- name: aws-accessanalyzer-cancel-policy-generation
pattern: (?i)aws\s+cancel\-policy\-generation\b
severity: block
message: CancelPolicyGeneration — destructive operation
category: cloud
- name: aws-accessanalyzer-delete-analyzer
pattern: (?i)aws\s+delete\-analyzer\b
severity: block
message: DeleteAnalyzer — destructive operation
category: cloud
- name: aws-accessanalyzer-delete-archive-rule
pattern: (?i)aws\s+delete\-archive\-rule\b
severity: warn
message: DeleteArchiveRule — destructive operation
category: cloud
- name: aws-accessanalyzer-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-account-delete-alternate-contact
pattern: (?i)aws\s+delete\-alternate\-contact\b
severity: warn
message: DeleteAlternateContact — destructive operation
category: cloud
- name: aws-acm-pca-delete-certificate-authority
pattern: (?i)aws\s+delete\-certificate\-authority\b
severity: block
message: DeleteCertificateAuthority — destructive operation
category: cloud
- name: aws-acm-pca-delete-permission
pattern: (?i)aws\s+delete\-permission\b
severity: warn
message: DeletePermission — destructive operation
category: cloud
- name: aws-acm-pca-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-acm-pca-revoke-certificate
pattern: (?i)aws\s+revoke\-certificate\b
severity: block
message: RevokeCertificate — destructive operation
category: cloud
- name: aws-acm-delete-certificate
pattern: (?i)aws\s+delete\-certificate\b
severity: block
message: DeleteCertificate — destructive operation
category: cloud
- name: aws-acm-remove-tags-from-certificate
pattern: (?i)aws\s+remove\-tags\-from\-certificate\b
severity: block
message: RemoveTagsFromCertificate — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-address-book
pattern: (?i)aws\s+delete\-address\-book\b
severity: warn
message: DeleteAddressBook — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-business-report-schedule
pattern: (?i)aws\s+delete\-business\-report\-schedule\b
severity: warn
message: DeleteBusinessReportSchedule — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-conference-provider
pattern: (?i)aws\s+delete\-conference\-provider\b
severity: warn
message: DeleteConferenceProvider — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-contact
pattern: (?i)aws\s+delete\-contact\b
severity: warn
message: DeleteContact — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-device
pattern: (?i)aws\s+delete\-device\b
severity: warn
message: DeleteDevice — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-device-usage-data
pattern: (?i)aws\s+delete\-device\-usage\-data\b
severity: warn
message: DeleteDeviceUsageData — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-gateway-group
pattern: (?i)aws\s+delete\-gateway\-group\b
severity: block
message: DeleteGatewayGroup — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-network-profile
pattern: (?i)aws\s+delete\-network\-profile\b
severity: warn
message: DeleteNetworkProfile — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-profile
pattern: (?i)aws\s+delete\-profile\b
severity: warn
message: DeleteProfile — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-room
pattern: (?i)aws\s+delete\-room\b
severity: warn
message: DeleteRoom — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-room-skill-parameter
pattern: (?i)aws\s+delete\-room\-skill\-parameter\b
severity: warn
message: DeleteRoomSkillParameter — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-skill-authorization
pattern: (?i)aws\s+delete\-skill\-authorization\b
severity: block
message: DeleteSkillAuthorization — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-skill-group
pattern: (?i)aws\s+delete\-skill\-group\b
severity: block
message: DeleteSkillGroup — destructive operation
category: cloud
- name: aws-alexaforbusiness-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-alexaforbusiness-disassociate-contact-from-address-book
pattern: (?i)aws\s+disassociate\-contact\-from\-address\-book\b
severity: warn
message: DisassociateContactFromAddressBook — destructive operation
category: cloud
- name: aws-alexaforbusiness-disassociate-device-from-room
pattern: (?i)aws\s+disassociate\-device\-from\-room\b
severity: warn
message: DisassociateDeviceFromRoom — destructive operation
category: cloud
- name: aws-alexaforbusiness-disassociate-skill-from-skill-group
pattern: (?i)aws\s+disassociate\-skill\-from\-skill\-group\b
severity: block
message: DisassociateSkillFromSkillGroup — destructive operation
category: cloud
- name: aws-alexaforbusiness-disassociate-skill-from-users
pattern: (?i)aws\s+disassociate\-skill\-from\-users\b
severity: warn
message: DisassociateSkillFromUsers — destructive operation
category: cloud
- name: aws-alexaforbusiness-disassociate-skill-group-from-room
pattern: (?i)aws\s+disassociate\-skill\-group\-from\-room\b
severity: block
message: DisassociateSkillGroupFromRoom — destructive operation
category: cloud
- name: aws-alexaforbusiness-revoke-invitation
pattern: (?i)aws\s+revoke\-invitation\b
severity: warn
message: RevokeInvitation — destructive operation
category: cloud
- name: aws-amp-delete-alert-manager-definition
pattern: (?i)aws\s+delete\-alert\-manager\-definition\b
severity: block
message: DeleteAlertManagerDefinition — destructive operation
category: cloud
- name: aws-amp-delete-logging-configuration
pattern: (?i)aws\s+delete\-logging\-configuration\b
severity: warn
message: DeleteLoggingConfiguration — destructive operation
category: cloud
- name: aws-amp-delete-rule-groups-namespace
pattern: (?i)aws\s+delete\-rule\-groups\-namespace\b
severity: block
message: DeleteRuleGroupsNamespace — destructive operation
category: cloud
- name: aws-amp-delete-workspace
pattern: (?i)aws\s+delete\-workspace\b
severity: block
message: DeleteWorkspace — destructive operation
category: cloud
- name: aws-amp-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-amplify-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: block
message: DeleteApp — destructive operation
category: cloud
- name: aws-amplify-delete-backend-environment
pattern: (?i)aws\s+delete\-backend\-environment\b
severity: block
message: DeleteBackendEnvironment — destructive operation
category: cloud
- name: aws-amplify-delete-branch
pattern: (?i)aws\s+delete\-branch\b
severity: block
message: DeleteBranch — destructive operation
category: cloud
- name: aws-amplify-delete-domain-association
pattern: (?i)aws\s+delete\-domain\-association\b
severity: warn
message: DeleteDomainAssociation — destructive operation
category: cloud
- name: aws-amplify-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: block
message: DeleteJob — destructive operation
category: cloud
- name: aws-amplify-delete-webhook
pattern: (?i)aws\s+delete\-webhook\b
severity: block
message: DeleteWebhook — destructive operation
category: cloud
- name: aws-amplify-stop-job
pattern: (?i)aws\s+stop\-job\b
severity: block
message: StopJob — destructive operation
category: cloud
- name: aws-amplify-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-amplifybackend-delete-backend
pattern: (?i)aws\s+delete\-backend\b
severity: warn
message: DeleteBackend — destructive operation
category: cloud
- name: aws-amplifybackend-delete-backend-a-p-i
pattern: (?i)aws\s+delete\-backend\-a\-p\-i\b
severity: warn
message: DeleteBackendAPI — destructive operation
category: cloud
- name: aws-amplifybackend-delete-backend-auth
pattern: (?i)aws\s+delete\-backend\-auth\b
severity: block
message: DeleteBackendAuth — destructive operation
category: cloud
- name: aws-amplifybackend-delete-backend-storage
pattern: (?i)aws\s+delete\-backend\-storage\b
severity: warn
message: DeleteBackendStorage — destructive operation
category: cloud
- name: aws-amplifybackend-delete-token
pattern: (?i)aws\s+delete\-token\b
severity: warn
message: DeleteToken — destructive operation
category: cloud
- name: aws-amplifybackend-remove-all-backends
pattern: (?i)aws\s+remove\-all\-backends\b
severity: warn
message: RemoveAllBackends — destructive operation
category: cloud
- name: aws-amplifybackend-remove-backend-config
pattern: (?i)aws\s+remove\-backend\-config\b
severity: warn
message: RemoveBackendConfig — destructive operation
category: cloud
- name: aws-amplifyuibuilder-delete-component
pattern: (?i)aws\s+delete\-component\b
severity: block
message: DeleteComponent — destructive operation
category: cloud
- name: aws-amplifyuibuilder-delete-form
pattern: (?i)aws\s+delete\-form\b
severity: block
message: DeleteForm — destructive operation
category: cloud
- name: aws-amplifyuibuilder-delete-theme
pattern: (?i)aws\s+delete\-theme\b
severity: block
message: DeleteTheme — destructive operation
category: cloud
- name: aws-apigateway-delete-api-key
pattern: (?i)aws\s+delete\-api\-key\b
severity: block
message: DeleteApiKey — destructive operation
category: cloud
- name: aws-apigateway-delete-authorizer
pattern: (?i)aws\s+delete\-authorizer\b
severity: block
message: DeleteAuthorizer — destructive operation
category: cloud
- name: aws-apigateway-delete-base-path-mapping
pattern: (?i)aws\s+delete\-base\-path\-mapping\b
severity: block
message: DeleteBasePathMapping — destructive operation
category: cloud
- name: aws-apigateway-delete-client-certificate
pattern: (?i)aws\s+delete\-client\-certificate\b
severity: block
message: DeleteClientCertificate — destructive operation
category: cloud
- name: aws-apigateway-delete-deployment
pattern: (?i)aws\s+delete\-deployment\b
severity: block
message: DeleteDeployment — destructive operation
category: cloud
- name: aws-apigateway-delete-documentation-part
pattern: (?i)aws\s+delete\-documentation\-part\b
severity: block
message: DeleteDocumentationPart — destructive operation
category: cloud
- name: aws-apigateway-delete-documentation-version
pattern: (?i)aws\s+delete\-documentation\-version\b
severity: block
message: DeleteDocumentationVersion — destructive operation
category: cloud
- name: aws-apigateway-delete-domain-name
pattern: (?i)aws\s+delete\-domain\-name\b
severity: block
message: DeleteDomainName — destructive operation
category: cloud
- name: aws-apigateway-delete-gateway-response
pattern: (?i)aws\s+delete\-gateway\-response\b
severity: block
message: DeleteGatewayResponse — destructive operation
category: cloud
- name: aws-apigateway-delete-integration
pattern: (?i)aws\s+delete\-integration\b
severity: block
message: DeleteIntegration — destructive operation
category: cloud
- name: aws-apigateway-delete-integration-response
pattern: (?i)aws\s+delete\-integration\-response\b
severity: block
message: DeleteIntegrationResponse — destructive operation
category: cloud
- name: aws-apigateway-delete-method
pattern: (?i)aws\s+delete\-method\b
severity: block
message: DeleteMethod — destructive operation
category: cloud
- name: aws-apigateway-delete-method-response
pattern: (?i)aws\s+delete\-method\-response\b
severity: block
message: DeleteMethodResponse — destructive operation
category: cloud
- name: aws-apigateway-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: block
message: DeleteModel — destructive operation
category: cloud
- name: aws-apigateway-delete-request-validator
pattern: (?i)aws\s+delete\-request\-validator\b
severity: block
message: DeleteRequestValidator — destructive operation
category: cloud
- name: aws-apigateway-delete-resource
pattern: (?i)aws\s+delete\-resource\b
severity: block
message: DeleteResource — destructive operation
category: cloud
- name: aws-apigateway-delete-rest-api
pattern: (?i)aws\s+delete\-rest\-api\b
severity: block
message: DeleteRestApi — destructive operation
category: cloud
- name: aws-apigateway-delete-stage
pattern: (?i)aws\s+delete\-stage\b
severity: warn
message: DeleteStage — destructive operation
category: cloud
- name: aws-apigateway-delete-usage-plan
pattern: (?i)aws\s+delete\-usage\-plan\b
severity: block
message: DeleteUsagePlan — destructive operation
category: cloud
- name: aws-apigateway-delete-usage-plan-key
pattern: (?i)aws\s+delete\-usage\-plan\-key\b
severity: block
message: DeleteUsagePlanKey — destructive operation
category: cloud
- name: aws-apigateway-delete-vpc-link
pattern: (?i)aws\s+delete\-vpc\-link\b
severity: block
message: DeleteVpcLink — destructive operation
category: cloud
- name: aws-apigateway-flush-stage-authorizers-cache
pattern: (?i)aws\s+flush\-stage\-authorizers\-cache\b
severity: block
message: FlushStageAuthorizersCache — destructive operation
category: cloud
- name: aws-apigateway-flush-stage-cache
pattern: (?i)aws\s+flush\-stage\-cache\b
severity: warn
message: FlushStageCache — destructive operation
category: cloud
- name: aws-apigateway-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-apigatewaymanagementapi-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: block
message: DeleteConnection — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-access-log-settings
pattern: (?i)aws\s+delete\-access\-log\-settings\b
severity: warn
message: DeleteAccessLogSettings — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-api
pattern: (?i)aws\s+delete\-api\b
severity: block
message: DeleteApi — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-api-mapping
pattern: (?i)aws\s+delete\-api\-mapping\b
severity: block
message: DeleteApiMapping — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-authorizer
pattern: (?i)aws\s+delete\-authorizer\b
severity: block
message: DeleteAuthorizer — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-cors-configuration
pattern: (?i)aws\s+delete\-cors\-configuration\b
severity: block
message: DeleteCorsConfiguration — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-deployment
pattern: (?i)aws\s+delete\-deployment\b
severity: block
message: DeleteDeployment — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-domain-name
pattern: (?i)aws\s+delete\-domain\-name\b
severity: block
message: DeleteDomainName — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-integration
pattern: (?i)aws\s+delete\-integration\b
severity: block
message: DeleteIntegration — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-integration-response
pattern: (?i)aws\s+delete\-integration\-response\b
severity: block
message: DeleteIntegrationResponse — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: block
message: DeleteModel — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-route
pattern: (?i)aws\s+delete\-route\b
severity: block
message: DeleteRoute — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-route-request-parameter
pattern: (?i)aws\s+delete\-route\-request\-parameter\b
severity: block
message: DeleteRouteRequestParameter — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-route-response
pattern: (?i)aws\s+delete\-route\-response\b
severity: block
message: DeleteRouteResponse — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-route-settings
pattern: (?i)aws\s+delete\-route\-settings\b
severity: block
message: DeleteRouteSettings — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-stage
pattern: (?i)aws\s+delete\-stage\b
severity: warn
message: DeleteStage — destructive operation
category: cloud
- name: aws-apigatewayv2-delete-vpc-link
pattern: (?i)aws\s+delete\-vpc\-link\b
severity: block
message: DeleteVpcLink — destructive operation
category: cloud
- name: aws-apigatewayv2-reset-authorizers-cache
pattern: (?i)aws\s+reset\-authorizers\-cache\b
severity: block
message: ResetAuthorizersCache — destructive operation
category: cloud
- name: aws-apigatewayv2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-appconfig-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-appconfig-delete-configuration-profile
pattern: (?i)aws\s+delete\-configuration\-profile\b
severity: block
message: DeleteConfigurationProfile — destructive operation
category: cloud
- name: aws-appconfig-delete-deployment-strategy
pattern: (?i)aws\s+delete\-deployment\-strategy\b
severity: block
message: DeleteDeploymentStrategy — destructive operation
category: cloud
- name: aws-appconfig-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: block
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-appconfig-delete-extension
pattern: (?i)aws\s+delete\-extension\b
severity: block
message: DeleteExtension — destructive operation
category: cloud
- name: aws-appconfig-delete-extension-association
pattern: (?i)aws\s+delete\-extension\-association\b
severity: warn
message: DeleteExtensionAssociation — destructive operation
category: cloud
- name: aws-appconfig-delete-hosted-configuration-version
pattern: (?i)aws\s+delete\-hosted\-configuration\-version\b
severity: block
message: DeleteHostedConfigurationVersion — destructive operation
category: cloud
- name: aws-appconfig-stop-deployment
pattern: (?i)aws\s+stop\-deployment\b
severity: block
message: StopDeployment — destructive operation
category: cloud
- name: aws-appconfig-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-appflow-delete-connector-profile
pattern: (?i)aws\s+delete\-connector\-profile\b
severity: warn
message: DeleteConnectorProfile — destructive operation
category: cloud
- name: aws-appflow-delete-flow
pattern: (?i)aws\s+delete\-flow\b
severity: warn
message: DeleteFlow — destructive operation
category: cloud
- name: aws-appflow-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-appintegrations-delete-data-integration
pattern: (?i)aws\s+delete\-data\-integration\b
severity: block
message: DeleteDataIntegration — destructive operation
category: cloud
- name: aws-appintegrations-delete-event-integration
pattern: (?i)aws\s+delete\-event\-integration\b
severity: warn
message: DeleteEventIntegration — destructive operation
category: cloud
- name: aws-appintegrations-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-application-autoscaling-delete-scaling-policy
pattern: (?i)aws\s+delete\-scaling\-policy\b
severity: block
message: DeleteScalingPolicy — destructive operation
category: cloud
- name: aws-application-autoscaling-delete-scheduled-action
pattern: (?i)aws\s+delete\-scheduled\-action\b
severity: warn
message: DeleteScheduledAction — destructive operation
category: cloud
- name: aws-application-autoscaling-deregister-scalable-target
pattern: (?i)aws\s+deregister\-scalable\-target\b
severity: block
message: DeregisterScalableTarget — destructive operation
category: cloud
- name: aws-application-insights-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-application-insights-delete-component
pattern: (?i)aws\s+delete\-component\b
severity: warn
message: DeleteComponent — destructive operation
category: cloud
- name: aws-application-insights-delete-log-pattern
pattern: (?i)aws\s+delete\-log\-pattern\b
severity: warn
message: DeleteLogPattern — destructive operation
category: cloud
- name: aws-applicationcostprofiler-delete-report-definition
pattern: (?i)aws\s+delete\-report\-definition\b
severity: block
message: DeleteReportDefinition — destructive operation
category: cloud
- name: aws-appmesh-delete-gateway-route
pattern: (?i)aws\s+delete\-gateway\-route\b
severity: block
message: DeleteGatewayRoute — destructive operation
category: cloud
- name: aws-appmesh-delete-mesh
pattern: (?i)aws\s+delete\-mesh\b
severity: block
message: DeleteMesh — destructive operation
category: cloud
- name: aws-appmesh-delete-route
pattern: (?i)aws\s+delete\-route\b
severity: block
message: DeleteRoute — destructive operation
category: cloud
- name: aws-appmesh-delete-virtual-gateway
pattern: (?i)aws\s+delete\-virtual\-gateway\b
severity: block
message: DeleteVirtualGateway — destructive operation
category: cloud
- name: aws-appmesh-delete-virtual-node
pattern: (?i)aws\s+delete\-virtual\-node\b
severity: block
message: DeleteVirtualNode — destructive operation
category: cloud
- name: aws-appmesh-delete-virtual-router
pattern: (?i)aws\s+delete\-virtual\-router\b
severity: block
message: DeleteVirtualRouter — destructive operation
category: cloud
- name: aws-appmesh-delete-virtual-service
pattern: (?i)aws\s+delete\-virtual\-service\b
severity: block
message: DeleteVirtualService — destructive operation
category: cloud
- name: aws-apprunner-delete-auto-scaling-configuration
pattern: (?i)aws\s+delete\-auto\-scaling\-configuration\b
severity: warn
message: DeleteAutoScalingConfiguration — destructive operation
category: cloud
- name: aws-apprunner-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-apprunner-delete-observability-configuration
pattern: (?i)aws\s+delete\-observability\-configuration\b
severity: warn
message: DeleteObservabilityConfiguration — destructive operation
category: cloud
- name: aws-apprunner-delete-service
pattern: (?i)aws\s+delete\-service\b
severity: warn
message: DeleteService — destructive operation
category: cloud
- name: aws-apprunner-delete-vpc-connector
pattern: (?i)aws\s+delete\-vpc\-connector\b
severity: warn
message: DeleteVpcConnector — destructive operation
category: cloud
- name: aws-apprunner-delete-vpc-ingress-connection
pattern: (?i)aws\s+delete\-vpc\-ingress\-connection\b
severity: warn
message: DeleteVpcIngressConnection — destructive operation
category: cloud
- name: aws-apprunner-disassociate-custom-domain
pattern: (?i)aws\s+disassociate\-custom\-domain\b
severity: warn
message: DisassociateCustomDomain — destructive operation
category: cloud
- name: aws-appstream-batch-disassociate-user-stack
pattern: (?i)aws\s+batch\-disassociate\-user\-stack\b
severity: block
message: BatchDisassociateUserStack — destructive operation
category: cloud
- name: aws-appstream-delete-app-block
pattern: (?i)aws\s+delete\-app\-block\b
severity: warn
message: DeleteAppBlock — destructive operation
category: cloud
- name: aws-appstream-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-appstream-delete-directory-config
pattern: (?i)aws\s+delete\-directory\-config\b
severity: warn
message: DeleteDirectoryConfig — destructive operation
category: cloud
- name: aws-appstream-delete-entitlement
pattern: (?i)aws\s+delete\-entitlement\b
severity: warn
message: DeleteEntitlement — destructive operation
category: cloud
- name: aws-appstream-delete-fleet
pattern: (?i)aws\s+delete\-fleet\b
severity: warn
message: DeleteFleet — destructive operation
category: cloud
- name: aws-appstream-delete-image
pattern: (?i)aws\s+delete\-image\b
severity: warn
message: DeleteImage — destructive operation
category: cloud
- name: aws-appstream-delete-image-builder
pattern: (?i)aws\s+delete\-image\-builder\b
severity: warn
message: DeleteImageBuilder — destructive operation
category: cloud
- name: aws-appstream-delete-image-permissions
pattern: (?i)aws\s+delete\-image\-permissions\b
severity: warn
message: DeleteImagePermissions — destructive operation
category: cloud
- name: aws-appstream-delete-stack
pattern: (?i)aws\s+delete\-stack\b
severity: block
message: DeleteStack — destructive operation
category: cloud
- name: aws-appstream-delete-usage-report-subscription
pattern: (?i)aws\s+delete\-usage\-report\-subscription\b
severity: warn
message: DeleteUsageReportSubscription — destructive operation
category: cloud
- name: aws-appstream-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-appstream-disable-user
pattern: (?i)aws\s+disable\-user\b
severity: warn
message: DisableUser — destructive operation
category: cloud
- name: aws-appstream-disassociate-application-fleet
pattern: (?i)aws\s+disassociate\-application\-fleet\b
severity: warn
message: DisassociateApplicationFleet — destructive operation
category: cloud
- name: aws-appstream-disassociate-application-from-entitlement
pattern: (?i)aws\s+disassociate\-application\-from\-entitlement\b
severity: warn
message: DisassociateApplicationFromEntitlement — destructive operation
category: cloud
- name: aws-appstream-disassociate-fleet
pattern: (?i)aws\s+disassociate\-fleet\b
severity: warn
message: DisassociateFleet — destructive operation
category: cloud
- name: aws-appsync-delete-api-cache
pattern: (?i)aws\s+delete\-api\-cache\b
severity: block
message: DeleteApiCache — destructive operation
category: cloud
- name: aws-appsync-delete-api-key
pattern: (?i)aws\s+delete\-api\-key\b
severity: block
message: DeleteApiKey — destructive operation
category: cloud
- name: aws-appsync-delete-data-source
pattern: (?i)aws\s+delete\-data\-source\b
severity: block
message: DeleteDataSource — destructive operation
category: cloud
- name: aws-appsync-delete-domain-name
pattern: (?i)aws\s+delete\-domain\-name\b
severity: block
message: DeleteDomainName — destructive operation
category: cloud
- name: aws-appsync-delete-function
pattern: (?i)aws\s+delete\-function\b
severity: block
message: DeleteFunction — destructive operation
category: cloud
- name: aws-appsync-delete-graphql-api
pattern: (?i)aws\s+delete\-graphql\-api\b
severity: block
message: DeleteGraphqlApi — destructive operation
category: cloud
- name: aws-appsync-delete-resolver
pattern: (?i)aws\s+delete\-resolver\b
severity: block
message: DeleteResolver — destructive operation
category: cloud
- name: aws-appsync-delete-type
pattern: (?i)aws\s+delete\-type\b
severity: block
message: DeleteType — destructive operation
category: cloud
- name: aws-appsync-disassociate-api
pattern: (?i)aws\s+disassociate\-api\b
severity: warn
message: DisassociateApi — destructive operation
category: cloud
- name: aws-appsync-flush-api-cache
pattern: (?i)aws\s+flush\-api\-cache\b
severity: block
message: FlushApiCache — destructive operation
category: cloud
- name: aws-appsync-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-arc-zonal-shift-cancel-zonal-shift
pattern: (?i)aws\s+cancel\-zonal\-shift\b
severity: block
message: CancelZonalShift — destructive operation
category: cloud
- name: aws-athena-delete-data-catalog
pattern: (?i)aws\s+delete\-data\-catalog\b
severity: warn
message: DeleteDataCatalog — destructive operation
category: cloud
- name: aws-athena-delete-named-query
pattern: (?i)aws\s+delete\-named\-query\b
severity: warn
message: DeleteNamedQuery — destructive operation
category: cloud
- name: aws-athena-delete-notebook
pattern: (?i)aws\s+delete\-notebook\b
severity: warn
message: DeleteNotebook — destructive operation
category: cloud
- name: aws-athena-delete-prepared-statement
pattern: (?i)aws\s+delete\-prepared\-statement\b
severity: warn
message: DeletePreparedStatement — destructive operation
category: cloud
- name: aws-athena-delete-work-group
pattern: (?i)aws\s+delete\-work\-group\b
severity: block
message: DeleteWorkGroup — destructive operation
category: cloud
- name: aws-athena-terminate-session
pattern: (?i)aws\s+terminate\-session\b
severity: warn
message: TerminateSession — destructive operation
category: cloud
- name: aws-auditmanager-batch-delete-delegation-by-assessment
pattern: (?i)aws\s+batch\-delete\-delegation\-by\-assessment\b
severity: warn
message: BatchDeleteDelegationByAssessment — destructive operation
category: cloud
- name: aws-auditmanager-batch-disassociate-assessment-report-evidence
pattern: (?i)aws\s+batch\-disassociate\-assessment\-report\-evidence\b
severity: warn
message: BatchDisassociateAssessmentReportEvidence — destructive operation
category: cloud
- name: aws-auditmanager-delete-assessment
pattern: (?i)aws\s+delete\-assessment\b
severity: block
message: DeleteAssessment — destructive operation
category: cloud
- name: aws-auditmanager-delete-assessment-framework
pattern: (?i)aws\s+delete\-assessment\-framework\b
severity: block
message: DeleteAssessmentFramework — destructive operation
category: cloud
- name: aws-auditmanager-delete-assessment-framework-share
pattern: (?i)aws\s+delete\-assessment\-framework\-share\b
severity: block
message: DeleteAssessmentFrameworkShare — destructive operation
category: cloud
- name: aws-auditmanager-delete-assessment-report
pattern: (?i)aws\s+delete\-assessment\-report\b
severity: block
message: DeleteAssessmentReport — destructive operation
category: cloud
- name: aws-auditmanager-delete-control
pattern: (?i)aws\s+delete\-control\b
severity: block
message: DeleteControl — destructive operation
category: cloud
- name: aws-auditmanager-deregister-account
pattern: (?i)aws\s+deregister\-account\b
severity: block
message: DeregisterAccount — destructive operation
category: cloud
- name: aws-auditmanager-deregister-organization-admin-account
pattern: (?i)aws\s+deregister\-organization\-admin\-account\b
severity: block
message: DeregisterOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-auditmanager-disassociate-assessment-report-evidence-folder
pattern: (?i)aws\s+disassociate\-assessment\-report\-evidence\-folder\b
severity: warn
message: DisassociateAssessmentReportEvidenceFolder — destructive operation
category: cloud
- name: aws-auditmanager-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-autoscaling-plans-delete-scaling-plan
pattern: (?i)aws\s+delete\-scaling\-plan\b
severity: warn
message: DeleteScalingPlan — destructive operation
category: cloud
- name: aws-autoscaling-batch-delete-scheduled-action
pattern: (?i)aws\s+batch\-delete\-scheduled\-action\b
severity: warn
message: BatchDeleteScheduledAction — destructive operation
category: cloud
- name: aws-autoscaling-cancel-instance-refresh
pattern: (?i)aws\s+cancel\-instance\-refresh\b
severity: block
message: CancelInstanceRefresh — destructive operation
category: cloud
- name: aws-autoscaling-delete-auto-scaling-group
pattern: (?i)aws\s+delete\-auto\-scaling\-group\b
severity: block
message: DeleteAutoScalingGroup — destructive operation
category: cloud
- name: aws-autoscaling-delete-launch-configuration
pattern: (?i)aws\s+delete\-launch\-configuration\b
severity: warn
message: DeleteLaunchConfiguration — destructive operation
category: cloud
- name: aws-autoscaling-delete-lifecycle-hook
pattern: (?i)aws\s+delete\-lifecycle\-hook\b
severity: warn
message: DeleteLifecycleHook — destructive operation
category: cloud
- name: aws-autoscaling-delete-notification-configuration
pattern: (?i)aws\s+delete\-notification\-configuration\b
severity: warn
message: DeleteNotificationConfiguration — destructive operation
category: cloud
- name: aws-autoscaling-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-autoscaling-delete-scheduled-action
pattern: (?i)aws\s+delete\-scheduled\-action\b
severity: warn
message: DeleteScheduledAction — destructive operation
category: cloud
- name: aws-autoscaling-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-autoscaling-delete-warm-pool
pattern: (?i)aws\s+delete\-warm\-pool\b
severity: warn
message: DeleteWarmPool — destructive operation
category: cloud
- name: aws-autoscaling-detach-instances
pattern: (?i)aws\s+detach\-instances\b
severity: block
message: DetachInstances — destructive operation
category: cloud
- name: aws-autoscaling-detach-load-balancer-target-groups
pattern: (?i)aws\s+detach\-load\-balancer\-target\-groups\b
severity: block
message: DetachLoadBalancerTargetGroups — destructive operation
category: cloud
- name: aws-autoscaling-detach-load-balancers
pattern: (?i)aws\s+detach\-load\-balancers\b
severity: block
message: DetachLoadBalancers — destructive operation
category: cloud
- name: aws-autoscaling-disable-metrics-collection
pattern: (?i)aws\s+disable\-metrics\-collection\b
severity: warn
message: DisableMetricsCollection — destructive operation
category: cloud
- name: aws-autoscaling-terminate-instance-in-auto-scaling-group
pattern: (?i)aws\s+terminate\-instance\-in\-auto\-scaling\-group\b
severity: block
message: TerminateInstanceInAutoScalingGroup — destructive operation
category: cloud
- name: aws-AWSMigrationHub-delete-progress-update-stream
pattern: (?i)aws\s+delete\-progress\-update\-stream\b
severity: warn
message: DeleteProgressUpdateStream — destructive operation
category: cloud
- name: aws-AWSMigrationHub-disassociate-created-artifact
pattern: (?i)aws\s+disassociate\-created\-artifact\b
severity: warn
message: DisassociateCreatedArtifact — destructive operation
category: cloud
- name: aws-AWSMigrationHub-disassociate-discovered-resource
pattern: (?i)aws\s+disassociate\-discovered\-resource\b
severity: warn
message: DisassociateDiscoveredResource — destructive operation
category: cloud
- name: aws-backup-gateway-delete-gateway
pattern: (?i)aws\s+delete\-gateway\b
severity: block
message: DeleteGateway — destructive operation
category: cloud
- name: aws-backup-gateway-delete-hypervisor
pattern: (?i)aws\s+delete\-hypervisor\b
severity: warn
message: DeleteHypervisor — destructive operation
category: cloud
- name: aws-backup-gateway-disassociate-gateway-from-server
pattern: (?i)aws\s+disassociate\-gateway\-from\-server\b
severity: block
message: DisassociateGatewayFromServer — destructive operation
category: cloud
- name: aws-backup-cancel-legal-hold
pattern: (?i)aws\s+cancel\-legal\-hold\b
severity: block
message: CancelLegalHold — destructive operation
category: cloud
- name: aws-backup-delete-backup-plan
pattern: (?i)aws\s+delete\-backup\-plan\b
severity: block
message: DeleteBackupPlan — destructive operation
category: cloud
- name: aws-backup-delete-backup-selection
pattern: (?i)aws\s+delete\-backup\-selection\b
severity: block
message: DeleteBackupSelection — destructive operation
category: cloud
- name: aws-backup-delete-backup-vault
pattern: (?i)aws\s+delete\-backup\-vault\b
severity: block
message: DeleteBackupVault — destructive operation
category: cloud
- name: aws-backup-delete-backup-vault-access-policy
pattern: (?i)aws\s+delete\-backup\-vault\-access\-policy\b
severity: block
message: DeleteBackupVaultAccessPolicy — destructive operation
category: cloud
- name: aws-backup-delete-backup-vault-lock-configuration
pattern: (?i)aws\s+delete\-backup\-vault\-lock\-configuration\b
severity: block
message: DeleteBackupVaultLockConfiguration — destructive operation
category: cloud
- name: aws-backup-delete-backup-vault-notifications
pattern: (?i)aws\s+delete\-backup\-vault\-notifications\b
severity: block
message: DeleteBackupVaultNotifications — destructive operation
category: cloud
- name: aws-backup-delete-framework
pattern: (?i)aws\s+delete\-framework\b
severity: block
message: DeleteFramework — destructive operation
category: cloud
- name: aws-backup-delete-recovery-point
pattern: (?i)aws\s+delete\-recovery\-point\b
severity: block
message: DeleteRecoveryPoint — destructive operation
category: cloud
- name: aws-backup-delete-report-plan
pattern: (?i)aws\s+delete\-report\-plan\b
severity: block
message: DeleteReportPlan — destructive operation
category: cloud
- name: aws-backup-disassociate-recovery-point
pattern: (?i)aws\s+disassociate\-recovery\-point\b
severity: block
message: DisassociateRecoveryPoint — destructive operation
category: cloud
- name: aws-backup-disassociate-recovery-point-from-parent
pattern: (?i)aws\s+disassociate\-recovery\-point\-from\-parent\b
severity: block
message: DisassociateRecoveryPointFromParent — destructive operation
category: cloud
- name: aws-backupstorage-delete-object
pattern: (?i)aws\s+delete\-object\b
severity: block
message: DeleteObject — destructive operation
category: cloud
- name: aws-batch-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: warn
message: CancelJob — destructive operation
category: cloud
- name: aws-batch-delete-compute-environment
pattern: (?i)aws\s+delete\-compute\-environment\b
severity: warn
message: DeleteComputeEnvironment — destructive operation
category: cloud
- name: aws-batch-delete-job-queue
pattern: (?i)aws\s+delete\-job\-queue\b
severity: warn
message: DeleteJobQueue — destructive operation
category: cloud
- name: aws-batch-delete-scheduling-policy
pattern: (?i)aws\s+delete\-scheduling\-policy\b
severity: block
message: DeleteSchedulingPolicy — destructive operation
category: cloud
- name: aws-batch-deregister-job-definition
pattern: (?i)aws\s+deregister\-job\-definition\b
severity: warn
message: DeregisterJobDefinition — destructive operation
category: cloud
- name: aws-batch-terminate-job
pattern: (?i)aws\s+terminate\-job\b
severity: warn
message: TerminateJob — destructive operation
category: cloud
- name: aws-batch-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-billingconductor-batch-disassociate-resources-from-custom-line-item
pattern: (?i)aws\s+batch\-disassociate\-resources\-from\-custom\-line\-item\b
severity: block
message: BatchDisassociateResourcesFromCustomLineItem — destructive operation
category: cloud
- name: aws-billingconductor-delete-billing-group
pattern: (?i)aws\s+delete\-billing\-group\b
severity: block
message: DeleteBillingGroup — destructive operation
category: cloud
- name: aws-billingconductor-delete-custom-line-item
pattern: (?i)aws\s+delete\-custom\-line\-item\b
severity: block
message: DeleteCustomLineItem — destructive operation
category: cloud
- name: aws-billingconductor-delete-pricing-plan
pattern: (?i)aws\s+delete\-pricing\-plan\b
severity: warn
message: DeletePricingPlan — destructive operation
category: cloud
- name: aws-billingconductor-delete-pricing-rule
pattern: (?i)aws\s+delete\-pricing\-rule\b
severity: warn
message: DeletePricingRule — destructive operation
category: cloud
- name: aws-billingconductor-disassociate-accounts
pattern: (?i)aws\s+disassociate\-accounts\b
severity: block
message: DisassociateAccounts — destructive operation
category: cloud
- name: aws-billingconductor-disassociate-pricing-rules
pattern: (?i)aws\s+disassociate\-pricing\-rules\b
severity: warn
message: DisassociatePricingRules — destructive operation
category: cloud
- name: aws-billingconductor-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-braket-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: warn
message: CancelJob — destructive operation
category: cloud
- name: aws-braket-cancel-quantum-task
pattern: (?i)aws\s+cancel\-quantum\-task\b
severity: warn
message: CancelQuantumTask — destructive operation
category: cloud
- name: aws-braket-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-budgets-delete-budget
pattern: (?i)aws\s+delete\-budget\b
severity: warn
message: DeleteBudget — destructive operation
category: cloud
- name: aws-budgets-delete-budget-action
pattern: (?i)aws\s+delete\-budget\-action\b
severity: warn
message: DeleteBudgetAction — destructive operation
category: cloud
- name: aws-budgets-delete-notification
pattern: (?i)aws\s+delete\-notification\b
severity: warn
message: DeleteNotification — destructive operation
category: cloud
- name: aws-budgets-delete-subscriber
pattern: (?i)aws\s+delete\-subscriber\b
severity: warn
message: DeleteSubscriber — destructive operation
category: cloud
- name: aws-ce-delete-anomaly-monitor
pattern: (?i)aws\s+delete\-anomaly\-monitor\b
severity: warn
message: DeleteAnomalyMonitor — destructive operation
category: cloud
- name: aws-ce-delete-anomaly-subscription
pattern: (?i)aws\s+delete\-anomaly\-subscription\b
severity: warn
message: DeleteAnomalySubscription — destructive operation
category: cloud
- name: aws-ce-delete-cost-category-definition
pattern: (?i)aws\s+delete\-cost\-category\-definition\b
severity: warn
message: DeleteCostCategoryDefinition — destructive operation
category: cloud
- name: aws-chime-sdk-identity-delete-app-instance
pattern: (?i)aws\s+delete\-app\-instance\b
severity: block
message: DeleteAppInstance — destructive operation
category: cloud
- name: aws-chime-sdk-identity-delete-app-instance-admin
pattern: (?i)aws\s+delete\-app\-instance\-admin\b
severity: block
message: DeleteAppInstanceAdmin — destructive operation
category: cloud
- name: aws-chime-sdk-identity-delete-app-instance-user
pattern: (?i)aws\s+delete\-app\-instance\-user\b
severity: block
message: DeleteAppInstanceUser — destructive operation
category: cloud
- name: aws-chime-sdk-identity-deregister-app-instance-user-endpoint
