Currently the documentation is only for Linux

https://docs.python.org/3.4/tutorial/venv.html

It is easier to work on branches with your fork, we need to mention this and how to do this in https://github.com/turbot/tdk/wiki/Contributing

The Terraform Script will create a smart folder and a calculate policy to apply on AWS > S3 > Bucket > Tags > Template.When the Calculated policy is applied to all tags across any bucket. Each tag will be checked for case, and if there is any upper case character, it will be converted to lower case.

The AWS setup baseline terraform implements common configurations on your Turbot environment required to import an AWS account.

The Terraform script will do an account set up for AWS and installs the mods (if outdated or not installed)

• turbot
• turbot-iam
• aws
• aws-iam
• aws-cloudtrail
• aws-s3
• aws-kms
• aws-s3
• aws-sns
• aws-cloudwatch
• aws-events

Provides a Terraform configuration for creating a smart folder and creating one policy to check the existence of Turbot service roles in an AWS account, and three subsequent policies that define which roles to check.

Provides a Terraform configuration for creating a smart folder and setting policies to check for Turbot logging bucket existence as well as enforcing versioning, encryption, and regional approval policies.

As a: User of Turbot
I want: A working example on importing AWS accounts
So that: I can import my accounts

Requirement
A working Python example for importing AWS

Provides a Terraform configuration for creating a smart folder and alarming if flow logs are not enabled in a VPC.

Creates a smart folder which will be in alarming state by setting the flow log policy to Check: Not configured.

Provides a Terraform configuration for creating a smart folder and applying example turbot policy settings for an RDS instance. The policies will check if an instance is approved based on engine type and instance type.

Control objective to create two policies that check for approval on snapshots and volumes, and then also creates two policies that alarm the approved control if encryption is not set at AWS managed key or higher.

A query that lists each AWS resource, then the controls and policies associated with that resource.

Request for control GraphQL query examples in TDK

Sample notifications GraphQL

One example for each type of watch:

• Grant
• Policy
• Resource
• Control

Examples:

• For limits
• Paging
• Explicit resource
• Within time-range

Provides a Terraform configuration for creating a smart folder and creating a policy to set an RDS instances as not approved if the encryption at rest does not meet minimum requirements.

The Terraform script creates a smart folder and apply dummy turbot policy settings for an RDS instance. The policies will check if an instance is approved based on engine type and instance type.

Provides a Terraform configuration for creating a smart folder and sets a policy to enable Turbot creating AWS IAM roles. Two policies are also created to check for AWS boundary policies.

Currently the script will use the AWS environment variables .
Users most like never want to change these details.
Allowing users to choose which AWS profile they would like to use, otherwise the script will use the environment variables

Currently, all the node packages are called:
"name": "@turbot/api-examples"

This should be changed to the script name.

Remove mod install baseline as it is reported to not working as expected.

Added GraphQL to find all CIS policies for Azure.
Created an example on how to do this and described how to apply this to other Cloud Providers.
Created the base line which will install the CIS v1 defaults for Azure

Currently, the error codes returned from GraphQL are not well displayed, this issue will correct that.

CloudFormation script to configure a workspace

Control objective that creates a smart folder and sets an object encryption in transit policy as well as enforcing encryption at rest in an S3 bucket.

The requirement is to copy tags from an EC2 instance and set in a S3 bucket.

Provides a Terraform configuration for creating a smart folder and applying example turbot policy settings to restrict NAT Gateway usage.

The current version of Azure import will create the subscription using Azure AD.

Typically, clients have existing subscriptions and would want to show how to import instead.

We should rename the existing imports from azure_sub_import to azure_sub_create_then_import and azure_sub_import_ro to azure_sub_create_then_import_ro

Then we should create a new script called azure_sub_import.

This should introduce new variable which will be used by the provider as seen in the example that follows:

provider "azurerm" {
  client_id       = "GUID"
  environment     = "public"
  subscription_id = "GUID"
  tenant_id       = "GUID"
  client_secret   = "GUID"
  features {}
}

For documentation, have a look at the README.md from baselines/azure/azure_eventing

Provides a Terraform configuration for creating a smart folder and creating policies to ensure volumes that exist in the child account are approved. In this example, approval of a volume is based on the type of the volume. Check the aws-ec2 mod page for more information on EC2 volume approved policies and controls.

Expand the baseline, azure-eventing to allow the user to choose using variables if they would like to install:

• polling
• event handling
• both

Add a GraphQL example how to update a policy,
The GraphQL will look similar to the following code snippet

{
  policyDetail(resourceId: 183105788693237, uri: "tmod:@turbot/aws-s3#/policy/types/bucketVersioning") {
    policyTypeUri
    value {
      value
      turbot {
        id
      }
      resource {
        turbot {
          title
        }
      }
    }
    settings {
      items {
        resource {
          trunk {
            title
          }
        }
        orphan
        exception
        precedence
        turbot {
          id
        }
      }
    }
  }
}
---------------------------------------------------
mutation updatePolicySetting {
  updatePolicySetting(input: {id: 183972449659649, precedence: REQUIRED, value: "Skip"}) {
    turbot {
      id
    }
    value
  }
}

I was looking at TDK, concentrating on the api examples only for now.
I want to modify the folder structure from

.
└── api_examples
    └── graphql
        ├── clients
        │   ├── node
        │   ├── python
        │   └── shell
        └── queries

To

.
└── api_examples
    └── graphql
        ├── clients
        │   ├── node
        │   │    ├── define-node-example-in-snake-case-as-folder-1
        │   │    ├── define-node-example-in-snake-case-as-folder-2
        │   │    └── define-node-example-in-snake-case-as-folder-3
        │   ├── python
        │   │    ├── define-python-example-in-snake-case-as-folder-1
        │   │    ├── define-python-example-in-snake-case-as-folder-2
        │   │    └── define-python-example-in-snake-case-as-folder-3
        │   └── shell
        │   │    ├── define-shell-example-in-snake-case-as-folder-1
        │   │    ├── define-shell-example-in-snake-case-as-folder-2
        │   │    └── define-shell-example-in-snake-case-as-folder-3
        │   └── powershell
        │        ├── define-powershell-example-in-snake-case-as-folder-1
        │        ├── define-powershell-example-in-snake-case-as-folder-2
        │        └── define-powershell-example-in-snake-case-as-folder-3
        └── queries

Each script will have its:

• README.md
• package.json

Will provide better code management

Changed spelling of clound_environment to cloud_environment.

Provides a Terraform configuration for creating a smart folder and applying example Turbot policy settings checking for Audit Logging DB Parameters on RDS instances.

How do we want issues to be created and how do we raise PRs

this is a test

Provides a Terraform configuration for creating a smart folder and creating a policy to check if the default VPC exists.

The Terraform script will create a smart folder and a policy to check for default VPC, if exists the control will go into alarm state.

The error object for GraphQL has location and path which both should be given when repoting an error

Didn't push my documentation updates

Update the workspace manager to match the site

These scripts need to be updated with the latest edition of mods that are produced in Turbot.

Provides a Terraform configuration for creating a smart folder and configuring Turbot to create a Global CloudTrail in the specified region for audit logging purposes.

The Terraform script will create a smart folder to configure the CloudTrail stack in a specific region. Need to set the Turbot Audit Trail as Enforce: Configured as it provides a mechanism for configuring a CloudTrail to record API calls to your AWS accounts.

Control objective that creates a smart folder and sets policies within it to check for ec2 instance approval. Uses public ip and instance type metadata