turbot/aws_tags

Control: CodePipeline pipelines should not exceed tag limit

Description

Check if the number of tags on CodePipeline pipelines do not exceed the limit.

Usage

steampipe check aws_tags.control.codepipeline_pipeline_tag_limit

Plugins & Tables

Params

ArgsNameDefaultDescription
$1tag_limit
45

SQL

with analysis as (
select
arn,
title,
cardinality(array(select jsonb_object_keys(tags))) as num_tag_keys,
region, account_id
from
aws_codepipeline_pipeline
)
select
arn as resource,
case
when num_tag_keys > $1::integer then 'alarm'
else 'ok'
end as status,
title || ' has ' || num_tag_keys || ' tag(s).' as reason,
region, account_id
from
analysis