aws.workspaces-image

Filters

• cross-account

• event

• finding

• list-item

• marked-for-op

• ops-item

• reduce

• tag-count

• value

cross-account

Check a resource’s embedded iam policy for cross account access.

properties:
  type:
    enum:
    - cross-account
  whitelist:
    items:
      type: string
    type: array
  whitelist_from:
    additionalProperties: 'False'
    properties:
      expr:
        oneOf:
        - type: integer
        - type: string
      format:
        enum:
        - csv
        - json
        - txt
        - csv2dict
      headers:
        patternProperties:
          ? ''
          : type: string
        type: object
      url:
        type: string
    required:
    - url
    type: object
required:
- type

Permissions - workspaces:DescribeWorkspaceImagePermissions

Actions

• auto-tag-user

• copy-related-tag

• delete

• invoke-lambda

• invoke-sfn

• mark-for-op

• notify

• post-finding

• post-item

• put-metric

• remove-tag

• tag

• webhook

delete

Deletes a Workspace Image

example:

policies:
  - name: delete-workspace-img
    resource: workspaces-image
    filters:
      - "tag:DeleteMe": present
    actions:
      - delete

properties:
  type:
    enum:
    - delete
required:
- type

Permissions - workspaces:DeleteWorkspaceImage