steampipe plugin install aws

Table: aws_serverlessapplicationrepository_application - Query AWS Serverless Application Repository Applications using SQL

The AWS Serverless Application Repository is a managed repository for serverless applications. It enables teams, developers, and organizations to discover, configure, and deploy serverless applications and components on AWS. It simplifies the management of serverless applications by providing a mechanism to store and share applications, and to easily configure and deploy them in AWS environments.

Table Usage Guide

The aws_serverlessapplicationrepository_application table in Steampipe provides you with information about Applications within AWS Serverless Application Repository. This table enables you, as a DevOps engineer, to query application-specific details, including application name, status, author, description, labels, license URL, creation time, and more. You can utilize this table to gather insights on applications, such as applications by specific authors, applications with certain labels, applications under certain licenses, and more. The schema outlines the various attributes of the Application for you, including the application ID, home page URL, semantic version, and associated tags.

Examples

Basic info

Discover the segments that use AWS serverless applications and gain insights into their authors and creation times. This can be useful in understanding the distribution and usage of serverless applications across your AWS environment.

select
name,
arn,
author,
creation_time,
description
from
aws_serverlessapplicationrepository_application;
select
name,
arn,
author,
creation_time,
description
from
aws_serverlessapplicationrepository_application;

List applications created by verified author

Discover the segments that consist of applications created by verified authors, which can provide a level of trust and assurance in the application's functionality and security. This is particularly useful when assessing the credibility of applications within your AWS Serverless Application Repository.

select
name,
arn,
author,
is_verified_author
from
aws_serverlessapplicationrepository_application
where
is_verified_author;
select
name,
arn,
author,
is_verified_author
from
aws_serverlessapplicationrepository_application
where
is_verified_author = 1;

List application policy details

Determine the specifics of application policies within your AWS Serverless Application Repository. This query is useful for understanding the actions, principal organization IDs, and principals associated with each policy, providing valuable insight for policy management and security audits.

select
name,
jsonb_pretty(statement -> 'Actions') as actions,
jsonb_pretty(statement -> 'PrincipalOrgIDs') as principal_org_ids,
jsonb_pretty(statement -> 'Principals') as principals,
statement ->> 'StatementId' as statement_id
from
aws_serverlessapplicationrepository_application,
jsonb_array_elements(statements) as statement;
select
name,
json_extract(statement.value, '$.Actions') as actions,
json_extract(statement.value, '$.PrincipalOrgIDs') as principal_org_ids,
json_extract(statement.value, '$.Principals') as principals,
json_extract(statement.value, '$.StatementId') as statement_id
from
aws_serverlessapplicationrepository_application,
json_each(statements) as statement;

Schema for aws_serverlessapplicationrepository_application

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form, e.g. connection_name.
account_idtextThe AWS Account ID in which the resource is located.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
arntext=The application Amazon Resource Name (ARN).
authortextThe name of the author publishing the app.
creation_timetimestamp with time zoneThe date and time this resource was created.
descriptiontextThe description of the application.
home_page_urltextA URL with more information about the application.
is_verified_authorbooleanWhether the author is verified.
labelsjsonbLabels to improve discovery of apps in search results.
license_urltextThe URL of the license.
nametextThe name of the application.
partitiontextThe AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
readme_urltextThe URL of the Readme.
regiontextThe AWS Region in which the resource is located.
spdx_license_idtextA valid identifier from https://spdx.org/licenses/.
statementsjsonbThe contents of the access policy.
titletextTitle of the resource.
verified_author_urltextThe URL of the verified author.
versionjsonbThe policy statement of the application.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_serverlessapplicationrepository_application