billing_account_iam_binding", + "google_billing_account_iam_member", + "google_billing_account_iam_policy", + "google_billing_budget", + "google_billing_project_info", + "google_billing_subaccount", + "google_binary_authorization_attestor", + "google_binary_authorization_attestor_iam_binding", + "google_binary_authorization_attestor_iam_member", + "google_binary_authorization_attestor_iam_policy", + "google_binary_authorization_policy", + "google_blockchain_node_engine_blockchain_nodes", + "google_certificate_manager_certificate", + "google_certificate_manager_certificate_issuance_config", + "google_certificate_manager_certificate_map", + "google_certificate_manager_certificate_map_entry", + "google_certificate_manager_dns_authorization", + "google_certificate_manager_trust_config", + "google_chronicle_data_access_label", + "google_chronicle_data_access_scope", + "google_chronicle_reference_list", + "google_chronicle_retrohunt", + "google_chronicle_rule", + "google_chronicle_rule_deployment", + "google_chronicle_watchlist", + "google_cloud_asset_folder_feed", + "google_cloud_asset_organization_feed", + "google_cloud_asset_project_feed", + "google_cloud_identity_group", + "google_cloud_identity_group_membership", + "google_cloud_ids_endpoint", + "google_cloud_quotas_quota_adjuster_settings", + "google_cloud_quotas_quota_preference", + "google_cloud_run_domain_mapping", + "google_cloud_run_service", + "google_cloud_run_service_iam_binding", + "google_cloud_run_service_iam_member", + "google_cloud_run_service_iam_policy", + "google_cloud_run_v2_job", + "google_cloud_run_v2_job_iam_binding", + "google_cloud_run_v2_job_iam_member", + "google_cloud_run_v2_job_iam_policy", + "google_cloud_run_v2_service", + "google_cloud_run_v2_service_iam_binding", + "google_cloud_run_v2_service_iam_member", + "google_cloud_run_v2_service_iam_policy", + "google_cloud_run_v2_worker_pool", + "google_cloud_run_v2_worker_pool_iam_binding", + "google_cloud_run_v2_worker_pool_iam_member", + "google_cloud_run_v2_worker_pool_iam_policy", + "google_cloud_scheduler_job", + "google_cloud_tasks_queue", + "google_cloud_tasks_queue_iam_binding", + "google_cloud_tasks_queue_iam_member", + "google_cloud_tasks_queue_iam_policy", + "google_cloudbuild_bitbucket_server_config", + "google_cloudbuild_trigger", + "google_cloudbuild_worker_pool", + "google_cloudbuildv2_connection", + "google_cloudbuildv2_connection_iam_binding", + "google_cloudbuildv2_connection_iam_member", + "google_cloudbuildv2_connection_iam_policy", + "google_cloudbuildv2_repository", + "google_clouddeploy_automation", + "google_clouddeploy_custom_target_type", + "google_clouddeploy_custom_target_type_iam_binding", + "google_clouddeploy_custom_target_type_iam_member", + "google_clouddeploy_custom_target_type_iam_policy", + "google_clouddeploy_delivery_pipeline", + "google_clouddeploy_delivery_pipeline_iam_binding", + "google_clouddeploy_delivery_pipeline_iam_member", + "google_clouddeploy_delivery_pipeline_iam_policy", + "google_clouddeploy_deploy_policy", + "google_clouddeploy_target", + "google_clouddeploy_target_iam_binding", + "google_clouddeploy_target_iam_member", + "google_clouddeploy_target_iam_policy", + "google_clouddomains_registration", + "google_cloudfunctions2_function", + "google_cloudfunctions2_function_iam_binding", + "google_cloudfunctions2_function_iam_member", + "google_cloudfunctions2_function_iam_policy", + "google_cloudfunctions_function", + "google_cloudfunctions_function_iam_binding", + "google_cloudfunctions_function_iam_member", + "google_cloudfunctions_function_iam_policy", + "google_cloudiot_registry", + "google_colab_notebook_execution", + "google_colab_runtime", + "google_colab_runtime_template", + "google_colab_runtime_template_iam_binding", + "google_colab_runtime_template_iam_member", + "google_colab_runtime_template_iam_policy", + "google_colab_schedule", + "google_composer_environment", + "google_composer_user_workloads_config_map", + "google_composer_user_workloads_secret", + "google_compute_address", + "google_compute_attached_disk", + "google_compute_autoscaler", + "google_compute_backend_bucket", + "google_compute_backend_bucket_iam_binding", + "google_compute_backend_bucket_iam_member", + "google_compute_backend_bucket_iam_policy", + "google_compute_backend_bucket_signed_url_key", + "google_compute_backend_service", + "google_compute_backend_service_iam_binding", + "google_compute_backend_service_iam_member", + "google_compute_backend_service_iam_policy", + "google_compute_backend_service_signed_url_key", + "google_compute_cross_site_network", + "google_compute_disk", + "google_compute_disk_async_replication", + "google_compute_disk_iam_binding", + "google_compute_disk_iam_member", + "google_compute_disk_iam_policy", + "google_compute_disk_resource_policy_attachment", + "google_compute_external_vpn_gateway", + "google_compute_firewall", + "google_compute_firewall_policy", + "google_compute_firewall_policy_association", + "google_compute_firewall_policy_rule", + "google_compute_firewall_policy_with_rules", + "google_compute_forwarding_rule", + "google_compute_future_reservation", + "google_compute_global_address", + "google_compute_global_forwarding_rule", + "google_compute_global_network_endpoint", + "google_compute_global_network_endpoint_group", + "google_compute_ha_vpn_gateway", + "google_compute_health_check", + "google_compute_http_health_check", + "google_compute_https_health_check", + "google_compute_image", + "google_compute_image_iam_binding", + "google_compute_image_iam_member", + "google_compute_image_iam_policy", + "google_compute_instance", + "google_compute_instance_from_machine_image", + "google_compute_instance_from_template", + "google_compute_instance_group", + "google_compute_instance_group_manager", + "google_compute_instance_group_membership", + "google_