pattern: (?i)aws\s+deregister\-app\-instance\-user\-endpoint\b
severity: block
message: DeregisterAppInstanceUserEndpoint — destructive operation
category: cloud
- name: aws-chime-sdk-media-pipelines-delete-media-capture-pipeline
pattern: (?i)aws\s+delete\-media\-capture\-pipeline\b
severity: block
message: DeleteMediaCapturePipeline — destructive operation
category: cloud
- name: aws-chime-sdk-media-pipelines-delete-media-pipeline
pattern: (?i)aws\s+delete\-media\-pipeline\b
severity: block
message: DeleteMediaPipeline — destructive operation
category: cloud
- name: aws-chime-sdk-meetings-delete-attendee
pattern: (?i)aws\s+delete\-attendee\b
severity: block
message: DeleteAttendee — destructive operation
category: cloud
- name: aws-chime-sdk-meetings-delete-meeting
pattern: (?i)aws\s+delete\-meeting\b
severity: block
message: DeleteMeeting — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel-ban
pattern: (?i)aws\s+delete\-channel\-ban\b
severity: block
message: DeleteChannelBan — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel-flow
pattern: (?i)aws\s+delete\-channel\-flow\b
severity: block
message: DeleteChannelFlow — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel-membership
pattern: (?i)aws\s+delete\-channel\-membership\b
severity: block
message: DeleteChannelMembership — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel-message
pattern: (?i)aws\s+delete\-channel\-message\b
severity: block
message: DeleteChannelMessage — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-delete-channel-moderator
pattern: (?i)aws\s+delete\-channel\-moderator\b
severity: block
message: DeleteChannelModerator — destructive operation
category: cloud
- name: aws-chime-sdk-messaging-disassociate-channel-flow
pattern: (?i)aws\s+disassociate\-channel\-flow\b
severity: block
message: DisassociateChannelFlow — destructive operation
category: cloud
- name: aws-chime-sdk-voice-batch-delete-phone-number
pattern: (?i)aws\s+batch\-delete\-phone\-number\b
severity: warn
message: BatchDeletePhoneNumber — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-phone-number
pattern: (?i)aws\s+delete\-phone\-number\b
severity: block
message: DeletePhoneNumber — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-proxy-session
pattern: (?i)aws\s+delete\-proxy\-session\b
severity: block
message: DeleteProxySession — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-sip-media-application
pattern: (?i)aws\s+delete\-sip\-media\-application\b
severity: block
message: DeleteSipMediaApplication — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-sip-rule
pattern: (?i)aws\s+delete\-sip\-rule\b
severity: warn
message: DeleteSipRule — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector
pattern: (?i)aws\s+delete\-voice\-connector\b
severity: block
message: DeleteVoiceConnector — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-emergency-calling-configuration
pattern: (?i)aws\s+delete\-voice\-connector\-emergency\-calling\-configuration\b
severity: block
message: DeleteVoiceConnectorEmergencyCallingConfiguration — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-group
pattern: (?i)aws\s+delete\-voice\-connector\-group\b
severity: block
message: DeleteVoiceConnectorGroup — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-origination
pattern: (?i)aws\s+delete\-voice\-connector\-origination\b
severity: block
message: DeleteVoiceConnectorOrigination — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-proxy
pattern: (?i)aws\s+delete\-voice\-connector\-proxy\b
severity: block
message: DeleteVoiceConnectorProxy — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-streaming-configuration
pattern: (?i)aws\s+delete\-voice\-connector\-streaming\-configuration\b
severity: block
message: DeleteVoiceConnectorStreamingConfiguration — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-termination
pattern: (?i)aws\s+delete\-voice\-connector\-termination\b
severity: block
message: DeleteVoiceConnectorTermination — destructive operation
category: cloud
- name: aws-chime-sdk-voice-delete-voice-connector-termination-credentials
pattern: (?i)aws\s+delete\-voice\-connector\-termination\-credentials\b
severity: block
message: DeleteVoiceConnectorTerminationCredentials — destructive operation
category: cloud
- name: aws-chime-sdk-voice-disassociate-phone-numbers-from-voice-connector
pattern: (?i)aws\s+disassociate\-phone\-numbers\-from\-voice\-connector\b
severity: warn
message: DisassociatePhoneNumbersFromVoiceConnector — destructive operation
category: cloud
- name: aws-chime-sdk-voice-disassociate-phone-numbers-from-voice-connector-group
pattern: (?i)aws\s+disassociate\-phone\-numbers\-from\-voice\-connector\-group\b
severity: block
message: DisassociatePhoneNumbersFromVoiceConnectorGroup — destructive operation
category: cloud
- name: aws-chime-batch-delete-phone-number
pattern: (?i)aws\s+batch\-delete\-phone\-number\b
severity: warn
message: BatchDeletePhoneNumber — destructive operation
category: cloud
- name: aws-chime-delete-account
pattern: (?i)aws\s+delete\-account\b
severity: block
message: DeleteAccount — destructive operation
category: cloud
- name: aws-chime-delete-app-instance
pattern: (?i)aws\s+delete\-app\-instance\b
severity: block
message: DeleteAppInstance — destructive operation
category: cloud
- name: aws-chime-delete-app-instance-admin
pattern: (?i)aws\s+delete\-app\-instance\-admin\b
severity: block
message: DeleteAppInstanceAdmin — destructive operation
category: cloud
- name: aws-chime-delete-app-instance-streaming-configurations
pattern: (?i)aws\s+delete\-app\-instance\-streaming\-configurations\b
severity: block
message: DeleteAppInstanceStreamingConfigurations — destructive operation
category: cloud
- name: aws-chime-delete-app-instance-user
pattern: (?i)aws\s+delete\-app\-instance\-user\b
severity: block
message: DeleteAppInstanceUser — destructive operation
category: cloud
- name: aws-chime-delete-attendee
pattern: (?i)aws\s+delete\-attendee\b
severity: block
message: DeleteAttendee — destructive operation
category: cloud
- name: aws-chime-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-chime-delete-channel-ban
pattern: (?i)aws\s+delete\-channel\-ban\b
severity: block
message: DeleteChannelBan — destructive operation
category: cloud
- name: aws-chime-delete-channel-membership
pattern: (?i)aws\s+delete\-channel\-membership\b
severity: block
message: DeleteChannelMembership — destructive operation
category: cloud
- name: aws-chime-delete-channel-message
pattern: (?i)aws\s+delete\-channel\-message\b
severity: block
message: DeleteChannelMessage — destructive operation
category: cloud
- name: aws-chime-delete-channel-moderator
pattern: (?i)aws\s+delete\-channel\-moderator\b
severity: block
message: DeleteChannelModerator — destructive operation
category: cloud
- name: aws-chime-delete-events-configuration
pattern: (?i)aws\s+delete\-events\-configuration\b
severity: block
message: DeleteEventsConfiguration — destructive operation
category: cloud
- name: aws-chime-delete-media-capture-pipeline
pattern: (?i)aws\s+delete\-media\-capture\-pipeline\b
severity: block
message: DeleteMediaCapturePipeline — destructive operation
category: cloud
- name: aws-chime-delete-meeting
pattern: (?i)aws\s+delete\-meeting\b
severity: block
message: DeleteMeeting — destructive operation
category: cloud
- name: aws-chime-delete-phone-number
pattern: (?i)aws\s+delete\-phone\-number\b
severity: block
message: DeletePhoneNumber — destructive operation
category: cloud
- name: aws-chime-delete-proxy-session
pattern: (?i)aws\s+delete\-proxy\-session\b
severity: block
message: DeleteProxySession — destructive operation
category: cloud
- name: aws-chime-delete-room
pattern: (?i)aws\s+delete\-room\b
severity: block
message: DeleteRoom — destructive operation
category: cloud
- name: aws-chime-delete-room-membership
pattern: (?i)aws\s+delete\-room\-membership\b
severity: block
message: DeleteRoomMembership — destructive operation
category: cloud
- name: aws-chime-delete-sip-media-application
pattern: (?i)aws\s+delete\-sip\-media\-application\b
severity: block
message: DeleteSipMediaApplication — destructive operation
category: cloud
- name: aws-chime-delete-sip-rule
pattern: (?i)aws\s+delete\-sip\-rule\b
severity: warn
message: DeleteSipRule — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector
pattern: (?i)aws\s+delete\-voice\-connector\b
severity: block
message: DeleteVoiceConnector — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-emergency-calling-configuration
pattern: (?i)aws\s+delete\-voice\-connector\-emergency\-calling\-configuration\b
severity: block
message: DeleteVoiceConnectorEmergencyCallingConfiguration — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-group
pattern: (?i)aws\s+delete\-voice\-connector\-group\b
severity: block
message: DeleteVoiceConnectorGroup — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-origination
pattern: (?i)aws\s+delete\-voice\-connector\-origination\b
severity: block
message: DeleteVoiceConnectorOrigination — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-proxy
pattern: (?i)aws\s+delete\-voice\-connector\-proxy\b
severity: block
message: DeleteVoiceConnectorProxy — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-streaming-configuration
pattern: (?i)aws\s+delete\-voice\-connector\-streaming\-configuration\b
severity: block
message: DeleteVoiceConnectorStreamingConfiguration — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-termination
pattern: (?i)aws\s+delete\-voice\-connector\-termination\b
severity: block
message: DeleteVoiceConnectorTermination — destructive operation
category: cloud
- name: aws-chime-delete-voice-connector-termination-credentials
pattern: (?i)aws\s+delete\-voice\-connector\-termination\-credentials\b
severity: block
message: DeleteVoiceConnectorTerminationCredentials — destructive operation
category: cloud
- name: aws-chime-disassociate-phone-number-from-user
pattern: (?i)aws\s+disassociate\-phone\-number\-from\-user\b
severity: block
message: DisassociatePhoneNumberFromUser — destructive operation
category: cloud
- name: aws-chime-disassociate-phone-numbers-from-voice-connector
pattern: (?i)aws\s+disassociate\-phone\-numbers\-from\-voice\-connector\b
severity: warn
message: DisassociatePhoneNumbersFromVoiceConnector — destructive operation
category: cloud
- name: aws-chime-disassociate-phone-numbers-from-voice-connector-group
pattern: (?i)aws\s+disassociate\-phone\-numbers\-from\-voice\-connector\-group\b
severity: block
message: DisassociatePhoneNumbersFromVoiceConnectorGroup — destructive operation
category: cloud
- name: aws-chime-disassociate-signin-delegate-groups-from-account
pattern: (?i)aws\s+disassociate\-signin\-delegate\-groups\-from\-account\b
severity: block
message: DisassociateSigninDelegateGroupsFromAccount — destructive operation
category: cloud
- name: aws-chime-reset-personal-p-i-n
pattern: (?i)aws\s+reset\-personal\-p\-i\-n\b
severity: block
message: ResetPersonalPIN — destructive operation
category: cloud
- name: aws-cloud9-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: warn
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-cloud9-delete-environment-membership
pattern: (?i)aws\s+delete\-environment\-membership\b
severity: warn
message: DeleteEnvironmentMembership — destructive operation
category: cloud
- name: aws-cloudcontrol-cancel-resource-request
pattern: (?i)aws\s+cancel\-resource\-request\b
severity: warn
message: CancelResourceRequest — destructive operation
category: cloud
- name: aws-cloudcontrol-delete-resource
pattern: (?i)aws\s+delete\-resource\b
severity: warn
message: DeleteResource — destructive operation
category: cloud
- name: aws-clouddirectory-delete-directory
pattern: (?i)aws\s+delete\-directory\b
severity: warn
message: DeleteDirectory — destructive operation
category: cloud
- name: aws-clouddirectory-delete-facet
pattern: (?i)aws\s+delete\-facet\b
severity: warn
message: DeleteFacet — destructive operation
category: cloud
- name: aws-clouddirectory-delete-object
pattern: (?i)aws\s+delete\-object\b
severity: warn
message: DeleteObject — destructive operation
category: cloud
- name: aws-clouddirectory-delete-schema
pattern: (?i)aws\s+delete\-schema\b
severity: warn
message: DeleteSchema — destructive operation
category: cloud
- name: aws-clouddirectory-delete-typed-link-facet
pattern: (?i)aws\s+delete\-typed\-link\-facet\b
severity: warn
message: DeleteTypedLinkFacet — destructive operation
category: cloud
- name: aws-clouddirectory-detach-from-index
pattern: (?i)aws\s+detach\-from\-index\b
severity: warn
message: DetachFromIndex — destructive operation
category: cloud
- name: aws-clouddirectory-detach-object
pattern: (?i)aws\s+detach\-object\b
severity: warn
message: DetachObject — destructive operation
category: cloud
- name: aws-clouddirectory-detach-policy
pattern: (?i)aws\s+detach\-policy\b
severity: block
message: DetachPolicy — destructive operation
category: cloud
- name: aws-clouddirectory-detach-typed-link
pattern: (?i)aws\s+detach\-typed\-link\b
severity: warn
message: DetachTypedLink — destructive operation
category: cloud
- name: aws-clouddirectory-disable-directory
pattern: (?i)aws\s+disable\-directory\b
severity: warn
message: DisableDirectory — destructive operation
category: cloud
- name: aws-clouddirectory-remove-facet-from-object
pattern: (?i)aws\s+remove\-facet\-from\-object\b
severity: warn
message: RemoveFacetFromObject — destructive operation
category: cloud
- name: aws-cloudformation-cancel-update-stack
pattern: (?i)aws\s+cancel\-update\-stack\b
severity: block
message: CancelUpdateStack — destructive operation
category: cloud
- name: aws-cloudformation-delete-change-set
pattern: (?i)aws\s+delete\-change\-set\b
severity: warn
message: DeleteChangeSet — destructive operation
category: cloud
- name: aws-cloudformation-delete-stack
pattern: (?i)aws\s+delete\-stack\b
severity: block
message: DeleteStack — destructive operation
category: cloud
- name: aws-cloudformation-delete-stack-instances
pattern: (?i)aws\s+delete\-stack\-instances\b
severity: block
message: DeleteStackInstances — destructive operation
category: cloud
- name: aws-cloudformation-delete-stack-set
pattern: (?i)aws\s+delete\-stack\-set\b
severity: block
message: DeleteStackSet — destructive operation
category: cloud
- name: aws-cloudformation-deregister-type
pattern: (?i)aws\s+deregister\-type\b
severity: warn
message: DeregisterType — destructive operation
category: cloud
- name: aws-cloudfront-delete-cache-policy
pattern: (?i)aws\s+delete\-cache\-policy\b
severity: block
message: DeleteCachePolicy — destructive operation
category: cloud
- name: aws-cloudfront-delete-cloud-front-origin-access-identity
pattern: (?i)aws\s+delete\-cloud\-front\-origin\-access\-identity\b
severity: block
message: DeleteCloudFrontOriginAccessIdentity — destructive operation
category: cloud
- name: aws-cloudfront-delete-continuous-deployment-policy
pattern: (?i)aws\s+delete\-continuous\-deployment\-policy\b
severity: block
message: DeleteContinuousDeploymentPolicy — destructive operation
category: cloud
- name: aws-cloudfront-delete-distribution
pattern: (?i)aws\s+delete\-distribution\b
severity: block
message: DeleteDistribution — destructive operation
category: cloud
- name: aws-cloudfront-delete-field-level-encryption-config
pattern: (?i)aws\s+delete\-field\-level\-encryption\-config\b
severity: block
message: DeleteFieldLevelEncryptionConfig — destructive operation
category: cloud
- name: aws-cloudfront-delete-field-level-encryption-profile
pattern: (?i)aws\s+delete\-field\-level\-encryption\-profile\b
severity: block
message: DeleteFieldLevelEncryptionProfile — destructive operation
category: cloud
- name: aws-cloudfront-delete-function
pattern: (?i)aws\s+delete\-function\b
severity: block
message: DeleteFunction — destructive operation
category: cloud
- name: aws-cloudfront-delete-key-group
pattern: (?i)aws\s+delete\-key\-group\b
severity: block
message: DeleteKeyGroup — destructive operation
category: cloud
- name: aws-cloudfront-delete-monitoring-subscription
pattern: (?i)aws\s+delete\-monitoring\-subscription\b
severity: warn
message: DeleteMonitoringSubscription — destructive operation
category: cloud
- name: aws-cloudfront-delete-origin-access-control
pattern: (?i)aws\s+delete\-origin\-access\-control\b
severity: block
message: DeleteOriginAccessControl — destructive operation
category: cloud
- name: aws-cloudfront-delete-origin-request-policy
pattern: (?i)aws\s+delete\-origin\-request\-policy\b
severity: block
message: DeleteOriginRequestPolicy — destructive operation
category: cloud
- name: aws-cloudfront-delete-public-key
pattern: (?i)aws\s+delete\-public\-key\b
severity: block
message: DeletePublicKey — destructive operation
category: cloud
- name: aws-cloudfront-delete-realtime-log-config
pattern: (?i)aws\s+delete\-realtime\-log\-config\b
severity: warn
message: DeleteRealtimeLogConfig — destructive operation
category: cloud
- name: aws-cloudfront-delete-response-headers-policy
pattern: (?i)aws\s+delete\-response\-headers\-policy\b
severity: block
message: DeleteResponseHeadersPolicy — destructive operation
category: cloud
- name: aws-cloudfront-delete-streaming-distribution
pattern: (?i)aws\s+delete\-streaming\-distribution\b
severity: block
message: DeleteStreamingDistribution — destructive operation
category: cloud
- name: aws-cloudhsm-delete-hapg
pattern: (?i)aws\s+delete\-hapg\b
severity: warn
message: DeleteHapg — destructive operation
category: cloud
- name: aws-cloudhsm-delete-hsm
pattern: (?i)aws\s+delete\-hsm\b
severity: warn
message: DeleteHsm — destructive operation
category: cloud
- name: aws-cloudhsm-delete-luna-client
pattern: (?i)aws\s+delete\-luna\-client\b
severity: warn
message: DeleteLunaClient — destructive operation
category: cloud
- name: aws-cloudhsm-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-cloudhsmv2-delete-backup
pattern: (?i)aws\s+delete\-backup\b
severity: warn
message: DeleteBackup — destructive operation
category: cloud
- name: aws-cloudhsmv2-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-cloudhsmv2-delete-hsm
pattern: (?i)aws\s+delete\-hsm\b
severity: warn
message: DeleteHsm — destructive operation
category: cloud
- name: aws-cloudsearch-delete-analysis-scheme
pattern: (?i)aws\s+delete\-analysis\-scheme\b
severity: warn
message: DeleteAnalysisScheme — destructive operation
category: cloud
- name: aws-cloudsearch-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-cloudsearch-delete-expression
pattern: (?i)aws\s+delete\-expression\b
severity: warn
message: DeleteExpression — destructive operation
category: cloud
- name: aws-cloudsearch-delete-index-field
pattern: (?i)aws\s+delete\-index\-field\b
severity: warn
message: DeleteIndexField — destructive operation
category: cloud
- name: aws-cloudsearch-delete-suggester
pattern: (?i)aws\s+delete\-suggester\b
severity: warn
message: DeleteSuggester — destructive operation
category: cloud
- name: aws-cloudtrail-cancel-query
pattern: (?i)aws\s+cancel\-query\b
severity: warn
message: CancelQuery — destructive operation
category: cloud
- name: aws-cloudtrail-delete-event-data-store
pattern: (?i)aws\s+delete\-event\-data\-store\b
severity: warn
message: DeleteEventDataStore — destructive operation
category: cloud
- name: aws-cloudtrail-delete-trail
pattern: (?i)aws\s+delete\-trail\b
severity: warn
message: DeleteTrail — destructive operation
category: cloud
- name: aws-cloudtrail-deregister-organization-delegated-admin
pattern: (?i)aws\s+deregister\-organization\-delegated\-admin\b
severity: warn
message: DeregisterOrganizationDelegatedAdmin — destructive operation
category: cloud
- name: aws-cloudtrail-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-codeartifact-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: block
message: DeleteDomain — destructive operation
category: cloud
- name: aws-codeartifact-delete-domain-permissions-policy
pattern: (?i)aws\s+delete\-domain\-permissions\-policy\b
severity: block
message: DeleteDomainPermissionsPolicy — destructive operation
category: cloud
- name: aws-codeartifact-delete-package-versions
pattern: (?i)aws\s+delete\-package\-versions\b
severity: warn
message: DeletePackageVersions — destructive operation
category: cloud
- name: aws-codeartifact-delete-repository
pattern: (?i)aws\s+delete\-repository\b
severity: block
message: DeleteRepository — destructive operation
category: cloud
- name: aws-codeartifact-delete-repository-permissions-policy
pattern: (?i)aws\s+delete\-repository\-permissions\-policy\b
severity: block
message: DeleteRepositoryPermissionsPolicy — destructive operation
category: cloud
- name: aws-codeartifact-disassociate-external-connection
pattern: (?i)aws\s+disassociate\-external\-connection\b
severity: block
message: DisassociateExternalConnection — destructive operation
category: cloud
- name: aws-codebuild-batch-delete-builds
pattern: (?i)aws\s+batch\-delete\-builds\b
severity: warn
message: BatchDeleteBuilds — destructive operation
category: cloud
- name: aws-codebuild-delete-build-batch
pattern: (?i)aws\s+delete\-build\-batch\b
severity: block
message: DeleteBuildBatch — destructive operation
category: cloud
- name: aws-codebuild-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-codebuild-delete-report
pattern: (?i)aws\s+delete\-report\b
severity: warn
message: DeleteReport — destructive operation
category: cloud
- name: aws-codebuild-delete-report-group
pattern: (?i)aws\s+delete\-report\-group\b
severity: block
message: DeleteReportGroup — destructive operation
category: cloud
- name: aws-codebuild-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-codebuild-delete-source-credentials
pattern: (?i)aws\s+delete\-source\-credentials\b
severity: block
message: DeleteSourceCredentials — destructive operation
category: cloud
- name: aws-codebuild-delete-webhook
pattern: (?i)aws\s+delete\-webhook\b
severity: warn
message: DeleteWebhook — destructive operation
category: cloud
- name: aws-codecatalyst-delete-access-token
pattern: (?i)aws\s+delete\-access\-token\b
severity: block
message: DeleteAccessToken — destructive operation
category: cloud
- name: aws-codecatalyst-delete-dev-environment
pattern: (?i)aws\s+delete\-dev\-environment\b
severity: block
message: DeleteDevEnvironment — destructive operation
category: cloud
- name: aws-codecommit-batch-disassociate-approval-rule-template-from-repositories
pattern: (?i)aws\s+batch\-disassociate\-approval\-rule\-template\-from\-repositories\b
severity: warn
message: BatchDisassociateApprovalRuleTemplateFromRepositories — destructive operation
category: cloud
- name: aws-codecommit-delete-approval-rule-template
pattern: (?i)aws\s+delete\-approval\-rule\-template\b
severity: warn
message: DeleteApprovalRuleTemplate — destructive operation
category: cloud
- name: aws-codecommit-delete-branch
pattern: (?i)aws\s+delete\-branch\b
severity: warn
message: DeleteBranch — destructive operation
category: cloud
- name: aws-codecommit-delete-comment-content
pattern: (?i)aws\s+delete\-comment\-content\b
severity: warn
message: DeleteCommentContent — destructive operation
category: cloud
- name: aws-codecommit-delete-file
pattern: (?i)aws\s+delete\-file\b
severity: warn
message: DeleteFile — destructive operation
category: cloud
- name: aws-codecommit-delete-pull-request-approval-rule
pattern: (?i)aws\s+delete\-pull\-request\-approval\-rule\b
severity: warn
message: DeletePullRequestApprovalRule — destructive operation
category: cloud
- name: aws-codecommit-delete-repository
pattern: (?i)aws\s+delete\-repository\b
severity: warn
message: DeleteRepository — destructive operation
category: cloud
- name: aws-codecommit-disassociate-approval-rule-template-from-repository
pattern: (?i)aws\s+disassociate\-approval\-rule\-template\-from\-repository\b
severity: warn
message: DisassociateApprovalRuleTemplateFromRepository — destructive operation
category: cloud
- name: aws-codedeploy-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-codedeploy-delete-deployment-config
pattern: (?i)aws\s+delete\-deployment\-config\b
severity: warn
message: DeleteDeploymentConfig — destructive operation
category: cloud
- name: aws-codedeploy-delete-deployment-group
pattern: (?i)aws\s+delete\-deployment\-group\b
severity: block
message: DeleteDeploymentGroup — destructive operation
category: cloud
- name: aws-codedeploy-delete-git-hub-account-token
pattern: (?i)aws\s+delete\-git\-hub\-account\-token\b
severity: block
message: DeleteGitHubAccountToken — destructive operation
category: cloud
- name: aws-codedeploy-delete-resources-by-external-id
pattern: (?i)aws\s+delete\-resources\-by\-external\-id\b
severity: warn
message: DeleteResourcesByExternalId — destructive operation
category: cloud
- name: aws-codedeploy-deregister-on-premises-instance
pattern: (?i)aws\s+deregister\-on\-premises\-instance\b
severity: block
message: DeregisterOnPremisesInstance — destructive operation
category: cloud
- name: aws-codedeploy-remove-tags-from-on-premises-instances
pattern: (?i)aws\s+remove\-tags\-from\-on\-premises\-instances\b
severity: block
message: RemoveTagsFromOnPremisesInstances — destructive operation
category: cloud
- name: aws-codeguru-reviewer-disassociate-repository
pattern: (?i)aws\s+disassociate\-repository\b
severity: warn
message: DisassociateRepository — destructive operation
category: cloud
- name: aws-codeguru-reviewer-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-codeguruprofiler-delete-profiling-group
pattern: (?i)aws\s+delete\-profiling\-group\b
severity: block
message: DeleteProfilingGroup — destructive operation
category: cloud
- name: aws-codeguruprofiler-remove-notification-channel
pattern: (?i)aws\s+remove\-notification\-channel\b
severity: block
message: RemoveNotificationChannel — destructive operation
category: cloud
- name: aws-codeguruprofiler-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: block
message: RemovePermission — destructive operation
category: cloud
- name: aws-codeguruprofiler-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-codepipeline-delete-custom-action-type
pattern: (?i)aws\s+delete\-custom\-action\-type\b
severity: warn
message: DeleteCustomActionType — destructive operation
category: cloud
- name: aws-codepipeline-delete-pipeline
pattern: (?i)aws\s+delete\-pipeline\b
severity: warn
message: DeletePipeline — destructive operation
category: cloud
- name: aws-codepipeline-delete-webhook
pattern: (?i)aws\s+delete\-webhook\b
severity: warn
message: DeleteWebhook — destructive operation
category: cloud
- name: aws-codepipeline-deregister-webhook-with-third-party
pattern: (?i)aws\s+deregister\-webhook\-with\-third\-party\b
severity: warn
message: DeregisterWebhookWithThirdParty — destructive operation
category: cloud
- name: aws-codepipeline-disable-stage-transition
pattern: (?i)aws\s+disable\-stage\-transition\b
severity: warn
message: DisableStageTransition — destructive operation
category: cloud
- name: aws-codestar-connections-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-codestar-connections-delete-host
pattern: (?i)aws\s+delete\-host\b
severity: warn
message: DeleteHost — destructive operation
category: cloud
- name: aws-codestar-notifications-delete-notification-rule
pattern: (?i)aws\s+delete\-notification\-rule\b
severity: warn
message: DeleteNotificationRule — destructive operation
category: cloud
- name: aws-codestar-notifications-delete-target
pattern: (?i)aws\s+delete\-target\b
severity: block
message: DeleteTarget — destructive operation
category: cloud
- name: aws-codestar-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-codestar-delete-user-profile
pattern: (?i)aws\s+delete\-user\-profile\b
severity: warn
message: DeleteUserProfile — destructive operation
category: cloud
- name: aws-codestar-disassociate-team-member
pattern: (?i)aws\s+disassociate\-team\-member\b
severity: warn
message: DisassociateTeamMember — destructive operation
category: cloud
- name: aws-cognito-identity-delete-identities
pattern: (?i)aws\s+delete\-identities\b
severity: warn
message: DeleteIdentities — destructive operation
category: cloud
- name: aws-cognito-identity-delete-identity-pool
pattern: (?i)aws\s+delete\-identity\-pool\b
severity: warn
message: DeleteIdentityPool — destructive operation
category: cloud
- name: aws-cognito-idp-admin-delete-user
pattern: (?i)aws\s+admin\-delete\-user\b
severity: warn
message: AdminDeleteUser — destructive operation
category: cloud
- name: aws-cognito-idp-admin-delete-user-attributes
pattern: (?i)aws\s+admin\-delete\-user\-attributes\b
severity: warn
message: AdminDeleteUserAttributes — destructive operation
category: cloud
- name: aws-cognito-idp-admin-disable-provider-for-user
pattern: (?i)aws\s+admin\-disable\-provider\-for\-user\b
severity: warn
message: AdminDisableProviderForUser — destructive operation
category: cloud
- name: aws-cognito-idp-admin-disable-user
pattern: (?i)aws\s+admin\-disable\-user\b
severity: warn
message: AdminDisableUser — destructive operation
category: cloud
- name: aws-cognito-idp-admin-remove-user-from-group
pattern: (?i)aws\s+admin\-remove\-user\-from\-group\b
severity: block
message: AdminRemoveUserFromGroup — destructive operation
category: cloud
- name: aws-cognito-idp-admin-reset-user-password
pattern: (?i)aws\s+admin\-reset\-user\-password\b
severity: warn
message: AdminResetUserPassword — destructive operation
category: cloud
- name: aws-cognito-idp-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-cognito-idp-delete-identity-provider
pattern: (?i)aws\s+delete\-identity\-provider\b
severity: warn
message: DeleteIdentityProvider — destructive operation
category: cloud
- name: aws-cognito-idp-delete-resource-server
pattern: (?i)aws\s+delete\-resource\-server\b
severity: block
message: DeleteResourceServer — destructive operation
category: cloud
- name: aws-cognito-idp-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-cognito-idp-delete-user-attributes
pattern: (?i)aws\s+delete\-user\-attributes\b
severity: warn
message: DeleteUserAttributes — destructive operation
category: cloud
- name: aws-cognito-idp-delete-user-pool
pattern: (?i)aws\s+delete\-user\-pool\b
severity: warn
message: DeleteUserPool — destructive operation
category: cloud
- name: aws-cognito-idp-delete-user-pool-client
pattern: (?i)aws\s+delete\-user\-pool\-client\b
severity: warn
message: DeleteUserPoolClient — destructive operation
category: cloud
- name: aws-cognito-idp-delete-user-pool-domain
pattern: (?i)aws\s+delete\-user\-pool\-domain\b
severity: warn
message: DeleteUserPoolDomain — destructive operation
category: cloud
- name: aws-cognito-idp-revoke-token
pattern: (?i)aws\s+revoke\-token\b
severity: warn
message: RevokeToken — destructive operation
category: cloud
- name: aws-cognito-sync-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: block
message: DeleteDataset — destructive operation
category: cloud
- name: aws-cognito-sync-unsubscribe-from-dataset
pattern: (?i)aws\s+unsubscribe\-from\-dataset\b
severity: warn
message: UnsubscribeFromDataset — destructive operation
category: cloud
- name: aws-comprehend-delete-document-classifier
pattern: (?i)aws\s+delete\-document\-classifier\b
severity: warn
message: DeleteDocumentClassifier — destructive operation
category: cloud
- name: aws-comprehend-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: warn
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-comprehend-delete-entity-recognizer
pattern: (?i)aws\s+delete\-entity\-recognizer\b
severity: warn
message: DeleteEntityRecognizer — destructive operation
category: cloud
- name: aws-comprehend-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-compute-optimizer-delete-recommendation-preferences
pattern: (?i)aws\s+delete\-recommendation\-preferences\b
severity: warn
message: DeleteRecommendationPreferences — destructive operation
category: cloud
- name: aws-config-delete-aggregation-authorization
pattern: (?i)aws\s+delete\-aggregation\-authorization\b
severity: block
message: DeleteAggregationAuthorization — destructive operation
category: cloud
- name: aws-config-delete-config-rule
pattern: (?i)aws\s+delete\-config\-rule\b
severity: warn
message: DeleteConfigRule — destructive operation
category: cloud
- name: aws-config-delete-configuration-aggregator
pattern: (?i)aws\s+delete\-configuration\-aggregator\b
severity: warn
message: DeleteConfigurationAggregator — destructive operation
category: cloud
- name: aws-config-delete-configuration-recorder
pattern: (?i)aws\s+delete\-configuration\-recorder\b
severity: warn
message: DeleteConfigurationRecorder — destructive operation
category: cloud
- name: aws-config-delete-conformance-pack
pattern: (?i)aws\s+delete\-conformance\-pack\b
severity: warn
message: DeleteConformancePack — destructive operation
category: cloud
- name: aws-config-delete-delivery-channel
pattern: (?i)aws\s+delete\-delivery\-channel\b
severity: warn
message: DeleteDeliveryChannel — destructive operation
category: cloud
- name: aws-config-delete-evaluation-results
pattern: (?i)aws\s+delete\-evaluation\-results\b
severity: warn
message: DeleteEvaluationResults — destructive operation
category: cloud
- name: aws-config-delete-organization-config-rule
pattern: (?i)aws\s+delete\-organization\-config\-rule\b
severity: warn
message: DeleteOrganizationConfigRule — destructive operation
category: cloud
- name: aws-config-delete-organization-conformance-pack
pattern: (?i)aws\s+delete\-organization\-conformance\-pack\b
severity: warn
message: DeleteOrganizationConformancePack — destructive operation
category: cloud
- name: aws-config-delete-pending-aggregation-request
pattern: (?i)aws\s+delete\-pending\-aggregation\-request\b
severity: warn
message: DeletePendingAggregationRequest — destructive operation
category: cloud
- name: aws-config-delete-remediation-configuration
pattern: (?i)aws\s+delete\-remediation\-configuration\b
severity: warn
message: DeleteRemediationConfiguration — destructive operation
category: cloud
- name: aws-config-delete-remediation-exceptions
pattern: (?i)aws\s+delete\-remediation\-exceptions\b
severity: warn
message: DeleteRemediationExceptions — destructive operation
category: cloud
- name: aws-config-delete-resource-config
pattern: (?i)aws\s+delete\-resource\-config\b
severity: warn
message: DeleteResourceConfig — destructive operation
category: cloud
- name: aws-config-delete-retention-configuration
pattern: (?i)aws\s+delete\-retention\-configuration\b
severity: warn
message: DeleteRetentionConfiguration — destructive operation
category: cloud
- name: aws-config-delete-stored-query
pattern: (?i)aws\s+delete\-stored\-query\b
severity: warn
message: DeleteStoredQuery — destructive operation
category: cloud
- name: aws-connect-delete-contact-flow
pattern: (?i)aws\s+delete\-contact\-flow\b
severity: block
message: DeleteContactFlow — destructive operation
category: cloud
- name: aws-connect-delete-contact-flow-module
pattern: (?i)aws\s+delete\-contact\-flow\-module\b
severity: block
message: DeleteContactFlowModule — destructive operation
category: cloud
- name: aws-connect-delete-hours-of-operation
pattern: (?i)aws\s+delete\-hours\-of\-operation\b
severity: block
message: DeleteHoursOfOperation — destructive operation
category: cloud
- name: aws-connect-delete-instance
pattern: (?i)aws\s+delete\-instance\b
severity: block
message: DeleteInstance — destructive operation
category: cloud
- name: aws-connect-delete-integration-association
pattern: (?i)aws\s+delete\-integration\-association\b
severity: block
message: DeleteIntegrationAssociation — destructive operation
category: cloud
- name: aws-connect-delete-quick-connect
pattern: (?i)aws\s+delete\-quick\-connect\b
severity: block
message: DeleteQuickConnect — destructive operation
category: cloud
- name: aws-connect-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: block
message: DeleteRule — destructive operation
category: cloud
- name: aws-connect-delete-security-profile
pattern: (?i)aws\s+delete\-security\-profile\b
severity: block
message: DeleteSecurityProfile — destructive operation
category: cloud
- name: aws-connect-delete-task-template
pattern: (?i)aws\s+delete\-task\-template\b
severity: block
message: DeleteTaskTemplate — destructive operation
category: cloud
- name: aws-connect-delete-traffic-distribution-group
pattern: (?i)aws\s+delete\-traffic\-distribution\-group\b
severity: block
message: DeleteTrafficDistributionGroup — destructive operation
category: cloud
- name: aws-connect-delete-use-case
pattern: (?i)aws\s+delete\-use\-case\b
severity: block
message: DeleteUseCase — destructive operation
category: cloud
- name: aws-connect-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: block
message: DeleteUser — destructive operation
category: cloud
- name: aws-connect-delete-user-hierarchy-group
pattern: (?i)aws\s+delete\-user\-hierarchy\-group\b
severity: block
message: DeleteUserHierarchyGroup — destructive operation
category: cloud
- name: aws-connect-delete-vocabulary
pattern: (?i)aws\s+delete\-vocabulary\b
severity: block
message: DeleteVocabulary — destructive operation
category: cloud
- name: aws-connect-disassociate-approved-origin
pattern: (?i)aws\s+disassociate\-approved\-origin\b
severity: block
message: DisassociateApprovedOrigin — destructive operation
category: cloud
- name: aws-connect-disassociate-bot
pattern: (?i)aws\s+disassociate\-bot\b
severity: block
message: DisassociateBot — destructive operation
category: cloud
- name: aws-connect-disassociate-instance-storage-config
pattern: (?i)aws\s+disassociate\-instance\-storage\-config\b
severity: block
message: DisassociateInstanceStorageConfig — destructive operation
category: cloud
- name: aws-connect-disassociate-lambda-function
pattern: (?i)aws\s+disassociate\-lambda\-function\b
severity: block
message: DisassociateLambdaFunction — destructive operation
category: cloud
- name: aws-connect-disassociate-lex-bot
pattern: (?i)aws\s+disassociate\-lex\-bot\b
severity: block
message: DisassociateLexBot — destructive operation
category: cloud
- name: aws-connect-disassociate-phone-number-contact-flow
pattern: (?i)aws\s+disassociate\-phone\-number\-contact\-flow\b
severity: block
message: DisassociatePhoneNumberContactFlow — destructive operation
category: cloud
- name: aws-connect-disassociate-queue-quick-connects
pattern: (?i)aws\s+disassociate\-queue\-quick\-connects\b
severity: block
message: DisassociateQueueQuickConnects — destructive operation
category: cloud
- name: aws-connect-disassociate-routing-profile-queues
pattern: (?i)aws\s+disassociate\-routing\-profile\-queues\b
severity: block
message: DisassociateRoutingProfileQueues — destructive operation
category: cloud
- name: aws-connect-disassociate-security-key
pattern: (?i)aws\s+disassociate\-security\-key\b
severity: block
message: DisassociateSecurityKey — destructive operation
category: cloud
- name: aws-connect-release-phone-number
pattern: (?i)aws\s+release\-phone\-number\b
severity: block
message: ReleasePhoneNumber — destructive operation
category: cloud
- name: aws-connect-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-connectcampaigns-delete-campaign
pattern: (?i)aws\s+delete\-campaign\b
severity: block
message: DeleteCampaign — destructive operation
category: cloud
- name: aws-connectcampaigns-delete-connect-instance-config
pattern: (?i)aws\s+delete\-connect\-instance\-config\b
severity: block
message: DeleteConnectInstanceConfig — destructive operation
category: cloud