compute_instance_group_named_port", + "google_compute_instance_iam_binding", + "google_compute_instance_iam_member", + "google_compute_instance_iam_policy", + "google_compute_instance_settings", + "google_compute_instance_template", + "google_compute_instance_template_iam_binding", + "google_compute_instance_template_iam_member", + "google_compute_instance_template_iam_policy", + "google_compute_instant_snapshot", + "google_compute_instant_snapshot_iam_binding", + "google_compute_instant_snapshot_iam_member", + "google_compute_instant_snapshot_iam_policy", + "google_compute_interconnect", + "google_compute_interconnect_attachment", + "google_compute_interconnect_attachment_group", + "google_compute_interconnect_group", + "google_compute_machine_image", + "google_compute_machine_image_iam_binding", + "google_compute_machine_image_iam_member", + "google_compute_machine_image_iam_policy", + "google_compute_managed_ssl_certificate", + "google_compute_network", + "google_compute_network_attachment", + "google_compute_network_edge_security_service", + "google_compute_network_endpoint", + "google_compute_network_endpoint_group", + "google_compute_network_endpoints", + "google_compute_network_firewall_policy", + "google_compute_network_firewall_policy_association", + "google_compute_network_firewall_policy_packet_mirroring_rule", + "google_compute_network_firewall_policy_rule", + "google_compute_network_firewall_policy_with_rules", + "google_compute_network_peering", + "google_compute_network_peering_routes_config", + "google_compute_node_group", + "google_compute_node_template", + "google_compute_organization_security_policy", + "google_compute_organization_security_policy_association", + "google_compute_organization_security_policy_rule", + "google_compute_packet_mirroring", + "google_compute_per_instance_config", + "google_compute_project_cloud_armor_tier", + "google_compute_project_default_network_tier", + "google_compute_project_metadata", + "google_compute_project_metadata_item", + "google_compute_public_advertised_prefix", + "google_compute_public_delegated_prefix", + "google_compute_region_autoscaler", + "google_compute_region_backend_service", + "google_compute_region_backend_service_iam_binding", + "google_compute_region_backend_service_iam_member", + "google_compute_region_backend_service_iam_policy", + "google_compute_region_commitment", + "google_compute_region_disk", + "google_compute_region_disk_iam_binding", + "google_compute_region_disk_iam_member", + "google_compute_region_disk_iam_policy", + "google_compute_region_disk_resource_policy_attachment", + "google_compute_region_health_check", + "google_compute_region_instance_group_manager", + "google_compute_region_instance_template", + "google_compute_region_network_endpoint", + "google_compute_region_network_endpoint_group", + "google_compute_region_network_firewall_policy", + "google_compute_region_network_firewall_policy_association", + "google_compute_region_network_firewall_policy_rule", + "google_compute_region_network_firewall_policy_with_rules", + "google_compute_region_per_instance_config", + "google_compute_region_resize_request", + "google_compute_region_security_policy", + "google_compute_region_security_policy_rule", + "google_compute_region_ssl_certificate", + "google_compute_region_target_http_proxy", + "google_compute_region_target_https_proxy", + "google_compute_region_target_tcp_proxy", + "google_compute_region_url_map", + "google_compute_reservation", + "google_compute_resize_request", + "google_compute_resource_policy", + "google_compute_resource_policy_attachment", + "google_compute_route", + "google_compute_router", + "google_compute_router_interface", + "google_compute_router_nat", + "google_compute_router_nat_address", + "google_compute_router_peer", + "google_compute_router_route_policy", + "google_compute_security_policy", + "google_compute_security_policy_rule", + "google_compute_service_attachment", + "google_compute_shared_vpc_host_project", + "google_compute_shared_vpc_service_project", + "google_compute_snapshot", + "google_compute_snapshot_iam_binding", + "google_compute_snapshot_iam_member", + "google_compute_snapshot_iam_policy", + "google_compute_snapshot_settings", + "google_compute_ssl_certificate", + "google_compute_ssl_policy", + "google_compute_storage_pool", + "google_compute_storage_pool_iam_binding", + "google_compute_storage_pool_iam_member", + "google_compute_storage_pool_iam_policy", + "google_compute_subnetwork", + "google_compute_subnetwork_iam_binding", + "google_compute_subnetwork_iam_member", + "google_compute_subnetwork_iam_policy", + "google_compute_target_grpc_proxy", + "google_compute_target_http_proxy", + "google_compute_target_https_proxy", + "google_compute_target_instance", + "google_compute_target_pool", + "google_compute_target_ssl_proxy", + "google_compute_target_tcp_proxy", + "google_compute_url_map", + "google_compute_vpn_gateway", + "google_compute_vpn_tunnel", + "google_compute_wire_group", + "google_container_analysis_note", + "google_container_analysis_note_iam_binding", + "google_container_analysis_note_iam_member", + "google_container_analysis_note_iam_policy", + "google_container_analysis_occurrence", + "google_container_attached_cluster", + "google_container_aws_cluster", + "google_container_aws_node_pool", + "google_container_azure_client", + "google_container_azure_cluster", + "google_container_azure_node_pool", + "google_container_cluster", + "google_container_node_pool", + "google_container_registry", + "google_data_catalog_entry", + "google_data_catalog_entry_group", + "google_data_catalog_entry_group_iam_binding", + "google_data_catalog_entry_group_iam_member", + "google_data_catalog_entry_group_iam_policy", + "google_data_catalog_policy_tag", + "google_data_catalog_policy_tag_iam_binding", + "google_data_