- name: aws-connectcampaigns-delete-instance-onboarding-job
pattern: (?i)aws\s+delete\-instance\-onboarding\-job\b
severity: block
message: DeleteInstanceOnboardingJob — destructive operation
category: cloud
- name: aws-connectcampaigns-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-connectcases-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-controltower-disable-control
pattern: (?i)aws\s+disable\-control\b
severity: warn
message: DisableControl — destructive operation
category: cloud
- name: aws-cur-delete-report-definition
pattern: (?i)aws\s+delete\-report\-definition\b
severity: warn
message: DeleteReportDefinition — destructive operation
category: cloud
- name: aws-customer-profiles-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: block
message: DeleteDomain — destructive operation
category: cloud
- name: aws-customer-profiles-delete-integration
pattern: (?i)aws\s+delete\-integration\b
severity: warn
message: DeleteIntegration — destructive operation
category: cloud
- name: aws-customer-profiles-delete-profile
pattern: (?i)aws\s+delete\-profile\b
severity: warn
message: DeleteProfile — destructive operation
category: cloud
- name: aws-customer-profiles-delete-profile-key
pattern: (?i)aws\s+delete\-profile\-key\b
severity: block
message: DeleteProfileKey — destructive operation
category: cloud
- name: aws-customer-profiles-delete-profile-object
pattern: (?i)aws\s+delete\-profile\-object\b
severity: warn
message: DeleteProfileObject — destructive operation
category: cloud
- name: aws-customer-profiles-delete-profile-object-type
pattern: (?i)aws\s+delete\-profile\-object\-type\b
severity: block
message: DeleteProfileObjectType — destructive operation
category: cloud
- name: aws-customer-profiles-delete-workflow
pattern: (?i)aws\s+delete\-workflow\b
severity: block
message: DeleteWorkflow — destructive operation
category: cloud
- name: aws-customer-profiles-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-databrew-batch-delete-recipe-version
pattern: (?i)aws\s+batch\-delete\-recipe\-version\b
severity: warn
message: BatchDeleteRecipeVersion — destructive operation
category: cloud
- name: aws-databrew-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: block
message: DeleteDataset — destructive operation
category: cloud
- name: aws-databrew-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: block
message: DeleteJob — destructive operation
category: cloud
- name: aws-databrew-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-databrew-delete-recipe-version
pattern: (?i)aws\s+delete\-recipe\-version\b
severity: block
message: DeleteRecipeVersion — destructive operation
category: cloud
- name: aws-databrew-delete-ruleset
pattern: (?i)aws\s+delete\-ruleset\b
severity: warn
message: DeleteRuleset — destructive operation
category: cloud
- name: aws-databrew-delete-schedule
pattern: (?i)aws\s+delete\-schedule\b
severity: block
message: DeleteSchedule — destructive operation
category: cloud
- name: aws-databrew-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-dataexchange-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: block
message: CancelJob — destructive operation
category: cloud
- name: aws-dataexchange-delete-asset
pattern: (?i)aws\s+delete\-asset\b
severity: block
message: DeleteAsset — destructive operation
category: cloud
- name: aws-dataexchange-delete-data-set
pattern: (?i)aws\s+delete\-data\-set\b
severity: block
message: DeleteDataSet — destructive operation
category: cloud
- name: aws-dataexchange-delete-event-action
pattern: (?i)aws\s+delete\-event\-action\b
severity: warn
message: DeleteEventAction — destructive operation
category: cloud
- name: aws-dataexchange-delete-revision
pattern: (?i)aws\s+delete\-revision\b
severity: block
message: DeleteRevision — destructive operation
category: cloud
- name: aws-dataexchange-revoke-revision
pattern: (?i)aws\s+revoke\-revision\b
severity: warn
message: RevokeRevision — destructive operation
category: cloud
- name: aws-dataexchange-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-datapipeline-delete-pipeline
pattern: (?i)aws\s+delete\-pipeline\b
severity: warn
message: DeletePipeline — destructive operation
category: cloud
- name: aws-datapipeline-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-datasync-cancel-task-execution
pattern: (?i)aws\s+cancel\-task\-execution\b
severity: warn
message: CancelTaskExecution — destructive operation
category: cloud
- name: aws-datasync-delete-agent
pattern: (?i)aws\s+delete\-agent\b
severity: warn
message: DeleteAgent — destructive operation
category: cloud
- name: aws-datasync-delete-location
pattern: (?i)aws\s+delete\-location\b
severity: warn
message: DeleteLocation — destructive operation
category: cloud
- name: aws-datasync-delete-task
pattern: (?i)aws\s+delete\-task\b
severity: warn
message: DeleteTask — destructive operation
category: cloud
- name: aws-dax-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-dax-delete-parameter-group
pattern: (?i)aws\s+delete\-parameter\-group\b
severity: block
message: DeleteParameterGroup — destructive operation
category: cloud
- name: aws-dax-delete-subnet-group
pattern: (?i)aws\s+delete\-subnet\-group\b
severity: block
message: DeleteSubnetGroup — destructive operation
category: cloud
- name: aws-detective-delete-graph
pattern: (?i)aws\s+delete\-graph\b
severity: warn
message: DeleteGraph — destructive operation
category: cloud
- name: aws-detective-delete-members
pattern: (?i)aws\s+delete\-members\b
severity: warn
message: DeleteMembers — destructive operation
category: cloud
- name: aws-detective-disable-organization-admin-account
pattern: (?i)aws\s+disable\-organization\-admin\-account\b
severity: block
message: DisableOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-detective-disassociate-membership
pattern: (?i)aws\s+disassociate\-membership\b
severity: warn
message: DisassociateMembership — destructive operation
category: cloud
- name: aws-detective-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-devicefarm-delete-device-pool
pattern: (?i)aws\s+delete\-device\-pool\b
severity: warn
message: DeleteDevicePool — destructive operation
category: cloud
- name: aws-devicefarm-delete-instance-profile
pattern: (?i)aws\s+delete\-instance\-profile\b
severity: block
message: DeleteInstanceProfile — destructive operation
category: cloud
- name: aws-devicefarm-delete-network-profile
pattern: (?i)aws\s+delete\-network\-profile\b
severity: warn
message: DeleteNetworkProfile — destructive operation
category: cloud
- name: aws-devicefarm-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-devicefarm-delete-remote-access-session
pattern: (?i)aws\s+delete\-remote\-access\-session\b
severity: warn
message: DeleteRemoteAccessSession — destructive operation
category: cloud
- name: aws-devicefarm-delete-run
pattern: (?i)aws\s+delete\-run\b
severity: warn
message: DeleteRun — destructive operation
category: cloud
- name: aws-devicefarm-delete-test-grid-project
pattern: (?i)aws\s+delete\-test\-grid\-project\b
severity: block
message: DeleteTestGridProject — destructive operation
category: cloud
- name: aws-devicefarm-delete-upload
pattern: (?i)aws\s+delete\-upload\b
severity: warn
message: DeleteUpload — destructive operation
category: cloud
- name: aws-devicefarm-delete-v-p-c-e-configuration
pattern: (?i)aws\s+delete\-v\-p\-c\-e\-configuration\b
severity: warn
message: DeleteVPCEConfiguration — destructive operation
category: cloud
- name: aws-devops-guru-delete-insight
pattern: (?i)aws\s+delete\-insight\b
severity: block
message: DeleteInsight — destructive operation
category: cloud
- name: aws-devops-guru-remove-notification-channel
pattern: (?i)aws\s+remove\-notification\-channel\b
severity: warn
message: RemoveNotificationChannel — destructive operation
category: cloud
- name: aws-directconnect-delete-b-g-p-peer
pattern: (?i)aws\s+delete\-b\-g\-p\-peer\b
severity: warn
message: DeleteBGPPeer — destructive operation
category: cloud
- name: aws-directconnect-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-directconnect-delete-direct-connect-gateway
pattern: (?i)aws\s+delete\-direct\-connect\-gateway\b
severity: block
message: DeleteDirectConnectGateway — destructive operation
category: cloud
- name: aws-directconnect-delete-direct-connect-gateway-association
pattern: (?i)aws\s+delete\-direct\-connect\-gateway\-association\b
severity: block
message: DeleteDirectConnectGatewayAssociation — destructive operation
category: cloud
- name: aws-directconnect-delete-direct-connect-gateway-association-proposal
pattern: (?i)aws\s+delete\-direct\-connect\-gateway\-association\-proposal\b
severity: block
message: DeleteDirectConnectGatewayAssociationProposal — destructive operation
category: cloud
- name: aws-directconnect-delete-interconnect
pattern: (?i)aws\s+delete\-interconnect\b
severity: warn
message: DeleteInterconnect — destructive operation
category: cloud
- name: aws-directconnect-delete-lag
pattern: (?i)aws\s+delete\-lag\b
severity: warn
message: DeleteLag — destructive operation
category: cloud
- name: aws-directconnect-delete-virtual-interface
pattern: (?i)aws\s+delete\-virtual\-interface\b
severity: warn
message: DeleteVirtualInterface — destructive operation
category: cloud
- name: aws-directconnect-disassociate-connection-from-lag
pattern: (?i)aws\s+disassociate\-connection\-from\-lag\b
severity: warn
message: DisassociateConnectionFromLag — destructive operation
category: cloud
- name: aws-directconnect-disassociate-mac-sec-key
pattern: (?i)aws\s+disassociate\-mac\-sec\-key\b
severity: block
message: DisassociateMacSecKey — destructive operation
category: cloud
- name: aws-discovery-batch-delete-import-data
pattern: (?i)aws\s+batch\-delete\-import\-data\b
severity: warn
message: BatchDeleteImportData — destructive operation
category: cloud
- name: aws-discovery-delete-applications
pattern: (?i)aws\s+delete\-applications\b
severity: warn
message: DeleteApplications — destructive operation
category: cloud
- name: aws-discovery-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-discovery-disassociate-configuration-items-from-application
pattern: (?i)aws\s+disassociate\-configuration\-items\-from\-application\b
severity: block
message: DisassociateConfigurationItemsFromApplication — destructive operation
category: cloud
- name: aws-dlm-delete-lifecycle-policy
pattern: (?i)aws\s+delete\-lifecycle\-policy\b
severity: block
message: DeleteLifecyclePolicy — destructive operation
category: cloud
- name: aws-dlm-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-dms-cancel-replication-task-assessment-run
pattern: (?i)aws\s+cancel\-replication\-task\-assessment\-run\b
severity: warn
message: CancelReplicationTaskAssessmentRun — destructive operation
category: cloud
- name: aws-dms-delete-certificate
pattern: (?i)aws\s+delete\-certificate\b
severity: block
message: DeleteCertificate — destructive operation
category: cloud
- name: aws-dms-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-dms-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: warn
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-dms-delete-event-subscription
pattern: (?i)aws\s+delete\-event\-subscription\b
severity: warn
message: DeleteEventSubscription — destructive operation
category: cloud
- name: aws-dms-delete-fleet-advisor-collector
pattern: (?i)aws\s+delete\-fleet\-advisor\-collector\b
severity: warn
message: DeleteFleetAdvisorCollector — destructive operation
category: cloud
- name: aws-dms-delete-fleet-advisor-databases
pattern: (?i)aws\s+delete\-fleet\-advisor\-databases\b
severity: block
message: DeleteFleetAdvisorDatabases — destructive operation
category: cloud
- name: aws-dms-delete-replication-instance
pattern: (?i)aws\s+delete\-replication\-instance\b
severity: block
message: DeleteReplicationInstance — destructive operation
category: cloud
- name: aws-dms-delete-replication-subnet-group
pattern: (?i)aws\s+delete\-replication\-subnet\-group\b
severity: block
message: DeleteReplicationSubnetGroup — destructive operation
category: cloud
- name: aws-dms-delete-replication-task
pattern: (?i)aws\s+delete\-replication\-task\b
severity: warn
message: DeleteReplicationTask — destructive operation
category: cloud
- name: aws-dms-delete-replication-task-assessment-run
pattern: (?i)aws\s+delete\-replication\-task\-assessment\-run\b
severity: warn
message: DeleteReplicationTaskAssessmentRun — destructive operation
category: cloud
- name: aws-dms-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-docdb-elastic-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-docdb-elastic-delete-cluster-snapshot
pattern: (?i)aws\s+delete\-cluster\-snapshot\b
severity: block
message: DeleteClusterSnapshot — destructive operation
category: cloud
- name: aws-docdb-elastic-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-docdb-delete-d-b-cluster
pattern: (?i)aws\s+delete\-d\-b\-cluster\b
severity: block
message: DeleteDBCluster — destructive operation
category: cloud
- name: aws-docdb-delete-d-b-cluster-parameter-group
pattern: (?i)aws\s+delete\-d\-b\-cluster\-parameter\-group\b
severity: block
message: DeleteDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-docdb-delete-d-b-cluster-snapshot
pattern: (?i)aws\s+delete\-d\-b\-cluster\-snapshot\b
severity: block
message: DeleteDBClusterSnapshot — destructive operation
category: cloud
- name: aws-docdb-delete-d-b-instance
pattern: (?i)aws\s+delete\-d\-b\-instance\b
severity: block
message: DeleteDBInstance — destructive operation
category: cloud
- name: aws-docdb-delete-d-b-subnet-group
pattern: (?i)aws\s+delete\-d\-b\-subnet\-group\b
severity: block
message: DeleteDBSubnetGroup — destructive operation
category: cloud
- name: aws-docdb-delete-event-subscription
pattern: (?i)aws\s+delete\-event\-subscription\b
severity: warn
message: DeleteEventSubscription — destructive operation
category: cloud
- name: aws-docdb-delete-global-cluster
pattern: (?i)aws\s+delete\-global\-cluster\b
severity: block
message: DeleteGlobalCluster — destructive operation
category: cloud
- name: aws-docdb-remove-from-global-cluster
pattern: (?i)aws\s+remove\-from\-global\-cluster\b
severity: block
message: RemoveFromGlobalCluster — destructive operation
category: cloud
- name: aws-docdb-remove-source-identifier-from-subscription
pattern: (?i)aws\s+remove\-source\-identifier\-from\-subscription\b
severity: warn
message: RemoveSourceIdentifierFromSubscription — destructive operation
category: cloud
- name: aws-docdb-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-docdb-reset-d-b-cluster-parameter-group
pattern: (?i)aws\s+reset\-d\-b\-cluster\-parameter\-group\b
severity: block
message: ResetDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-drs-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: warn
message: DeleteJob — destructive operation
category: cloud
- name: aws-drs-delete-recovery-instance
pattern: (?i)aws\s+delete\-recovery\-instance\b
severity: block
message: DeleteRecoveryInstance — destructive operation
category: cloud
- name: aws-drs-delete-replication-configuration-template
pattern: (?i)aws\s+delete\-replication\-configuration\-template\b
severity: warn
message: DeleteReplicationConfigurationTemplate — destructive operation
category: cloud
- name: aws-drs-delete-source-server
pattern: (?i)aws\s+delete\-source\-server\b
severity: block
message: DeleteSourceServer — destructive operation
category: cloud
- name: aws-drs-terminate-recovery-instances
pattern: (?i)aws\s+terminate\-recovery\-instances\b
severity: block
message: TerminateRecoveryInstances — destructive operation
category: cloud
- name: aws-drs-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ds-cancel-schema-extension
pattern: (?i)aws\s+cancel\-schema\-extension\b
severity: warn
message: CancelSchemaExtension — destructive operation
category: cloud
- name: aws-ds-delete-conditional-forwarder
pattern: (?i)aws\s+delete\-conditional\-forwarder\b
severity: warn
message: DeleteConditionalForwarder — destructive operation
category: cloud
- name: aws-ds-delete-directory
pattern: (?i)aws\s+delete\-directory\b
severity: warn
message: DeleteDirectory — destructive operation
category: cloud
- name: aws-ds-delete-log-subscription
pattern: (?i)aws\s+delete\-log\-subscription\b
severity: warn
message: DeleteLogSubscription — destructive operation
category: cloud
- name: aws-ds-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-ds-delete-trust
pattern: (?i)aws\s+delete\-trust\b
severity: warn
message: DeleteTrust — destructive operation
category: cloud
- name: aws-ds-deregister-certificate
pattern: (?i)aws\s+deregister\-certificate\b
severity: block
message: DeregisterCertificate — destructive operation
category: cloud
- name: aws-ds-deregister-event-topic
pattern: (?i)aws\s+deregister\-event\-topic\b
severity: warn
message: DeregisterEventTopic — destructive operation
category: cloud
- name: aws-ds-disable-client-authentication
pattern: (?i)aws\s+disable\-client\-authentication\b
severity: block
message: DisableClientAuthentication — destructive operation
category: cloud
- name: aws-ds-disable-l-d-a-p-s
pattern: (?i)aws\s+disable\-l\-d\-a\-p\-s\b
severity: warn
message: DisableLDAPS — destructive operation
category: cloud
- name: aws-ds-disable-radius
pattern: (?i)aws\s+disable\-radius\b
severity: warn
message: DisableRadius — destructive operation
category: cloud
- name: aws-ds-disable-sso
pattern: (?i)aws\s+disable\-sso\b
severity: warn
message: DisableSso — destructive operation
category: cloud
- name: aws-ds-remove-ip-routes
pattern: (?i)aws\s+remove\-ip\-routes\b
severity: warn
message: RemoveIpRoutes — destructive operation
category: cloud
- name: aws-ds-remove-region
pattern: (?i)aws\s+remove\-region\b
severity: warn
message: RemoveRegion — destructive operation
category: cloud
- name: aws-ds-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-ds-reset-user-password
pattern: (?i)aws\s+reset\-user\-password\b
severity: warn
message: ResetUserPassword — destructive operation
category: cloud
- name: aws-dynamodb-delete-backup
pattern: (?i)aws\s+delete\-backup\b
severity: warn
message: DeleteBackup — destructive operation
category: cloud
- name: aws-dynamodb-delete-item
pattern: (?i)aws\s+delete\-item\b
severity: block
message: DeleteItem — destructive operation
category: cloud
- name: aws-dynamodb-delete-table
pattern: (?i)aws\s+delete\-table\b
severity: warn
message: DeleteTable — destructive operation
category: cloud
- name: aws-dynamodb-disable-kinesis-streaming-destination
pattern: (?i)aws\s+disable\-kinesis\-streaming\-destination\b
severity: warn
message: DisableKinesisStreamingDestination — destructive operation
category: cloud
- name: aws-ec2-cancel-bundle-task
pattern: (?i)aws\s+cancel\-bundle\-task\b
severity: warn
message: CancelBundleTask — destructive operation
category: cloud
- name: aws-ec2-cancel-capacity-reservation
pattern: (?i)aws\s+cancel\-capacity\-reservation\b
severity: warn
message: CancelCapacityReservation — destructive operation
category: cloud
- name: aws-ec2-cancel-capacity-reservation-fleets
pattern: (?i)aws\s+cancel\-capacity\-reservation\-fleets\b
severity: warn
message: CancelCapacityReservationFleets — destructive operation
category: cloud
- name: aws-ec2-cancel-conversion-task
pattern: (?i)aws\s+cancel\-conversion\-task\b
severity: warn
message: CancelConversionTask — destructive operation
category: cloud
- name: aws-ec2-cancel-export-task
pattern: (?i)aws\s+cancel\-export\-task\b
severity: warn
message: CancelExportTask — destructive operation
category: cloud
- name: aws-ec2-cancel-image-launch-permission
pattern: (?i)aws\s+cancel\-image\-launch\-permission\b
severity: warn
message: CancelImageLaunchPermission — destructive operation
category: cloud
- name: aws-ec2-cancel-import-task
pattern: (?i)aws\s+cancel\-import\-task\b
severity: warn
message: CancelImportTask — destructive operation
category: cloud
- name: aws-ec2-cancel-reserved-instances-listing
pattern: (?i)aws\s+cancel\-reserved\-instances\-listing\b
severity: block
message: CancelReservedInstancesListing — destructive operation
category: cloud
- name: aws-ec2-cancel-spot-fleet-requests
pattern: (?i)aws\s+cancel\-spot\-fleet\-requests\b
severity: warn
message: CancelSpotFleetRequests — destructive operation
category: cloud
- name: aws-ec2-cancel-spot-instance-requests
pattern: (?i)aws\s+cancel\-spot\-instance\-requests\b
severity: block
message: CancelSpotInstanceRequests — destructive operation
category: cloud
- name: aws-ec2-delete-carrier-gateway
pattern: (?i)aws\s+delete\-carrier\-gateway\b
severity: block
message: DeleteCarrierGateway — destructive operation
category: cloud
- name: aws-ec2-delete-client-vpn-endpoint
pattern: (?i)aws\s+delete\-client\-vpn\-endpoint\b
severity: warn
message: DeleteClientVpnEndpoint — destructive operation
category: cloud
- name: aws-ec2-delete-client-vpn-route
pattern: (?i)aws\s+delete\-client\-vpn\-route\b
severity: warn
message: DeleteClientVpnRoute — destructive operation
category: cloud
- name: aws-ec2-delete-coip-cidr
pattern: (?i)aws\s+delete\-coip\-cidr\b
severity: warn
message: DeleteCoipCidr — destructive operation
category: cloud
- name: aws-ec2-delete-coip-pool
pattern: (?i)aws\s+delete\-coip\-pool\b
severity: warn
message: DeleteCoipPool — destructive operation
category: cloud
- name: aws-ec2-delete-customer-gateway
pattern: (?i)aws\s+delete\-customer\-gateway\b
severity: block
message: DeleteCustomerGateway — destructive operation
category: cloud
- name: aws-ec2-delete-dhcp-options
pattern: (?i)aws\s+delete\-dhcp\-options\b
severity: warn
message: DeleteDhcpOptions — destructive operation
category: cloud
- name: aws-ec2-delete-egress-only-internet-gateway
pattern: (?i)aws\s+delete\-egress\-only\-internet\-gateway\b
severity: block
message: DeleteEgressOnlyInternetGateway — destructive operation
category: cloud
- name: aws-ec2-delete-fleets
pattern: (?i)aws\s+delete\-fleets\b
severity: warn
message: DeleteFleets — destructive operation
category: cloud
- name: aws-ec2-delete-flow-logs
pattern: (?i)aws\s+delete\-flow\-logs\b
severity: warn
message: DeleteFlowLogs — destructive operation
category: cloud
- name: aws-ec2-delete-fpga-image
pattern: (?i)aws\s+delete\-fpga\-image\b
severity: warn
message: DeleteFpgaImage — destructive operation
category: cloud
- name: aws-ec2-delete-instance-event-window
pattern: (?i)aws\s+delete\-instance\-event\-window\b
severity: block
message: DeleteInstanceEventWindow — destructive operation
category: cloud
- name: aws-ec2-delete-internet-gateway
pattern: (?i)aws\s+delete\-internet\-gateway\b
severity: block
message: DeleteInternetGateway — destructive operation
category: cloud
- name: aws-ec2-delete-ipam
pattern: (?i)aws\s+delete\-ipam\b
severity: warn
message: DeleteIpam — destructive operation
category: cloud
- name: aws-ec2-delete-ipam-pool
pattern: (?i)aws\s+delete\-ipam\-pool\b
severity: warn
message: DeleteIpamPool — destructive operation
category: cloud
- name: aws-ec2-delete-ipam-scope
pattern: (?i)aws\s+delete\-ipam\-scope\b
severity: warn
message: DeleteIpamScope — destructive operation
category: cloud
- name: aws-ec2-delete-key-pair
pattern: (?i)aws\s+delete\-key\-pair\b
severity: block
message: DeleteKeyPair — destructive operation
category: cloud
- name: aws-ec2-delete-launch-template
pattern: (?i)aws\s+delete\-launch\-template\b
severity: warn
message: DeleteLaunchTemplate — destructive operation
category: cloud
- name: aws-ec2-delete-launch-template-versions
pattern: (?i)aws\s+delete\-launch\-template\-versions\b
severity: warn
message: DeleteLaunchTemplateVersions — destructive operation
category: cloud
- name: aws-ec2-delete-local-gateway-route
pattern: (?i)aws\s+delete\-local\-gateway\-route\b
severity: block
message: DeleteLocalGatewayRoute — destructive operation
category: cloud
- name: aws-ec2-delete-local-gateway-route-table
pattern: (?i)aws\s+delete\-local\-gateway\-route\-table\b
severity: block
message: DeleteLocalGatewayRouteTable — destructive operation
category: cloud
- name: aws-ec2-delete-local-gateway-route-table-virtual-interface-group-association
pattern: (?i)aws\s+delete\-local\-gateway\-route\-table\-virtual\-interface\-group\-association\b
severity: block
message: DeleteLocalGatewayRouteTableVirtualInterfaceGroupAssociation — destructive operation
category: cloud
- name: aws-ec2-delete-local-gateway-route-table-vpc-association
pattern: (?i)aws\s+delete\-local\-gateway\-route\-table\-vpc\-association\b
severity: block
message: DeleteLocalGatewayRouteTableVpcAssociation — destructive operation
category: cloud
- name: aws-ec2-delete-managed-prefix-list
pattern: (?i)aws\s+delete\-managed\-prefix\-list\b
severity: warn
message: DeleteManagedPrefixList — destructive operation
category: cloud
- name: aws-ec2-delete-nat-gateway
pattern: (?i)aws\s+delete\-nat\-gateway\b
severity: block
message: DeleteNatGateway — destructive operation
category: cloud
- name: aws-ec2-delete-network-acl
pattern: (?i)aws\s+delete\-network\-acl\b
severity: warn
message: DeleteNetworkAcl — destructive operation
category: cloud
- name: aws-ec2-delete-network-acl-entry
pattern: (?i)aws\s+delete\-network\-acl\-entry\b
severity: warn
message: DeleteNetworkAclEntry — destructive operation
category: cloud
- name: aws-ec2-delete-network-insights-access-scope
pattern: (?i)aws\s+delete\-network\-insights\-access\-scope\b
severity: warn
message: DeleteNetworkInsightsAccessScope — destructive operation
category: cloud
- name: aws-ec2-delete-network-insights-access-scope-analysis
pattern: (?i)aws\s+delete\-network\-insights\-access\-scope\-analysis\b
severity: warn
message: DeleteNetworkInsightsAccessScopeAnalysis — destructive operation
category: cloud
- name: aws-ec2-delete-network-insights-analysis
pattern: (?i)aws\s+delete\-network\-insights\-analysis\b
severity: warn
message: DeleteNetworkInsightsAnalysis — destructive operation
category: cloud
- name: aws-ec2-delete-network-insights-path
pattern: (?i)aws\s+delete\-network\-insights\-path\b
severity: warn
message: DeleteNetworkInsightsPath — destructive operation
category: cloud
- name: aws-ec2-delete-network-interface
pattern: (?i)aws\s+delete\-network\-interface\b
severity: warn
message: DeleteNetworkInterface — destructive operation
category: cloud
- name: aws-ec2-delete-network-interface-permission
pattern: (?i)aws\s+delete\-network\-interface\-permission\b
severity: warn
message: DeleteNetworkInterfacePermission — destructive operation
category: cloud
- name: aws-ec2-delete-placement-group
pattern: (?i)aws\s+delete\-placement\-group\b
severity: block
message: DeletePlacementGroup — destructive operation
category: cloud
- name: aws-ec2-delete-public-ipv4-pool
pattern: (?i)aws\s+delete\-public\-ipv4\-pool\b
severity: warn
message: DeletePublicIpv4Pool — destructive operation
category: cloud
- name: aws-ec2-delete-queued-reserved-instances
pattern: (?i)aws\s+delete\-queued\-reserved\-instances\b
severity: block
message: DeleteQueuedReservedInstances — destructive operation
category: cloud
- name: aws-ec2-delete-route
pattern: (?i)aws\s+delete\-route\b
severity: warn
message: DeleteRoute — destructive operation
category: cloud
- name: aws-ec2-delete-route-table
pattern: (?i)aws\s+delete\-route\-table\b
severity: warn
message: DeleteRouteTable — destructive operation
category: cloud
- name: aws-ec2-delete-security-group
pattern: (?i)aws\s+delete\-security\-group\b
severity: block
message: DeleteSecurityGroup — destructive operation
category: cloud
- name: aws-ec2-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-ec2-delete-spot-datafeed-subscription
pattern: (?i)aws\s+delete\-spot\-datafeed\-subscription\b
severity: warn
message: DeleteSpotDatafeedSubscription — destructive operation
category: cloud
- name: aws-ec2-delete-subnet
pattern: (?i)aws\s+delete\-subnet\b
severity: warn
message: DeleteSubnet — destructive operation
category: cloud
- name: aws-ec2-delete-subnet-cidr-reservation
pattern: (?i)aws\s+delete\-subnet\-cidr\-reservation\b
severity: warn
message: DeleteSubnetCidrReservation — destructive operation
category: cloud
- name: aws-ec2-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-ec2-delete-traffic-mirror-filter
pattern: (?i)aws\s+delete\-traffic\-mirror\-filter\b
severity: warn
message: DeleteTrafficMirrorFilter — destructive operation
category: cloud
- name: aws-ec2-delete-traffic-mirror-filter-rule
pattern: (?i)aws\s+delete\-traffic\-mirror\-filter\-rule\b
severity: warn
message: DeleteTrafficMirrorFilterRule — destructive operation
category: cloud
- name: aws-ec2-delete-traffic-mirror-session
pattern: (?i)aws\s+delete\-traffic\-mirror\-session\b
severity: warn
message: DeleteTrafficMirrorSession — destructive operation
category: cloud
- name: aws-ec2-delete-traffic-mirror-target
pattern: (?i)aws\s+delete\-traffic\-mirror\-target\b
severity: block
message: DeleteTrafficMirrorTarget — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway
pattern: (?i)aws\s+delete\-transit\-gateway\b
severity: block
message: DeleteTransitGateway — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-connect
pattern: (?i)aws\s+delete\-transit\-gateway\-connect\b
severity: block
message: DeleteTransitGatewayConnect — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-connect-peer
pattern: (?i)aws\s+delete\-transit\-gateway\-connect\-peer\b
severity: block
message: DeleteTransitGatewayConnectPeer — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-multicast-domain
pattern: (?i)aws\s+delete\-transit\-gateway\-multicast\-domain\b
severity: block
message: DeleteTransitGatewayMulticastDomain — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-peering-attachment
pattern: (?i)aws\s+delete\-transit\-gateway\-peering\-attachment\b
severity: block
message: DeleteTransitGatewayPeeringAttachment — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-policy-table
pattern: (?i)aws\s+delete\-transit\-gateway\-policy\-table\b
severity: block
message: DeleteTransitGatewayPolicyTable — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-prefix-list-reference
pattern: (?i)aws\s+delete\-transit\-gateway\-prefix\-list\-reference\b
severity: block
message: DeleteTransitGatewayPrefixListReference — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-route
pattern: (?i)aws\s+delete\-transit\-gateway\-route\b
severity: block
message: DeleteTransitGatewayRoute — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-route-table
pattern: (?i)aws\s+delete\-transit\-gateway\-route\-table\b
severity: block
message: DeleteTransitGatewayRouteTable — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-route-table-announcement
pattern: (?i)aws\s+delete\-transit\-gateway\-route\-table\-announcement\b
severity: block
message: DeleteTransitGatewayRouteTableAnnouncement — destructive operation
category: cloud
- name: aws-ec2-delete-transit-gateway-vpc-attachment
pattern: (?i)aws\s+delete\-transit\-gateway\-vpc\-attachment\b
severity: block
message: DeleteTransitGatewayVpcAttachment — destructive operation
category: cloud
- name: aws-ec2-delete-verified-access-endpoint
pattern: (?i)aws\s+delete\-verified\-access\-endpoint\b
severity: warn
message: DeleteVerifiedAccessEndpoint — destructive operation
category: cloud
- name: aws-ec2-delete-verified-access-group
pattern: (?i)aws\s+delete\-verified\-access\-group\b
severity: block
message: DeleteVerifiedAccessGroup — destructive operation
category: cloud
- name: aws-ec2-delete-verified-access-instance
pattern: (?i)aws\s+delete\-verified\-access\-instance\b
severity: block
message: DeleteVerifiedAccessInstance — destructive operation
category: cloud
- name: aws-ec2-delete-verified-access-trust-provider
pattern: (?i)aws\s+delete\-verified\-access\-trust\-provider\b
severity: warn
message: DeleteVerifiedAccessTrustProvider — destructive operation
category: cloud
- name: aws-ec2-delete-volume
pattern: (?i)aws\s+delete\-volume\b
severity: block
message: DeleteVolume — destructive operation
category: cloud
- name: aws-ec2-delete-vpc
pattern: (?i)aws\s+delete\-vpc\b
severity: warn
message: DeleteVpc — destructive operation
category: cloud
- name: aws-ec2-delete-vpc-endpoint-connection-notifications
pattern: (?i)aws\s+delete\-vpc\-endpoint\-connection\-notifications\b
severity: warn
message: DeleteVpcEndpointConnectionNotifications — destructive operation
category: cloud
- name: aws-ec2-delete-vpc-endpoint-service-configurations
pattern: (?i)aws\s+delete\-vpc\-endpoint\-service\-configurations\b
severity: warn
message: DeleteVpcEndpointServiceConfigurations — destructive operation
category: cloud
- name: aws-ec2-delete-vpc-endpoints
pattern: (?i)aws\s+delete\-vpc\-endpoints\b
severity: warn
message: DeleteVpcEndpoints — destructive operation
category: cloud
- name: aws-ec2-delete-vpc-peering-connection
pattern: (?i)aws\s+delete\-vpc\-peering\-connection\b
severity: warn
message: DeleteVpcPeeringConnection — destructive operation
category: cloud
- name: aws-ec2-delete-vpn-connection
pattern: (?i)aws\s+delete\-vpn\-connection\b
severity: warn
message: DeleteVpnConnection — destructive operation
category: cloud
- name: aws-ec2-delete-vpn-connection-route
pattern: (?i)aws\s+delete\-vpn\-connection\-route\b
severity: warn
message: DeleteVpnConnectionRoute — destructive operation
category: cloud
- name: aws-ec2-delete-vpn-gateway
pattern: (?i)aws\s+delete\-vpn\-gateway\b
severity: block
message: DeleteVpnGateway — destructive operation
category: cloud
- name: aws-ec2-deregister-image
pattern: (?i)aws\s+deregister\-image\b
severity: warn
message: DeregisterImage — destructive operation
category: cloud
- name: aws-ec2-deregister-instance-event-notification-attributes
pattern: (?i)aws\s+deregister\-instance\-event\-notification\-attributes\b
severity: block
message: DeregisterInstanceEventNotificationAttributes — destructive operation
category: cloud
- name: aws-ec2-deregister-transit-gateway-multicast-group-members
pattern: (?i)aws\s+deregister\-transit\-gateway\-multicast\-group\-members\b
severity: block
message: DeregisterTransitGatewayMulticastGroupMembers — destructive operation
category: cloud
- name: aws-ec2-deregister-transit-gateway-multicast-group-sources
pattern: (?i)aws\s+deregister\-transit\-gateway\-multicast\-group\-sources\b
severity: block
message: DeregisterTransitGatewayMulticastGroupSources — destructive operation
category: cloud
- name: aws-ec2-detach-classic-link-vpc
pattern: (?i)aws\s+detach\-classic\-link\-vpc\b
severity: warn
message: DetachClassicLinkVpc — destructive operation
category: cloud
- name: aws-ec2-detach-internet-gateway
pattern: (?i)aws\s+detach\-internet\-gateway\b
severity: block
message: DetachInternetGateway — destructive operation
category: cloud
- name: aws-ec2-detach-network-interface
pattern: (?i)aws\s+detach\-network\-interface\b
severity: warn
message: DetachNetworkInterface — destructive operation
category: cloud
- name: aws-ec2-detach-verified-access-trust-provider
pattern: (?i)aws\s+detach\-verified\-access\-trust\-provider\b
severity: warn
message: DetachVerifiedAccessTrustProvider — destructive operation
category: cloud
- name: aws-ec2-detach-volume
pattern: (?i)aws\s+detach\-volume\b
severity: block
message: DetachVolume — destructive operation
category: cloud
- name: aws-ec2-detach-vpn-gateway
pattern: (?i)aws\s+detach\-vpn\-gateway\b
severity: block
message: DetachVpnGateway — destructive operation
category: cloud
- name: aws-ec2-disable-address-transfer
pattern: (?i)aws\s+disable\-address\-transfer\b
severity: warn
message: DisableAddressTransfer — destructive operation
category: cloud
- name: aws-ec2-disable-aws-network-performance-metric-subscription
pattern: (?i)aws\s+disable\-aws\-network\-performance\-metric\-subscription\b
severity: warn
message: DisableAwsNetworkPerformanceMetricSubscription — destructive operation
category: cloud
- name: aws-ec2-disable-ebs-encryption-by-default
pattern: (?i)aws\s+disable\-ebs\-encryption\-by\-default\b
severity: warn
message: DisableEbsEncryptionByDefault — destructive operation
category: cloud
- name: aws-ec2-disable-fast-launch
pattern: (?i)aws\s+disable\-fast\-launch\b
severity: warn
message: DisableFastLaunch — destructive operation
category: cloud
- name: aws-ec2-disable-fast-snapshot-restores
pattern: (?i)aws\s+disable\-fast\-snapshot\-restores\b
severity: warn
message: DisableFastSnapshotRestores — destructive operation
category: cloud
- name: aws-ec2-disable-image-deprecation
pattern: (?i)aws\s+disable\-image\-deprecation\b
severity: warn
message: DisableImageDeprecation — destructive operation
category: cloud
- name: aws-ec2-disable-ipam-organization-admin-account
pattern: (?i)aws\s+disable\-ipam\-organization\-admin\-account\b
severity: block
message: DisableIpamOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-ec2-disable-serial-console-access
pattern: (?i)aws\s+disable\-serial\-console\-access\b
severity: warn
message: DisableSerialConsoleAccess — destructive operation
category: cloud
- name: aws-ec2-disable-transit-gateway-route-table-propagation
pattern: (?i)aws\s+disable\-transit\-gateway\-route\-table\-propagation\b
severity: block
message: DisableTransitGatewayRouteTablePropagation — destructive operation
category: cloud
- name: aws-ec2-disable-vgw-route-propagation
pattern: (?i)aws\s+disable\-vgw\-route\-propagation\b
severity: warn
message: DisableVgwRoutePropagation — destructive operation
category: cloud
- name: aws-ec2-disable-vpc-classic-link
pattern: (?i)aws\s+disable\-vpc\-classic\-link\b
severity: warn
message: DisableVpcClassicLink — destructive operation
category: cloud
- name: aws-ec2-disable-vpc-classic-link-dns-support
pattern: (?i)aws\s+disable\-vpc\-classic\-link\-dns\-support\b
severity: warn
message: DisableVpcClassicLinkDnsSupport — destructive operation
category: cloud
- name: aws-ec2-disassociate-address
pattern: (?i)aws\s+disassociate\-address\b
severity: warn
message: DisassociateAddress — destructive operation
category: cloud
- name: aws-ec2-disassociate-client-vpn-target-network
pattern: (?i)aws\s+disassociate\-client\-vpn\-target\-network\b
severity: block
message: DisassociateClientVpnTargetNetwork — destructive operation
category: cloud
- name: aws-ec2-disassociate-enclave-certificate-iam-role
pattern: (?i)aws\s+disassociate\-enclave\-certificate\-iam\-role\b
severity: block
message: DisassociateEnclaveCertificateIamRole — destructive operation
category: cloud
- name: aws-ec2-disassociate-iam-instance-profile
pattern: (?i)aws\s+disassociate\-iam\-instance\-profile\b
severity: block
message: DisassociateIamInstanceProfile — destructive operation
category: cloud
- name: aws-ec2-disassociate-instance-event-window
pattern: (?i)aws\s+disassociate\-instance\-event\-window\b
severity: block
message: DisassociateInstanceEventWindow — destructive operation
category: cloud
- name: aws-ec2-disassociate-route-table
pattern: (?i)aws\s+disassociate\-route\-table\b
severity: warn
message: DisassociateRouteTable — destructive operation
category: cloud
- name: aws-ec2-disassociate-subnet-cidr-block
pattern: (?i)aws\s+disassociate\-subnet\-cidr\-block\b
severity: warn
message: DisassociateSubnetCidrBlock — destructive operation
category: cloud
- name: aws-ec2-disassociate-transit-gateway-multicast-domain
pattern: (?i)aws\s+disassociate\-transit\-gateway\-multicast\-domain\b
severity: block
message: DisassociateTransitGatewayMulticastDomain — destructive operation
category: cloud
- name: aws-ec2-disassociate-transit-gateway-policy-table
pattern: (?i)aws\s+disassociate\-transit\-gateway\-policy\-table\b
severity: block