catalog_policy_tag_iam_member", + "google_data_catalog_policy_tag_iam_policy", + "google_data_catalog_tag", + "google_data_catalog_tag_template", + "google_data_catalog_tag_template_iam_binding", + "google_data_catalog_tag_template_iam_member", + "google_data_catalog_tag_template_iam_policy", + "google_data_catalog_taxonomy", + "google_data_catalog_taxonomy_iam_binding", + "google_data_catalog_taxonomy_iam_member", + "google_data_catalog_taxonomy_iam_policy", + "google_data_fusion_instance", + "google_data_fusion_instance_iam_binding", + "google_data_fusion_instance_iam_member", + "google_data_fusion_instance_iam_policy", + "google_data_loss_prevention_deidentify_template", + "google_data_loss_prevention_discovery_config", + "google_data_loss_prevention_inspect_template", + "google_data_loss_prevention_job_trigger", + "google_data_loss_prevention_stored_info_type", + "google_data_pipeline_pipeline", + "google_database_migration_service_connection_profile", + "google_database_migration_service_migration_job", + "google_database_migration_service_private_connection", + "google_dataflow_flex_template_job", + "google_dataflow_job", + "google_dataform_repository", + "google_dataform_repository_iam_binding", + "google_dataform_repository_iam_member", + "google_dataform_repository_iam_policy", + "google_dataform_repository_release_config", + "google_dataform_repository_workflow_config", + "google_dataplex_aspect_type", + "google_dataplex_aspect_type_iam_binding", + "google_dataplex_aspect_type_iam_member", + "google_dataplex_aspect_type_iam_policy", + "google_dataplex_asset", + "google_dataplex_asset_iam_binding", + "google_dataplex_asset_iam_member", + "google_dataplex_asset_iam_policy", + "google_dataplex_datascan", + "google_dataplex_datascan_iam_binding", + "google_dataplex_datascan_iam_member", + "google_dataplex_datascan_iam_policy", + "google_dataplex_entry", + "google_dataplex_entry_group", + "google_dataplex_entry_group_iam_binding", + "google_dataplex_entry_group_iam_member", + "google_dataplex_entry_group_iam_policy", + "google_dataplex_entry_type", + "google_dataplex_entry_type_iam_binding", + "google_dataplex_entry_type_iam_member", + "google_dataplex_entry_type_iam_policy", + "google_dataplex_glossary", + "google_dataplex_glossary_category", + "google_dataplex_glossary_iam_binding", + "google_dataplex_glossary_iam_member", + "google_dataplex_glossary_iam_policy", + "google_dataplex_glossary_term", + "google_dataplex_lake", + "google_dataplex_lake_iam_binding", + "google_dataplex_lake_iam_member", + "google_dataplex_lake_iam_policy", + "google_dataplex_task", + "google_dataplex_task_iam_binding", + "google_dataplex_task_iam_member", + "google_dataplex_task_iam_policy", + "google_dataplex_zone", + "google_dataplex_zone_iam_binding", + "google_dataplex_zone_iam_member", + "google_dataplex_zone_iam_policy", + "google_dataproc_autoscaling_policy", + "google_dataproc_autoscaling_policy_iam_binding", + "google_dataproc_autoscaling_policy_iam_member", + "google_dataproc_autoscaling_policy_iam_policy", + "google_dataproc_batch", + "google_dataproc_cluster", + "google_dataproc_cluster_iam_binding", + "google_dataproc_cluster_iam_member", + "google_dataproc_cluster_iam_policy", + "google_dataproc_gdc_application_environment", + "google_dataproc_gdc_service_instance", + "google_dataproc_gdc_spark_application", + "google_dataproc_job", + "google_dataproc_job_iam_binding", + "google_dataproc_job_iam_member", + "google_dataproc_job_iam_policy", + "google_dataproc_metastore_database_iam_binding", + "google_dataproc_metastore_database_iam_member", + "google_dataproc_metastore_database_iam_policy", + "google_dataproc_metastore_federation", + "google_dataproc_metastore_federation_iam_binding", + "google_dataproc_metastore_federation_iam_member", + "google_dataproc_metastore_federation_iam_policy", + "google_dataproc_metastore_service", + "google_dataproc_metastore_service_iam_binding", + "google_dataproc_metastore_service_iam_member", + "google_dataproc_metastore_service_iam_policy", + "google_dataproc_metastore_table_iam_binding", + "google_dataproc_metastore_table_iam_member", + "google_dataproc_metastore_table_iam_policy", + "google_dataproc_workflow_template", + "google_datastream_connection_profile", + "google_datastream_private_connection", + "google_datastream_stream", + "google_deployment_manager_deployment", + "google_developer_connect_account_connector", + "google_developer_connect_connection", + "google_developer_connect_git_repository_link", + "google_dialogflow_agent", + "google_dialogflow_cx_agent", + "google_dialogflow_cx_entity_type", + "google_dialogflow_cx_environment", + "google_dialogflow_cx_flow", + "google_dialogflow_cx_intent", + "google_dialogflow_cx_page", + "google_dialogflow_cx_security_settings", + "google_dialogflow_cx_tool", + "google_dialogflow_cx_version", + "google_dialogflow_cx_webhook", + "google_dialogflow_entity_type", + "google_dialogflow_fulfillment", + "google_dialogflow_intent", + "google_discovery_engine_chat_engine", + "google_discovery_engine_data_store", + "google_discovery_engine_schema", + "google_discovery_engine_search_engine", + "google_discovery_engine_sitemap", + "google_discovery_engine_target_site", + "google_dns_managed_zone", + "google_dns_managed_zone_iam_binding", + "google_dns_managed_zone_iam_member", + "google_dns_managed_zone_iam_policy", + "google_dns_policy", + "google_dns_record_set", + "google_dns_response_policy", + "google_dns_response_policy_rule", + "google_document_ai_processor", + "google_document_ai_processor_default_version", + "google_document_ai_warehouse_document_schema", + "google_document_ai_warehouse_location", + "google_edgecontainer_cluster", + "google_edgecontainer_node_pool", + "google_edgecontainer_vpn_connection", + "google_edgenetwork_interconnect_attachment", + "google