message: DisassociateTransitGatewayPolicyTable — destructive operation
category: cloud
- name: aws-ec2-disassociate-transit-gateway-route-table
pattern: (?i)aws\s+disassociate\-transit\-gateway\-route\-table\b
severity: block
message: DisassociateTransitGatewayRouteTable — destructive operation
category: cloud
- name: aws-ec2-disassociate-trunk-interface
pattern: (?i)aws\s+disassociate\-trunk\-interface\b
severity: warn
message: DisassociateTrunkInterface — destructive operation
category: cloud
- name: aws-ec2-disassociate-vpc-cidr-block
pattern: (?i)aws\s+disassociate\-vpc\-cidr\-block\b
severity: warn
message: DisassociateVpcCidrBlock — destructive operation
category: cloud
- name: aws-ec2-release-address
pattern: (?i)aws\s+release\-address\b
severity: warn
message: ReleaseAddress — destructive operation
category: cloud
- name: aws-ec2-release-hosts
pattern: (?i)aws\s+release\-hosts\b
severity: warn
message: ReleaseHosts — destructive operation
category: cloud
- name: aws-ec2-release-ipam-pool-allocation
pattern: (?i)aws\s+release\-ipam\-pool\-allocation\b
severity: warn
message: ReleaseIpamPoolAllocation — destructive operation
category: cloud
- name: aws-ec2-reset-address-attribute
pattern: (?i)aws\s+reset\-address\-attribute\b
severity: warn
message: ResetAddressAttribute — destructive operation
category: cloud
- name: aws-ec2-reset-ebs-default-kms-key-id
pattern: (?i)aws\s+reset\-ebs\-default\-kms\-key\-id\b
severity: block
message: ResetEbsDefaultKmsKeyId — destructive operation
category: cloud
- name: aws-ec2-reset-fpga-image-attribute
pattern: (?i)aws\s+reset\-fpga\-image\-attribute\b
severity: warn
message: ResetFpgaImageAttribute — destructive operation
category: cloud
- name: aws-ec2-reset-image-attribute
pattern: (?i)aws\s+reset\-image\-attribute\b
severity: warn
message: ResetImageAttribute — destructive operation
category: cloud
- name: aws-ec2-reset-instance-attribute
pattern: (?i)aws\s+reset\-instance\-attribute\b
severity: block
message: ResetInstanceAttribute — destructive operation
category: cloud
- name: aws-ec2-reset-network-interface-attribute
pattern: (?i)aws\s+reset\-network\-interface\-attribute\b
severity: warn
message: ResetNetworkInterfaceAttribute — destructive operation
category: cloud
- name: aws-ec2-reset-snapshot-attribute
pattern: (?i)aws\s+reset\-snapshot\-attribute\b
severity: warn
message: ResetSnapshotAttribute — destructive operation
category: cloud
- name: aws-ec2-revoke-client-vpn-ingress
pattern: (?i)aws\s+revoke\-client\-vpn\-ingress\b
severity: warn
message: RevokeClientVpnIngress — destructive operation
category: cloud
- name: aws-ec2-revoke-security-group-egress
pattern: (?i)aws\s+revoke\-security\-group\-egress\b
severity: block
message: RevokeSecurityGroupEgress — destructive operation
category: cloud
- name: aws-ec2-revoke-security-group-ingress
pattern: (?i)aws\s+revoke\-security\-group\-ingress\b
severity: block
message: RevokeSecurityGroupIngress — destructive operation
category: cloud
- name: aws-ec2-terminate-client-vpn-connections
pattern: (?i)aws\s+terminate\-client\-vpn\-connections\b
severity: warn
message: TerminateClientVpnConnections — destructive operation
category: cloud
- name: aws-ec2-terminate-instances
pattern: (?i)aws\s+terminate\-instances\b
severity: block
message: TerminateInstances — destructive operation
category: cloud
- name: aws-ecr-public-batch-delete-image
pattern: (?i)aws\s+batch\-delete\-image\b
severity: warn
message: BatchDeleteImage — destructive operation
category: cloud
- name: aws-ecr-public-delete-repository
pattern: (?i)aws\s+delete\-repository\b
severity: warn
message: DeleteRepository — destructive operation
category: cloud
- name: aws-ecr-public-delete-repository-policy
pattern: (?i)aws\s+delete\-repository\-policy\b
severity: block
message: DeleteRepositoryPolicy — destructive operation
category: cloud
- name: aws-ecr-batch-delete-image
pattern: (?i)aws\s+batch\-delete\-image\b
severity: warn
message: BatchDeleteImage — destructive operation
category: cloud
- name: aws-ecr-delete-lifecycle-policy
pattern: (?i)aws\s+delete\-lifecycle\-policy\b
severity: block
message: DeleteLifecyclePolicy — destructive operation
category: cloud
- name: aws-ecr-delete-pull-through-cache-rule
pattern: (?i)aws\s+delete\-pull\-through\-cache\-rule\b
severity: warn
message: DeletePullThroughCacheRule — destructive operation
category: cloud
- name: aws-ecr-delete-registry-policy
pattern: (?i)aws\s+delete\-registry\-policy\b
severity: block
message: DeleteRegistryPolicy — destructive operation
category: cloud
- name: aws-ecr-delete-repository
pattern: (?i)aws\s+delete\-repository\b
severity: warn
message: DeleteRepository — destructive operation
category: cloud
- name: aws-ecr-delete-repository-policy
pattern: (?i)aws\s+delete\-repository\-policy\b
severity: block
message: DeleteRepositoryPolicy — destructive operation
category: cloud
- name: aws-ecs-delete-account-setting
pattern: (?i)aws\s+delete\-account\-setting\b
severity: block
message: DeleteAccountSetting — destructive operation
category: cloud
- name: aws-ecs-delete-attributes
pattern: (?i)aws\s+delete\-attributes\b
severity: warn
message: DeleteAttributes — destructive operation
category: cloud
- name: aws-ecs-delete-capacity-provider
pattern: (?i)aws\s+delete\-capacity\-provider\b
severity: warn
message: DeleteCapacityProvider — destructive operation
category: cloud
- name: aws-ecs-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-ecs-delete-service
pattern: (?i)aws\s+delete\-service\b
severity: warn
message: DeleteService — destructive operation
category: cloud
- name: aws-ecs-delete-task-set
pattern: (?i)aws\s+delete\-task\-set\b
severity: warn
message: DeleteTaskSet — destructive operation
category: cloud
- name: aws-ecs-deregister-container-instance
pattern: (?i)aws\s+deregister\-container\-instance\b
severity: block
message: DeregisterContainerInstance — destructive operation
category: cloud
- name: aws-ecs-deregister-task-definition
pattern: (?i)aws\s+deregister\-task\-definition\b
severity: warn
message: DeregisterTaskDefinition — destructive operation
category: cloud
- name: aws-eks-delete-addon
pattern: (?i)aws\s+delete\-addon\b
severity: block
message: DeleteAddon — destructive operation
category: cloud
- name: aws-eks-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-eks-delete-fargate-profile
pattern: (?i)aws\s+delete\-fargate\-profile\b
severity: block
message: DeleteFargateProfile — destructive operation
category: cloud
- name: aws-eks-delete-nodegroup
pattern: (?i)aws\s+delete\-nodegroup\b
severity: block
message: DeleteNodegroup — destructive operation
category: cloud
- name: aws-eks-deregister-cluster
pattern: (?i)aws\s+deregister\-cluster\b
severity: block
message: DeregisterCluster — destructive operation
category: cloud
- name: aws-eks-disassociate-identity-provider-config
pattern: (?i)aws\s+disassociate\-identity\-provider\-config\b
severity: block
message: DisassociateIdentityProviderConfig — destructive operation
category: cloud
- name: aws-eks-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-elastic-inference-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-elasticache-delete-cache-cluster
pattern: (?i)aws\s+delete\-cache\-cluster\b
severity: block
message: DeleteCacheCluster — destructive operation
category: cloud
- name: aws-elasticache-delete-cache-parameter-group
pattern: (?i)aws\s+delete\-cache\-parameter\-group\b
severity: block
message: DeleteCacheParameterGroup — destructive operation
category: cloud
- name: aws-elasticache-delete-cache-security-group
pattern: (?i)aws\s+delete\-cache\-security\-group\b
severity: block
message: DeleteCacheSecurityGroup — destructive operation
category: cloud
- name: aws-elasticache-delete-cache-subnet-group
pattern: (?i)aws\s+delete\-cache\-subnet\-group\b
severity: block
message: DeleteCacheSubnetGroup — destructive operation
category: cloud
- name: aws-elasticache-delete-global-replication-group
pattern: (?i)aws\s+delete\-global\-replication\-group\b
severity: block
message: DeleteGlobalReplicationGroup — destructive operation
category: cloud
- name: aws-elasticache-delete-replication-group
pattern: (?i)aws\s+delete\-replication\-group\b
severity: block
message: DeleteReplicationGroup — destructive operation
category: cloud
- name: aws-elasticache-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-elasticache-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-elasticache-delete-user-group
pattern: (?i)aws\s+delete\-user\-group\b
severity: block
message: DeleteUserGroup — destructive operation
category: cloud
- name: aws-elasticache-disassociate-global-replication-group
pattern: (?i)aws\s+disassociate\-global\-replication\-group\b
severity: block
message: DisassociateGlobalReplicationGroup — destructive operation
category: cloud
- name: aws-elasticache-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-elasticache-reset-cache-parameter-group
pattern: (?i)aws\s+reset\-cache\-parameter\-group\b
severity: block
message: ResetCacheParameterGroup — destructive operation
category: cloud
- name: aws-elasticache-revoke-cache-security-group-ingress
pattern: (?i)aws\s+revoke\-cache\-security\-group\-ingress\b
severity: block
message: RevokeCacheSecurityGroupIngress — destructive operation
category: cloud
- name: aws-elasticbeanstalk-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-elasticbeanstalk-delete-application-version
pattern: (?i)aws\s+delete\-application\-version\b
severity: warn
message: DeleteApplicationVersion — destructive operation
category: cloud
- name: aws-elasticbeanstalk-delete-configuration-template
pattern: (?i)aws\s+delete\-configuration\-template\b
severity: warn
message: DeleteConfigurationTemplate — destructive operation
category: cloud
- name: aws-elasticbeanstalk-delete-environment-configuration
pattern: (?i)aws\s+delete\-environment\-configuration\b
severity: warn
message: DeleteEnvironmentConfiguration — destructive operation
category: cloud
- name: aws-elasticbeanstalk-delete-platform-version
pattern: (?i)aws\s+delete\-platform\-version\b
severity: warn
message: DeletePlatformVersion — destructive operation
category: cloud
- name: aws-elasticbeanstalk-disassociate-environment-operations-role
pattern: (?i)aws\s+disassociate\-environment\-operations\-role\b
severity: block
message: DisassociateEnvironmentOperationsRole — destructive operation
category: cloud
- name: aws-elasticbeanstalk-terminate-environment
pattern: (?i)aws\s+terminate\-environment\b
severity: warn
message: TerminateEnvironment — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-access-point
pattern: (?i)aws\s+delete\-access\-point\b
severity: block
message: DeleteAccessPoint — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-file-system
pattern: (?i)aws\s+delete\-file\-system\b
severity: block
message: DeleteFileSystem — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-file-system-policy
pattern: (?i)aws\s+delete\-file\-system\-policy\b
severity: block
message: DeleteFileSystemPolicy — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-mount-target
pattern: (?i)aws\s+delete\-mount\-target\b
severity: block
message: DeleteMountTarget — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-replication-configuration
pattern: (?i)aws\s+delete\-replication\-configuration\b
severity: block
message: DeleteReplicationConfiguration — destructive operation
category: cloud
- name: aws-elasticfilesystem-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-elasticfilesystem-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-elasticloadbalancing-delete-load-balancer
pattern: (?i)aws\s+delete\-load\-balancer\b
severity: block
message: DeleteLoadBalancer — destructive operation
category: cloud
- name: aws-elasticloadbalancing-delete-load-balancer-listeners
pattern: (?i)aws\s+delete\-load\-balancer\-listeners\b
severity: block
message: DeleteLoadBalancerListeners — destructive operation
category: cloud
- name: aws-elasticloadbalancing-delete-load-balancer-policy
pattern: (?i)aws\s+delete\-load\-balancer\-policy\b
severity: block
message: DeleteLoadBalancerPolicy — destructive operation
category: cloud
- name: aws-elasticloadbalancing-deregister-instances-from-load-balancer
pattern: (?i)aws\s+deregister\-instances\-from\-load\-balancer\b
severity: block
message: DeregisterInstancesFromLoadBalancer — destructive operation
category: cloud
- name: aws-elasticloadbalancing-detach-load-balancer-from-subnets
pattern: (?i)aws\s+detach\-load\-balancer\-from\-subnets\b
severity: block
message: DetachLoadBalancerFromSubnets — destructive operation
category: cloud
- name: aws-elasticloadbalancing-disable-availability-zones-for-load-balancer
pattern: (?i)aws\s+disable\-availability\-zones\-for\-load\-balancer\b
severity: block
message: DisableAvailabilityZonesForLoadBalancer — destructive operation
category: cloud
- name: aws-elasticloadbalancing-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-delete-listener
pattern: (?i)aws\s+delete\-listener\b
severity: warn
message: DeleteListener — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-delete-load-balancer
pattern: (?i)aws\s+delete\-load\-balancer\b
severity: block
message: DeleteLoadBalancer — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-delete-target-group
pattern: (?i)aws\s+delete\-target\-group\b
severity: block
message: DeleteTargetGroup — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-deregister-targets
pattern: (?i)aws\s+deregister\-targets\b
severity: block
message: DeregisterTargets — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-remove-listener-certificates
pattern: (?i)aws\s+remove\-listener\-certificates\b
severity: block
message: RemoveListenerCertificates — destructive operation
category: cloud
- name: aws-elasticloadbalancingv2-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-elasticmapreduce-cancel-steps
pattern: (?i)aws\s+cancel\-steps\b
severity: warn
message: CancelSteps — destructive operation
category: cloud
- name: aws-elasticmapreduce-delete-security-configuration
pattern: (?i)aws\s+delete\-security\-configuration\b
severity: warn
message: DeleteSecurityConfiguration — destructive operation
category: cloud
- name: aws-elasticmapreduce-delete-studio
pattern: (?i)aws\s+delete\-studio\b
severity: warn
message: DeleteStudio — destructive operation
category: cloud
- name: aws-elasticmapreduce-delete-studio-session-mapping
pattern: (?i)aws\s+delete\-studio\-session\-mapping\b
severity: warn
message: DeleteStudioSessionMapping — destructive operation
category: cloud
- name: aws-elasticmapreduce-remove-auto-scaling-policy
pattern: (?i)aws\s+remove\-auto\-scaling\-policy\b
severity: block
message: RemoveAutoScalingPolicy — destructive operation
category: cloud
- name: aws-elasticmapreduce-remove-auto-termination-policy
pattern: (?i)aws\s+remove\-auto\-termination\-policy\b
severity: block
message: RemoveAutoTerminationPolicy — destructive operation
category: cloud
- name: aws-elasticmapreduce-remove-managed-scaling-policy
pattern: (?i)aws\s+remove\-managed\-scaling\-policy\b
severity: block
message: RemoveManagedScalingPolicy — destructive operation
category: cloud
- name: aws-elasticmapreduce-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-elasticmapreduce-terminate-job-flows
pattern: (?i)aws\s+terminate\-job\-flows\b
severity: warn
message: TerminateJobFlows — destructive operation
category: cloud
- name: aws-elastictranscoder-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: block
message: CancelJob — destructive operation
category: cloud
- name: aws-elastictranscoder-delete-pipeline
pattern: (?i)aws\s+delete\-pipeline\b
severity: block
message: DeletePipeline — destructive operation
category: cloud
- name: aws-elastictranscoder-delete-preset
pattern: (?i)aws\s+delete\-preset\b
severity: block
message: DeletePreset — destructive operation
category: cloud
- name: aws-email-delete-configuration-set
pattern: (?i)aws\s+delete\-configuration\-set\b
severity: warn
message: DeleteConfigurationSet — destructive operation
category: cloud
- name: aws-email-delete-configuration-set-event-destination
pattern: (?i)aws\s+delete\-configuration\-set\-event\-destination\b
severity: warn
message: DeleteConfigurationSetEventDestination — destructive operation
category: cloud
- name: aws-email-delete-configuration-set-tracking-options
pattern: (?i)aws\s+delete\-configuration\-set\-tracking\-options\b
severity: warn
message: DeleteConfigurationSetTrackingOptions — destructive operation
category: cloud
- name: aws-email-delete-custom-verification-email-template
pattern: (?i)aws\s+delete\-custom\-verification\-email\-template\b
severity: warn
message: DeleteCustomVerificationEmailTemplate — destructive operation
category: cloud
- name: aws-email-delete-identity
pattern: (?i)aws\s+delete\-identity\b
severity: warn
message: DeleteIdentity — destructive operation
category: cloud
- name: aws-email-delete-identity-policy
pattern: (?i)aws\s+delete\-identity\-policy\b
severity: block
message: DeleteIdentityPolicy — destructive operation
category: cloud
- name: aws-email-delete-receipt-filter
pattern: (?i)aws\s+delete\-receipt\-filter\b
severity: warn
message: DeleteReceiptFilter — destructive operation
category: cloud
- name: aws-email-delete-receipt-rule
pattern: (?i)aws\s+delete\-receipt\-rule\b
severity: warn
message: DeleteReceiptRule — destructive operation
category: cloud
- name: aws-email-delete-receipt-rule-set
pattern: (?i)aws\s+delete\-receipt\-rule\-set\b
severity: warn
message: DeleteReceiptRuleSet — destructive operation
category: cloud
- name: aws-email-delete-template
pattern: (?i)aws\s+delete\-template\b
severity: warn
message: DeleteTemplate — destructive operation
category: cloud
- name: aws-email-delete-verified-email-address
pattern: (?i)aws\s+delete\-verified\-email\-address\b
severity: warn
message: DeleteVerifiedEmailAddress — destructive operation
category: cloud
- name: aws-emr-containers-cancel-job-run
pattern: (?i)aws\s+cancel\-job\-run\b
severity: block
message: CancelJobRun — destructive operation
category: cloud
- name: aws-emr-containers-delete-job-template
pattern: (?i)aws\s+delete\-job\-template\b
severity: block
message: DeleteJobTemplate — destructive operation
category: cloud
- name: aws-emr-containers-delete-managed-endpoint
pattern: (?i)aws\s+delete\-managed\-endpoint\b
severity: block
message: DeleteManagedEndpoint — destructive operation
category: cloud
- name: aws-emr-containers-delete-virtual-cluster
pattern: (?i)aws\s+delete\-virtual\-cluster\b
severity: block
message: DeleteVirtualCluster — destructive operation
category: cloud
- name: aws-emr-containers-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-emr-serverless-cancel-job-run
pattern: (?i)aws\s+cancel\-job\-run\b
severity: block
message: CancelJobRun — destructive operation
category: cloud
- name: aws-emr-serverless-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-emr-serverless-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-es-cancel-elasticsearch-service-software-update
pattern: (?i)aws\s+cancel\-elasticsearch\-service\-software\-update\b
severity: warn
message: CancelElasticsearchServiceSoftwareUpdate — destructive operation
category: cloud
- name: aws-es-delete-elasticsearch-domain
pattern: (?i)aws\s+delete\-elasticsearch\-domain\b
severity: block
message: DeleteElasticsearchDomain — destructive operation
category: cloud
- name: aws-es-delete-elasticsearch-service-role
pattern: (?i)aws\s+delete\-elasticsearch\-service\-role\b
severity: block
message: DeleteElasticsearchServiceRole — destructive operation
category: cloud
- name: aws-es-delete-inbound-cross-cluster-search-connection
pattern: (?i)aws\s+delete\-inbound\-cross\-cluster\-search\-connection\b
severity: block
message: DeleteInboundCrossClusterSearchConnection — destructive operation
category: cloud
- name: aws-es-delete-outbound-cross-cluster-search-connection
pattern: (?i)aws\s+delete\-outbound\-cross\-cluster\-search\-connection\b
severity: block
message: DeleteOutboundCrossClusterSearchConnection — destructive operation
category: cloud
- name: aws-es-delete-package
pattern: (?i)aws\s+delete\-package\b
severity: block
message: DeletePackage — destructive operation
category: cloud
- name: aws-es-delete-vpc-endpoint
pattern: (?i)aws\s+delete\-vpc\-endpoint\b
severity: block
message: DeleteVpcEndpoint — destructive operation
category: cloud
- name: aws-es-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-es-revoke-vpc-endpoint-access
pattern: (?i)aws\s+revoke\-vpc\-endpoint\-access\b
severity: warn
message: RevokeVpcEndpointAccess — destructive operation
category: cloud
- name: aws-eventbridge-cancel-replay
pattern: (?i)aws\s+cancel\-replay\b
severity: warn
message: CancelReplay — destructive operation
category: cloud
- name: aws-eventbridge-delete-api-destination
pattern: (?i)aws\s+delete\-api\-destination\b
severity: warn
message: DeleteApiDestination — destructive operation
category: cloud
- name: aws-eventbridge-delete-archive
pattern: (?i)aws\s+delete\-archive\b
severity: warn
message: DeleteArchive — destructive operation
category: cloud
- name: aws-eventbridge-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-eventbridge-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: warn
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-eventbridge-delete-event-bus
pattern: (?i)aws\s+delete\-event\-bus\b
severity: warn
message: DeleteEventBus — destructive operation
category: cloud
- name: aws-eventbridge-delete-partner-event-source
pattern: (?i)aws\s+delete\-partner\-event\-source\b
severity: warn
message: DeletePartnerEventSource — destructive operation
category: cloud
- name: aws-eventbridge-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-eventbridge-disable-rule
pattern: (?i)aws\s+disable\-rule\b
severity: warn
message: DisableRule — destructive operation
category: cloud
- name: aws-eventbridge-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: warn
message: RemovePermission — destructive operation
category: cloud
- name: aws-eventbridge-remove-targets
pattern: (?i)aws\s+remove\-targets\b
severity: block
message: RemoveTargets — destructive operation
category: cloud
- name: aws-events-cancel-replay
pattern: (?i)aws\s+cancel\-replay\b
severity: warn
message: CancelReplay — destructive operation
category: cloud
- name: aws-events-delete-api-destination
pattern: (?i)aws\s+delete\-api\-destination\b
severity: warn
message: DeleteApiDestination — destructive operation
category: cloud
- name: aws-events-delete-archive
pattern: (?i)aws\s+delete\-archive\b
severity: warn
message: DeleteArchive — destructive operation
category: cloud
- name: aws-events-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-events-delete-event-bus
pattern: (?i)aws\s+delete\-event\-bus\b
severity: warn
message: DeleteEventBus — destructive operation
category: cloud
- name: aws-events-delete-partner-event-source
pattern: (?i)aws\s+delete\-partner\-event\-source\b
severity: warn
message: DeletePartnerEventSource — destructive operation
category: cloud
- name: aws-events-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-events-disable-rule
pattern: (?i)aws\s+disable\-rule\b
severity: warn
message: DisableRule — destructive operation
category: cloud
- name: aws-events-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: warn
message: RemovePermission — destructive operation
category: cloud
- name: aws-events-remove-targets
pattern: (?i)aws\s+remove\-targets\b
severity: block
message: RemoveTargets — destructive operation
category: cloud
- name: aws-evidently-delete-experiment
pattern: (?i)aws\s+delete\-experiment\b
severity: block
message: DeleteExperiment — destructive operation
category: cloud
- name: aws-evidently-delete-feature
pattern: (?i)aws\s+delete\-feature\b
severity: block
message: DeleteFeature — destructive operation
category: cloud
- name: aws-evidently-delete-launch
pattern: (?i)aws\s+delete\-launch\b
severity: block
message: DeleteLaunch — destructive operation
category: cloud
- name: aws-evidently-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-evidently-delete-segment
pattern: (?i)aws\s+delete\-segment\b
severity: block
message: DeleteSegment — destructive operation
category: cloud
- name: aws-evidently-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-finspace-data-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: block
message: DeleteDataset — destructive operation
category: cloud
- name: aws-finspace-data-delete-permission-group
pattern: (?i)aws\s+delete\-permission\-group\b
severity: block
message: DeletePermissionGroup — destructive operation
category: cloud
- name: aws-finspace-data-disable-user
pattern: (?i)aws\s+disable\-user\b
severity: warn
message: DisableUser — destructive operation
category: cloud
- name: aws-finspace-data-disassociate-user-from-permission-group
pattern: (?i)aws\s+disassociate\-user\-from\-permission\-group\b
severity: block
message: DisassociateUserFromPermissionGroup — destructive operation
category: cloud
- name: aws-finspace-data-reset-user-password
pattern: (?i)aws\s+reset\-user\-password\b
severity: warn
message: ResetUserPassword — destructive operation
category: cloud
- name: aws-finspace-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: block
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-finspace-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-firehose-delete-delivery-stream
pattern: (?i)aws\s+delete\-delivery\-stream\b
severity: warn
message: DeleteDeliveryStream — destructive operation
category: cloud
- name: aws-fis-delete-experiment-template
pattern: (?i)aws\s+delete\-experiment\-template\b
severity: block
message: DeleteExperimentTemplate — destructive operation
category: cloud
- name: aws-fis-stop-experiment
pattern: (?i)aws\s+stop\-experiment\b
severity: block
message: StopExperiment — destructive operation
category: cloud
- name: aws-fis-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-fms-batch-disassociate-resource
pattern: (?i)aws\s+batch\-disassociate\-resource\b
severity: warn
message: BatchDisassociateResource — destructive operation
category: cloud
- name: aws-fms-delete-apps-list
pattern: (?i)aws\s+delete\-apps\-list\b
severity: warn
message: DeleteAppsList — destructive operation
category: cloud
- name: aws-fms-delete-notification-channel
pattern: (?i)aws\s+delete\-notification\-channel\b
severity: warn
message: DeleteNotificationChannel — destructive operation
category: cloud
- name: aws-fms-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-fms-delete-protocols-list
pattern: (?i)aws\s+delete\-protocols\-list\b
severity: warn
message: DeleteProtocolsList — destructive operation
category: cloud
- name: aws-fms-delete-resource-set
pattern: (?i)aws\s+delete\-resource\-set\b
severity: warn
message: DeleteResourceSet — destructive operation
category: cloud
- name: aws-fms-disassociate-admin-account
pattern: (?i)aws\s+disassociate\-admin\-account\b
severity: block
message: DisassociateAdminAccount — destructive operation
category: cloud
- name: aws-fms-disassociate-third-party-firewall
pattern: (?i)aws\s+disassociate\-third\-party\-firewall\b
severity: warn
message: DisassociateThirdPartyFirewall — destructive operation
category: cloud
- name: aws-forecast-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: warn
message: DeleteDataset — destructive operation
category: cloud
- name: aws-forecast-delete-dataset-group
pattern: (?i)aws\s+delete\-dataset\-group\b
severity: block
message: DeleteDatasetGroup — destructive operation
category: cloud
- name: aws-forecast-delete-dataset-import-job
pattern: (?i)aws\s+delete\-dataset\-import\-job\b
severity: warn
message: DeleteDatasetImportJob — destructive operation
category: cloud
- name: aws-forecast-delete-explainability
pattern: (?i)aws\s+delete\-explainability\b
severity: warn
message: DeleteExplainability — destructive operation
category: cloud
- name: aws-forecast-delete-explainability-export
pattern: (?i)aws\s+delete\-explainability\-export\b
severity: warn
message: DeleteExplainabilityExport — destructive operation
category: cloud
- name: aws-forecast-delete-forecast
pattern: (?i)aws\s+delete\-forecast\b
severity: warn
message: DeleteForecast — destructive operation
category: cloud
- name: aws-forecast-delete-forecast-export-job
pattern: (?i)aws\s+delete\-forecast\-export\-job\b
severity: warn
message: DeleteForecastExportJob — destructive operation
category: cloud
- name: aws-forecast-delete-monitor
pattern: (?i)aws\s+delete\-monitor\b
severity: warn
message: DeleteMonitor — destructive operation
category: cloud
- name: aws-forecast-delete-predictor
pattern: (?i)aws\s+delete\-predictor\b
severity: warn
message: DeletePredictor — destructive operation
category: cloud
- name: aws-forecast-delete-predictor-backtest-export-job
pattern: (?i)aws\s+delete\-predictor\-backtest\-export\-job\b
severity: warn
message: DeletePredictorBacktestExportJob — destructive operation
category: cloud
- name: aws-forecast-delete-resource-tree
pattern: (?i)aws\s+delete\-resource\-tree\b
severity: warn
message: DeleteResourceTree — destructive operation
category: cloud
- name: aws-forecast-delete-what-if-analysis
pattern: (?i)aws\s+delete\-what\-if\-analysis\b
severity: warn
message: DeleteWhatIfAnalysis — destructive operation
category: cloud
- name: aws-forecast-delete-what-if-forecast
pattern: (?i)aws\s+delete\-what\-if\-forecast\b
severity: warn
message: DeleteWhatIfForecast — destructive operation
category: cloud
- name: aws-forecast-delete-what-if-forecast-export
pattern: (?i)aws\s+delete\-what\-if\-forecast\-export\b
severity: warn
message: DeleteWhatIfForecastExport — destructive operation
category: cloud
- name: aws-frauddetector-cancel-batch-import-job
pattern: (?i)aws\s+cancel\-batch\-import\-job\b
severity: warn
message: CancelBatchImportJob — destructive operation
category: cloud
- name: aws-frauddetector-cancel-batch-prediction-job
pattern: (?i)aws\s+cancel\-batch\-prediction\-job\b
severity: warn
message: CancelBatchPredictionJob — destructive operation
category: cloud
- name: aws-frauddetector-delete-batch-import-job
pattern: (?i)aws\s+delete\-batch\-import\-job\b
severity: warn
message: DeleteBatchImportJob — destructive operation
category: cloud
- name: aws-frauddetector-delete-batch-prediction-job
pattern: (?i)aws\s+delete\-batch\-prediction\-job\b
severity: warn
message: DeleteBatchPredictionJob — destructive operation
category: cloud
- name: aws-frauddetector-delete-detector
pattern: (?i)aws\s+delete\-detector\b
severity: warn
message: DeleteDetector — destructive operation
category: cloud
- name: aws-frauddetector-delete-detector-version
pattern: (?i)aws\s+delete\-detector\-version\b
severity: warn
message: DeleteDetectorVersion — destructive operation
category: cloud
- name: aws-frauddetector-delete-entity-type
pattern: (?i)aws\s+delete\-entity\-type\b
severity: warn
message: DeleteEntityType — destructive operation
category: cloud
- name: aws-frauddetector-delete-event
pattern: (?i)aws\s+delete\-event\b
severity: warn
message: DeleteEvent — destructive operation
category: cloud
- name: aws-frauddetector-delete-event-type
pattern: (?i)aws\s+delete\-event\-type\b
severity: warn
message: DeleteEventType — destructive operation
category: cloud
- name: aws-frauddetector-delete-events-by-event-type
pattern: (?i)aws\s+delete\-events\-by\-event\-type\b
severity: warn
message: DeleteEventsByEventType — destructive operation
category: cloud
- name: aws-frauddetector-delete-external-model
pattern: (?i)aws\s+delete\-external\-model\b
severity: warn
message: DeleteExternalModel — destructive operation
category: cloud
- name: aws-frauddetector-delete-label
pattern: (?i)aws\s+delete\-label\b
severity: warn
message: DeleteLabel — destructive operation
category: cloud
- name: aws-frauddetector-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: warn
message: DeleteModel — destructive operation
category: cloud
- name: aws-frauddetector-delete-model-version
pattern: (?i)aws\s+delete\-model\-version\b
severity: warn
message: DeleteModelVersion — destructive operation
category: cloud
- name: aws-frauddetector-delete-outcome
pattern: (?i)aws\s+delete\-outcome\b
severity: warn
message: DeleteOutcome — destructive operation
category: cloud
- name: aws-frauddetector-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-frauddetector-delete-variable
pattern: (?i)aws\s+delete\-variable\b
severity: warn
message: DeleteVariable — destructive operation
category: cloud
- name: aws-fsx-cancel-data-repository-task
pattern: (?i)aws\s+cancel\-data\-repository\-task\b
severity: warn
message: CancelDataRepositoryTask — destructive operation
category: cloud
- name: aws-fsx-delete-backup
pattern: (?i)aws\s+delete\-backup\b
severity: warn
message: DeleteBackup — destructive operation
category: cloud
- name: aws-fsx-delete-data-repository-association
pattern: (?i)aws\s+delete\-data\-repository\-association\b
severity: warn
message: DeleteDataRepositoryAssociation — destructive operation
category: cloud
- name: aws-fsx-delete-file-cache
pattern: (?i)aws\s+delete\-file\-cache\b
severity: warn
message: DeleteFileCache — destructive operation
category: cloud
- name: aws-fsx-delete-file-system
pattern: (?i)aws\s+delete\-file\-system\b
severity: warn
message: DeleteFileSystem — destructive operation
category: cloud
- name: aws-fsx-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-fsx-delete-storage-virtual-machine
pattern: (?i)aws\s+delete\-storage\-virtual\-machine\b
severity: warn
message: DeleteStorageVirtualMachine — destructive operation
category: cloud
- name: aws-fsx-delete-volume
pattern: (?i)aws\s+delete\-volume\b
severity: block
message: DeleteVolume — destructive operation
category: cloud
- name: aws-fsx-disassociate-file-system-aliases
pattern: (?i)aws\s+disassociate\-file\-system\-aliases\b
severity: warn
message: DisassociateFileSystemAliases — destructive operation
category: cloud
- name: aws-fsx-release-file-system-nfs-v3-locks
pattern: (?i)aws\s+release\-file\-system\-nfs\-v3\-locks\b
severity: warn
message: ReleaseFileSystemNfsV3Locks — destructive operation
category: cloud
- name: aws-gamelift-delete-alias
pattern: (?i)aws\s+delete\-alias\b
severity: warn
message: DeleteAlias — destructive operation
category: cloud
- name: aws-gamelift-delete-build
pattern: (?i)aws\s+delete\-build\b
severity: warn
message: DeleteBuild — destructive operation
category: cloud
- name: aws-gamelift-delete-fleet
pattern: (?i)aws\s+delete\-fleet\b
severity: warn
message: DeleteFleet — destructive operation
category: cloud
- name: aws-gamelift-delete-fleet-locations
pattern: (?i)aws\s+delete\-fleet\-locations\b
severity: warn
message: DeleteFleetLocations — destructive operation
category: cloud
- name: aws-gamelift-delete-game-server-group
pattern: (?i)aws\s+delete\-game\-server\-group\b
severity: block
message: DeleteGameServerGroup — destructive operation
category: cloud
- name: aws-gamelift-delete-game-session-queue
pattern: (?i)aws\s+delete\-game\-session\-queue\b
severity: warn
message: DeleteGameSessionQueue — destructive operation
category: cloud
- name: aws-gamelift-delete-location
pattern: (?i)aws\s+delete\-location\b
severity: warn
message: DeleteLocation — destructive operation
category: cloud
- name: aws-gamelift-delete-matchmaking-configuration
pattern: (?i)aws\s+delete\-matchmaking\-configuration\b
severity: warn
message: DeleteMatchmakingConfiguration — destructive operation
category: cloud
- name: aws-gamelift-delete-matchmaking-rule-set
pattern: (?i)aws\s+delete\-matchmaking\-rule\-set\b
severity: warn
message: DeleteMatchmakingRuleSet — destructive operation
category: cloud
- name: aws-gamelift-delete-scaling-policy
pattern: (?i)aws\s+delete\-scaling\-policy\b
severity: block
message: DeleteScalingPolicy — destructive operation
category: cloud
- name: aws-gamelift-delete-script
pattern: (?i)aws\s+delete\-script\b
severity: warn
message: DeleteScript — destructive operation
category: cloud
- name: aws-gamelift-delete-vpc-peering-authorization
pattern: (?i)aws\s+delete\-vpc\-peering\-authorization\b
severity: block
message: DeleteVpcPeeringAuthorization — destructive operation
category: cloud
- name: aws-gamelift-delete-vpc-peering-connection
pattern: (?i)aws\s+delete\-vpc\-peering\-connection\b
severity: warn
message: DeleteVpcPeeringConnection — destructive operation
category: cloud
- name: aws-gamelift-deregister-compute
pattern: (?i)aws\s+deregister\-compute\b
severity: warn
message: DeregisterCompute — destructive operation
category: cloud
- name: aws-gamelift-deregister-game-server
pattern: (?i)aws\s+deregister\-game\-server\b
severity: block
message: DeregisterGameServer — destructive operation
category: cloud
- name: aws-gamesparks-delete-game
pattern: (?i)aws\s+delete\-game\b
severity: block
message: DeleteGame — destructive operation
category: cloud
- name: aws-gamesparks-delete-stage
pattern: (?i)aws\s+delete\-stage\b
severity: warn
message: DeleteStage — destructive operation
category: cloud
- name: aws-gamesparks-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-glacier-abort-multipart-upload
pattern: (?i)aws\s+abort\-multipart\-upload\b
severity: block
message: AbortMultipartUpload — destructive operation
category: cloud
- name: aws-glacier-abort-vault-lock
pattern: (?i)aws\s+abort\-vault\-lock\b
severity: block
message: AbortVaultLock — destructive operation
category: cloud
- name: aws-glacier-delete-archive
pattern: (?i)aws\s+delete\-archive\b
severity: block
message: DeleteArchive — destructive operation
category: cloud
- name: aws-glacier-delete-vault
pattern: (?i)aws\s+delete\-vault\b
severity: block
message: DeleteVault — destructive operation
category: cloud
- name: aws-glacier-delete-vault-access-policy
pattern: (?i)aws\s+delete\-vault\-access\-policy\b
severity: block
message: DeleteVaultAccessPolicy — destructive operation
category: cloud
- name: aws-glacier-delete-vault-notifications
pattern: (?i)aws\s+delete\-vault\-notifications\b
severity: block
message: DeleteVaultNotifications — destructive operation
category: cloud
- name: aws-glacier-remove-tags-from-vault
pattern: (?i)aws\s+remove\-tags\-from\-vault\b
severity: block
message: RemoveTagsFromVault — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-accelerator
pattern: (?i)aws\s+delete\-accelerator\b
severity: warn
message: DeleteAccelerator — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-custom-routing-accelerator
pattern: (?i)aws\s+delete\-custom\-routing\-accelerator\b
severity: warn
message: DeleteCustomRoutingAccelerator — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-custom-routing-endpoint-group
pattern: (?i)aws\s+delete\-custom\-routing\-endpoint\-group\b
severity: block
message: DeleteCustomRoutingEndpointGroup — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-custom-routing-listener
pattern: (?i)aws\s+delete\-custom\-routing\-listener\b
severity: warn
message: DeleteCustomRoutingListener — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-endpoint-group
pattern: (?i)aws\s+delete\-endpoint\-group\b
severity: block
message: DeleteEndpointGroup — destructive operation
category: cloud
- name: aws-globalaccelerator-delete-listener
pattern: (?i)aws\s+delete\-listener\b
severity: warn
message: DeleteListener — destructive operation
category: cloud
- name: aws-globalaccelerator-remove-custom-routing-endpoints
pattern: (?i)aws\s+remove\-custom\-routing\-endpoints\b
severity: warn
message: RemoveCustomRoutingEndpoints — destructive operation