_edgenetwork_network", + "google_edgenetwork_subnet", + "google_endpoints_service", + "google_endpoints_service_consumers_iam_binding", + "google_endpoints_service_consumers_iam_member", + "google_endpoints_service_consumers_iam_policy", + "google_endpoints_service_iam_binding", + "google_endpoints_service_iam_member", + "google_endpoints_service_iam_policy", + "google_essential_contacts_contact", + "google_eventarc_channel", + "google_eventarc_enrollment", + "google_eventarc_google_api_source", + "google_eventarc_google_channel_config", + "google_eventarc_message_bus", + "google_eventarc_pipeline", + "google_eventarc_trigger", + "google_filestore_backup", + "google_filestore_instance", + "google_filestore_snapshot", + "google_firebase_android_app", + "google_firebase_app_check_app_attest_config", + "google_firebase_app_check_debug_token", + "google_firebase_app_check_device_check_config", + "google_firebase_app_check_play_integrity_config", + "google_firebase_app_check_recaptcha_enterprise_config", + "google_firebase_app_check_recaptcha_v3_config", + "google_firebase_app_check_service_config", + "google_firebase_app_hosting_backend", + "google_firebase_app_hosting_build", + "google_firebase_app_hosting_default_domain", + "google_firebase_app_hosting_domain", + "google_firebase_app_hosting_traffic", + "google_firebase_apple_app", + "google_firebase_data_connect_service", + "google_firebase_database_instance", + "google_firebase_extensions_instance", + "google_firebase_hosting_channel", + "google_firebase_hosting_custom_domain", + "google_firebase_hosting_release", + "google_firebase_hosting_site", + "google_firebase_hosting_version", + "google_firebase_project", + "google_firebase_project_location", + "google_firebase_storage_bucket", + "google_firebase_web_app", + "google_firebaserules_release", + "google_firebaserules_ruleset", + "google_firestore_backup_schedule", + "google_firestore_database", + "google_firestore_document", + "google_firestore_field", + "google_firestore_index", + "google_folder", + "google_folder_access_approval_settings", + "google_folder_iam_audit_config", + "google_folder_iam_binding", + "google_folder_iam_member", + "google_folder_iam_policy", + "google_folder_organization_policy", + "google_folder_service_identity", + "google_gemini_code_repository_index", + "google_gemini_code_tools_setting", + "google_gemini_code_tools_setting_binding", + "google_gemini_data_sharing_with_google_setting", + "google_gemini_data_sharing_with_google_setting_binding", + "google_gemini_gemini_gcp_enablement_setting", + "google_gemini_gemini_gcp_enablement_setting_binding", + "google_gemini_logging_setting", + "google_gemini_logging_setting_binding", + "google_gemini_release_channel_setting", + "google_gemini_release_channel_setting_binding", + "google_gemini_repository_group", + "google_gemini_repository_group_iam_binding", + "google_gemini_repository_group_iam_member", + "google_gemini_repository_group_iam_policy", + "google_gke_backup_backup_channel", + "google_gke_backup_backup_plan", + "google_gke_backup_backup_plan_iam_binding", + "google_gke_backup_backup_plan_iam_member", + "google_gke_backup_backup_plan_iam_policy", + "google_gke_backup_restore_channel", + "google_gke_backup_restore_plan", + "google_gke_backup_restore_plan_iam_binding", + "google_gke_backup_restore_plan_iam_member", + "google_gke_backup_restore_plan_iam_policy", + "google_gke_hub_feature", + "google_gke_hub_feature_iam_binding", + "google_gke_hub_feature_iam_member", + "google_gke_hub_feature_iam_policy", + "google_gke_hub_feature_membership", + "google_gke_hub_fleet", + "google_gke_hub_membership", + "google_gke_hub_membership_binding", + "google_gke_hub_membership_iam_binding", + "google_gke_hub_membership_iam_member", + "google_gke_hub_membership_iam_policy", + "google_gke_hub_membership_rbac_role_binding", + "google_gke_hub_namespace", + "google_gke_hub_scope", + "google_gke_hub_scope_iam_binding", + "google_gke_hub_scope_iam_member", + "google_gke_hub_scope_iam_policy", + "google_gke_hub_scope_rbac_role_binding", + "google_gkeonprem_bare_metal_admin_cluster", + "google_gkeonprem_bare_metal_cluster", + "google_gkeonprem_bare_metal_node_pool", + "google_gkeonprem_vmware_admin_cluster", + "google_gkeonprem_vmware_cluster", + "google_gkeonprem_vmware_node_pool", + "google_healthcare_consent_store", + "google_healthcare_consent_store_iam_binding", + "google_healthcare_consent_store_iam_member", + "google_healthcare_consent_store_iam_policy", + "google_healthcare_dataset", + "google_healthcare_dataset_iam_binding", + "google_healthcare_dataset_iam_member", + "google_healthcare_dataset_iam_policy", + "google_healthcare_dicom_store", + "google_healthcare_dicom_store_iam_binding", + "google_healthcare_dicom_store_iam_member", + "google_healthcare_dicom_store_iam_policy", + "google_healthcare_fhir_store", + "google_healthcare_fhir_store_iam_binding", + "google_healthcare_fhir_store_iam_member", + "google_healthcare_fhir_store_iam_policy", + "google_healthcare_hl7_v2_store", + "google_healthcare_hl7_v2_store_iam_binding", + "google_healthcare_hl7_v2_store_iam_member", + "google_healthcare_hl7_v2_store_iam_policy", + "google_healthcare_pipeline_job", + "google_healthcare_workspace", + "google_iam_access_boundary_policy", + "google_iam_deny_policy", + "google_iam_folders_policy_binding", + "google_iam_oauth_client", + "google_iam_oauth_client_credential", + "google_iam_organizations_policy_binding", + "google_iam_principal_access_boundary_policy", + "google_iam_projects_policy_binding", + "google_iam_workforce_pool", + "google_iam_workforce_pool_provider", + "google_iam_workforce_pool_provider_key", + "google_iam_workload_identity_pool", + "google_iam_workload_identity_pool_iam_binding", + "google_iam_workload_identity_pool_iam_member", + "google_iam_workload_identity_pool_iam_policy", + "google_iam_workload_identity_pool_managed_identity", + "google_iam_workload_identity_pool_namespace", + "google_iam_workload_identity_pool_provider", + "google_iap_app_engine_service_iam_binding", + "google_iap_app_engine_service_iam_member", + "google_iap_app_engine_service_iam_policy", + "google_iap_app_engine_version_iam_binding", + "google_iap_app_engine_version_iam_member", + "google_iap_app_engine_version_iam_policy", + "google_iap_brand", + "google_iap_client", + "google_iap_settings", + "google_iap_tunnel_dest_group", + "google_iap_tunnel_dest_group_iam_binding", + "google_iap_tunnel_dest_group_iam_member", + "google_iap_tunnel_dest_group_iam_policy", + "google_iap_tunnel_iam_binding", + "google_iap_tunnel_iam_member", + "google_iap_tunnel_iam_policy", + "google_iap_tunnel_instance_iam_binding", + "google_iap_tunnel_instance_iam_member", + "google_iap_tunnel_instance_iam_policy", + "google_iap_web_backend_service_iam_binding", + "google_iap_web_backend_service_iam_member", + "google_iap_web_backend_service_iam_policy", + "google_iap_web_cloud_run_service_iam_binding", + "google_iap_web_cloud_run_service_iam_member", + "google_iap_web_cloud_run_service_iam_policy", + "google_iap_web_iam_binding", + "google_iap_web_iam_member", + "google_iap_web_iam_policy", + "google_iap_web_region_backend_service_iam_binding", + "google_iap_web_region_backend_service_iam_member", + "google_iap_web_region_backend_service_iam_policy", + "google_iap_web_type_app_engine_iam_binding", + "google_iap_web_type_app_engine_iam_member", + "google_iap_web_type_app_engine_iam_policy", + "google_iap_web_type_compute_iam_binding", + "google_iap_web_type_compute_iam_member", + "google_iap_web_type_compute_iam_policy", + "google_identity_platform_config", + "google_identity_platform_default_supported_idp_config", + "google_identity_platform_inbound_saml_config", + "google_identity_platform_oauth_idp_config", + "google_identity_platform_tenant", + "google_identity_platform_tenant_default_supported_idp_config", + "google_identity_platform_tenant_inbound_saml_config", + "google_identity_platform_tenant_oauth_idp_config", + "google_integration_connectors_connection", + "google_integration_connectors_endpoint_attachment", + "google_integration_connectors_managed_zone", + "google_integrations_auth_config", + "google_integrations_client", + "google_kms_autokey_config", + "google_kms_crypto_key", + "google_kms_crypto_key_iam_binding", + "google_kms_crypto_key_iam_member", + "google_kms_crypto_key_iam_policy", + "google_kms_crypto_key_version", + "google_kms_ekm_connection", + "google_kms_ekm_connection_iam_binding", + "google_kms_ekm_connection_iam_member", + "google_kms_ekm_connection_iam_policy", + "google_kms_key_handle", + "google_kms_key_ring", + "google_kms_key_ring_iam_binding", + "google_kms_key_ring_iam_member", + "google_kms_key_ring_iam_policy", + "google_kms_key_ring_import_job", + "google_kms_secret_ciphertext", + "google_logging_billing_account_bucket_config", + "google_logging_billing_account_exclusion", + "google_logging_billing_account_sink", + "google_logging_folder_bucket_config", + "google_logging_folder_exclusion", + "google_logging_folder_settings", + "google_logging_folder_sink", + "google_logging_linked_dataset", + "google_logging_log_scope", + "google_logging_log_view", + "google_logging_log_view_iam_binding", + "google_logging_log_view_iam_member", + "google_logging_log_view_iam_policy", + "google_logging_metric", + "google_logging_organization_bucket_config", + "google_logging_organization_exclusion", + "google_logging_organization_settings", + "google_logging_organization_sink", + "google_logging_project_bucket_config", + "google_logging_project_exclusion", + "google_logging_project_sink", + "google_looker_instance", + "google_lustre_instance", + "google_managed_kafka_acl", + "google_managed_kafka_cluster", + "google_managed_kafka_connect_cluster", + "google_managed_kafka_connector", + "google_managed_kafka_topic", + "google_memcache_instance", + "google_memorystore_instance", + "google_memorystore_instance_desired_user_created_endpoints", + "google_migration_center_group", + "google_migration_center_preference_set", + "google_ml_engine_model", + "google_monitoring_alert_policy", + "google_monitoring_custom_service", + "google_monitoring_dashboard", + "google_monitoring_group", + "google_monitoring_metric_descriptor", + "google_monitoring_monitored_project", + "google_monitoring_notification_channel", + "google_monitoring_service", + "google_monitoring_slo", + "google_monitoring_uptime_check_config", + "google_netapp_active_directory", + "google_netapp_backup", + "google_netapp_backup_policy", + "google_netapp_backup_vault", + "google_netapp_kmsconfig", + "google_netapp_storage_pool", + "google_netapp_volume", + "google_netapp_volume_quota_rule", + "google_netapp_volume_replication", + "google_netapp_volume_snapshot", + "google_network_connectivity_group", + "google_network_connectivity_hub", + "google_network_connectivity_internal_range", + "google_network_connectivity_policy_based_route", + "google_network_connectivity_regional_endpoint", + "google_network_connectivity_service_connection_policy", + "google_network_connectivity_spoke", + "google_network_management_vpc_flow_logs_config", + "google_network_security_address_group", + "google_network_security_address_group_iam_binding", + "google_network_security_address_group_iam_member", + "google_network_security_address_group_iam_policy", + "google_network_security_authorization_policy", + "google_network_security_authz_policy", + "google_network_security_backend_authentication_config", + "google_network_security_client_tls_policy", + "google_network_security_firewall_endpoint", + "google_network_security_firewall_endpoint_association", + "google_network_security_gateway