category: cloud
- name: aws-globalaccelerator-remove-endpoints
pattern: (?i)aws\s+remove\-endpoints\b
severity: warn
message: RemoveEndpoints — destructive operation
category: cloud
- name: aws-glue-batch-delete-connection
pattern: (?i)aws\s+batch\-delete\-connection\b
severity: warn
message: BatchDeleteConnection — destructive operation
category: cloud
- name: aws-glue-batch-delete-partition
pattern: (?i)aws\s+batch\-delete\-partition\b
severity: warn
message: BatchDeletePartition — destructive operation
category: cloud
- name: aws-glue-batch-delete-table
pattern: (?i)aws\s+batch\-delete\-table\b
severity: warn
message: BatchDeleteTable — destructive operation
category: cloud
- name: aws-glue-batch-delete-table-version
pattern: (?i)aws\s+batch\-delete\-table\-version\b
severity: warn
message: BatchDeleteTableVersion — destructive operation
category: cloud
- name: aws-glue-cancel-data-quality-rule-recommendation-run
pattern: (?i)aws\s+cancel\-data\-quality\-rule\-recommendation\-run\b
severity: warn
message: CancelDataQualityRuleRecommendationRun — destructive operation
category: cloud
- name: aws-glue-cancel-data-quality-ruleset-evaluation-run
pattern: (?i)aws\s+cancel\-data\-quality\-ruleset\-evaluation\-run\b
severity: warn
message: CancelDataQualityRulesetEvaluationRun — destructive operation
category: cloud
- name: aws-glue-cancel-m-l-task-run
pattern: (?i)aws\s+cancel\-m\-l\-task\-run\b
severity: warn
message: CancelMLTaskRun — destructive operation
category: cloud
- name: aws-glue-cancel-statement
pattern: (?i)aws\s+cancel\-statement\b
severity: warn
message: CancelStatement — destructive operation
category: cloud
- name: aws-glue-delete-blueprint
pattern: (?i)aws\s+delete\-blueprint\b
severity: warn
message: DeleteBlueprint — destructive operation
category: cloud
- name: aws-glue-delete-classifier
pattern: (?i)aws\s+delete\-classifier\b
severity: warn
message: DeleteClassifier — destructive operation
category: cloud
- name: aws-glue-delete-column-statistics-for-partition
pattern: (?i)aws\s+delete\-column\-statistics\-for\-partition\b
severity: warn
message: DeleteColumnStatisticsForPartition — destructive operation
category: cloud
- name: aws-glue-delete-column-statistics-for-table
pattern: (?i)aws\s+delete\-column\-statistics\-for\-table\b
severity: warn
message: DeleteColumnStatisticsForTable — destructive operation
category: cloud
- name: aws-glue-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: warn
message: DeleteConnection — destructive operation
category: cloud
- name: aws-glue-delete-crawler
pattern: (?i)aws\s+delete\-crawler\b
severity: warn
message: DeleteCrawler — destructive operation
category: cloud
- name: aws-glue-delete-custom-entity-type
pattern: (?i)aws\s+delete\-custom\-entity\-type\b
severity: warn
message: DeleteCustomEntityType — destructive operation
category: cloud
- name: aws-glue-delete-data-quality-ruleset
pattern: (?i)aws\s+delete\-data\-quality\-ruleset\b
severity: warn
message: DeleteDataQualityRuleset — destructive operation
category: cloud
- name: aws-glue-delete-database
pattern: (?i)aws\s+delete\-database\b
severity: block
message: DeleteDatabase — destructive operation
category: cloud
- name: aws-glue-delete-dev-endpoint
pattern: (?i)aws\s+delete\-dev\-endpoint\b
severity: warn
message: DeleteDevEndpoint — destructive operation
category: cloud
- name: aws-glue-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: warn
message: DeleteJob — destructive operation
category: cloud
- name: aws-glue-delete-m-l-transform
pattern: (?i)aws\s+delete\-m\-l\-transform\b
severity: warn
message: DeleteMLTransform — destructive operation
category: cloud
- name: aws-glue-delete-partition
pattern: (?i)aws\s+delete\-partition\b
severity: warn
message: DeletePartition — destructive operation
category: cloud
- name: aws-glue-delete-partition-index
pattern: (?i)aws\s+delete\-partition\-index\b
severity: warn
message: DeletePartitionIndex — destructive operation
category: cloud
- name: aws-glue-delete-registry
pattern: (?i)aws\s+delete\-registry\b
severity: warn
message: DeleteRegistry — destructive operation
category: cloud
- name: aws-glue-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-glue-delete-schema
pattern: (?i)aws\s+delete\-schema\b
severity: warn
message: DeleteSchema — destructive operation
category: cloud
- name: aws-glue-delete-schema-versions
pattern: (?i)aws\s+delete\-schema\-versions\b
severity: warn
message: DeleteSchemaVersions — destructive operation
category: cloud
- name: aws-glue-delete-security-configuration
pattern: (?i)aws\s+delete\-security\-configuration\b
severity: warn
message: DeleteSecurityConfiguration — destructive operation
category: cloud
- name: aws-glue-delete-session
pattern: (?i)aws\s+delete\-session\b
severity: warn
message: DeleteSession — destructive operation
category: cloud
- name: aws-glue-delete-table
pattern: (?i)aws\s+delete\-table\b
severity: warn
message: DeleteTable — destructive operation
category: cloud
- name: aws-glue-delete-table-version
pattern: (?i)aws\s+delete\-table\-version\b
severity: warn
message: DeleteTableVersion — destructive operation
category: cloud
- name: aws-glue-delete-trigger
pattern: (?i)aws\s+delete\-trigger\b
severity: warn
message: DeleteTrigger — destructive operation
category: cloud
- name: aws-glue-delete-user-defined-function
pattern: (?i)aws\s+delete\-user\-defined\-function\b
severity: warn
message: DeleteUserDefinedFunction — destructive operation
category: cloud
- name: aws-glue-delete-workflow
pattern: (?i)aws\s+delete\-workflow\b
severity: warn
message: DeleteWorkflow — destructive operation
category: cloud
- name: aws-glue-remove-schema-version-metadata
pattern: (?i)aws\s+remove\-schema\-version\-metadata\b
severity: warn
message: RemoveSchemaVersionMetadata — destructive operation
category: cloud
- name: aws-glue-reset-job-bookmark
pattern: (?i)aws\s+reset\-job\-bookmark\b
severity: warn
message: ResetJobBookmark — destructive operation
category: cloud
- name: aws-grafana-delete-workspace
pattern: (?i)aws\s+delete\-workspace\b
severity: block
message: DeleteWorkspace — destructive operation
category: cloud
- name: aws-grafana-delete-workspace-api-key
pattern: (?i)aws\s+delete\-workspace\-api\-key\b
severity: block
message: DeleteWorkspaceApiKey — destructive operation
category: cloud
- name: aws-grafana-disassociate-license
pattern: (?i)aws\s+disassociate\-license\b
severity: block
message: DisassociateLicense — destructive operation
category: cloud
- name: aws-grafana-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-greengrass-delete-connector-definition
pattern: (?i)aws\s+delete\-connector\-definition\b
severity: block
message: DeleteConnectorDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-core-definition
pattern: (?i)aws\s+delete\-core\-definition\b
severity: block
message: DeleteCoreDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-device-definition
pattern: (?i)aws\s+delete\-device\-definition\b
severity: block
message: DeleteDeviceDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-function-definition
pattern: (?i)aws\s+delete\-function\-definition\b
severity: block
message: DeleteFunctionDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-greengrass-delete-logger-definition
pattern: (?i)aws\s+delete\-logger\-definition\b
severity: warn
message: DeleteLoggerDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-resource-definition
pattern: (?i)aws\s+delete\-resource\-definition\b
severity: block
message: DeleteResourceDefinition — destructive operation
category: cloud
- name: aws-greengrass-delete-subscription-definition
pattern: (?i)aws\s+delete\-subscription\-definition\b
severity: warn
message: DeleteSubscriptionDefinition — destructive operation
category: cloud
- name: aws-greengrass-disassociate-role-from-group
pattern: (?i)aws\s+disassociate\-role\-from\-group\b
severity: block
message: DisassociateRoleFromGroup — destructive operation
category: cloud
- name: aws-greengrass-disassociate-service-role-from-account
pattern: (?i)aws\s+disassociate\-service\-role\-from\-account\b
severity: block
message: DisassociateServiceRoleFromAccount — destructive operation
category: cloud
- name: aws-greengrass-reset-deployments
pattern: (?i)aws\s+reset\-deployments\b
severity: block
message: ResetDeployments — destructive operation
category: cloud
- name: aws-greengrass-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-greengrassv2-batch-disassociate-client-device-from-core-device
pattern: (?i)aws\s+batch\-disassociate\-client\-device\-from\-core\-device\b
severity: warn
message: BatchDisassociateClientDeviceFromCoreDevice — destructive operation
category: cloud
- name: aws-greengrassv2-cancel-deployment
pattern: (?i)aws\s+cancel\-deployment\b
severity: warn
message: CancelDeployment — destructive operation
category: cloud
- name: aws-greengrassv2-delete-component
pattern: (?i)aws\s+delete\-component\b
severity: block
message: DeleteComponent — destructive operation
category: cloud
- name: aws-greengrassv2-delete-core-device
pattern: (?i)aws\s+delete\-core\-device\b
severity: block
message: DeleteCoreDevice — destructive operation
category: cloud
- name: aws-greengrassv2-delete-deployment
pattern: (?i)aws\s+delete\-deployment\b
severity: block
message: DeleteDeployment — destructive operation
category: cloud
- name: aws-greengrassv2-disassociate-service-role-from-account
pattern: (?i)aws\s+disassociate\-service\-role\-from\-account\b
severity: block
message: DisassociateServiceRoleFromAccount — destructive operation
category: cloud
- name: aws-greengrassv2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-groundstation-cancel-contact
pattern: (?i)aws\s+cancel\-contact\b
severity: block
message: CancelContact — destructive operation
category: cloud
- name: aws-groundstation-delete-config
pattern: (?i)aws\s+delete\-config\b
severity: block
message: DeleteConfig — destructive operation
category: cloud
- name: aws-groundstation-delete-dataflow-endpoint-group
pattern: (?i)aws\s+delete\-dataflow\-endpoint\-group\b
severity: block
message: DeleteDataflowEndpointGroup — destructive operation
category: cloud
- name: aws-groundstation-delete-ephemeris
pattern: (?i)aws\s+delete\-ephemeris\b
severity: block
message: DeleteEphemeris — destructive operation
category: cloud
- name: aws-groundstation-delete-mission-profile
pattern: (?i)aws\s+delete\-mission\-profile\b
severity: block
message: DeleteMissionProfile — destructive operation
category: cloud
- name: aws-groundstation-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-guardduty-delete-detector
pattern: (?i)aws\s+delete\-detector\b
severity: block
message: DeleteDetector — destructive operation
category: cloud
- name: aws-guardduty-delete-filter
pattern: (?i)aws\s+delete\-filter\b
severity: block
message: DeleteFilter — destructive operation
category: cloud
- name: aws-guardduty-delete-i-p-set
pattern: (?i)aws\s+delete\-i\-p\-set\b
severity: block
message: DeleteIPSet — destructive operation
category: cloud
- name: aws-guardduty-delete-invitations
pattern: (?i)aws\s+delete\-invitations\b
severity: warn
message: DeleteInvitations — destructive operation
category: cloud
- name: aws-guardduty-delete-members
pattern: (?i)aws\s+delete\-members\b
severity: warn
message: DeleteMembers — destructive operation
category: cloud
- name: aws-guardduty-delete-publishing-destination
pattern: (?i)aws\s+delete\-publishing\-destination\b
severity: block
message: DeletePublishingDestination — destructive operation
category: cloud
- name: aws-guardduty-delete-threat-intel-set
pattern: (?i)aws\s+delete\-threat\-intel\-set\b
severity: block
message: DeleteThreatIntelSet — destructive operation
category: cloud
- name: aws-guardduty-disable-organization-admin-account
pattern: (?i)aws\s+disable\-organization\-admin\-account\b
severity: block
message: DisableOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-guardduty-disassociate-from-administrator-account
pattern: (?i)aws\s+disassociate\-from\-administrator\-account\b
severity: block
message: DisassociateFromAdministratorAccount — destructive operation
category: cloud
- name: aws-guardduty-disassociate-from-master-account
pattern: (?i)aws\s+disassociate\-from\-master\-account\b
severity: block
message: DisassociateFromMasterAccount — destructive operation
category: cloud
- name: aws-guardduty-disassociate-members
pattern: (?i)aws\s+disassociate\-members\b
severity: warn
message: DisassociateMembers — destructive operation
category: cloud
- name: aws-guardduty-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-health-disable-health-service-access-for-organization
pattern: (?i)aws\s+disable\-health\-service\-access\-for\-organization\b
severity: warn
message: DisableHealthServiceAccessForOrganization — destructive operation
category: cloud
- name: aws-healthlake-delete-f-h-i-r-datastore
pattern: (?i)aws\s+delete\-f\-h\-i\-r\-datastore\b
severity: warn
message: DeleteFHIRDatastore — destructive operation
category: cloud
- name: aws-honeycode-batch-delete-table-rows
pattern: (?i)aws\s+batch\-delete\-table\-rows\b
severity: warn
message: BatchDeleteTableRows — destructive operation
category: cloud
- name: aws-honeycode-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iam-delete-access-key
pattern: (?i)aws\s+delete\-access\-key\b
severity: block
message: DeleteAccessKey — destructive operation
category: cloud
- name: aws-iam-delete-account-alias
pattern: (?i)aws\s+delete\-account\-alias\b
severity: block
message: DeleteAccountAlias — destructive operation
category: cloud
- name: aws-iam-delete-account-password-policy
pattern: (?i)aws\s+delete\-account\-password\-policy\b
severity: block
message: DeleteAccountPasswordPolicy — destructive operation
category: cloud
- name: aws-iam-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-iam-delete-group-policy
pattern: (?i)aws\s+delete\-group\-policy\b
severity: block
message: DeleteGroupPolicy — destructive operation
category: cloud
- name: aws-iam-delete-instance-profile
pattern: (?i)aws\s+delete\-instance\-profile\b
severity: block
message: DeleteInstanceProfile — destructive operation
category: cloud
- name: aws-iam-delete-login-profile
pattern: (?i)aws\s+delete\-login\-profile\b
severity: warn
message: DeleteLoginProfile — destructive operation
category: cloud
- name: aws-iam-delete-open-i-d-connect-provider
pattern: (?i)aws\s+delete\-open\-i\-d\-connect\-provider\b
severity: warn
message: DeleteOpenIDConnectProvider — destructive operation
category: cloud
- name: aws-iam-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-iam-delete-policy-version
pattern: (?i)aws\s+delete\-policy\-version\b
severity: block
message: DeletePolicyVersion — destructive operation
category: cloud
- name: aws-iam-delete-role
pattern: (?i)aws\s+delete\-role\b
severity: block
message: DeleteRole — destructive operation
category: cloud
- name: aws-iam-delete-role-permissions-boundary
pattern: (?i)aws\s+delete\-role\-permissions\-boundary\b
severity: block
message: DeleteRolePermissionsBoundary — destructive operation
category: cloud
- name: aws-iam-delete-role-policy
pattern: (?i)aws\s+delete\-role\-policy\b
severity: block
message: DeleteRolePolicy — destructive operation
category: cloud
- name: aws-iam-delete-s-a-m-l-provider
pattern: (?i)aws\s+delete\-s\-a\-m\-l\-provider\b
severity: warn
message: DeleteSAMLProvider — destructive operation
category: cloud
- name: aws-iam-delete-s-s-h-public-key
pattern: (?i)aws\s+delete\-s\-s\-h\-public\-key\b
severity: block
message: DeleteSSHPublicKey — destructive operation
category: cloud
- name: aws-iam-delete-server-certificate
pattern: (?i)aws\s+delete\-server\-certificate\b
severity: block
message: DeleteServerCertificate — destructive operation
category: cloud
- name: aws-iam-delete-service-linked-role
pattern: (?i)aws\s+delete\-service\-linked\-role\b
severity: block
message: DeleteServiceLinkedRole — destructive operation
category: cloud
- name: aws-iam-delete-service-specific-credential
pattern: (?i)aws\s+delete\-service\-specific\-credential\b
severity: block
message: DeleteServiceSpecificCredential — destructive operation
category: cloud
- name: aws-iam-delete-signing-certificate
pattern: (?i)aws\s+delete\-signing\-certificate\b
severity: block
message: DeleteSigningCertificate — destructive operation
category: cloud
- name: aws-iam-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-iam-delete-user-permissions-boundary
pattern: (?i)aws\s+delete\-user\-permissions\-boundary\b
severity: warn
message: DeleteUserPermissionsBoundary — destructive operation
category: cloud
- name: aws-iam-delete-user-policy
pattern: (?i)aws\s+delete\-user\-policy\b
severity: block
message: DeleteUserPolicy — destructive operation
category: cloud
- name: aws-iam-delete-virtual-m-f-a-device
pattern: (?i)aws\s+delete\-virtual\-m\-f\-a\-device\b
severity: warn
message: DeleteVirtualMFADevice — destructive operation
category: cloud
- name: aws-iam-detach-group-policy
pattern: (?i)aws\s+detach\-group\-policy\b
severity: block
message: DetachGroupPolicy — destructive operation
category: cloud
- name: aws-iam-detach-role-policy
pattern: (?i)aws\s+detach\-role\-policy\b
severity: block
message: DetachRolePolicy — destructive operation
category: cloud
- name: aws-iam-detach-user-policy
pattern: (?i)aws\s+detach\-user\-policy\b
severity: block
message: DetachUserPolicy — destructive operation
category: cloud
- name: aws-iam-remove-client-i-d-from-open-i-d-connect-provider
pattern: (?i)aws\s+remove\-client\-i\-d\-from\-open\-i\-d\-connect\-provider\b
severity: warn
message: RemoveClientIDFromOpenIDConnectProvider — destructive operation
category: cloud
- name: aws-iam-remove-role-from-instance-profile
pattern: (?i)aws\s+remove\-role\-from\-instance\-profile\b
severity: block
message: RemoveRoleFromInstanceProfile — destructive operation
category: cloud
- name: aws-iam-remove-user-from-group
pattern: (?i)aws\s+remove\-user\-from\-group\b
severity: block
message: RemoveUserFromGroup — destructive operation
category: cloud
- name: aws-iam-reset-service-specific-credential
pattern: (?i)aws\s+reset\-service\-specific\-credential\b
severity: block
message: ResetServiceSpecificCredential — destructive operation
category: cloud
- name: aws-identitystore-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-identitystore-delete-group-membership
pattern: (?i)aws\s+delete\-group\-membership\b
severity: block
message: DeleteGroupMembership — destructive operation
category: cloud
- name: aws-identitystore-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-imagebuilder-cancel-image-creation
pattern: (?i)aws\s+cancel\-image\-creation\b
severity: warn
message: CancelImageCreation — destructive operation
category: cloud
- name: aws-imagebuilder-delete-component
pattern: (?i)aws\s+delete\-component\b
severity: block
message: DeleteComponent — destructive operation
category: cloud
- name: aws-imagebuilder-delete-container-recipe
pattern: (?i)aws\s+delete\-container\-recipe\b
severity: block
message: DeleteContainerRecipe — destructive operation
category: cloud
- name: aws-imagebuilder-delete-distribution-configuration
pattern: (?i)aws\s+delete\-distribution\-configuration\b
severity: block
message: DeleteDistributionConfiguration — destructive operation
category: cloud
- name: aws-imagebuilder-delete-image
pattern: (?i)aws\s+delete\-image\b
severity: block
message: DeleteImage — destructive operation
category: cloud
- name: aws-imagebuilder-delete-image-pipeline
pattern: (?i)aws\s+delete\-image\-pipeline\b
severity: block
message: DeleteImagePipeline — destructive operation
category: cloud
- name: aws-imagebuilder-delete-image-recipe
pattern: (?i)aws\s+delete\-image\-recipe\b
severity: block
message: DeleteImageRecipe — destructive operation
category: cloud
- name: aws-imagebuilder-delete-infrastructure-configuration
pattern: (?i)aws\s+delete\-infrastructure\-configuration\b
severity: block
message: DeleteInfrastructureConfiguration — destructive operation
category: cloud
- name: aws-imagebuilder-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-importexport-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: warn
message: CancelJob — destructive operation
category: cloud
- name: aws-inspector-delete-assessment-run
pattern: (?i)aws\s+delete\-assessment\-run\b
severity: warn
message: DeleteAssessmentRun — destructive operation
category: cloud
- name: aws-inspector-delete-assessment-target
pattern: (?i)aws\s+delete\-assessment\-target\b
severity: block
message: DeleteAssessmentTarget — destructive operation
category: cloud
- name: aws-inspector-delete-assessment-template
pattern: (?i)aws\s+delete\-assessment\-template\b
severity: warn
message: DeleteAssessmentTemplate — destructive operation
category: cloud
- name: aws-inspector-remove-attributes-from-findings
pattern: (?i)aws\s+remove\-attributes\-from\-findings\b
severity: warn
message: RemoveAttributesFromFindings — destructive operation
category: cloud
- name: aws-inspector2-cancel-findings-report
pattern: (?i)aws\s+cancel\-findings\-report\b
severity: warn
message: CancelFindingsReport — destructive operation
category: cloud
- name: aws-inspector2-delete-filter
pattern: (?i)aws\s+delete\-filter\b
severity: warn
message: DeleteFilter — destructive operation
category: cloud
- name: aws-inspector2-disable
pattern: (?i)aws\s+disable\b
severity: warn
message: Disable — destructive operation
category: cloud
- name: aws-inspector2-disable-delegated-admin-account
pattern: (?i)aws\s+disable\-delegated\-admin\-account\b
severity: block
message: DisableDelegatedAdminAccount — destructive operation
category: cloud
- name: aws-inspector2-disassociate-member
pattern: (?i)aws\s+disassociate\-member\b
severity: warn
message: DisassociateMember — destructive operation
category: cloud
- name: aws-inspector2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iot-data-delete-thing-shadow
pattern: (?i)aws\s+delete\-thing\-shadow\b
severity: block
message: DeleteThingShadow — destructive operation
category: cloud
- name: aws-iot-roborunner-delete-destination
pattern: (?i)aws\s+delete\-destination\b
severity: warn
message: DeleteDestination — destructive operation
category: cloud
- name: aws-iot-roborunner-delete-site
pattern: (?i)aws\s+delete\-site\b
severity: warn
message: DeleteSite — destructive operation
category: cloud
- name: aws-iot-roborunner-delete-worker
pattern: (?i)aws\s+delete\-worker\b
severity: warn
message: DeleteWorker — destructive operation
category: cloud
- name: aws-iot-roborunner-delete-worker-fleet
pattern: (?i)aws\s+delete\-worker\-fleet\b
severity: warn
message: DeleteWorkerFleet — destructive operation
category: cloud
- name: aws-iot-cancel-audit-mitigation-actions-task
pattern: (?i)aws\s+cancel\-audit\-mitigation\-actions\-task\b
severity: warn
message: CancelAuditMitigationActionsTask — destructive operation
category: cloud
- name: aws-iot-cancel-audit-task
pattern: (?i)aws\s+cancel\-audit\-task\b
severity: warn
message: CancelAuditTask — destructive operation
category: cloud
- name: aws-iot-cancel-certificate-transfer
pattern: (?i)aws\s+cancel\-certificate\-transfer\b
severity: block
message: CancelCertificateTransfer — destructive operation
category: cloud
- name: aws-iot-cancel-detect-mitigation-actions-task
pattern: (?i)aws\s+cancel\-detect\-mitigation\-actions\-task\b
severity: warn
message: CancelDetectMitigationActionsTask — destructive operation
category: cloud
- name: aws-iot-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: warn
message: CancelJob — destructive operation
category: cloud
- name: aws-iot-cancel-job-execution
pattern: (?i)aws\s+cancel\-job\-execution\b
severity: warn
message: CancelJobExecution — destructive operation
category: cloud
- name: aws-iot-clear-default-authorizer
pattern: (?i)aws\s+clear\-default\-authorizer\b
severity: block
message: ClearDefaultAuthorizer — destructive operation
category: cloud
- name: aws-iot-delete-account-audit-configuration
pattern: (?i)aws\s+delete\-account\-audit\-configuration\b
severity: block
message: DeleteAccountAuditConfiguration — destructive operation
category: cloud
- name: aws-iot-delete-audit-suppression
pattern: (?i)aws\s+delete\-audit\-suppression\b
severity: warn
message: DeleteAuditSuppression — destructive operation
category: cloud
- name: aws-iot-delete-authorizer
pattern: (?i)aws\s+delete\-authorizer\b
severity: block
message: DeleteAuthorizer — destructive operation
category: cloud
- name: aws-iot-delete-billing-group
pattern: (?i)aws\s+delete\-billing\-group\b
severity: block
message: DeleteBillingGroup — destructive operation
category: cloud
- name: aws-iot-delete-c-a-certificate
pattern: (?i)aws\s+delete\-c\-a\-certificate\b
severity: block
message: DeleteCACertificate — destructive operation
category: cloud
- name: aws-iot-delete-certificate
pattern: (?i)aws\s+delete\-certificate\b
severity: block
message: DeleteCertificate — destructive operation
category: cloud
- name: aws-iot-delete-custom-metric
pattern: (?i)aws\s+delete\-custom\-metric\b
severity: warn
message: DeleteCustomMetric — destructive operation
category: cloud
- name: aws-iot-delete-dimension
pattern: (?i)aws\s+delete\-dimension\b
severity: block
message: DeleteDimension — destructive operation
category: cloud
- name: aws-iot-delete-domain-configuration
pattern: (?i)aws\s+delete\-domain\-configuration\b
severity: block
message: DeleteDomainConfiguration — destructive operation
category: cloud
- name: aws-iot-delete-dynamic-thing-group
pattern: (?i)aws\s+delete\-dynamic\-thing\-group\b
severity: block
message: DeleteDynamicThingGroup — destructive operation
category: cloud
- name: aws-iot-delete-fleet-metric
pattern: (?i)aws\s+delete\-fleet\-metric\b
severity: warn
message: DeleteFleetMetric — destructive operation
category: cloud
- name: aws-iot-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: block
message: DeleteJob — destructive operation
category: cloud
- name: aws-iot-delete-job-execution
pattern: (?i)aws\s+delete\-job\-execution\b
severity: block
message: DeleteJobExecution — destructive operation
category: cloud
- name: aws-iot-delete-job-template
pattern: (?i)aws\s+delete\-job\-template\b
severity: block
message: DeleteJobTemplate — destructive operation
category: cloud
- name: aws-iot-delete-mitigation-action
pattern: (?i)aws\s+delete\-mitigation\-action\b
severity: block
message: DeleteMitigationAction — destructive operation
category: cloud
- name: aws-iot-delete-o-t-a-update
pattern: (?i)aws\s+delete\-o\-t\-a\-update\b
severity: block
message: DeleteOTAUpdate — destructive operation
category: cloud
- name: aws-iot-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-iot-delete-policy-version
pattern: (?i)aws\s+delete\-policy\-version\b
severity: block
message: DeletePolicyVersion — destructive operation
category: cloud
- name: aws-iot-delete-provisioning-template
pattern: (?i)aws\s+delete\-provisioning\-template\b
severity: block
message: DeleteProvisioningTemplate — destructive operation
category: cloud
- name: aws-iot-delete-provisioning-template-version
pattern: (?i)aws\s+delete\-provisioning\-template\-version\b
severity: block
message: DeleteProvisioningTemplateVersion — destructive operation
category: cloud
- name: aws-iot-delete-registration-code
pattern: (?i)aws\s+delete\-registration\-code\b
severity: block
message: DeleteRegistrationCode — destructive operation
category: cloud
- name: aws-iot-delete-role-alias
pattern: (?i)aws\s+delete\-role\-alias\b
severity: block
message: DeleteRoleAlias — destructive operation
category: cloud
- name: aws-iot-delete-scheduled-audit
pattern: (?i)aws\s+delete\-scheduled\-audit\b
severity: block
message: DeleteScheduledAudit — destructive operation
category: cloud
- name: aws-iot-delete-security-profile
pattern: (?i)aws\s+delete\-security\-profile\b
severity: block
message: DeleteSecurityProfile — destructive operation
category: cloud
- name: aws-iot-delete-stream
pattern: (?i)aws\s+delete\-stream\b
severity: block
message: DeleteStream — destructive operation
category: cloud
- name: aws-iot-delete-thing
pattern: (?i)aws\s+delete\-thing\b
severity: block
message: DeleteThing — destructive operation
category: cloud
- name: aws-iot-delete-thing-group
pattern: (?i)aws\s+delete\-thing\-group\b
severity: block
message: DeleteThingGroup — destructive operation
category: cloud
- name: aws-iot-delete-thing-type
pattern: (?i)aws\s+delete\-thing\-type\b
severity: block
message: DeleteThingType — destructive operation
category: cloud
- name: aws-iot-delete-topic-rule
pattern: (?i)aws\s+delete\-topic\-rule\b
severity: warn
message: DeleteTopicRule — destructive operation
category: cloud
- name: aws-iot-delete-topic-rule-destination
pattern: (?i)aws\s+delete\-topic\-rule\-destination\b
severity: warn
message: DeleteTopicRuleDestination — destructive operation
category: cloud
- name: aws-iot-delete-v2-logging-level
pattern: (?i)aws\s+delete\-v2\-logging\-level\b
severity: warn
message: DeleteV2LoggingLevel — destructive operation
category: cloud
- name: aws-iot-detach-policy
pattern: (?i)aws\s+detach\-policy\b
severity: block
message: DetachPolicy — destructive operation
category: cloud
- name: aws-iot-detach-principal-policy
pattern: (?i)aws\s+detach\-principal\-policy\b
severity: block
message: DetachPrincipalPolicy — destructive operation
category: cloud
- name: aws-iot-detach-security-profile
pattern: (?i)aws\s+detach\-security\-profile\b
severity: block
message: DetachSecurityProfile — destructive operation
category: cloud
- name: aws-iot-detach-thing-principal
pattern: (?i)aws\s+detach\-thing\-principal\b
severity: block
message: DetachThingPrincipal — destructive operation
category: cloud
- name: aws-iot-disable-topic-rule
pattern: (?i)aws\s+disable\-topic\-rule\b
severity: warn
message: DisableTopicRule — destructive operation
category: cloud
- name: aws-iot-remove-thing-from-billing-group
pattern: (?i)aws\s+remove\-thing\-from\-billing\-group\b
severity: block
message: RemoveThingFromBillingGroup — destructive operation
category: cloud
- name: aws-iot-remove-thing-from-thing-group
pattern: (?i)aws\s+remove\-thing\-from\-thing\-group\b
severity: block
message: RemoveThingFromThingGroup — destructive operation
category: cloud
- name: aws-iot1click-devices-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iot1click-projects-delete-placement
pattern: (?i)aws\s+delete\-placement\b
severity: block
message: DeletePlacement — destructive operation
category: cloud
- name: aws-iot1click-projects-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-iot1click-projects-disassociate-device-from-placement
pattern: (?i)aws\s+disassociate\-device\-from\-placement\b
severity: block
message: DisassociateDeviceFromPlacement — destructive operation
category: cloud
- name: aws-iot1click-projects-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotanalytics-cancel-pipeline-reprocessing
pattern: (?i)aws\s+cancel\-pipeline\-reprocessing\b
severity: block
message: CancelPipelineReprocessing — destructive operation
category: cloud
- name: aws-iotanalytics-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-iotanalytics-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: block
message: DeleteDataset — destructive operation
category: cloud
- name: aws-iotanalytics-delete-dataset-content
pattern: (?i)aws\s+delete\-dataset\-content\b
severity: block
message: DeleteDatasetContent — destructive operation
category: cloud
- name: aws-iotanalytics-delete-datastore
pattern: (?i)aws\s+delete\-datastore\b
severity: block
message: DeleteDatastore — destructive operation
category: cloud
- name: aws-iotanalytics-delete-pipeline
pattern: (?i)aws\s+delete\-pipeline\b
severity: block
message: DeletePipeline — destructive operation
category: cloud
- name: aws-iotanalytics-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotdeviceadvisor-delete-suite-definition
pattern: (?i)aws\s+delete\-suite\-definition\b
severity: block
message: DeleteSuiteDefinition — destructive operation
category: cloud
- name: aws-iotdeviceadvisor-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotevents-data-batch-delete-detector
pattern: (?i)aws\s+batch\-delete\-detector\b
severity: warn
message: BatchDeleteDetector — destructive operation
category: cloud
- name: aws-iotevents-data-batch-disable-alarm
pattern: (?i)aws\s+batch\-disable\-alarm\b
severity: warn
message: BatchDisableAlarm — destructive operation
category: cloud
- name: aws-iotevents-data-batch-reset-alarm
pattern: (?i)aws\s+batch\-reset\-alarm\b
severity: warn
message: BatchResetAlarm — destructive operation
category: cloud
- name: aws-iotevents-delete-alarm-model
pattern: (?i)aws\s+delete\-alarm\-model\b
severity: warn
message: DeleteAlarmModel — destructive operation
category: cloud
- name: aws-iotevents-delete-detector-model
pattern: (?i)aws\s+delete\-detector\-model\b
severity: block
message: DeleteDetectorModel — destructive operation
category: cloud
- name: aws-iotevents-delete-input
pattern: (?i)aws\s+delete\-input\b
severity: block
message: DeleteInput — destructive operation
category: cloud
- name: aws-iotevents-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotfleethub-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-iotfleethub-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-campaign
pattern: (?i)aws\s+delete\-campaign\b
severity: warn
message: DeleteCampaign — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-decoder-manifest
pattern: (?i)aws\s+delete\-decoder\-manifest\b
severity: warn
message: DeleteDecoderManifest — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-fleet
pattern: (?i)aws\s+delete\-fleet\b
severity: warn
message: DeleteFleet — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-model-manifest
pattern: (?i)aws\s+delete\-model\-manifest\b
severity: warn
message: DeleteModelManifest — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-signal-catalog
pattern: (?i)aws\s+delete\-signal\-catalog\b
severity: warn
message: DeleteSignalCatalog — destructive operation
category: cloud
- name: aws-iotfleetwise-delete-vehicle
pattern: (?i)aws\s+delete\-vehicle\b
severity: warn
message: DeleteVehicle — destructive operation
category: cloud
- name: aws-iotfleetwise-disassociate-vehicle-fleet
pattern: (?i)aws\s+disassociate\-vehicle\-fleet\b
severity: warn
message: DisassociateVehicleFleet — destructive operation
category: cloud
- name: aws-iotsitewise-batch-disassociate-project-assets
pattern: (?i)aws\s+batch\-disassociate\-project\-assets\b
severity: block
message: BatchDisassociateProjectAssets — destructive operation
category: cloud
- name: aws-iotsitewise-delete-access-policy
pattern: (?i)aws\s+delete\-access\-policy\b
severity: block
message: DeleteAccessPolicy — destructive operation
category: cloud
- name: aws-iotsitewise-delete-asset
pattern: (?i)aws\s+delete\-asset\b
severity: block
message: DeleteAsset — destructive operation
category: cloud
- name: aws-iotsitewise-delete-asset-model
pattern: (?i)aws\s+delete\-asset\-model\b
severity: block
message: DeleteAssetModel — destructive operation
category: cloud
- name: aws-iotsitewise-delete-dashboard
pattern: (?i)aws\s+delete\-dashboard\b
severity: block
message: DeleteDashboard — destructive operation
category: cloud
- name: aws-iotsitewise-delete-gateway
pattern: (?i)aws\s+delete\-gateway\b
severity: block
message: DeleteGateway — destructive operation
category: cloud
- name: aws-iotsitewise-delete-portal
pattern: (?i)aws\s+delete\-portal\b
severity: block
message: DeletePortal — destructive operation
category: cloud
- name: aws-iotsitewise-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-iotsitewise-delete-time-series
pattern: (?i)aws\s+delete\-time\-series\b
severity: warn
message: DeleteTimeSeries — destructive operation
category: cloud
- name: aws-iotsitewise-disassociate-assets
pattern: (?i)aws\s+disassociate\-assets\b
severity: warn
message: DisassociateAssets — destructive operation
category: cloud
- name: aws-iotsitewise-disassociate-time-series-from-asset-property
pattern: (?i)aws\s+disassociate\-time\-series\-from\-asset\-property\b
severity: warn
message: DisassociateTimeSeriesFromAssetProperty — destructive operation
category: cloud
- name: aws-iotsitewise-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotthingsgraph-delete-flow-template
pattern: (?i)aws\s+delete\-flow\-template\b
severity: warn
message: DeleteFlowTemplate — destructive operation
category: cloud
- name: aws-iotthingsgraph-delete-namespace
pattern: (?i)aws\s+delete\-namespace\b
severity: block
message: DeleteNamespace — destructive operation
category: cloud
- name: aws-iotthingsgraph-delete-system-instance
pattern: (?i)aws\s+delete\-system\-instance\b
severity: block
message: DeleteSystemInstance — destructive operation
category: cloud
- name: aws-iotthingsgraph-delete-system-template
pattern: (?i)aws\s+delete\-system\-template\b
severity: warn
message: DeleteSystemTemplate — destructive operation
category: cloud
- name: aws-iottwinmaker-delete-component-type
pattern: (?i)aws\s+delete\-component\-type\b
severity: block
message: DeleteComponentType — destructive operation
category: cloud
- name: aws-iottwinmaker-delete-entity
pattern: (?i)aws\s+delete\-entity\b
severity: block
message: DeleteEntity — destructive operation
category: cloud
- name: aws-iottwinmaker-delete-scene
pattern: (?i)aws\s+delete\-scene\b
severity: block
message: DeleteScene — destructive operation
category: cloud
- name: aws-iottwinmaker-delete-workspace
pattern: (?i)aws\s+delete\-workspace\b
severity: block
message: DeleteWorkspace — destructive operation
category: cloud
- name: aws-iottwinmaker-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-iotwireless-cancel-multicast-group-session
pattern: (?i)aws\s+cancel\-multicast\-group\-session\b
severity: block
message: CancelMulticastGroupSession — destructive operation
category: cloud
- name: aws-iotwireless-delete-destination
pattern: (?i)aws\s+delete\-destination\b
severity: block
message: DeleteDestination — destructive operation
category: cloud
- name: aws-iotwireless-delete-device-profile
pattern: (?i)aws\s+delete\-device\-profile\b
severity: block
message: DeleteDeviceProfile — destructive operation
category: cloud
- name: aws-iotwireless-delete-fuota-task
pattern: (?i)aws\s+delete\-fuota\-task\b
severity: block
message: DeleteFuotaTask — destructive operation
category: cloud
- name: aws-iotwireless-delete-multicast-group
pattern: (?i)aws\s+delete\-multicast\-group\b
severity: block
message: DeleteMulticastGroup — destructive operation
category: cloud
- name: aws-iotwireless-delete-network-analyzer-configuration
pattern: (?i)aws\s+delete\-network\-analyzer\-configuration\b
severity: block
message: DeleteNetworkAnalyzerConfiguration — destructive operation
category: cloud
- name: aws-iotwireless-delete-queued-messages
pattern: (?i)aws\s+delete\-queued\-messages\b
severity: warn
message: DeleteQueuedMessages — destructive operation
category: cloud
- name: aws-iotwireless-delete-service-profile
pattern: (?i)aws\s+delete\-service\-profile\b
severity: block
message: DeleteServiceProfile — destructive operation
category: cloud
- name: aws-iotwireless-delete-wireless-device
pattern: (?i)aws\s+delete\-wireless\-device\b
severity: block
message: DeleteWirelessDevice — destructive operation
category: cloud
- name: aws-iotwireless-delete-wireless-gateway
pattern: (?i)aws\s+delete\-wireless\-gateway\b
severity: block
message: DeleteWirelessGateway — destructive operation
category: cloud
- name: aws-iotwireless-delete-wireless-gateway-task
pattern: (?i)aws\s+delete\-wireless\-gateway\-task\b
severity: block
message: DeleteWirelessGatewayTask — destructive operation
category: cloud
- name: aws-iotwireless-delete-wireless-gateway-task-definition
pattern: (?i)aws\s+delete\-wireless\-gateway\-task\-definition\b
severity: block
message: DeleteWirelessGatewayTaskDefinition — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-aws-account-from-partner-account
pattern: (?i)aws\s+disassociate\-aws\-account\-from\-partner\-account\b
severity: block
message: DisassociateAwsAccountFromPartnerAccount — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-multicast-group-from-fuota-task
pattern: (?i)aws\s+disassociate\-multicast\-group\-from\-fuota\-task\b
severity: block
message: DisassociateMulticastGroupFromFuotaTask — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-wireless-device-from-fuota-task
pattern: (?i)aws\s+disassociate\-wireless\-device\-from\-fuota\-task\b
severity: block
message: DisassociateWirelessDeviceFromFuotaTask — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-wireless-device-from-multicast-group
pattern: (?i)aws\s+disassociate\-wireless\-device\-from\-multicast\-group\b
severity: block
message: DisassociateWirelessDeviceFromMulticastGroup — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-wireless-device-from-thing
pattern: (?i)aws\s+disassociate\-wireless\-device\-from\-thing\b
severity: block
message: DisassociateWirelessDeviceFromThing — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-wireless-gateway-from-certificate
pattern: (?i)aws\s+disassociate\-wireless\-gateway\-from\-certificate\b
severity: block
message: DisassociateWirelessGatewayFromCertificate — destructive operation
category: cloud
- name: aws-iotwireless-disassociate-wireless-gateway-from-thing
pattern: (?i)aws\s+disassociate\-wireless\-gateway\-from\-thing\b
severity: block
message: DisassociateWirelessGatewayFromThing — destructive operation
category: cloud
- name: aws-iotwireless-reset-all-resource-log-levels
pattern: (?i)aws\s+reset\-all\-resource\-log\-levels\b
severity: warn
message: ResetAllResourceLogLevels — destructive operation
category: cloud
- name: aws-iotwireless-reset-resource-log-level
pattern: (?i)aws\s+reset\-resource\-log\-level\b
severity: warn
message: ResetResourceLogLevel — destructive operation
category: cloud
- name: aws-iotwireless-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ivs-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: warn
message: DeleteChannel — destructive operation
category: cloud
- name: aws-ivs-delete-playback-key-pair
pattern: (?i)aws\s+delete\-playback\-key\-pair\b
severity: block
message: DeletePlaybackKeyPair — destructive operation
category: cloud
- name: aws-ivs-delete-recording-configuration
pattern: (?i)aws\s+delete\-recording\-configuration\b
severity: warn
message: DeleteRecordingConfiguration — destructive operation
category: cloud
- name: aws-ivs-delete-stream-key
pattern: (?i)aws\s+delete\-stream\-key\b
severity: block
message: DeleteStreamKey — destructive operation
category: cloud
- name: aws-ivs-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ivschat-delete-logging-configuration
pattern: (?i)aws\s+delete\-logging\-configuration\b
severity: warn
message: DeleteLoggingConfiguration — destructive operation
category: cloud
- name: aws-ivschat-delete-message
pattern: (?i)aws\s+delete\-message\b
severity: warn
message: DeleteMessage — destructive operation
category: cloud
- name: aws-ivschat-delete-room
pattern: (?i)aws\s+delete\-room\b
severity: warn
message: DeleteRoom — destructive operation
category: cloud
- name: aws-ivschat-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-kafka-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-kafka-delete-configuration
pattern: (?i)aws\s+delete\-configuration\b
severity: block
message: DeleteConfiguration — destructive operation
category: cloud
- name: aws-kafka-batch-disassociate-scram-secret
pattern: (?i)aws\s+batch\-disassociate\-scram\-secret\b
severity: block
message: BatchDisassociateScramSecret — destructive operation
category: cloud
- name: aws-kafka-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-kafkaconnect-delete-connector
pattern: (?i)aws\s+delete\-connector\b
severity: block
message: DeleteConnector — destructive operation
category: cloud
- name: aws-kafkaconnect-delete-custom-plugin
pattern: (?i)aws\s+delete\-custom\-plugin\b
severity: block
message: DeleteCustomPlugin — destructive operation
category: cloud
- name: aws-kendra-batch-delete-document
pattern: (?i)aws\s+batch\-delete\-document\b
severity: warn
message: BatchDeleteDocument — destructive operation
category: cloud
- name: aws-kendra-delete-access-control-configuration
pattern: (?i)aws\s+delete\-access\-control\-configuration\b
severity: warn
message: DeleteAccessControlConfiguration — destructive operation
category: cloud
- name: aws-kendra-delete-data-source
pattern: (?i)aws\s+delete\-data\-source\b
severity: warn
message: DeleteDataSource — destructive operation
category: cloud
- name: aws-kendra-delete-experience
pattern: (?i)aws\s+delete\-experience\b
severity: warn
message: DeleteExperience — destructive operation
category: cloud
- name: aws-kendra-delete-faq
pattern: (?i)aws\s+delete\-faq\b
severity: warn
message: DeleteFaq — destructive operation
category: cloud
- name: aws-kendra-delete-index
pattern: (?i)aws\s+delete\-index\b
severity: warn
message: DeleteIndex — destructive operation
category: cloud
- name: aws-kendra-delete-principal-mapping
pattern: (?i)aws\s+delete\-principal\-mapping\b
severity: warn
message: DeletePrincipalMapping — destructive operation
category: cloud
- name: aws-kendra-delete-query-suggestions-block-list
pattern: (?i)aws\s+delete\-query\-suggestions\-block\-list\b
severity: warn
message: DeleteQuerySuggestionsBlockList — destructive operation
category: cloud
- name: aws-kendra-delete-thesaurus
pattern: (?i)aws\s+delete\-thesaurus\b
severity: warn
message: DeleteThesaurus — destructive operation
category: cloud
- name: aws-kendra-disassociate-entities-from-experience
pattern: (?i)aws\s+disassociate\-entities\-from\-experience\b
severity: warn
message: DisassociateEntitiesFromExperience — destructive operation
category: cloud
- name: aws-kendra-disassociate-personas-from-entities
pattern: (?i)aws\s+disassociate\-personas\-from\-entities\b
severity: warn
message: DisassociatePersonasFromEntities — destructive operation
category: cloud
- name: aws-keyspaces-delete-keyspace
pattern: (?i)aws\s+delete\-keyspace\b
severity: block
message: DeleteKeyspace — destructive operation
category: cloud
- name: aws-keyspaces-delete-table
pattern: (?i)aws\s+delete\-table\b
severity: warn
message: DeleteTable — destructive operation
category: cloud
- name: aws-kinesis-delete-stream
pattern: (?i)aws\s+delete\-stream\b
severity: warn
message: DeleteStream — destructive operation
category: cloud
- name: aws-kinesis-deregister-stream-consumer
pattern: (?i)aws\s+deregister\-stream\-consumer\b
severity: warn
message: DeregisterStreamConsumer — destructive operation
category: cloud
- name: aws-kinesis-disable-enhanced-monitoring
pattern: (?i)aws\s+disable\-enhanced\-monitoring\b
severity: warn
message: DisableEnhancedMonitoring — destructive operation
category: cloud
- name: aws-kinesis-remove-tags-from-stream
pattern: (?i)aws\s+remove\-tags\-from\-stream\b
severity: warn
message: RemoveTagsFromStream — destructive operation
category: cloud
- name: aws-kinesisanalytics-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-kinesisanalytics-delete-application-cloud-watch-logging-option
pattern: (?i)aws\s+delete\-application\-cloud\-watch\-logging\-option\b
severity: warn
message: DeleteApplicationCloudWatchLoggingOption — destructive operation
category: cloud
- name: aws-kinesisanalytics-delete-application-input-processing-configuration
pattern: (?i)aws\s+delete\-application\-input\-processing\-configuration\b
severity: warn
message: DeleteApplicationInputProcessingConfiguration — destructive operation
category: cloud
- name: aws-kinesisanalytics-delete-application-output
pattern: (?i)aws\s+delete\-application\-output\b
severity: warn
message: DeleteApplicationOutput — destructive operation
category: cloud
- name: aws-kinesisanalytics-delete-application-reference-data-source
pattern: (?i)aws\s+delete\-application\-reference\-data\-source\b
severity: warn
message: DeleteApplicationReferenceDataSource — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-cloud-watch-logging-option
pattern: (?i)aws\s+delete\-application\-cloud\-watch\-logging\-option\b
severity: warn
message: DeleteApplicationCloudWatchLoggingOption — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-input-processing-configuration
pattern: (?i)aws\s+delete\-application\-input\-processing\-configuration\b
severity: warn
message: DeleteApplicationInputProcessingConfiguration — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-output
pattern: (?i)aws\s+delete\-application\-output\b
severity: warn
message: DeleteApplicationOutput — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-reference-data-source
pattern: (?i)aws\s+delete\-application\-reference\-data\-source\b
severity: warn
message: DeleteApplicationReferenceDataSource — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-snapshot
pattern: (?i)aws\s+delete\-application\-snapshot\b
severity: warn
message: DeleteApplicationSnapshot — destructive operation
category: cloud
- name: aws-kinesisanalyticsv2-delete-application-vpc-configuration
pattern: (?i)aws\s+delete\-application\-vpc\-configuration\b
severity: warn
message: DeleteApplicationVpcConfiguration — destructive operation
category: cloud
- name: aws-kinesisvideo-delete-signaling-channel
pattern: (?i)aws\s+delete\-signaling\-channel\b
severity: warn
message: DeleteSignalingChannel — destructive operation
category: cloud
- name: aws-kinesisvideo-delete-stream
pattern: (?i)aws\s+delete\-stream\b
severity: warn
message: DeleteStream — destructive operation
category: cloud
- name: aws-kms-cancel-key-deletion
pattern: (?i)aws\s+cancel\-key\-deletion\b
severity: block
message: CancelKeyDeletion — destructive operation
category: cloud
- name: aws-kms-delete-alias
pattern: (?i)aws\s+delete\-alias\b
severity: warn
message: DeleteAlias — destructive operation
category: cloud
- name: aws-kms-delete-custom-key-store
pattern: (?i)aws\s+delete\-custom\-key\-store\b
severity: block
message: DeleteCustomKeyStore — destructive operation
category: cloud
- name: aws-kms-delete-imported-key-material
pattern: (?i)aws\s+delete\-imported\-key\-material\b
severity: block
message: DeleteImportedKeyMaterial — destructive operation
category: cloud
- name: aws-kms-disable-key
pattern: (?i)aws\s+disable\-key\b
severity: block
message: DisableKey — destructive operation
category: cloud
- name: aws-kms-disable-key-rotation
pattern: (?i)aws\s+disable\-key\-rotation\b
severity: block
message: DisableKeyRotation — destructive operation
category: cloud
- name: aws-kms-revoke-grant
pattern: (?i)aws\s+revoke\-grant\b
severity: warn
message: RevokeGrant — destructive operation
category: cloud
- name: aws-lakeformation-batch-revoke-permissions
pattern: (?i)aws\s+batch\-revoke\-permissions\b
severity: warn
message: BatchRevokePermissions — destructive operation
category: cloud
- name: aws-lakeformation-cancel-transaction
pattern: (?i)aws\s+cancel\-transaction\b
severity: warn
message: CancelTransaction — destructive operation
category: cloud
- name: aws-lakeformation-delete-data-cells-filter
pattern: (?i)aws\s+delete\-data\-cells\-filter\b
severity: warn
message: DeleteDataCellsFilter — destructive operation
category: cloud
- name: aws-lakeformation-delete-l-f-tag
pattern: (?i)aws\s+delete\-l\-f\-tag\b
severity: warn
message: DeleteLFTag — destructive operation
category: cloud
- name: aws-lakeformation-delete-objects-on-cancel
pattern: (?i)aws\s+delete\-objects\-on\-cancel\b
severity: warn
message: DeleteObjectsOnCancel — destructive operation
category: cloud
- name: aws-lakeformation-deregister-resource
pattern: (?i)aws\s+deregister\-resource\b
severity: warn
message: DeregisterResource — destructive operation
category: cloud
- name: aws-lakeformation-remove-l-f-tags-from-resource
pattern: (?i)aws\s+remove\-l\-f\-tags\-from\-resource\b
severity: warn
message: RemoveLFTagsFromResource — destructive operation
category: cloud
- name: aws-lakeformation-revoke-permissions
pattern: (?i)aws\s+revoke\-permissions\b
severity: warn
message: RevokePermissions — destructive operation
category: cloud
- name: aws-lambda-delete-alias
pattern: (?i)aws\s+delete\-alias\b
severity: block
message: DeleteAlias — destructive operation
category: cloud
- name: aws-lambda-delete-code-signing-config
pattern: (?i)aws\s+delete\-code\-signing\-config\b
severity: block
message: DeleteCodeSigningConfig — destructive operation
category: cloud
- name: aws-lambda-delete-event-source-mapping
pattern: (?i)aws\s+delete\-event\-source\-mapping\b
severity: warn
message: DeleteEventSourceMapping — destructive operation
category: cloud
- name: aws-lambda-delete-function
pattern: (?i)aws\s+delete\-function\b
severity: block
message: DeleteFunction — destructive operation
category: cloud
- name: aws-lambda-delete-function-code-signing-config
pattern: (?i)aws\s+delete\-function\-code\-signing\-config\b
severity: block
message: DeleteFunctionCodeSigningConfig — destructive operation
category: cloud
- name: aws-lambda-delete-function-concurrency
pattern: (?i)aws\s+delete\-function\-concurrency\b
severity: block
message: DeleteFunctionConcurrency — destructive operation
category: cloud
- name: aws-lambda-delete-function-event-invoke-config
pattern: (?i)aws\s+delete\-function\-event\-invoke\-config\b
severity: warn
message: DeleteFunctionEventInvokeConfig — destructive operation
category: cloud
- name: aws-lambda-delete-function-url-config
pattern: (?i)aws\s+delete\-function\-url\-config\b
severity: block
message: DeleteFunctionUrlConfig — destructive operation
category: cloud
- name: aws-lambda-delete-layer-version
pattern: (?i)aws\s+delete\-layer\-version\b
severity: block
message: DeleteLayerVersion — destructive operation
category: cloud
- name: aws-lambda-delete-provisioned-concurrency-config
pattern: (?i)aws\s+delete\-provisioned\-concurrency\-config\b
severity: block
message: DeleteProvisionedConcurrencyConfig — destructive operation
category: cloud
- name: aws-lambda-remove-layer-version-permission
pattern: (?i)aws\s+remove\-layer\-version\-permission\b
severity: block
message: RemoveLayerVersionPermission — destructive operation
category: cloud
- name: aws-lambda-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: block
message: RemovePermission — destructive operation
category: cloud
- name: aws-lambda-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-lex-models-delete-bot
pattern: (?i)aws\s+delete\-bot\b
severity: block
message: DeleteBot — destructive operation
category: cloud
- name: aws-lex-models-delete-bot-alias
pattern: (?i)aws\s+delete\-bot\-alias\b
severity: block
message: DeleteBotAlias — destructive operation
category: cloud
- name: aws-lex-models-delete-bot-channel-association
pattern: (?i)aws\s+delete\-bot\-channel\-association\b
severity: warn
message: DeleteBotChannelAssociation — destructive operation
category: cloud
- name: aws-lex-models-delete-bot-version
pattern: (?i)aws\s+delete\-bot\-version\b
severity: block
message: DeleteBotVersion — destructive operation
category: cloud
- name: aws-lex-models-delete-intent
pattern: (?i)aws\s+delete\-intent\b
severity: block
message: DeleteIntent — destructive operation
category: cloud
- name: aws-lex-models-delete-intent-version
pattern: (?i)aws\s+delete\-intent\-version\b
severity: block
message: DeleteIntentVersion — destructive operation
category: cloud
- name: aws-lex-models-delete-slot-type
pattern: (?i)aws\s+delete\-slot\-type\b
severity: block
message: DeleteSlotType — destructive operation
category: cloud
- name: aws-lex-models-delete-slot-type-version
pattern: (?i)aws\s+delete\-slot\-type\-version\b
severity: block
message: DeleteSlotTypeVersion — destructive operation
category: cloud
- name: aws-lex-models-delete-utterances
pattern: (?i)aws\s+delete\-utterances\b
severity: block
message: DeleteUtterances — destructive operation
category: cloud
- name: aws-lex-models-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-license-manager-user-subscriptions-deregister-identity-provider
pattern: (?i)aws\s+deregister\-identity\-provider\b
severity: warn
message: DeregisterIdentityProvider — destructive operation
category: cloud
- name: aws-license-manager-user-subscriptions-disassociate-user
pattern: (?i)aws\s+disassociate\-user\b
severity: warn
message: DisassociateUser — destructive operation
category: cloud
- name: aws-license-manager-delete-grant
pattern: (?i)aws\s+delete\-grant\b
severity: warn
message: DeleteGrant — destructive operation
category: cloud
- name: aws-license-manager-delete-license
pattern: (?i)aws\s+delete\-license\b
severity: warn
message: DeleteLicense — destructive operation
category: cloud
- name: aws-license-manager-delete-license-configuration
pattern: (?i)aws\s+delete\-license\-configuration\b
severity: warn
message: DeleteLicenseConfiguration — destructive operation
category: cloud
- name: aws-license-manager-delete-license-manager-report-generator
pattern: (?i)aws\s+delete\-license\-manager\-report\-generator\b
severity: warn
message: DeleteLicenseManagerReportGenerator — destructive operation
category: cloud
- name: aws-license-manager-delete-token
pattern: (?i)aws\s+delete\-token\b
severity: warn
message: DeleteToken — destructive operation
category: cloud
- name: aws-lightsail-delete-alarm
pattern: (?i)aws\s+delete\-alarm\b
severity: warn
message: DeleteAlarm — destructive operation
category: cloud
- name: aws-lightsail-delete-auto-snapshot
pattern: (?i)aws\s+delete\-auto\-snapshot\b
severity: warn
message: DeleteAutoSnapshot — destructive operation
category: cloud
- name: aws-lightsail-delete-bucket
pattern: (?i)aws\s+delete\-bucket\b
severity: block
message: DeleteBucket — destructive operation
category: cloud
- name: aws-lightsail-delete-bucket-access-key
pattern: (?i)aws\s+delete\-bucket\-access\-key\b
severity: block
message: DeleteBucketAccessKey — destructive operation
category: cloud
- name: aws-lightsail-delete-certificate
pattern: (?i)aws\s+delete\-certificate\b
severity: block
message: DeleteCertificate — destructive operation
category: cloud
- name: aws-lightsail-delete-contact-method
pattern: (?i)aws\s+delete\-contact\-method\b
severity: warn
message: DeleteContactMethod — destructive operation
category: cloud
- name: aws-lightsail-delete-container-image
pattern: (?i)aws\s+delete\-container\-image\b
severity: warn
message: DeleteContainerImage — destructive operation
category: cloud
- name: aws-lightsail-delete-container-service
pattern: (?i)aws\s+delete\-container\-service\b
severity: warn
message: DeleteContainerService — destructive operation
category: cloud
- name: aws-lightsail-delete-disk
pattern: (?i)aws\s+delete\-disk\b
severity: warn
message: DeleteDisk — destructive operation
category: cloud
- name: aws-lightsail-delete-disk-snapshot
pattern: (?i)aws\s+delete\-disk\-snapshot\b
severity: warn
message: DeleteDiskSnapshot — destructive operation
category: cloud
- name: aws-lightsail-delete-distribution
pattern: (?i)aws\s+delete\-distribution\b
severity: warn
message: DeleteDistribution — destructive operation
category: cloud
- name: aws-lightsail-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-lightsail-delete-domain-entry
pattern: (?i)aws\s+delete\-domain\-entry\b
severity: warn
message: DeleteDomainEntry — destructive operation
category: cloud
- name: aws-lightsail-delete-instance
pattern: (?i)aws\s+delete\-instance\b
severity: block
message: DeleteInstance — destructive operation
category: cloud
- name: aws-lightsail-delete-instance-snapshot
pattern: (?i)aws\s+delete\-instance\-snapshot\b
severity: block
message: DeleteInstanceSnapshot — destructive operation
category: cloud
- name: aws-lightsail-delete-key-pair
pattern: (?i)aws\s+delete\-key\-pair\b
severity: block
message: DeleteKeyPair — destructive operation
category: cloud
- name: aws-lightsail-delete-known-host-keys
pattern: (?i)aws\s+delete\-known\-host\-keys\b
severity: block
message: DeleteKnownHostKeys — destructive operation
category: cloud
- name: aws-lightsail-delete-load-balancer
pattern: (?i)aws\s+delete\-load\-balancer\b
severity: block
message: DeleteLoadBalancer — destructive operation
category: cloud
- name: aws-lightsail-delete-load-balancer-tls-certificate
pattern: (?i)aws\s+delete\-load\-balancer\-tls\-certificate\b
severity: block
message: DeleteLoadBalancerTlsCertificate — destructive operation
category: cloud
- name: aws-lightsail-delete-relational-database
pattern: (?i)aws\s+delete\-relational\-database\b
severity: block
message: DeleteRelationalDatabase — destructive operation
category: cloud
- name: aws-lightsail-delete-relational-database-snapshot
pattern: (?i)aws\s+delete\-relational\-database\-snapshot\b
severity: block
message: DeleteRelationalDatabaseSnapshot — destructive operation
category: cloud
- name: aws-lightsail-detach-certificate-from-distribution
pattern: (?i)aws\s+detach\-certificate\-from\-distribution\b
severity: block
message: DetachCertificateFromDistribution — destructive operation
category: cloud
- name: aws-lightsail-detach-disk
pattern: (?i)aws\s+detach\-disk\b
severity: warn
message: DetachDisk — destructive operation
category: cloud
- name: aws-lightsail-detach-instances-from-load-balancer
pattern: (?i)aws\s+detach\-instances\-from\-load\-balancer\b
severity: block
message: DetachInstancesFromLoadBalancer — destructive operation
category: cloud
- name: aws-lightsail-detach-static-ip
pattern: (?i)aws\s+detach\-static\-ip\b
severity: warn
message: DetachStaticIp — destructive operation
category: cloud
- name: aws-lightsail-disable-add-on
pattern: (?i)aws\s+disable\-add\-on\b
severity: warn
message: DisableAddOn — destructive operation
category: cloud
- name: aws-lightsail-release-static-ip
pattern: (?i)aws\s+release\-static\-ip\b
severity: warn
message: ReleaseStaticIp — destructive operation
category: cloud
- name: aws-lightsail-reset-distribution-cache
pattern: (?i)aws\s+reset\-distribution\-cache\b
severity: warn
message: ResetDistributionCache — destructive operation
category: cloud
- name: aws-location-batch-delete-device-position-history
pattern: (?i)aws\s+batch\-delete\-device\-position\-history\b
severity: warn
message: BatchDeleteDevicePositionHistory — destructive operation
category: cloud
- name: aws-location-batch-delete-geofence
pattern: (?i)aws\s+batch\-delete\-geofence\b
severity: warn
message: BatchDeleteGeofence — destructive operation
category: cloud
- name: aws-location-delete-geofence-collection
pattern: (?i)aws\s+delete\-geofence\-collection\b
severity: block
message: DeleteGeofenceCollection — destructive operation
category: cloud
- name: aws-location-delete-map
pattern: (?i)aws\s+delete\-map\b
severity: block
message: DeleteMap — destructive operation
category: cloud
- name: aws-location-delete-place-index
pattern: (?i)aws\s+delete\-place\-index\b
severity: block
message: DeletePlaceIndex — destructive operation
category: cloud
- name: aws-location-delete-route-calculator
pattern: (?i)aws\s+delete\-route\-calculator\b
severity: block
message: DeleteRouteCalculator — destructive operation
category: cloud
- name: aws-location-delete-tracker
pattern: (?i)aws\s+delete\-tracker\b
severity: block
message: DeleteTracker — destructive operation
category: cloud
- name: aws-location-disassociate-tracker-consumer
pattern: (?i)aws\s+disassociate\-tracker\-consumer\b
severity: block
message: DisassociateTrackerConsumer — destructive operation
category: cloud
- name: aws-location-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-logs-cancel-export-task
pattern: (?i)aws\s+cancel\-export\-task\b
severity: warn
message: CancelExportTask — destructive operation
category: cloud
- name: aws-logs-delete-data-protection-policy
pattern: (?i)aws\s+delete\-data\-protection\-policy\b
severity: block
message: DeleteDataProtectionPolicy — destructive operation
category: cloud
- name: aws-logs-delete-destination
pattern: (?i)aws\s+delete\-destination\b
severity: warn
message: DeleteDestination — destructive operation
category: cloud
- name: aws-logs-delete-log-group
pattern: (?i)aws\s+delete\-log\-group\b
severity: block
message: DeleteLogGroup — destructive operation
category: cloud
- name: aws-logs-delete-log-stream
pattern: (?i)aws\s+delete\-log\-stream\b
severity: warn
message: DeleteLogStream — destructive operation
category: cloud
- name: aws-logs-delete-metric-filter
pattern: (?i)aws\s+delete\-metric\-filter\b
severity: warn
message: DeleteMetricFilter — destructive operation
category: cloud
- name: aws-logs-delete-query-definition
pattern: (?i)aws\s+delete\-query\-definition\b
severity: warn
message: DeleteQueryDefinition — destructive operation
category: cloud
- name: aws-logs-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-logs-delete-retention-policy
pattern: (?i)aws\s+delete\-retention\-policy\b
severity: block
message: DeleteRetentionPolicy — destructive operation
category: cloud
- name: aws-logs-delete-subscription-filter
pattern: (?i)aws\s+delete\-subscription\-filter\b
severity: warn
message: DeleteSubscriptionFilter — destructive operation
category: cloud
- name: aws-logs-disassociate-kms-key
pattern: (?i)aws\s+disassociate\-kms\-key\b
severity: block
message: DisassociateKmsKey — destructive operation
category: cloud
- name: aws-lookoutequipment-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: warn
message: DeleteDataset — destructive operation
category: cloud
- name: aws-lookoutequipment-delete-inference-scheduler
pattern: (?i)aws\s+delete\-inference\-scheduler\b
severity: warn
message: DeleteInferenceScheduler — destructive operation
category: cloud
- name: aws-lookoutequipment-delete-label
pattern: (?i)aws\s+delete\-label\b
severity: warn
message: DeleteLabel — destructive operation
category: cloud
- name: aws-lookoutequipment-delete-label-group
pattern: (?i)aws\s+delete\-label\-group\b
severity: block
message: DeleteLabelGroup — destructive operation
category: cloud
- name: aws-lookoutequipment-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: warn
message: DeleteModel — destructive operation
category: cloud
- name: aws-lookoutmetrics-delete-alert
pattern: (?i)aws\s+delete\-alert\b
severity: warn
message: DeleteAlert — destructive operation
category: cloud
- name: aws-lookoutmetrics-delete-anomaly-detector
pattern: (?i)aws\s+delete\-anomaly\-detector\b
severity: warn
message: DeleteAnomalyDetector — destructive operation
category: cloud
- name: aws-lookoutmetrics-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-lookoutvision-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: block
message: DeleteDataset — destructive operation
category: cloud
- name: aws-lookoutvision-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: block
message: DeleteModel — destructive operation
category: cloud
- name: aws-lookoutvision-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-lookoutvision-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-m2-cancel-batch-job-execution
pattern: (?i)aws\s+cancel\-batch\-job\-execution\b
severity: warn
message: CancelBatchJobExecution — destructive operation
category: cloud
- name: aws-m2-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-m2-delete-application-from-environment
pattern: (?i)aws\s+delete\-application\-from\-environment\b
severity: block
message: DeleteApplicationFromEnvironment — destructive operation
category: cloud
- name: aws-m2-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: block
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-m2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-machinelearning-delete-batch-prediction
pattern: (?i)aws\s+delete\-batch\-prediction\b
severity: warn
message: DeleteBatchPrediction — destructive operation
category: cloud
- name: aws-machinelearning-delete-data-source
pattern: (?i)aws\s+delete\-data\-source\b
severity: warn
message: DeleteDataSource — destructive operation
category: cloud
- name: aws-machinelearning-delete-evaluation
pattern: (?i)aws\s+delete\-evaluation\b
severity: warn
message: DeleteEvaluation — destructive operation
category: cloud
- name: aws-machinelearning-delete-m-l-model
pattern: (?i)aws\s+delete\-m\-l\-model\b
severity: warn
message: DeleteMLModel — destructive operation
category: cloud
- name: aws-machinelearning-delete-realtime-endpoint
pattern: (?i)aws\s+delete\-realtime\-endpoint\b
severity: warn
message: DeleteRealtimeEndpoint — destructive operation
category: cloud
- name: aws-machinelearning-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-macie-disassociate-member-account
pattern: (?i)aws\s+disassociate\-member\-account\b
severity: block
message: DisassociateMemberAccount — destructive operation
category: cloud
- name: aws-macie-disassociate-s3-resources
pattern: (?i)aws\s+disassociate\-s3\-resources\b
severity: warn
message: DisassociateS3Resources — destructive operation
category: cloud
- name: aws-macie2-delete-allow-list
pattern: (?i)aws\s+delete\-allow\-list\b
severity: block
message: DeleteAllowList — destructive operation
category: cloud
- name: aws-macie2-delete-custom-data-identifier
pattern: (?i)aws\s+delete\-custom\-data\-identifier\b
severity: block
message: DeleteCustomDataIdentifier — destructive operation
category: cloud
- name: aws-macie2-delete-findings-filter
pattern: (?i)aws\s+delete\-findings\-filter\b
severity: block
message: DeleteFindingsFilter — destructive operation
category: cloud
- name: aws-macie2-delete-invitations
pattern: (?i)aws\s+delete\-invitations\b
severity: warn
message: DeleteInvitations — destructive operation
category: cloud
- name: aws-macie2-delete-member
pattern: (?i)aws\s+delete\-member\b
severity: block
message: DeleteMember — destructive operation
category: cloud
- name: aws-macie2-disable-macie
pattern: (?i)aws\s+disable\-macie\b
severity: block
message: DisableMacie — destructive operation
category: cloud
- name: aws-macie2-disable-organization-admin-account
pattern: (?i)aws\s+disable\-organization\-admin\-account\b
severity: block
message: DisableOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-macie2-disassociate-from-administrator-account
pattern: (?i)aws\s+disassociate\-from\-administrator\-account\b
severity: block
message: DisassociateFromAdministratorAccount — destructive operation
category: cloud
- name: aws-macie2-disassociate-from-master-account
pattern: (?i)aws\s+disassociate\-from\-master\-account\b
severity: block
message: DisassociateFromMasterAccount — destructive operation
category: cloud
- name: aws-macie2-disassociate-member
pattern: (?i)aws\s+disassociate\-member\b
severity: warn
message: DisassociateMember — destructive operation
category: cloud
- name: aws-macie2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-managedblockchain-delete-accessor
pattern: (?i)aws\s+delete\-accessor\b
severity: block
message: DeleteAccessor — destructive operation
category: cloud
- name: aws-managedblockchain-delete-member
pattern: (?i)aws\s+delete\-member\b
severity: block
message: DeleteMember — destructive operation
category: cloud
- name: aws-managedblockchain-delete-node
pattern: (?i)aws\s+delete\-node\b
severity: block
message: DeleteNode — destructive operation
category: cloud
- name: aws-managedblockchain-reject-invitation
pattern: (?i)aws\s+reject\-invitation\b
severity: block
message: RejectInvitation — destructive operation
category: cloud
- name: aws-managedblockchain-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-marketplace-catalog-cancel-change-set
pattern: (?i)aws\s+cancel\-change\-set\b
severity: warn
message: CancelChangeSet — destructive operation
category: cloud
- name: aws-mediaconnect-delete-flow
pattern: (?i)aws\s+delete\-flow\b
severity: block
message: DeleteFlow — destructive operation
category: cloud
- name: aws-mediaconnect-remove-flow-media-stream
pattern: (?i)aws\s+remove\-flow\-media\-stream\b
severity: block
message: RemoveFlowMediaStream — destructive operation
category: cloud
- name: aws-mediaconnect-remove-flow-output
pattern: (?i)aws\s+remove\-flow\-output\b
severity: block
message: RemoveFlowOutput — destructive operation
category: cloud
- name: aws-mediaconnect-remove-flow-source
pattern: (?i)aws\s+remove\-flow\-source\b
severity: block
message: RemoveFlowSource — destructive operation
category: cloud
- name: aws-mediaconnect-remove-flow-vpc-interface
pattern: (?i)aws\s+remove\-flow\-vpc\-interface\b
severity: block
message: RemoveFlowVpcInterface — destructive operation
category: cloud
- name: aws-mediaconnect-revoke-flow-entitlement
pattern: (?i)aws\s+revoke\-flow\-entitlement\b
severity: block
message: RevokeFlowEntitlement — destructive operation
category: cloud
- name: aws-mediaconnect-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-mediaconvert-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: block
message: CancelJob — destructive operation
category: cloud
- name: aws-mediaconvert-delete-job-template
pattern: (?i)aws\s+delete\-job\-template\b
severity: block
message: DeleteJobTemplate — destructive operation
category: cloud
- name: aws-mediaconvert-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-mediaconvert-delete-preset
pattern: (?i)aws\s+delete\-preset\b
severity: block
message: DeletePreset — destructive operation
category: cloud
- name: aws-mediaconvert-delete-queue
pattern: (?i)aws\s+delete\-queue\b
severity: warn
message: DeleteQueue — destructive operation
category: cloud
- name: aws-mediaconvert-disassociate-certificate
pattern: (?i)aws\s+disassociate\-certificate\b
severity: block
message: DisassociateCertificate — destructive operation
category: cloud
- name: aws-medialive-batch-delete
pattern: (?i)aws\s+batch\-delete\b
severity: warn
message: BatchDelete — destructive operation
category: cloud
- name: aws-medialive-cancel-input-device-transfer
pattern: (?i)aws\s+cancel\-input\-device\-transfer\b
severity: warn
message: CancelInputDeviceTransfer — destructive operation
category: cloud
- name: aws-medialive-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-medialive-delete-input
pattern: (?i)aws\s+delete\-input\b
severity: block
message: DeleteInput — destructive operation
category: cloud
- name: aws-medialive-delete-input-security-group
pattern: (?i)aws\s+delete\-input\-security\-group\b
severity: block
message: DeleteInputSecurityGroup — destructive operation
category: cloud
- name: aws-medialive-delete-multiplex
pattern: (?i)aws\s+delete\-multiplex\b
severity: block
message: DeleteMultiplex — destructive operation
category: cloud
- name: aws-medialive-delete-multiplex-program
pattern: (?i)aws\s+delete\-multiplex\-program\b
severity: block
message: DeleteMultiplexProgram — destructive operation
category: cloud
- name: aws-medialive-delete-reservation
pattern: (?i)aws\s+delete\-reservation\b
severity: block
message: DeleteReservation — destructive operation
category: cloud
- name: aws-medialive-delete-schedule
pattern: (?i)aws\s+delete\-schedule\b
severity: block
message: DeleteSchedule — destructive operation
category: cloud
- name: aws-medialive-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-mediapackage-vod-delete-asset
pattern: (?i)aws\s+delete\-asset\b
severity: block
message: DeleteAsset — destructive operation
category: cloud
- name: aws-mediapackage-vod-delete-packaging-configuration
pattern: (?i)aws\s+delete\-packaging\-configuration\b
severity: block
message: DeletePackagingConfiguration — destructive operation
category: cloud
- name: aws-mediapackage-vod-delete-packaging-group
pattern: (?i)aws\s+delete\-packaging\-group\b
severity: block
message: DeletePackagingGroup — destructive operation
category: cloud
- name: aws-mediapackage-vod-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-mediapackage-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-mediapackage-delete-origin-endpoint
pattern: (?i)aws\s+delete\-origin\-endpoint\b
severity: block
message: DeleteOriginEndpoint — destructive operation
category: cloud
- name: aws-mediapackage-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-mediastore-data-delete-object
pattern: (?i)aws\s+delete\-object\b
severity: block
message: DeleteObject — destructive operation
category: cloud
- name: aws-mediastore-delete-container
pattern: (?i)aws\s+delete\-container\b
severity: warn
message: DeleteContainer — destructive operation
category: cloud
- name: aws-mediastore-delete-container-policy
pattern: (?i)aws\s+delete\-container\-policy\b
severity: block
message: DeleteContainerPolicy — destructive operation
category: cloud
- name: aws-mediastore-delete-cors-policy
pattern: (?i)aws\s+delete\-cors\-policy\b
severity: block
message: DeleteCorsPolicy — destructive operation
category: cloud
- name: aws-mediastore-delete-lifecycle-policy
pattern: (?i)aws\s+delete\-lifecycle\-policy\b
severity: block
message: DeleteLifecyclePolicy — destructive operation
category: cloud
- name: aws-mediastore-delete-metric-policy
pattern: (?i)aws\s+delete\-metric\-policy\b
severity: block
message: DeleteMetricPolicy — destructive operation
category: cloud
- name: aws-mediatailor-delete-channel
pattern: (?i)aws\s+delete\-channel\b
severity: block
message: DeleteChannel — destructive operation
category: cloud
- name: aws-mediatailor-delete-channel-policy
pattern: (?i)aws\s+delete\-channel\-policy\b
severity: block
message: DeleteChannelPolicy — destructive operation
category: cloud
- name: aws-mediatailor-delete-live-source
pattern: (?i)aws\s+delete\-live\-source\b
severity: block
message: DeleteLiveSource — destructive operation
category: cloud
- name: aws-mediatailor-delete-playback-configuration
pattern: (?i)aws\s+delete\-playback\-configuration\b
severity: block
message: DeletePlaybackConfiguration — destructive operation
category: cloud
- name: aws-mediatailor-delete-prefetch-schedule
pattern: (?i)aws\s+delete\-prefetch\-schedule\b
severity: block
message: DeletePrefetchSchedule — destructive operation
category: cloud
- name: aws-mediatailor-delete-program
pattern: (?i)aws\s+delete\-program\b
severity: block
message: DeleteProgram — destructive operation
category: cloud
- name: aws-mediatailor-delete-source-location
pattern: (?i)aws\s+delete\-source\-location\b
severity: block
message: DeleteSourceLocation — destructive operation
category: cloud
- name: aws-mediatailor-delete-vod-source
pattern: (?i)aws\s+delete\-vod\-source\b
severity: block
message: DeleteVodSource — destructive operation
category: cloud
- name: aws-mediatailor-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-memorydb-delete-a-c-l
pattern: (?i)aws\s+delete\-a\-c\-l\b
severity: warn
message: DeleteACL — destructive operation
category: cloud
- name: aws-memorydb-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-memorydb-delete-parameter-group
pattern: (?i)aws\s+delete\-parameter\-group\b
severity: block
message: DeleteParameterGroup — destructive operation
category: cloud
- name: aws-memorydb-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-memorydb-delete-subnet-group
pattern: (?i)aws\s+delete\-subnet\-group\b
severity: block
message: DeleteSubnetGroup — destructive operation
category: cloud