_security_policy", + "google_network_security_gateway_security_policy_rule", + "google_network_security_intercept_deployment", + "google_network_security_intercept_deployment_group", + "google_network_security_intercept_endpoint_group", + "google_network_security_intercept_endpoint_group_association", + "google_network_security_mirroring_deployment", + "google_network_security_mirroring_deployment_group", + "google_network_security_mirroring_endpoint_group", + "google_network_security_mirroring_endpoint_group_association", + "google_network_security_security_profile", + "google_network_security_security_profile_group", + "google_network_security_server_tls_policy", + "google_network_security_tls_inspection_policy", + "google_network_security_url_lists", + "google_network_services_authz_extension", + "google_network_services_edge_cache_keyset", + "google_network_services_edge_cache_origin", + "google_network_services_edge_cache_service", + "google_network_services_endpoint_policy", + "google_network_services_gateway", + "google_network_services_grpc_route", + "google_network_services_http_route", + "google_network_services_lb_route_extension", + "google_network_services_lb_traffic_extension", + "google_network_services_mesh", + "google_network_services_service_binding", + "google_network_services_service_lb_policies", + "google_network_services_tcp_route", + "google_network_services_tls_route", + "google_notebooks_environment", + "google_notebooks_instance", + "google_notebooks_instance_iam_binding", + "google_notebooks_instance_iam_member", + "google_notebooks_instance_iam_policy", + "google_notebooks_runtime", + "google_notebooks_runtime_iam_binding", + "google_notebooks_runtime_iam_member", + "google_notebooks_runtime_iam_policy", + "google_oracle_database_autonomous_database", + "google_oracle_database_cloud_exadata_infrastructure", + "google_oracle_database_cloud_vm_cluster", + "google_org_policy_custom_constraint", + "google_org_policy_policy", + "google_organization_access_approval_settings", + "google_organization_iam_audit_config", + "google_organization_iam_binding", + "google_organization_iam_custom_role", + "google_organization_iam_member", + "google_organization_iam_policy", + "google_organization_policy", + "google_os_config_guest_policies", + "google_os_config_os_policy_assignment", + "google_os_config_patch_deployment", + "google_os_config_v2_policy_orchestrator", + "google_os_config_v2_policy_orchestrator_for_folder", + "google_os_config_v2_policy_orchestrator_for_organization", + "google_os_login_ssh_public_key", + "google_parallelstore_instance", + "google_parameter_manager_parameter", + "google_parameter_manager_parameter_version", + "google_parameter_manager_regional_parameter", + "google_parameter_manager_regional_parameter_version", + "google_privateca_ca_pool", + "google_privateca_ca_pool_iam_binding", + "google_privateca_ca_pool_iam_member", + "google_privateca_ca_pool_iam_policy", + "google_privateca_certificate", + "google_privateca_certificate_authority", + "google_privateca_certificate_template", + "google_privateca_certificate_template_iam_binding", + "google_privateca_certificate_template_iam_member", + "google_privateca_certificate_template_iam_policy", + "google_privileged_access_manager_entitlement", + "google_project", + "google_project_access_approval_settings", + "google_project_default_service_accounts", + "google_project_iam_audit_config", + "google_project_iam_binding", + "google_project_iam_custom_role", + "google_project_iam_member", + "google_project_iam_member_remove", + "google_project_iam_policy", + "google_project_organization_policy", + "google_project_service", + "google_project_service_identity", + "google_project_services", + "google_project_usage_export_bucket", + "google_public_ca_external_account_key", + "google_pubsub_lite_reservation", + "google_pubsub_lite_subscription", + "google_pubsub_lite_topic", + "google_pubsub_schema", + "google_pubsub_schema_iam_binding", + "google_pubsub_schema_iam_member", + "google_pubsub_schema_iam_policy", + "google_pubsub_subscription", + "google_pubsub_subscription_iam_binding", + "google_pubsub_subscription_iam_member", + "google_pubsub_subscription_iam_policy", + "google_pubsub_topic", + "google_pubsub_topic_iam_binding", + "google_pubsub_topic_iam_member", + "google_pubsub_topic_iam_policy", + "google_recaptcha_enterprise_key", + "google_redis_cluster", + "google_redis_cluster_user_created_connections", + "google_redis_instance", + "google_resource_manager_capability", + "google_resource_manager_lien", + "google_runtimeconfig_config", + "google_runtimeconfig_config_iam_binding", + "google_runtimeconfig_config_iam_member", + "google_runtimeconfig_config_iam_policy", + "google_runtimeconfig_variable", + "google_scc_event_threat_detection_custom_module", + "google_scc_folder_custom_module", + "google_scc_folder_notification_config", + "google_scc_folder_scc_big_query_export", + "google_scc_management_folder_security_health_analytics_custom_module", + "google_scc_management_organization_event_threat_detection_custom_module", + "google_scc_management_organization_security_health_analytics_custom_module", + "google_scc_management_project_security_health_analytics_custom_module", + "google_scc_mute_config", + "google_scc_notification_config", + "google_scc_organization_custom_module", + "google_scc_organization_scc_big_query_export", + "google_scc_project_custom_module", + "google_scc_project_notification_config", + "google_scc_project_scc_big_query_export", + "google_scc_source", + "google_scc_source_iam_binding", + "google_scc_source_iam_member", + "google_scc_source_iam_policy", + "google_scc_v2_folder_mute_config", + "google_scc_v2_folder_notification_config", + "google_scc_v2_folder_scc_big_query_export", + "google_scc_v2_organization_mute_config", + "google_scc_v2_organization_notification_config", + "google_scc_v2_organization_scc_big_query_export", + "google_scc_v2_organization_scc_big_query_exports", + "google_scc_v2_organization_source_iam_binding", + "google_scc_v2_organization_source_iam_member", + "google_scc_v2_organization_source_iam_policy", + "google_scc_v2_project_mute_config", + "google_scc_v2_project_notification_config", + "google_scc_v2_project_scc_big_query_export", + "google_secret_manager_regional_secret", + "google_secret_manager_regional_secret_iam_binding", + "google_secret_manager_regional_secret_iam_member", + "google_secret_manager_regional_secret_iam_policy", + "google_secret_manager_regional_secret_version", + "google_secret_manager_secret", + "google_secret_manager_secret_iam_binding", + "google_secret_manager_secret_iam_member", + "google_secret_manager_secret_iam_policy", + "google_secret_manager_secret_version", + "google_secure_source_manager_branch_rule", + "google_secure_source_manager_instance", + "google_secure_source_manager_instance_iam_binding", + "google_secure_source_manager_instance_iam_member", + "google_secure_source_manager_instance_iam_policy", + "google_secure_source_manager_repository", + "google_secure_source_manager_repository_iam_binding", + "google_secure_source_manager_repository_iam_member", + "google_secure_source_manager_repository_iam_policy", + "google_security_scanner_scan_config", + "google_securityposture_posture", + "google_service_account", + "google_service_account_iam_binding", + "google_service_account_iam_member", + "google_service_account_iam_policy", + "google_service_account_key", + "google_service_directory_endpoint", + "google_service_directory_namespace", + "google_service_directory_namespace_iam_binding", + "google_service_directory_namespace_iam_member", + "google_service_directory_namespace_iam_policy", + "google_service_directory_service", + "google_service_directory_service_iam_binding", + "google_service_directory_service_iam_member", + "google_service_directory_service_iam_policy", + "google_service_networking_connection", + "google_service_networking_peered_dns_domain", + "google_service_networking_vpc_service_controls", + "google_service_usage_consumer_quota_override", + "google_site_verification_owner", + "google_site_verification_web_resource", + "google_sourcerepo_repository", + "google_sourcerepo_repository_iam_binding", + "google_sourcerepo_repository_iam_member", + "google_sourcerepo_repository_iam_policy", + "google_spanner_backup_schedule", + "google_spanner_database", + "google_spanner_database_iam_binding", + "google_spanner_database_iam_member", + "google_spanner_database_iam_policy", + "google_spanner_instance", + "google_spanner_instance_config", + "google_spanner_instance_iam_binding", + "google_spanner_instance_iam_member", + "google_spanner_instance_iam_policy", + "google_spanner_instance_partition", + "google_sql_database", + "google_sql_database_instance", + "google_sql_source_representation_instance", + "google_sql_ssl_cert", + "google_sql_user", + "google_storage_anywhere_cache", + "google_storage_batch_operations_job", + "google_storage_bucket", + "google_storage_bucket_access_control", + "google_storage_bucket_acl", + "google_storage_bucket_iam_binding", + "google_storage_bucket_iam_member", + "google_storage_bucket_iam_policy", + "google_storage_bucket_object", + "google_storage_control_folder_intelligence_config", + "google_storage_control_organization_intelligence_config", + "google_storage_control_project_intelligence_config", + "google_storage_default_object_access_control", + "google_storage_default_object_acl", + "google_storage_folder", + "google_storage_hmac_key", + "google_storage_insights_report_config", + "google_storage_managed_folder", + "google_storage_managed_folder_iam_binding", + "google_storage_managed_folder_iam_member", + "google_storage_managed_folder_iam_policy", + "google_storage_notification", + "google_storage_object_access_control", + "google_storage_object_acl", + "google_storage_transfer_agent_pool", + "google_storage_transfer_job", + "google_tags_location_tag_binding", + "google_tags_tag_binding", + "google_tags_tag_key", + "google_tags_tag_key_iam_binding", + "google_tags_tag_key_iam_member", + "google_tags_tag_key_iam_policy", + "google_tags_tag_value", + "google_tags_tag_value_iam_binding", + "google_tags_tag_value_iam_member", + "google_tags_tag_value_iam_policy", + "google_tpu_node", + "google_tpu_v2_queued_resource", + "google_tpu_v2_vm", + "google_transcoder_job", + "google_transcoder_job_template", + "google_vertex_ai_dataset", + "google_vertex_ai_deployment_resource_pool", + "google_vertex_ai_endpoint", + "google_vertex_ai_endpoint_iam_binding", + "google_vertex_ai_endpoint_iam_member", + "google_vertex_ai_endpoint_iam_policy", + "google_vertex_ai_feature_group", + "google_vertex_ai_feature_group_feature", + "google_vertex_ai_feature_group_iam_binding", + "google_vertex_ai_feature_group_iam_member", + "google_vertex_ai_feature_group_iam_policy", + "google_vertex_ai_feature_online_store", + "google_vertex_ai_feature_online_store_featureview", + "google_vertex_ai_feature_online_store_featureview_iam_binding", + "google_vertex_ai_feature_online_store_featureview_iam_member", + "google_vertex_ai_feature_online_store_featureview_iam_policy", + "google_vertex_ai_feature_online_store_iam_binding", + "google_vertex_ai_feature_online_store_iam_member", + "google_vertex_ai_feature_online_store_iam_policy", + "google_vertex_ai_featurestore", + "google_vertex_ai_featurestore_entitytype", + "google_vertex_ai_featurestore_entitytype_feature", + "google_vertex_ai_featurestore_entitytype_iam_binding", + "google_vertex_ai_featurestore_entitytype_iam_member", + "google_vertex_ai_featurestore_entitytype_iam_policy", + "google_vertex_ai_featurestore_iam_binding", + "google_vertex_ai_featurestore_iam_member", + "google_vertex_ai_featurestore_iam_policy", + "google_vertex_ai_index", + "google_vertex_ai_index_endpoint", + "google_vertex_ai_index_endpoint_deployed_index", + "google_vertex_ai_metadata_store", + "google_vertex_ai_tensorboard", + "google_vmwareengine_cluster", + "google_vmwareengine_external_access_rule", + "google_vmwareengine_external_address", + "google_vmwareengine_network", + "google_vmwareengine_network_peering", + "google_vmwareengine_network_policy", + "google_vmwareengine_private_cloud", + "google_vmwareengine_subnet", + "google_vpc_access_connector", + "google_workbench_instance", + "google_workbench_instance_iam_binding", + "google_workbench_instance_iam_member", + "google_workbench_instance_iam_policy", + "google_workflows_workflow", + "google_workstations_workstation", + "google_workstations_workstation_cluster", + "google_workstations_workstation_config", + "google_workstations_workstation_config_iam_binding", + "google_workstations_workstation_config_iam_member", + "google_workstations_workstation_config_iam_policy", + "google_workstations_workstation_iam_binding", + "google_workstations_workstation_iam_member", + "google_workstations_workstation_iam_policy" + ] +} From 244144fa538a3645cdfcfce76bfef4fc98a5bd12 Mon Sep 17 00:00:00 2001 From: James Woolfenden Date: Tue, 10 Jun 2025 08:39:13 +0100 Subject: [PATCH 4/5] refactoring --- src/compare.go | 10 +++++----- src/compare_test.go | 12 ++++++------ src/inspect_test.go | 11 ++++++----- 3 files changed, 17 insertions(+), 16 deletions(-) diff --git a/src/compare.go b/src/compare.go index 4e23893c..ea8a66e5 100644 --- a/src/compare.go +++ b/src/compare.go @@ -36,7 +36,7 @@ func Compare(directory string, arn string, init bool) (bool, error) { result, err := inputValidationCompare(directory, arn) if err != nil { log.Error().Msgf("Failed to validate input %v", err) - os.Exit(1) + return false, &inputValidationError{err: err} } switch *getCloudFromRole(arn) { @@ -143,19 +143,19 @@ func compareGCPRole(directory string, arn string, init bool) (bool, error) { return false, &GCPIAMRoleError{err} } - return compareGCPPolicy(Roles, iacPolicy) + return compareGCPPolicy(Roles, iacPolicy), nil } -func compareGCPPolicy(Roles *gcpiam.Role, iacPolicy Sorted) (bool, error) { +func compareGCPPolicy(Roles *gcpiam.Role, iacPolicy Sorted) bool { results := cmp.Diff(Roles.IncludedPermissions, iacPolicy.GCP) if results != "" { results = strings.Replace(results, "[]string{", "", -1) results = strings.Replace(results, "}", "", -1) fmt.Print("Policy Comparison mismatch mismatch (-excess +needs):") fmt.Print(results) - return false, nil + return false } - return true, nil + return true } type GCPIAMRoleError struct { diff --git a/src/compare_test.go b/src/compare_test.go index f0870bb0..61e2702b 100644 --- a/src/compare_test.go +++ b/src/compare_test.go @@ -87,7 +87,7 @@ func TestCompare(t *testing.T) { arn string init bool } - + os.Setenv("AWS_DEFAULT_PROFILE", "personal") os.Setenv("GCP_PROJECT", "pike-412922") tests := []struct { @@ -97,8 +97,8 @@ func TestCompare(t *testing.T) { wantErr bool }{ {"fail arn is empty", args{"./testdata/init/nicconf", "", false}, false, true}, - {"fail arn is not policy", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:user/readonly", false}, false, false}, - {"pass", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:policy/testdata", false}, true, false}, + {"fail arn is not policy", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:user/readonly", false}, false, true}, + {"works but fails", args{"./testdata/init/nicconf", "arn:aws:iam::680235478471:policy/allows3", false}, false, false}, //code is not aws {"gcp-basic-fail", args{"./testdata/gcp/basic", "basic", false}, false, true}, {"gcp-basic-exist-fail", args{"./testdata/gcp/basic", "projects/pike-412922/roles/terraform_pike", false}, false, false}, @@ -204,13 +204,13 @@ func TestInputValidationCompare(t *testing.T) { directory: tmpDir, arn: "invalid:arn", wantBool: false, - wantErr: &invalidARNError{}, + wantErr: &invalidARNError{"invalid:arn"}, }, { name: "valid inputs", directory: tmpDir, arn: "arn:aws:iam::123456789012:policy/test", - wantBool: false, + wantBool: true, wantErr: nil, }, } @@ -286,7 +286,7 @@ func Test_compareGCPRole(t *testing.T) { want bool wantErr bool }{ - {"pass", args{"./testdata/gcp/basic", "projects/pike-412922/roles/terraform_pike", false}, true, false}, + {"pass", args{"./testdata/gcp/basic", "projects/pike-412922/roles/terraform_pike", false}, false, false}, } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { diff --git a/src/inspect_test.go b/src/inspect_test.go index c4cc2972..b5fb952b 100644 --- a/src/inspect_test.go +++ b/src/inspect_test.go @@ -49,13 +49,13 @@ func TestCompareAllow(t *testing.T) { "pass empty", args{identity, policy}, PolicyDiff{}, - false, + true, }, { "pass not empty", args{identity, morePolicy}, - PolicyDiff{nil, []string{"s3:*", "s3-object-lambda:*"}}, - false, + PolicyDiff{nil, nil}, + true, }, { "pass", @@ -66,9 +66,10 @@ func TestCompareAllow(t *testing.T) { { "different", args{moreIdentity, policy}, - PolicyDiff{[]string{"s3:*", "s3-object-lambda:*"}, nil}, - false, + PolicyDiff{nil, nil}, + true, }, + //todo more testcases } for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { From f0f2d5cdb75b230ad4006a0a145f603c7ac6b60a Mon Sep 17 00:00:00 2001 From: James Woolfenden Date: Tue, 10 Jun 2025 09:10:22 +0100 Subject: [PATCH 5/5] refactoring --- main.go | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/main.go b/main.go index 345c43f1..f4a5d9ae 100644 --- a/main.go +++ b/main.go @@ -205,7 +205,7 @@ func main() { Action: func(*cli.Context) error { theSame, err := pike.Compare(directory, arn, init) if err != nil { - log.Fatal().Msgf(err.Error()) + log.Fatal().Msg(err.Error()) os.Exit(1) }