- name: aws-memorydb-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-memorydb-reset-parameter-group
pattern: (?i)aws\s+reset\-parameter\-group\b
severity: block
message: ResetParameterGroup — destructive operation
category: cloud
- name: aws-mgn-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: warn
message: DeleteApplication — destructive operation
category: cloud
- name: aws-mgn-delete-job
pattern: (?i)aws\s+delete\-job\b
severity: warn
message: DeleteJob — destructive operation
category: cloud
- name: aws-mgn-delete-launch-configuration-template
pattern: (?i)aws\s+delete\-launch\-configuration\-template\b
severity: warn
message: DeleteLaunchConfigurationTemplate — destructive operation
category: cloud
- name: aws-mgn-delete-replication-configuration-template
pattern: (?i)aws\s+delete\-replication\-configuration\-template\b
severity: warn
message: DeleteReplicationConfigurationTemplate — destructive operation
category: cloud
- name: aws-mgn-delete-source-server
pattern: (?i)aws\s+delete\-source\-server\b
severity: block
message: DeleteSourceServer — destructive operation
category: cloud
- name: aws-mgn-delete-vcenter-client
pattern: (?i)aws\s+delete\-vcenter\-client\b
severity: warn
message: DeleteVcenterClient — destructive operation
category: cloud
- name: aws-mgn-delete-wave
pattern: (?i)aws\s+delete\-wave\b
severity: warn
message: DeleteWave — destructive operation
category: cloud
- name: aws-mgn-disassociate-applications
pattern: (?i)aws\s+disassociate\-applications\b
severity: warn
message: DisassociateApplications — destructive operation
category: cloud
- name: aws-mgn-disassociate-source-servers
pattern: (?i)aws\s+disassociate\-source\-servers\b
severity: block
message: DisassociateSourceServers — destructive operation
category: cloud
- name: aws-mgn-remove-source-server-action
pattern: (?i)aws\s+remove\-source\-server\-action\b
severity: block
message: RemoveSourceServerAction — destructive operation
category: cloud
- name: aws-mgn-remove-template-action
pattern: (?i)aws\s+remove\-template\-action\b
severity: warn
message: RemoveTemplateAction — destructive operation
category: cloud
- name: aws-mgn-terminate-target-instances
pattern: (?i)aws\s+terminate\-target\-instances\b
severity: block
message: TerminateTargetInstances — destructive operation
category: cloud
- name: aws-mgn-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: block
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-delete-route
pattern: (?i)aws\s+delete\-route\b
severity: block
message: DeleteRoute — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-delete-service
pattern: (?i)aws\s+delete\-service\b
severity: block
message: DeleteService — destructive operation
category: cloud
- name: aws-migration-hub-refactor-spaces-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-migrationhuborchestrator-delete-workflow
pattern: (?i)aws\s+delete\-workflow\b
severity: block
message: DeleteWorkflow — destructive operation
category: cloud
- name: aws-migrationhuborchestrator-delete-workflow-step
pattern: (?i)aws\s+delete\-workflow\-step\b
severity: block
message: DeleteWorkflowStep — destructive operation
category: cloud
- name: aws-migrationhuborchestrator-delete-workflow-step-group
pattern: (?i)aws\s+delete\-workflow\-step\-group\b
severity: block
message: DeleteWorkflowStepGroup — destructive operation
category: cloud
- name: aws-migrationhuborchestrator-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-mobile-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-models.lex.v2-batch-delete-custom-vocabulary-item
pattern: (?i)aws\s+batch\-delete\-custom\-vocabulary\-item\b
severity: block
message: BatchDeleteCustomVocabularyItem — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-bot
pattern: (?i)aws\s+delete\-bot\b
severity: block
message: DeleteBot — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-bot-alias
pattern: (?i)aws\s+delete\-bot\-alias\b
severity: block
message: DeleteBotAlias — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-bot-locale
pattern: (?i)aws\s+delete\-bot\-locale\b
severity: block
message: DeleteBotLocale — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-bot-version
pattern: (?i)aws\s+delete\-bot\-version\b
severity: block
message: DeleteBotVersion — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-custom-vocabulary
pattern: (?i)aws\s+delete\-custom\-vocabulary\b
severity: block
message: DeleteCustomVocabulary — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-export
pattern: (?i)aws\s+delete\-export\b
severity: block
message: DeleteExport — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-import
pattern: (?i)aws\s+delete\-import\b
severity: block
message: DeleteImport — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-intent
pattern: (?i)aws\s+delete\-intent\b
severity: block
message: DeleteIntent — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-resource-policy-statement
pattern: (?i)aws\s+delete\-resource\-policy\-statement\b
severity: block
message: DeleteResourcePolicyStatement — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-slot
pattern: (?i)aws\s+delete\-slot\b
severity: block
message: DeleteSlot — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-slot-type
pattern: (?i)aws\s+delete\-slot\-type\b
severity: block
message: DeleteSlotType — destructive operation
category: cloud
- name: aws-models.lex.v2-delete-utterances
pattern: (?i)aws\s+delete\-utterances\b
severity: block
message: DeleteUtterances — destructive operation
category: cloud
- name: aws-models.lex.v2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-monitoring-delete-alarms
pattern: (?i)aws\s+delete\-alarms\b
severity: warn
message: DeleteAlarms — destructive operation
category: cloud
- name: aws-monitoring-delete-anomaly-detector
pattern: (?i)aws\s+delete\-anomaly\-detector\b
severity: warn
message: DeleteAnomalyDetector — destructive operation
category: cloud
- name: aws-monitoring-delete-dashboards
pattern: (?i)aws\s+delete\-dashboards\b
severity: warn
message: DeleteDashboards — destructive operation
category: cloud
- name: aws-monitoring-delete-insight-rules
pattern: (?i)aws\s+delete\-insight\-rules\b
severity: warn
message: DeleteInsightRules — destructive operation
category: cloud
- name: aws-monitoring-delete-metric-stream
pattern: (?i)aws\s+delete\-metric\-stream\b
severity: warn
message: DeleteMetricStream — destructive operation
category: cloud
- name: aws-monitoring-disable-alarm-actions
pattern: (?i)aws\s+disable\-alarm\-actions\b
severity: warn
message: DisableAlarmActions — destructive operation
category: cloud
- name: aws-monitoring-disable-insight-rules
pattern: (?i)aws\s+disable\-insight\-rules\b
severity: warn
message: DisableInsightRules — destructive operation
category: cloud
- name: aws-mq-delete-broker
pattern: (?i)aws\s+delete\-broker\b
severity: block
message: DeleteBroker — destructive operation
category: cloud
- name: aws-mq-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-mq-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: block
message: DeleteUser — destructive operation
category: cloud
- name: aws-mturk-requester-delete-h-i-t
pattern: (?i)aws\s+delete\-h\-i\-t\b
severity: warn
message: DeleteHIT — destructive operation
category: cloud
- name: aws-mturk-requester-delete-qualification-type
pattern: (?i)aws\s+delete\-qualification\-type\b
severity: warn
message: DeleteQualificationType — destructive operation
category: cloud
- name: aws-mturk-requester-delete-worker-block
pattern: (?i)aws\s+delete\-worker\-block\b
severity: warn
message: DeleteWorkerBlock — destructive operation
category: cloud
- name: aws-mturk-requester-disassociate-qualification-from-worker
pattern: (?i)aws\s+disassociate\-qualification\-from\-worker\b
severity: warn
message: DisassociateQualificationFromWorker — destructive operation
category: cloud
- name: aws-mwaa-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: block
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-mwaa-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-cluster
pattern: (?i)aws\s+delete\-d\-b\-cluster\b
severity: block
message: DeleteDBCluster — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-cluster-endpoint
pattern: (?i)aws\s+delete\-d\-b\-cluster\-endpoint\b
severity: block
message: DeleteDBClusterEndpoint — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-cluster-parameter-group
pattern: (?i)aws\s+delete\-d\-b\-cluster\-parameter\-group\b
severity: block
message: DeleteDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-cluster-snapshot
pattern: (?i)aws\s+delete\-d\-b\-cluster\-snapshot\b
severity: block
message: DeleteDBClusterSnapshot — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-instance
pattern: (?i)aws\s+delete\-d\-b\-instance\b
severity: block
message: DeleteDBInstance — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-parameter-group
pattern: (?i)aws\s+delete\-d\-b\-parameter\-group\b
severity: block
message: DeleteDBParameterGroup — destructive operation
category: cloud
- name: aws-neptune-delete-d-b-subnet-group
pattern: (?i)aws\s+delete\-d\-b\-subnet\-group\b
severity: block
message: DeleteDBSubnetGroup — destructive operation
category: cloud
- name: aws-neptune-delete-event-subscription
pattern: (?i)aws\s+delete\-event\-subscription\b
severity: warn
message: DeleteEventSubscription — destructive operation
category: cloud
- name: aws-neptune-delete-global-cluster
pattern: (?i)aws\s+delete\-global\-cluster\b
severity: block
message: DeleteGlobalCluster — destructive operation
category: cloud
- name: aws-neptune-remove-from-global-cluster
pattern: (?i)aws\s+remove\-from\-global\-cluster\b
severity: block
message: RemoveFromGlobalCluster — destructive operation
category: cloud
- name: aws-neptune-remove-role-from-d-b-cluster
pattern: (?i)aws\s+remove\-role\-from\-d\-b\-cluster\b
severity: block
message: RemoveRoleFromDBCluster — destructive operation
category: cloud
- name: aws-neptune-remove-source-identifier-from-subscription
pattern: (?i)aws\s+remove\-source\-identifier\-from\-subscription\b
severity: warn
message: RemoveSourceIdentifierFromSubscription — destructive operation
category: cloud
- name: aws-neptune-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-neptune-reset-d-b-cluster-parameter-group
pattern: (?i)aws\s+reset\-d\-b\-cluster\-parameter\-group\b
severity: block
message: ResetDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-neptune-reset-d-b-parameter-group
pattern: (?i)aws\s+reset\-d\-b\-parameter\-group\b
severity: block
message: ResetDBParameterGroup — destructive operation
category: cloud
- name: aws-network-firewall-delete-firewall
pattern: (?i)aws\s+delete\-firewall\b
severity: warn
message: DeleteFirewall — destructive operation
category: cloud
- name: aws-network-firewall-delete-firewall-policy
pattern: (?i)aws\s+delete\-firewall\-policy\b
severity: block
message: DeleteFirewallPolicy — destructive operation
category: cloud
- name: aws-network-firewall-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-network-firewall-delete-rule-group
pattern: (?i)aws\s+delete\-rule\-group\b
severity: block
message: DeleteRuleGroup — destructive operation
category: cloud
- name: aws-network-firewall-disassociate-subnets
pattern: (?i)aws\s+disassociate\-subnets\b
severity: warn
message: DisassociateSubnets — destructive operation
category: cloud
- name: aws-networkmanager-delete-attachment
pattern: (?i)aws\s+delete\-attachment\b
severity: warn
message: DeleteAttachment — destructive operation
category: cloud
- name: aws-networkmanager-delete-connect-peer
pattern: (?i)aws\s+delete\-connect\-peer\b
severity: block
message: DeleteConnectPeer — destructive operation
category: cloud
- name: aws-networkmanager-delete-connection
pattern: (?i)aws\s+delete\-connection\b
severity: block
message: DeleteConnection — destructive operation
category: cloud
- name: aws-networkmanager-delete-core-network
pattern: (?i)aws\s+delete\-core\-network\b
severity: block
message: DeleteCoreNetwork — destructive operation
category: cloud
- name: aws-networkmanager-delete-core-network-policy-version
pattern: (?i)aws\s+delete\-core\-network\-policy\-version\b
severity: block
message: DeleteCoreNetworkPolicyVersion — destructive operation
category: cloud
- name: aws-networkmanager-delete-device
pattern: (?i)aws\s+delete\-device\b
severity: block
message: DeleteDevice — destructive operation
category: cloud
- name: aws-networkmanager-delete-global-network
pattern: (?i)aws\s+delete\-global\-network\b
severity: block
message: DeleteGlobalNetwork — destructive operation
category: cloud
- name: aws-networkmanager-delete-link
pattern: (?i)aws\s+delete\-link\b
severity: block
message: DeleteLink — destructive operation
category: cloud
- name: aws-networkmanager-delete-peering
pattern: (?i)aws\s+delete\-peering\b
severity: block
message: DeletePeering — destructive operation
category: cloud
- name: aws-networkmanager-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-networkmanager-delete-site
pattern: (?i)aws\s+delete\-site\b
severity: block
message: DeleteSite — destructive operation
category: cloud
- name: aws-networkmanager-deregister-transit-gateway
pattern: (?i)aws\s+deregister\-transit\-gateway\b
severity: block
message: DeregisterTransitGateway — destructive operation
category: cloud
- name: aws-networkmanager-disassociate-connect-peer
pattern: (?i)aws\s+disassociate\-connect\-peer\b
severity: warn
message: DisassociateConnectPeer — destructive operation
category: cloud
- name: aws-networkmanager-disassociate-customer-gateway
pattern: (?i)aws\s+disassociate\-customer\-gateway\b
severity: block
message: DisassociateCustomerGateway — destructive operation
category: cloud
- name: aws-networkmanager-disassociate-link
pattern: (?i)aws\s+disassociate\-link\b
severity: warn
message: DisassociateLink — destructive operation
category: cloud
- name: aws-networkmanager-disassociate-transit-gateway-connect-peer
pattern: (?i)aws\s+disassociate\-transit\-gateway\-connect\-peer\b
severity: block
message: DisassociateTransitGatewayConnectPeer — destructive operation
category: cloud
- name: aws-networkmanager-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-nimble-delete-launch-profile
pattern: (?i)aws\s+delete\-launch\-profile\b
severity: block
message: DeleteLaunchProfile — destructive operation
category: cloud
- name: aws-nimble-delete-launch-profile-member
pattern: (?i)aws\s+delete\-launch\-profile\-member\b
severity: block
message: DeleteLaunchProfileMember — destructive operation
category: cloud
- name: aws-nimble-delete-streaming-image
pattern: (?i)aws\s+delete\-streaming\-image\b
severity: block
message: DeleteStreamingImage — destructive operation
category: cloud
- name: aws-nimble-delete-streaming-session
pattern: (?i)aws\s+delete\-streaming\-session\b
severity: block
message: DeleteStreamingSession — destructive operation
category: cloud
- name: aws-nimble-delete-studio
pattern: (?i)aws\s+delete\-studio\b
severity: block
message: DeleteStudio — destructive operation
category: cloud
- name: aws-nimble-delete-studio-component
pattern: (?i)aws\s+delete\-studio\-component\b
severity: block
message: DeleteStudioComponent — destructive operation
category: cloud
- name: aws-nimble-delete-studio-member
pattern: (?i)aws\s+delete\-studio\-member\b
severity: block
message: DeleteStudioMember — destructive operation
category: cloud
- name: aws-nimble-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-oam-delete-link
pattern: (?i)aws\s+delete\-link\b
severity: warn
message: DeleteLink — destructive operation
category: cloud
- name: aws-oam-delete-sink
pattern: (?i)aws\s+delete\-sink\b
severity: warn
message: DeleteSink — destructive operation
category: cloud
- name: aws-oam-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-omics-batch-delete-read-set
pattern: (?i)aws\s+batch\-delete\-read\-set\b
severity: warn
message: BatchDeleteReadSet — destructive operation
category: cloud
- name: aws-omics-cancel-annotation-import-job
pattern: (?i)aws\s+cancel\-annotation\-import\-job\b
severity: block
message: CancelAnnotationImportJob — destructive operation
category: cloud
- name: aws-omics-cancel-run
pattern: (?i)aws\s+cancel\-run\b
severity: warn
message: CancelRun — destructive operation
category: cloud
- name: aws-omics-cancel-variant-import-job
pattern: (?i)aws\s+cancel\-variant\-import\-job\b
severity: block
message: CancelVariantImportJob — destructive operation
category: cloud
- name: aws-omics-delete-annotation-store
pattern: (?i)aws\s+delete\-annotation\-store\b
severity: block
message: DeleteAnnotationStore — destructive operation
category: cloud
- name: aws-omics-delete-reference
pattern: (?i)aws\s+delete\-reference\b
severity: block
message: DeleteReference — destructive operation
category: cloud
- name: aws-omics-delete-reference-store
pattern: (?i)aws\s+delete\-reference\-store\b
severity: block
message: DeleteReferenceStore — destructive operation
category: cloud
- name: aws-omics-delete-run
pattern: (?i)aws\s+delete\-run\b
severity: block
message: DeleteRun — destructive operation
category: cloud
- name: aws-omics-delete-run-group
pattern: (?i)aws\s+delete\-run\-group\b
severity: block
message: DeleteRunGroup — destructive operation
category: cloud
- name: aws-omics-delete-sequence-store
pattern: (?i)aws\s+delete\-sequence\-store\b
severity: block
message: DeleteSequenceStore — destructive operation
category: cloud
- name: aws-omics-delete-variant-store
pattern: (?i)aws\s+delete\-variant\-store\b
severity: block
message: DeleteVariantStore — destructive operation
category: cloud
- name: aws-omics-delete-workflow
pattern: (?i)aws\s+delete\-workflow\b
severity: block
message: DeleteWorkflow — destructive operation
category: cloud
- name: aws-omics-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-opensearch-cancel-service-software-update
pattern: (?i)aws\s+cancel\-service\-software\-update\b
severity: warn
message: CancelServiceSoftwareUpdate — destructive operation
category: cloud
- name: aws-opensearch-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: block
message: DeleteDomain — destructive operation
category: cloud
- name: aws-opensearch-delete-inbound-connection
pattern: (?i)aws\s+delete\-inbound\-connection\b
severity: block
message: DeleteInboundConnection — destructive operation
category: cloud
- name: aws-opensearch-delete-outbound-connection
pattern: (?i)aws\s+delete\-outbound\-connection\b
severity: block
message: DeleteOutboundConnection — destructive operation
category: cloud
- name: aws-opensearch-delete-package
pattern: (?i)aws\s+delete\-package\b
severity: block
message: DeletePackage — destructive operation
category: cloud
- name: aws-opensearch-delete-vpc-endpoint
pattern: (?i)aws\s+delete\-vpc\-endpoint\b
severity: block
message: DeleteVpcEndpoint — destructive operation
category: cloud
- name: aws-opensearch-remove-tags
pattern: (?i)aws\s+remove\-tags\b
severity: warn
message: RemoveTags — destructive operation
category: cloud
- name: aws-opensearch-revoke-vpc-endpoint-access
pattern: (?i)aws\s+revoke\-vpc\-endpoint\-access\b
severity: warn
message: RevokeVpcEndpointAccess — destructive operation
category: cloud
- name: aws-opensearchserverless-delete-access-policy
pattern: (?i)aws\s+delete\-access\-policy\b
severity: block
message: DeleteAccessPolicy — destructive operation
category: cloud
- name: aws-opensearchserverless-delete-collection
pattern: (?i)aws\s+delete\-collection\b
severity: warn
message: DeleteCollection — destructive operation
category: cloud
- name: aws-opensearchserverless-delete-security-config
pattern: (?i)aws\s+delete\-security\-config\b
severity: warn
message: DeleteSecurityConfig — destructive operation
category: cloud
- name: aws-opensearchserverless-delete-security-policy
pattern: (?i)aws\s+delete\-security\-policy\b
severity: block
message: DeleteSecurityPolicy — destructive operation
category: cloud
- name: aws-opensearchserverless-delete-vpc-endpoint
pattern: (?i)aws\s+delete\-vpc\-endpoint\b
severity: warn
message: DeleteVpcEndpoint — destructive operation
category: cloud
- name: aws-opsworks-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: warn
message: DeleteApp — destructive operation
category: cloud
- name: aws-opsworks-delete-instance
pattern: (?i)aws\s+delete\-instance\b
severity: block
message: DeleteInstance — destructive operation
category: cloud
- name: aws-opsworks-delete-layer
pattern: (?i)aws\s+delete\-layer\b
severity: warn
message: DeleteLayer — destructive operation
category: cloud
- name: aws-opsworks-delete-stack
pattern: (?i)aws\s+delete\-stack\b
severity: block
message: DeleteStack — destructive operation
category: cloud
- name: aws-opsworks-delete-user-profile
pattern: (?i)aws\s+delete\-user\-profile\b
severity: warn
message: DeleteUserProfile — destructive operation
category: cloud
- name: aws-opsworks-deregister-ecs-cluster
pattern: (?i)aws\s+deregister\-ecs\-cluster\b
severity: block
message: DeregisterEcsCluster — destructive operation
category: cloud
- name: aws-opsworks-deregister-elastic-ip
pattern: (?i)aws\s+deregister\-elastic\-ip\b
severity: warn
message: DeregisterElasticIp — destructive operation
category: cloud
- name: aws-opsworks-deregister-instance
pattern: (?i)aws\s+deregister\-instance\b
severity: block
message: DeregisterInstance — destructive operation
category: cloud
- name: aws-opsworks-deregister-rds-db-instance
pattern: (?i)aws\s+deregister\-rds\-db\-instance\b
severity: block
message: DeregisterRdsDbInstance — destructive operation
category: cloud
- name: aws-opsworks-deregister-volume
pattern: (?i)aws\s+deregister\-volume\b
severity: block
message: DeregisterVolume — destructive operation
category: cloud
- name: aws-opsworks-detach-elastic-load-balancer
pattern: (?i)aws\s+detach\-elastic\-load\-balancer\b
severity: block
message: DetachElasticLoadBalancer — destructive operation
category: cloud
- name: aws-opsworks-disassociate-elastic-ip
pattern: (?i)aws\s+disassociate\-elastic\-ip\b
severity: warn
message: DisassociateElasticIp — destructive operation
category: cloud
- name: aws-opsworkscm-delete-backup
pattern: (?i)aws\s+delete\-backup\b
severity: warn
message: DeleteBackup — destructive operation
category: cloud
- name: aws-opsworkscm-delete-server
pattern: (?i)aws\s+delete\-server\b
severity: block
message: DeleteServer — destructive operation
category: cloud
- name: aws-opsworkscm-disassociate-node
pattern: (?i)aws\s+disassociate\-node\b
severity: warn
message: DisassociateNode — destructive operation
category: cloud
- name: aws-organizations-cancel-handshake
pattern: (?i)aws\s+cancel\-handshake\b
severity: warn
message: CancelHandshake — destructive operation
category: cloud
- name: aws-organizations-delete-organization
pattern: (?i)aws\s+delete\-organization\b
severity: warn
message: DeleteOrganization — destructive operation
category: cloud
- name: aws-organizations-delete-organizational-unit
pattern: (?i)aws\s+delete\-organizational\-unit\b
severity: warn
message: DeleteOrganizationalUnit — destructive operation
category: cloud
- name: aws-organizations-delete-policy
pattern: (?i)aws\s+delete\-policy\b
severity: block
message: DeletePolicy — destructive operation
category: cloud
- name: aws-organizations-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-organizations-deregister-delegated-administrator
pattern: (?i)aws\s+deregister\-delegated\-administrator\b
severity: warn
message: DeregisterDelegatedAdministrator — destructive operation
category: cloud
- name: aws-organizations-detach-policy
pattern: (?i)aws\s+detach\-policy\b
severity: block
message: DetachPolicy — destructive operation
category: cloud
- name: aws-organizations-disable-a-w-s-service-access
pattern: (?i)aws\s+disable\-a\-w\-s\-service\-access\b
severity: warn
message: DisableAWSServiceAccess — destructive operation
category: cloud
- name: aws-organizations-disable-policy-type
pattern: (?i)aws\s+disable\-policy\-type\b
severity: block
message: DisablePolicyType — destructive operation
category: cloud
- name: aws-organizations-remove-account-from-organization
pattern: (?i)aws\s+remove\-account\-from\-organization\b
severity: block
message: RemoveAccountFromOrganization — destructive operation
category: cloud
- name: aws-outposts-cancel-order
pattern: (?i)aws\s+cancel\-order\b
severity: warn
message: CancelOrder — destructive operation
category: cloud
- name: aws-outposts-delete-outpost
pattern: (?i)aws\s+delete\-outpost\b
severity: block
message: DeleteOutpost — destructive operation
category: cloud
- name: aws-outposts-delete-site
pattern: (?i)aws\s+delete\-site\b
severity: block
message: DeleteSite — destructive operation
category: cloud
- name: aws-outposts-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-panorama-delete-device
pattern: (?i)aws\s+delete\-device\b
severity: block
message: DeleteDevice — destructive operation
category: cloud
- name: aws-panorama-delete-package
pattern: (?i)aws\s+delete\-package\b
severity: block
message: DeletePackage — destructive operation
category: cloud
- name: aws-panorama-deregister-package-version
pattern: (?i)aws\s+deregister\-package\-version\b
severity: block
message: DeregisterPackageVersion — destructive operation
category: cloud
- name: aws-panorama-remove-application-instance
pattern: (?i)aws\s+remove\-application\-instance\b
severity: block
message: RemoveApplicationInstance — destructive operation
category: cloud
- name: aws-panorama-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-personalize-delete-campaign
pattern: (?i)aws\s+delete\-campaign\b
severity: warn
message: DeleteCampaign — destructive operation
category: cloud
- name: aws-personalize-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: warn
message: DeleteDataset — destructive operation
category: cloud
- name: aws-personalize-delete-dataset-group
pattern: (?i)aws\s+delete\-dataset\-group\b
severity: block
message: DeleteDatasetGroup — destructive operation
category: cloud
- name: aws-personalize-delete-event-tracker
pattern: (?i)aws\s+delete\-event\-tracker\b
severity: warn
message: DeleteEventTracker — destructive operation
category: cloud
- name: aws-personalize-delete-filter
pattern: (?i)aws\s+delete\-filter\b
severity: warn
message: DeleteFilter — destructive operation
category: cloud
- name: aws-personalize-delete-metric-attribution
pattern: (?i)aws\s+delete\-metric\-attribution\b
severity: warn
message: DeleteMetricAttribution — destructive operation
category: cloud
- name: aws-personalize-delete-recommender
pattern: (?i)aws\s+delete\-recommender\b
severity: warn
message: DeleteRecommender — destructive operation
category: cloud
- name: aws-personalize-delete-schema
pattern: (?i)aws\s+delete\-schema\b
severity: warn
message: DeleteSchema — destructive operation
category: cloud
- name: aws-personalize-delete-solution
pattern: (?i)aws\s+delete\-solution\b
severity: warn
message: DeleteSolution — destructive operation
category: cloud
- name: aws-pinpoint-email-delete-configuration-set
pattern: (?i)aws\s+delete\-configuration\-set\b
severity: block
message: DeleteConfigurationSet — destructive operation
category: cloud
- name: aws-pinpoint-email-delete-configuration-set-event-destination
pattern: (?i)aws\s+delete\-configuration\-set\-event\-destination\b
severity: warn
message: DeleteConfigurationSetEventDestination — destructive operation
category: cloud
- name: aws-pinpoint-email-delete-dedicated-ip-pool
pattern: (?i)aws\s+delete\-dedicated\-ip\-pool\b
severity: block
message: DeleteDedicatedIpPool — destructive operation
category: cloud
- name: aws-pinpoint-email-delete-email-identity
pattern: (?i)aws\s+delete\-email\-identity\b
severity: block
message: DeleteEmailIdentity — destructive operation
category: cloud
- name: aws-pinpoint-email-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-configuration-set
pattern: (?i)aws\s+delete\-configuration\-set\b
severity: warn
message: DeleteConfigurationSet — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-default-message-type
pattern: (?i)aws\s+delete\-default\-message\-type\b
severity: warn
message: DeleteDefaultMessageType — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-default-sender-id
pattern: (?i)aws\s+delete\-default\-sender\-id\b
severity: warn
message: DeleteDefaultSenderId — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-event-destination
pattern: (?i)aws\s+delete\-event\-destination\b
severity: warn
message: DeleteEventDestination — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-keyword
pattern: (?i)aws\s+delete\-keyword\b
severity: block
message: DeleteKeyword — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-opt-out-list
pattern: (?i)aws\s+delete\-opt\-out\-list\b
severity: warn
message: DeleteOptOutList — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-opted-out-number
pattern: (?i)aws\s+delete\-opted\-out\-number\b
severity: warn
message: DeleteOptedOutNumber — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-pool
pattern: (?i)aws\s+delete\-pool\b
severity: warn
message: DeletePool — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-text-message-spend-limit-override
pattern: (?i)aws\s+delete\-text\-message\-spend\-limit\-override\b
severity: warn
message: DeleteTextMessageSpendLimitOverride — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-delete-voice-message-spend-limit-override
pattern: (?i)aws\s+delete\-voice\-message\-spend\-limit\-override\b
severity: warn
message: DeleteVoiceMessageSpendLimitOverride — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-disassociate-origination-identity
pattern: (?i)aws\s+disassociate\-origination\-identity\b
severity: warn
message: DisassociateOriginationIdentity — destructive operation
category: cloud
- name: aws-pinpoint-sms-voice-v2-release-phone-number
pattern: (?i)aws\s+release\-phone\-number\b
severity: warn
message: ReleasePhoneNumber — destructive operation
category: cloud
- name: aws-pinpoint-delete-adm-channel
pattern: (?i)aws\s+delete\-adm\-channel\b
severity: block
message: DeleteAdmChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-apns-channel
pattern: (?i)aws\s+delete\-apns\-channel\b
severity: block
message: DeleteApnsChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-apns-sandbox-channel
pattern: (?i)aws\s+delete\-apns\-sandbox\-channel\b
severity: block
message: DeleteApnsSandboxChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-apns-voip-channel
pattern: (?i)aws\s+delete\-apns\-voip\-channel\b
severity: block
message: DeleteApnsVoipChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-apns-voip-sandbox-channel
pattern: (?i)aws\s+delete\-apns\-voip\-sandbox\-channel\b
severity: block
message: DeleteApnsVoipSandboxChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: block
message: DeleteApp — destructive operation
category: cloud
- name: aws-pinpoint-delete-baidu-channel
pattern: (?i)aws\s+delete\-baidu\-channel\b
severity: block
message: DeleteBaiduChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-campaign
pattern: (?i)aws\s+delete\-campaign\b
severity: block
message: DeleteCampaign — destructive operation
category: cloud
- name: aws-pinpoint-delete-email-channel
pattern: (?i)aws\s+delete\-email\-channel\b
severity: block
message: DeleteEmailChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-email-template
pattern: (?i)aws\s+delete\-email\-template\b
severity: block
message: DeleteEmailTemplate — destructive operation
category: cloud
- name: aws-pinpoint-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: block
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-pinpoint-delete-event-stream
pattern: (?i)aws\s+delete\-event\-stream\b
severity: warn
message: DeleteEventStream — destructive operation
category: cloud
- name: aws-pinpoint-delete-gcm-channel
pattern: (?i)aws\s+delete\-gcm\-channel\b
severity: block
message: DeleteGcmChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-in-app-template
pattern: (?i)aws\s+delete\-in\-app\-template\b
severity: block
message: DeleteInAppTemplate — destructive operation
category: cloud
- name: aws-pinpoint-delete-journey
pattern: (?i)aws\s+delete\-journey\b
severity: block
message: DeleteJourney — destructive operation
category: cloud
- name: aws-pinpoint-delete-push-template
pattern: (?i)aws\s+delete\-push\-template\b
severity: block
message: DeletePushTemplate — destructive operation
category: cloud
- name: aws-pinpoint-delete-recommender-configuration
pattern: (?i)aws\s+delete\-recommender\-configuration\b
severity: block
message: DeleteRecommenderConfiguration — destructive operation
category: cloud
- name: aws-pinpoint-delete-segment
pattern: (?i)aws\s+delete\-segment\b
severity: block
message: DeleteSegment — destructive operation
category: cloud
- name: aws-pinpoint-delete-sms-channel
pattern: (?i)aws\s+delete\-sms\-channel\b
severity: block
message: DeleteSmsChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-sms-template
pattern: (?i)aws\s+delete\-sms\-template\b
severity: block
message: DeleteSmsTemplate — destructive operation
category: cloud
- name: aws-pinpoint-delete-user-endpoints
pattern: (?i)aws\s+delete\-user\-endpoints\b
severity: block
message: DeleteUserEndpoints — destructive operation
category: cloud
- name: aws-pinpoint-delete-voice-channel
pattern: (?i)aws\s+delete\-voice\-channel\b
severity: block
message: DeleteVoiceChannel — destructive operation
category: cloud
- name: aws-pinpoint-delete-voice-template
pattern: (?i)aws\s+delete\-voice\-template\b
severity: block
message: DeleteVoiceTemplate — destructive operation
category: cloud
- name: aws-pinpoint-remove-attributes
pattern: (?i)aws\s+remove\-attributes\b
severity: warn
message: RemoveAttributes — destructive operation
category: cloud
- name: aws-pinpoint-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-pipes-delete-pipe
pattern: (?i)aws\s+delete\-pipe\b
severity: block
message: DeletePipe — destructive operation
category: cloud
- name: aws-pipes-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-polly-delete-lexicon
pattern: (?i)aws\s+delete\-lexicon\b
severity: block
message: DeleteLexicon — destructive operation
category: cloud
- name: aws-privatenetworks-delete-network
pattern: (?i)aws\s+delete\-network\b
severity: block
message: DeleteNetwork — destructive operation
category: cloud
- name: aws-privatenetworks-delete-network-site
pattern: (?i)aws\s+delete\-network\-site\b
severity: block
message: DeleteNetworkSite — destructive operation
category: cloud
- name: aws-privatenetworks-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-proton-cancel-component-deployment
pattern: (?i)aws\s+cancel\-component\-deployment\b
severity: warn
message: CancelComponentDeployment — destructive operation
category: cloud
- name: aws-proton-cancel-environment-deployment
pattern: (?i)aws\s+cancel\-environment\-deployment\b
severity: warn
message: CancelEnvironmentDeployment — destructive operation
category: cloud
- name: aws-proton-cancel-service-instance-deployment
pattern: (?i)aws\s+cancel\-service\-instance\-deployment\b
severity: block
message: CancelServiceInstanceDeployment — destructive operation
category: cloud
- name: aws-proton-cancel-service-pipeline-deployment
pattern: (?i)aws\s+cancel\-service\-pipeline\-deployment\b
severity: warn
message: CancelServicePipelineDeployment — destructive operation
category: cloud
- name: aws-proton-delete-component
pattern: (?i)aws\s+delete\-component\b
severity: warn
message: DeleteComponent — destructive operation
category: cloud
- name: aws-proton-delete-environment
pattern: (?i)aws\s+delete\-environment\b
severity: warn
message: DeleteEnvironment — destructive operation
category: cloud
- name: aws-proton-delete-environment-account-connection
pattern: (?i)aws\s+delete\-environment\-account\-connection\b
severity: block
message: DeleteEnvironmentAccountConnection — destructive operation
category: cloud
- name: aws-proton-delete-environment-template
pattern: (?i)aws\s+delete\-environment\-template\b
severity: warn
message: DeleteEnvironmentTemplate — destructive operation
category: cloud
- name: aws-proton-delete-environment-template-version
pattern: (?i)aws\s+delete\-environment\-template\-version\b
severity: warn
message: DeleteEnvironmentTemplateVersion — destructive operation
category: cloud
- name: aws-proton-delete-repository
pattern: (?i)aws\s+delete\-repository\b
severity: warn
message: DeleteRepository — destructive operation
category: cloud
- name: aws-proton-delete-service
pattern: (?i)aws\s+delete\-service\b
severity: warn
message: DeleteService — destructive operation
category: cloud
- name: aws-proton-delete-service-template
pattern: (?i)aws\s+delete\-service\-template\b
severity: warn
message: DeleteServiceTemplate — destructive operation
category: cloud
- name: aws-proton-delete-service-template-version
pattern: (?i)aws\s+delete\-service\-template\-version\b
severity: warn
message: DeleteServiceTemplateVersion — destructive operation
category: cloud
- name: aws-proton-delete-template-sync-config
pattern: (?i)aws\s+delete\-template\-sync\-config\b
severity: warn
message: DeleteTemplateSyncConfig — destructive operation
category: cloud
- name: aws-qldb-cancel-journal-kinesis-stream
pattern: (?i)aws\s+cancel\-journal\-kinesis\-stream\b
severity: block
message: CancelJournalKinesisStream — destructive operation
category: cloud
- name: aws-qldb-delete-ledger
pattern: (?i)aws\s+delete\-ledger\b
severity: block
message: DeleteLedger — destructive operation
category: cloud
- name: aws-qldb-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-quicksight-cancel-ingestion
pattern: (?i)aws\s+cancel\-ingestion\b
severity: block
message: CancelIngestion — destructive operation
category: cloud
- name: aws-quicksight-delete-account-customization
pattern: (?i)aws\s+delete\-account\-customization\b
severity: block
message: DeleteAccountCustomization — destructive operation
category: cloud
- name: aws-quicksight-delete-account-subscription
pattern: (?i)aws\s+delete\-account\-subscription\b
severity: block
message: DeleteAccountSubscription — destructive operation
category: cloud
- name: aws-quicksight-delete-analysis
pattern: (?i)aws\s+delete\-analysis\b
severity: block
message: DeleteAnalysis — destructive operation
category: cloud
- name: aws-quicksight-delete-dashboard
pattern: (?i)aws\s+delete\-dashboard\b
severity: block
message: DeleteDashboard — destructive operation
category: cloud
- name: aws-quicksight-delete-data-set
pattern: (?i)aws\s+delete\-data\-set\b
severity: block
message: DeleteDataSet — destructive operation
category: cloud
- name: aws-quicksight-delete-data-source
pattern: (?i)aws\s+delete\-data\-source\b
severity: block
message: DeleteDataSource — destructive operation
category: cloud
- name: aws-quicksight-delete-folder
pattern: (?i)aws\s+delete\-folder\b
severity: block
message: DeleteFolder — destructive operation
category: cloud
- name: aws-quicksight-delete-folder-membership
pattern: (?i)aws\s+delete\-folder\-membership\b
severity: block
message: DeleteFolderMembership — destructive operation
category: cloud
- name: aws-quicksight-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-quicksight-delete-group-membership
pattern: (?i)aws\s+delete\-group\-membership\b
severity: block
message: DeleteGroupMembership — destructive operation
category: cloud
- name: aws-quicksight-delete-i-a-m-policy-assignment
pattern: (?i)aws\s+delete\-i\-a\-m\-policy\-assignment\b
severity: block
message: DeleteIAMPolicyAssignment — destructive operation
category: cloud
- name: aws-quicksight-delete-namespace
pattern: (?i)aws\s+delete\-namespace\b
severity: block
message: DeleteNamespace — destructive operation
category: cloud
- name: aws-quicksight-delete-template
pattern: (?i)aws\s+delete\-template\b
severity: block
message: DeleteTemplate — destructive operation
category: cloud
- name: aws-quicksight-delete-template-alias
pattern: (?i)aws\s+delete\-template\-alias\b
severity: block
message: DeleteTemplateAlias — destructive operation
category: cloud
- name: aws-quicksight-delete-theme
pattern: (?i)aws\s+delete\-theme\b
severity: block
message: DeleteTheme — destructive operation
category: cloud
- name: aws-quicksight-delete-theme-alias
pattern: (?i)aws\s+delete\-theme\-alias\b
severity: block
message: DeleteThemeAlias — destructive operation
category: cloud
- name: aws-quicksight-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: block
message: DeleteUser — destructive operation
category: cloud
- name: aws-quicksight-delete-user-by-principal-id
pattern: (?i)aws\s+delete\-user\-by\-principal\-id\b
severity: block
message: DeleteUserByPrincipalId — destructive operation
category: cloud
- name: aws-quicksight-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ram-delete-resource-share
pattern: (?i)aws\s+delete\-resource\-share\b
severity: block
message: DeleteResourceShare — destructive operation
category: cloud
- name: aws-ram-disassociate-resource-share
pattern: (?i)aws\s+disassociate\-resource\-share\b
severity: warn
message: DisassociateResourceShare — destructive operation
category: cloud
- name: aws-ram-disassociate-resource-share-permission
pattern: (?i)aws\s+disassociate\-resource\-share\-permission\b
severity: warn
message: DisassociateResourceSharePermission — destructive operation
category: cloud
- name: aws-rbin-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-rbin-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-rds-cancel-export-task
pattern: (?i)aws\s+cancel\-export\-task\b
severity: warn
message: CancelExportTask — destructive operation
category: cloud
- name: aws-rds-delete-blue-green-deployment
pattern: (?i)aws\s+delete\-blue\-green\-deployment\b
severity: warn
message: DeleteBlueGreenDeployment — destructive operation
category: cloud
- name: aws-rds-delete-custom-d-b-engine-version
pattern: (?i)aws\s+delete\-custom\-d\-b\-engine\-version\b
severity: block
message: DeleteCustomDBEngineVersion — destructive operation
category: cloud
- name: aws-rds-delete-d-b-cluster
pattern: (?i)aws\s+delete\-d\-b\-cluster\b
severity: block
message: DeleteDBCluster — destructive operation
category: cloud
- name: aws-rds-delete-d-b-cluster-endpoint
pattern: (?i)aws\s+delete\-d\-b\-cluster\-endpoint\b
severity: block
message: DeleteDBClusterEndpoint — destructive operation
category: cloud
- name: aws-rds-delete-d-b-cluster-parameter-group
pattern: (?i)aws\s+delete\-d\-b\-cluster\-parameter\-group\b
severity: block
message: DeleteDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-rds-delete-d-b-cluster-snapshot
pattern: (?i)aws\s+delete\-d\-b\-cluster\-snapshot\b
severity: block
message: DeleteDBClusterSnapshot — destructive operation
category: cloud
- name: aws-rds-delete-d-b-instance
pattern: (?i)aws\s+delete\-d\-b\-instance\b
severity: block
message: DeleteDBInstance — destructive operation
category: cloud
- name: aws-rds-delete-d-b-instance-automated-backup
pattern: (?i)aws\s+delete\-d\-b\-instance\-automated\-backup\b
severity: block
message: DeleteDBInstanceAutomatedBackup — destructive operation
category: cloud
- name: aws-rds-delete-d-b-parameter-group
pattern: (?i)aws\s+delete\-d\-b\-parameter\-group\b
severity: block
message: DeleteDBParameterGroup — destructive operation
category: cloud
- name: aws-rds-delete-d-b-proxy
pattern: (?i)aws\s+delete\-d\-b\-proxy\b
severity: block
message: DeleteDBProxy — destructive operation
category: cloud
- name: aws-rds-delete-d-b-proxy-endpoint
pattern: (?i)aws\s+delete\-d\-b\-proxy\-endpoint\b
severity: block
message: DeleteDBProxyEndpoint — destructive operation
category: cloud
- name: aws-rds-delete-d-b-security-group
pattern: (?i)aws\s+delete\-d\-b\-security\-group\b
severity: block
message: DeleteDBSecurityGroup — destructive operation
category: cloud
- name: aws-rds-delete-d-b-snapshot
pattern: (?i)aws\s+delete\-d\-b\-snapshot\b
severity: block
message: DeleteDBSnapshot — destructive operation
category: cloud
- name: aws-rds-delete-d-b-subnet-group
pattern: (?i)aws\s+delete\-d\-b\-subnet\-group\b
severity: block
message: DeleteDBSubnetGroup — destructive operation
category: cloud
- name: aws-rds-delete-event-subscription
pattern: (?i)aws\s+delete\-event\-subscription\b
severity: warn
message: DeleteEventSubscription — destructive operation
category: cloud
- name: aws-rds-delete-global-cluster
pattern: (?i)aws\s+delete\-global\-cluster\b
severity: block
message: DeleteGlobalCluster — destructive operation
category: cloud
- name: aws-rds-delete-option-group
pattern: (?i)aws\s+delete\-option\-group\b
severity: block
message: DeleteOptionGroup — destructive operation
category: cloud
- name: aws-rds-deregister-d-b-proxy-targets
pattern: (?i)aws\s+deregister\-d\-b\-proxy\-targets\b
severity: block
message: DeregisterDBProxyTargets — destructive operation
category: cloud
- name: aws-rds-remove-from-global-cluster
pattern: (?i)aws\s+remove\-from\-global\-cluster\b
severity: block
message: RemoveFromGlobalCluster — destructive operation
category: cloud
- name: aws-rds-remove-role-from-d-b-cluster
pattern: (?i)aws\s+remove\-role\-from\-d\-b\-cluster\b
severity: block
message: RemoveRoleFromDBCluster — destructive operation
category: cloud
- name: aws-rds-remove-role-from-d-b-instance
pattern: (?i)aws\s+remove\-role\-from\-d\-b\-instance\b
severity: block
message: RemoveRoleFromDBInstance — destructive operation
category: cloud
- name: aws-rds-remove-source-identifier-from-subscription
pattern: (?i)aws\s+remove\-source\-identifier\-from\-subscription\b
severity: warn
message: RemoveSourceIdentifierFromSubscription — destructive operation
category: cloud
- name: aws-rds-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-rds-reset-d-b-cluster-parameter-group
pattern: (?i)aws\s+reset\-d\-b\-cluster\-parameter\-group\b
severity: block
message: ResetDBClusterParameterGroup — destructive operation
category: cloud
- name: aws-rds-reset-d-b-parameter-group
pattern: (?i)aws\s+reset\-d\-b\-parameter\-group\b
severity: block
message: ResetDBParameterGroup — destructive operation
category: cloud
- name: aws-rds-revoke-d-b-security-group-ingress
pattern: (?i)aws\s+revoke\-d\-b\-security\-group\-ingress\b
severity: block
message: RevokeDBSecurityGroupIngress — destructive operation
category: cloud
- name: aws-redshift-data-cancel-statement
pattern: (?i)aws\s+cancel\-statement\b
severity: warn
message: CancelStatement — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-endpoint-access
pattern: (?i)aws\s+delete\-endpoint\-access\b
severity: warn
message: DeleteEndpointAccess — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-namespace
pattern: (?i)aws\s+delete\-namespace\b
severity: block
message: DeleteNamespace — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-snapshot
pattern: (?i)aws\s+delete\-snapshot\b
severity: warn
message: DeleteSnapshot — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-usage-limit
pattern: (?i)aws\s+delete\-usage\-limit\b
severity: warn
message: DeleteUsageLimit — destructive operation
category: cloud
- name: aws-redshift-serverless-delete-workgroup
pattern: (?i)aws\s+delete\-workgroup\b
severity: block
message: DeleteWorkgroup — destructive operation
category: cloud
- name: aws-redshift-batch-delete-cluster-snapshots
pattern: (?i)aws\s+batch\-delete\-cluster\-snapshots\b
severity: block
message: BatchDeleteClusterSnapshots — destructive operation
category: cloud
- name: aws-redshift-cancel-resize
pattern: (?i)aws\s+cancel\-resize\b
severity: warn
message: CancelResize — destructive operation
category: cloud
- name: aws-redshift-delete-authentication-profile
pattern: (?i)aws\s+delete\-authentication\-profile\b
severity: block
message: DeleteAuthenticationProfile — destructive operation
category: cloud
- name: aws-redshift-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-redshift-delete-cluster-parameter-group
pattern: (?i)aws\s+delete\-cluster\-parameter\-group\b
severity: block
message: DeleteClusterParameterGroup — destructive operation
category: cloud
- name: aws-redshift-delete-cluster-security-group
pattern: (?i)aws\s+delete\-cluster\-security\-group\b
severity: block
message: DeleteClusterSecurityGroup — destructive operation
category: cloud
- name: aws-redshift-delete-cluster-snapshot
pattern: (?i)aws\s+delete\-cluster\-snapshot\b
severity: block
message: DeleteClusterSnapshot — destructive operation
category: cloud
- name: aws-redshift-delete-cluster-subnet-group
pattern: (?i)aws\s+delete\-cluster\-subnet\-group\b
severity: block
message: DeleteClusterSubnetGroup — destructive operation
category: cloud
- name: aws-redshift-delete-endpoint-access
pattern: (?i)aws\s+delete\-endpoint\-access\b
severity: warn
message: DeleteEndpointAccess — destructive operation
category: cloud
- name: aws-redshift-delete-event-subscription
pattern: (?i)aws\s+delete\-event\-subscription\b
severity: warn
message: DeleteEventSubscription — destructive operation
category: cloud
- name: aws-redshift-delete-hsm-client-certificate
pattern: (?i)aws\s+delete\-hsm\-client\-certificate\b
severity: block
message: DeleteHsmClientCertificate — destructive operation
category: cloud
- name: aws-redshift-delete-hsm-configuration
pattern: (?i)aws\s+delete\-hsm\-configuration\b
severity: warn
message: DeleteHsmConfiguration — destructive operation
category: cloud
- name: aws-redshift-delete-partner
pattern: (?i)aws\s+delete\-partner\b
severity: warn
message: DeletePartner — destructive operation
category: cloud
- name: aws-redshift-delete-scheduled-action
pattern: (?i)aws\s+delete\-scheduled\-action\b
severity: warn
message: DeleteScheduledAction — destructive operation
category: cloud
- name: aws-redshift-delete-snapshot-copy-grant
pattern: (?i)aws\s+delete\-snapshot\-copy\-grant\b
severity: warn
message: DeleteSnapshotCopyGrant — destructive operation
category: cloud
- name: aws-redshift-delete-snapshot-schedule
pattern: (?i)aws\s+delete\-snapshot\-schedule\b
severity: warn
message: DeleteSnapshotSchedule — destructive operation
category: cloud
- name: aws-redshift-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-redshift-delete-usage-limit
pattern: (?i)aws\s+delete\-usage\-limit\b
severity: warn
message: DeleteUsageLimit — destructive operation
category: cloud
- name: aws-redshift-disable-logging
pattern: (?i)aws\s+disable\-logging\b
severity: warn
message: DisableLogging — destructive operation
category: cloud
- name: aws-redshift-disable-snapshot-copy
pattern: (?i)aws\s+disable\-snapshot\-copy\b
severity: warn
message: DisableSnapshotCopy — destructive operation
category: cloud
- name: aws-redshift-disassociate-data-share-consumer
pattern: (?i)aws\s+disassociate\-data\-share\-consumer\b
severity: warn
message: DisassociateDataShareConsumer — destructive operation
category: cloud
- name: aws-redshift-reset-cluster-parameter-group
pattern: (?i)aws\s+reset\-cluster\-parameter\-group\b
severity: block
message: ResetClusterParameterGroup — destructive operation
category: cloud
- name: aws-redshift-revoke-cluster-security-group-ingress
pattern: (?i)aws\s+revoke\-cluster\-security\-group\-ingress\b
severity: block
message: RevokeClusterSecurityGroupIngress — destructive operation
category: cloud
- name: aws-redshift-revoke-endpoint-access
pattern: (?i)aws\s+revoke\-endpoint\-access\b
severity: warn
message: RevokeEndpointAccess — destructive operation
category: cloud
- name: aws-redshift-revoke-snapshot-access
pattern: (?i)aws\s+revoke\-snapshot\-access\b
severity: warn
message: RevokeSnapshotAccess — destructive operation
category: cloud
- name: aws-rekognition-delete-collection
pattern: (?i)aws\s+delete\-collection\b
severity: warn
message: DeleteCollection — destructive operation
category: cloud
- name: aws-rekognition-delete-dataset
pattern: (?i)aws\s+delete\-dataset\b
severity: warn
message: DeleteDataset — destructive operation
category: cloud
- name: aws-rekognition-delete-faces
pattern: (?i)aws\s+delete\-faces\b
severity: warn
message: DeleteFaces — destructive operation
category: cloud
- name: aws-rekognition-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-rekognition-delete-project-policy
pattern: (?i)aws\s+delete\-project\-policy\b
severity: block
message: DeleteProjectPolicy — destructive operation
category: cloud
- name: aws-rekognition-delete-project-version
pattern: (?i)aws\s+delete\-project\-version\b
severity: block
message: DeleteProjectVersion — destructive operation
category: cloud
- name: aws-rekognition-delete-stream-processor
pattern: (?i)aws\s+delete\-stream\-processor\b
severity: warn
message: DeleteStreamProcessor — destructive operation
category: cloud
- name: aws-resiliencehub-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: warn
message: DeleteApp — destructive operation
category: cloud
- name: aws-resiliencehub-delete-app-assessment
pattern: (?i)aws\s+delete\-app\-assessment\b
severity: warn
message: DeleteAppAssessment — destructive operation
category: cloud
- name: aws-resiliencehub-delete-recommendation-template
pattern: (?i)aws\s+delete\-recommendation\-template\b
severity: warn
message: DeleteRecommendationTemplate — destructive operation
category: cloud
- name: aws-resiliencehub-delete-resiliency-policy
pattern: (?i)aws\s+delete\-resiliency\-policy\b
severity: block
message: DeleteResiliencyPolicy — destructive operation
category: cloud
- name: aws-resiliencehub-remove-draft-app-version-resource-mappings
pattern: (?i)aws\s+remove\-draft\-app\-version\-resource\-mappings\b
severity: warn
message: RemoveDraftAppVersionResourceMappings — destructive operation
category: cloud
- name: aws-resiliencehub-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-resource-explorer-delete-index
pattern: (?i)aws\s+delete\-index\b
severity: warn
message: DeleteIndex — destructive operation
category: cloud
- name: aws-resource-explorer-delete-view
pattern: (?i)aws\s+delete\-view\b
severity: warn
message: DeleteView — destructive operation
category: cloud
- name: aws-resource-explorer-disassociate-default-view
pattern: (?i)aws\s+disassociate\-default\-view\b
severity: warn
message: DisassociateDefaultView — destructive operation
category: cloud
- name: aws-resource-explorer-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-resource-groups-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-robomaker-batch-delete-worlds
pattern: (?i)aws\s+batch\-delete\-worlds\b
severity: warn
message: BatchDeleteWorlds — destructive operation
category: cloud
- name: aws-robomaker-cancel-deployment-job
pattern: (?i)aws\s+cancel\-deployment\-job\b
severity: warn
message: CancelDeploymentJob — destructive operation
category: cloud
- name: aws-robomaker-cancel-simulation-job
pattern: (?i)aws\s+cancel\-simulation\-job\b
severity: warn
message: CancelSimulationJob — destructive operation
category: cloud
- name: aws-robomaker-cancel-simulation-job-batch
pattern: (?i)aws\s+cancel\-simulation\-job\-batch\b
severity: warn
message: CancelSimulationJobBatch — destructive operation
category: cloud
- name: aws-robomaker-cancel-world-export-job
pattern: (?i)aws\s+cancel\-world\-export\-job\b
severity: warn
message: CancelWorldExportJob — destructive operation
category: cloud
- name: aws-robomaker-cancel-world-generation-job
pattern: (?i)aws\s+cancel\-world\-generation\-job\b
severity: warn
message: CancelWorldGenerationJob — destructive operation
category: cloud
- name: aws-robomaker-delete-fleet
pattern: (?i)aws\s+delete\-fleet\b
severity: warn
message: DeleteFleet — destructive operation
category: cloud
- name: aws-robomaker-delete-robot
pattern: (?i)aws\s+delete\-robot\b
severity: warn
message: DeleteRobot — destructive operation
category: cloud
- name: aws-robomaker-delete-robot-application
pattern: (?i)aws\s+delete\-robot\-application\b
severity: warn
message: DeleteRobotApplication — destructive operation
category: cloud
- name: aws-robomaker-delete-simulation-application
pattern: (?i)aws\s+delete\-simulation\-application\b
severity: warn
message: DeleteSimulationApplication — destructive operation
category: cloud
- name: aws-robomaker-delete-world-template
pattern: (?i)aws\s+delete\-world\-template\b
severity: warn
message: DeleteWorldTemplate — destructive operation
category: cloud
- name: aws-robomaker-deregister-robot
pattern: (?i)aws\s+deregister\-robot\b
severity: warn
message: DeregisterRobot — destructive operation
category: cloud
- name: aws-robomaker-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-rolesanywhere-delete-crl
pattern: (?i)aws\s+delete\-crl\b
severity: block
message: DeleteCrl — destructive operation
category: cloud
- name: aws-rolesanywhere-delete-profile
pattern: (?i)aws\s+delete\-profile\b
severity: block
message: DeleteProfile — destructive operation
category: cloud
- name: aws-rolesanywhere-delete-trust-anchor
pattern: (?i)aws\s+delete\-trust\-anchor\b
severity: block
message: DeleteTrustAnchor — destructive operation
category: cloud
- name: aws-rolesanywhere-disable-crl
pattern: (?i)aws\s+disable\-crl\b
severity: warn
message: DisableCrl — destructive operation
category: cloud
- name: aws-rolesanywhere-disable-profile
pattern: (?i)aws\s+disable\-profile\b
severity: warn
message: DisableProfile — destructive operation
category: cloud
- name: aws-rolesanywhere-disable-trust-anchor
pattern: (?i)aws\s+disable\-trust\-anchor\b
severity: warn
message: DisableTrustAnchor — destructive operation
category: cloud
- name: aws-route53-recovery-control-config-delete-cluster
pattern: (?i)aws\s+delete\-cluster\b
severity: block
message: DeleteCluster — destructive operation
category: cloud
- name: aws-route53-recovery-control-config-delete-control-panel
pattern: (?i)aws\s+delete\-control\-panel\b
severity: block
message: DeleteControlPanel — destructive operation
category: cloud
- name: aws-route53-recovery-control-config-delete-routing-control
pattern: (?i)aws\s+delete\-routing\-control\b
severity: block
message: DeleteRoutingControl — destructive operation
category: cloud
- name: aws-route53-recovery-control-config-delete-safety-rule
pattern: (?i)aws\s+delete\-safety\-rule\b
severity: warn
message: DeleteSafetyRule — destructive operation
category: cloud
- name: aws-route53-recovery-control-config-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-delete-cell
pattern: (?i)aws\s+delete\-cell\b
severity: block
message: DeleteCell — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-delete-cross-account-authorization
pattern: (?i)aws\s+delete\-cross\-account\-authorization\b
severity: block
message: DeleteCrossAccountAuthorization — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-delete-readiness-check
pattern: (?i)aws\s+delete\-readiness\-check\b
severity: block
message: DeleteReadinessCheck — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-delete-recovery-group
pattern: (?i)aws\s+delete\-recovery\-group\b
severity: block
message: DeleteRecoveryGroup — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-delete-resource-set
pattern: (?i)aws\s+delete\-resource\-set\b
severity: block
message: DeleteResourceSet — destructive operation
category: cloud
- name: aws-route53-recovery-readiness-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-route53-delete-cidr-collection
pattern: (?i)aws\s+delete\-cidr\-collection\b
severity: block
message: DeleteCidrCollection — destructive operation
category: cloud
- name: aws-route53-delete-health-check
pattern: (?i)aws\s+delete\-health\-check\b
severity: block
message: DeleteHealthCheck — destructive operation
category: cloud
- name: aws-route53-delete-hosted-zone
pattern: (?i)aws\s+delete\-hosted\-zone\b
severity: block
message: DeleteHostedZone — destructive operation
category: cloud
- name: aws-route53-delete-key-signing-key
pattern: (?i)aws\s+delete\-key\-signing\-key\b
severity: block
message: DeleteKeySigningKey — destructive operation
category: cloud
- name: aws-route53-delete-query-logging-config
pattern: (?i)aws\s+delete\-query\-logging\-config\b
severity: warn
message: DeleteQueryLoggingConfig — destructive operation
category: cloud
- name: aws-route53-delete-reusable-delegation-set
pattern: (?i)aws\s+delete\-reusable\-delegation\-set\b
severity: block
message: DeleteReusableDelegationSet — destructive operation
category: cloud
- name: aws-route53-delete-traffic-policy
pattern: (?i)aws\s+delete\-traffic\-policy\b
severity: block
message: DeleteTrafficPolicy — destructive operation
category: cloud
- name: aws-route53-delete-traffic-policy-instance
pattern: (?i)aws\s+delete\-traffic\-policy\-instance\b
severity: block
message: DeleteTrafficPolicyInstance — destructive operation
category: cloud
- name: aws-route53-delete-v-p-c-association-authorization
pattern: (?i)aws\s+delete\-v\-p\-c\-association\-authorization\b
severity: block
message: DeleteVPCAssociationAuthorization — destructive operation
category: cloud
- name: aws-route53-disable-hosted-zone-d-n-s-s-e-c
pattern: (?i)aws\s+disable\-hosted\-zone\-d\-n\-s\-s\-e\-c\b
severity: block
message: DisableHostedZoneDNSSEC — destructive operation
category: cloud
- name: aws-route53-disassociate-v-p-c-from-hosted-zone
pattern: (?i)aws\s+disassociate\-v\-p\-c\-from\-hosted\-zone\b
severity: block
message: DisassociateVPCFromHostedZone — destructive operation
category: cloud
- name: aws-route53domains-cancel-domain-transfer-to-another-aws-account
pattern: (?i)aws\s+cancel\-domain\-transfer\-to\-another\-aws\-account\b
severity: block
message: CancelDomainTransferToAnotherAwsAccount — destructive operation
category: cloud
- name: aws-route53domains-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-route53domains-delete-tags-for-domain
pattern: (?i)aws\s+delete\-tags\-for\-domain\b
severity: warn
message: DeleteTagsForDomain — destructive operation
category: cloud
- name: aws-route53domains-disable-domain-auto-renew
pattern: (?i)aws\s+disable\-domain\-auto\-renew\b
severity: warn
message: DisableDomainAutoRenew — destructive operation
category: cloud
- name: aws-route53domains-disable-domain-transfer-lock
pattern: (?i)aws\s+disable\-domain\-transfer\-lock\b
severity: warn
message: DisableDomainTransferLock — destructive operation
category: cloud
- name: aws-route53resolver-delete-firewall-domain-list
pattern: (?i)aws\s+delete\-firewall\-domain\-list\b
severity: warn
message: DeleteFirewallDomainList — destructive operation
category: cloud
- name: aws-route53resolver-delete-firewall-rule
pattern: (?i)aws\s+delete\-firewall\-rule\b
severity: warn
message: DeleteFirewallRule — destructive operation
category: cloud
- name: aws-route53resolver-delete-firewall-rule-group
pattern: (?i)aws\s+delete\-firewall\-rule\-group\b
severity: block
message: DeleteFirewallRuleGroup — destructive operation
category: cloud
- name: aws-route53resolver-delete-resolver-endpoint
pattern: (?i)aws\s+delete\-resolver\-endpoint\b
severity: warn
message: DeleteResolverEndpoint — destructive operation
category: cloud
- name: aws-route53resolver-delete-resolver-query-log-config
pattern: (?i)aws\s+delete\-resolver\-query\-log\-config\b
severity: warn
message: DeleteResolverQueryLogConfig — destructive operation
category: cloud
- name: aws-route53resolver-delete-resolver-rule
pattern: (?i)aws\s+delete\-resolver\-rule\b
severity: warn
message: DeleteResolverRule — destructive operation
category: cloud
- name: aws-route53resolver-disassociate-firewall-rule-group
pattern: (?i)aws\s+disassociate\-firewall\-rule\-group\b
severity: block
message: DisassociateFirewallRuleGroup — destructive operation
category: cloud
- name: aws-route53resolver-disassociate-resolver-endpoint-ip-address
pattern: (?i)aws\s+disassociate\-resolver\-endpoint\-ip\-address\b
severity: warn
message: DisassociateResolverEndpointIpAddress — destructive operation
category: cloud
- name: aws-route53resolver-disassociate-resolver-query-log-config
pattern: (?i)aws\s+disassociate\-resolver\-query\-log\-config\b
severity: warn
message: DisassociateResolverQueryLogConfig — destructive operation
category: cloud
- name: aws-route53resolver-disassociate-resolver-rule
pattern: (?i)aws\s+disassociate\-resolver\-rule\b
severity: warn
message: DisassociateResolverRule — destructive operation
category: cloud
- name: aws-rum-batch-delete-rum-metric-definitions
pattern: (?i)aws\s+batch\-delete\-rum\-metric\-definitions\b
severity: warn
message: BatchDeleteRumMetricDefinitions — destructive operation
category: cloud
- name: aws-rum-delete-app-monitor
pattern: (?i)aws\s+delete\-app\-monitor\b
severity: block
message: DeleteAppMonitor — destructive operation
category: cloud
- name: aws-rum-delete-rum-metrics-destination
pattern: (?i)aws\s+delete\-rum\-metrics\-destination\b
severity: warn
message: DeleteRumMetricsDestination — destructive operation
category: cloud
- name: aws-rum-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-runtime.lex.v2-delete-session
pattern: (?i)aws\s+delete\-session\b
severity: block
message: DeleteSession — destructive operation
category: cloud
- name: aws-runtime.lex-delete-session
pattern: (?i)aws\s+delete\-session\b
severity: block
message: DeleteSession — destructive operation
category: cloud
- name: aws-s3-abort-multipart-upload
pattern: (?i)aws\s+abort\-multipart\-upload\b
severity: block
message: AbortMultipartUpload — destructive operation
category: cloud
- name: aws-s3-delete-bucket
pattern: (?i)aws\s+delete\-bucket\b
severity: block
message: DeleteBucket — destructive operation
category: cloud
- name: aws-s3-delete-bucket-analytics-configuration
pattern: (?i)aws\s+delete\-bucket\-analytics\-configuration\b
severity: block
message: DeleteBucketAnalyticsConfiguration — destructive operation
category: cloud
- name: aws-s3-delete-bucket-cors
pattern: (?i)aws\s+delete\-bucket\-cors\b
severity: block
message: DeleteBucketCors — destructive operation
category: cloud
- name: aws-s3-delete-bucket-encryption
pattern: (?i)aws\s+delete\-bucket\-encryption\b
severity: block
message: DeleteBucketEncryption — destructive operation
category: cloud
- name: aws-s3-delete-bucket-intelligent-tiering-configuration
pattern: (?i)aws\s+delete\-bucket\-intelligent\-tiering\-configuration\b
severity: block
message: DeleteBucketIntelligentTieringConfiguration — destructive operation
category: cloud
- name: aws-s3-delete-bucket-inventory-configuration
pattern: (?i)aws\s+delete\-bucket\-inventory\-configuration\b
severity: block
message: DeleteBucketInventoryConfiguration — destructive operation
category: cloud
- name: aws-s3-delete-bucket-lifecycle
pattern: (?i)aws\s+delete\-bucket\-lifecycle\b
severity: block
message: DeleteBucketLifecycle — destructive operation
category: cloud
- name: aws-s3-delete-bucket-metrics-configuration
pattern: (?i)aws\s+delete\-bucket\-metrics\-configuration\b
severity: block
message: DeleteBucketMetricsConfiguration — destructive operation
category: cloud
- name: aws-s3-delete-bucket-ownership-controls
pattern: (?i)aws\s+delete\-bucket\-ownership\-controls\b
severity: block
message: DeleteBucketOwnershipControls — destructive operation
category: cloud
- name: aws-s3-delete-bucket-policy
pattern: (?i)aws\s+delete\-bucket\-policy\b
severity: block
message: DeleteBucketPolicy — destructive operation
category: cloud
- name: aws-s3-delete-bucket-replication
pattern: (?i)aws\s+delete\-bucket\-replication\b
severity: block
message: DeleteBucketReplication — destructive operation
category: cloud
- name: aws-s3-delete-bucket-tagging
pattern: (?i)aws\s+delete\-bucket\-tagging\b
severity: block
message: DeleteBucketTagging — destructive operation
category: cloud
- name: aws-s3-delete-bucket-website
pattern: (?i)aws\s+delete\-bucket\-website\b
severity: block
message: DeleteBucketWebsite — destructive operation
category: cloud
- name: aws-s3-delete-object
pattern: (?i)aws\s+delete\-object\b
severity: block
message: DeleteObject — destructive operation
category: cloud
- name: aws-s3-delete-object-tagging
pattern: (?i)aws\s+delete\-object\-tagging\b
severity: block
message: DeleteObjectTagging — destructive operation
category: cloud
- name: aws-s3-delete-objects
pattern: (?i)aws\s+delete\-objects\b
severity: block
message: DeleteObjects — destructive operation
category: cloud
- name: aws-s3-delete-public-access-block
pattern: (?i)aws\s+delete\-public\-access\-block\b
severity: block
message: DeletePublicAccessBlock — destructive operation
category: cloud
- name: aws-s3control-delete-access-point
pattern: (?i)aws\s+delete\-access\-point\b
severity: block
message: DeleteAccessPoint — destructive operation
category: cloud
- name: aws-s3control-delete-access-point-for-object-lambda
pattern: (?i)aws\s+delete\-access\-point\-for\-object\-lambda\b
severity: block
message: DeleteAccessPointForObjectLambda — destructive operation
category: cloud
- name: aws-s3control-delete-access-point-policy
pattern: (?i)aws\s+delete\-access\-point\-policy\b
severity: block
message: DeleteAccessPointPolicy — destructive operation
category: cloud
- name: aws-s3control-delete-access-point-policy-for-object-lambda
pattern: (?i)aws\s+delete\-access\-point\-policy\-for\-object\-lambda\b
severity: block
message: DeleteAccessPointPolicyForObjectLambda — destructive operation
category: cloud
- name: aws-s3control-delete-bucket
pattern: (?i)aws\s+delete\-bucket\b
severity: block
message: DeleteBucket — destructive operation
category: cloud
- name: aws-s3control-delete-bucket-lifecycle-configuration
pattern: (?i)aws\s+delete\-bucket\-lifecycle\-configuration\b
severity: block
message: DeleteBucketLifecycleConfiguration — destructive operation
category: cloud
- name: aws-s3control-delete-bucket-policy
pattern: (?i)aws\s+delete\-bucket\-policy\b
severity: block
message: DeleteBucketPolicy — destructive operation
category: cloud
- name: aws-s3control-delete-bucket-tagging
pattern: (?i)aws\s+delete\-bucket\-tagging\b
severity: block
message: DeleteBucketTagging — destructive operation
category: cloud
- name: aws-s3control-delete-job-tagging
pattern: (?i)aws\s+delete\-job\-tagging\b
severity: warn
message: DeleteJobTagging — destructive operation
category: cloud
- name: aws-s3control-delete-multi-region-access-point
pattern: (?i)aws\s+delete\-multi\-region\-access\-point\b
severity: warn
message: DeleteMultiRegionAccessPoint — destructive operation
category: cloud
- name: aws-s3control-delete-public-access-block
pattern: (?i)aws\s+delete\-public\-access\-block\b
severity: block
message: DeletePublicAccessBlock — destructive operation
category: cloud
- name: aws-s3control-delete-storage-lens-configuration
pattern: (?i)aws\s+delete\-storage\-lens\-configuration\b
severity: block
message: DeleteStorageLensConfiguration — destructive operation
category: cloud
- name: aws-s3control-delete-storage-lens-configuration-tagging
pattern: (?i)aws\s+delete\-storage\-lens\-configuration\-tagging\b
severity: warn
message: DeleteStorageLensConfigurationTagging — destructive operation
category: cloud
- name: aws-s3outposts-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: block
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-sagemaker-a2i-runtime-delete-human-loop
pattern: (?i)aws\s+delete\-human\-loop\b
severity: block
message: DeleteHumanLoop — destructive operation
category: cloud
- name: aws-sagemaker-featurestore-runtime-delete-record
pattern: (?i)aws\s+delete\-record\b
severity: block
message: DeleteRecord — destructive operation
category: cloud
- name: aws-sagemaker-geospatial-delete-earth-observation-job
pattern: (?i)aws\s+delete\-earth\-observation\-job\b
severity: block
message: DeleteEarthObservationJob — destructive operation
category: cloud
- name: aws-sagemaker-geospatial-delete-vector-enrichment-job
pattern: (?i)aws\s+delete\-vector\-enrichment\-job\b
severity: block
message: DeleteVectorEnrichmentJob — destructive operation
category: cloud
- name: aws-sagemaker-geospatial-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-sagemaker-delete-action
pattern: (?i)aws\s+delete\-action\b
severity: warn
message: DeleteAction — destructive operation
category: cloud
- name: aws-sagemaker-delete-algorithm
pattern: (?i)aws\s+delete\-algorithm\b
severity: warn
message: DeleteAlgorithm — destructive operation
category: cloud
- name: aws-sagemaker-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: warn
message: DeleteApp — destructive operation
category: cloud
- name: aws-sagemaker-delete-app-image-config
pattern: (?i)aws\s+delete\-app\-image\-config\b
severity: warn
message: DeleteAppImageConfig — destructive operation
category: cloud
- name: aws-sagemaker-delete-artifact
pattern: (?i)aws\s+delete\-artifact\b
severity: warn
message: DeleteArtifact — destructive operation
category: cloud
- name: aws-sagemaker-delete-association
pattern: (?i)aws\s+delete\-association\b
severity: warn
message: DeleteAssociation — destructive operation
category: cloud
- name: aws-sagemaker-delete-code-repository
pattern: (?i)aws\s+delete\-code\-repository\b
severity: warn
message: DeleteCodeRepository — destructive operation
category: cloud
- name: aws-sagemaker-delete-context
pattern: (?i)aws\s+delete\-context\b
severity: warn
message: DeleteContext — destructive operation
category: cloud
- name: aws-sagemaker-delete-data-quality-job-definition
pattern: (?i)aws\s+delete\-data\-quality\-job\-definition\b
severity: warn
message: DeleteDataQualityJobDefinition — destructive operation
category: cloud
- name: aws-sagemaker-delete-device-fleet
pattern: (?i)aws\s+delete\-device\-fleet\b
severity: warn
message: DeleteDeviceFleet — destructive operation
category: cloud
- name: aws-sagemaker-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-sagemaker-delete-edge-deployment-plan
pattern: (?i)aws\s+delete\-edge\-deployment\-plan\b
severity: warn
message: DeleteEdgeDeploymentPlan — destructive operation
category: cloud
- name: aws-sagemaker-delete-edge-deployment-stage
pattern: (?i)aws\s+delete\-edge\-deployment\-stage\b
severity: warn
message: DeleteEdgeDeploymentStage — destructive operation
category: cloud
- name: aws-sagemaker-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: warn
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-sagemaker-delete-endpoint-config
pattern: (?i)aws\s+delete\-endpoint\-config\b
severity: warn
message: DeleteEndpointConfig — destructive operation
category: cloud
- name: aws-sagemaker-delete-experiment
pattern: (?i)aws\s+delete\-experiment\b
severity: warn
message: DeleteExperiment — destructive operation
category: cloud
- name: aws-sagemaker-delete-feature-group
pattern: (?i)aws\s+delete\-feature\-group\b
severity: block
message: DeleteFeatureGroup — destructive operation
category: cloud
- name: aws-sagemaker-delete-flow-definition
pattern: (?i)aws\s+delete\-flow\-definition\b
severity: warn
message: DeleteFlowDefinition — destructive operation
category: cloud
- name: aws-sagemaker-delete-hub
pattern: (?i)aws\s+delete\-hub\b
severity: warn
message: DeleteHub — destructive operation
category: cloud
- name: aws-sagemaker-delete-hub-content
pattern: (?i)aws\s+delete\-hub\-content\b
severity: warn
message: DeleteHubContent — destructive operation
category: cloud
- name: aws-sagemaker-delete-human-task-ui
pattern: (?i)aws\s+delete\-human\-task\-ui\b
severity: warn
message: DeleteHumanTaskUi — destructive operation
category: cloud
- name: aws-sagemaker-delete-image
pattern: (?i)aws\s+delete\-image\b
severity: warn
message: DeleteImage — destructive operation
category: cloud
- name: aws-sagemaker-delete-image-version
pattern: (?i)aws\s+delete\-image\-version\b
severity: warn
message: DeleteImageVersion — destructive operation
category: cloud
- name: aws-sagemaker-delete-inference-experiment
pattern: (?i)aws\s+delete\-inference\-experiment\b
severity: warn
message: DeleteInferenceExperiment — destructive operation
category: cloud
- name: aws-sagemaker-delete-model
pattern: (?i)aws\s+delete\-model\b
severity: warn
message: DeleteModel — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-bias-job-definition
pattern: (?i)aws\s+delete\-model\-bias\-job\-definition\b
severity: warn
message: DeleteModelBiasJobDefinition — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-card
pattern: (?i)aws\s+delete\-model\-card\b
severity: warn
message: DeleteModelCard — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-explainability-job-definition
pattern: (?i)aws\s+delete\-model\-explainability\-job\-definition\b
severity: warn
message: DeleteModelExplainabilityJobDefinition — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-package
pattern: (?i)aws\s+delete\-model\-package\b
severity: warn
message: DeleteModelPackage — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-package-group
pattern: (?i)aws\s+delete\-model\-package\-group\b
severity: block
message: DeleteModelPackageGroup — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-package-group-policy
pattern: (?i)aws\s+delete\-model\-package\-group\-policy\b
severity: block
message: DeleteModelPackageGroupPolicy — destructive operation
category: cloud
- name: aws-sagemaker-delete-model-quality-job-definition
pattern: (?i)aws\s+delete\-model\-quality\-job\-definition\b
severity: warn
message: DeleteModelQualityJobDefinition — destructive operation
category: cloud
- name: aws-sagemaker-delete-monitoring-schedule
pattern: (?i)aws\s+delete\-monitoring\-schedule\b
severity: warn
message: DeleteMonitoringSchedule — destructive operation
category: cloud
- name: aws-sagemaker-delete-notebook-instance
pattern: (?i)aws\s+delete\-notebook\-instance\b
severity: block
message: DeleteNotebookInstance — destructive operation
category: cloud
- name: aws-sagemaker-delete-notebook-instance-lifecycle-config
pattern: (?i)aws\s+delete\-notebook\-instance\-lifecycle\-config\b
severity: block
message: DeleteNotebookInstanceLifecycleConfig — destructive operation
category: cloud
- name: aws-sagemaker-delete-pipeline
pattern: (?i)aws\s+delete\-pipeline\b
severity: warn
message: DeletePipeline — destructive operation
category: cloud
- name: aws-sagemaker-delete-project
pattern: (?i)aws\s+delete\-project\b
severity: block
message: DeleteProject — destructive operation
category: cloud
- name: aws-sagemaker-delete-space
pattern: (?i)aws\s+delete\-space\b
severity: warn
message: DeleteSpace — destructive operation
category: cloud
- name: aws-sagemaker-delete-studio-lifecycle-config
pattern: (?i)aws\s+delete\-studio\-lifecycle\-config\b
severity: warn
message: DeleteStudioLifecycleConfig — destructive operation
category: cloud
- name: aws-sagemaker-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-sagemaker-delete-trial
pattern: (?i)aws\s+delete\-trial\b
severity: warn
message: DeleteTrial — destructive operation
category: cloud
- name: aws-sagemaker-delete-trial-component
pattern: (?i)aws\s+delete\-trial\-component\b
severity: warn
message: DeleteTrialComponent — destructive operation
category: cloud
- name: aws-sagemaker-delete-user-profile
pattern: (?i)aws\s+delete\-user\-profile\b
severity: warn
message: DeleteUserProfile — destructive operation
category: cloud
- name: aws-sagemaker-delete-workforce
pattern: (?i)aws\s+delete\-workforce\b
severity: warn
message: DeleteWorkforce — destructive operation
category: cloud
- name: aws-sagemaker-delete-workteam
pattern: (?i)aws\s+delete\-workteam\b
severity: warn
message: DeleteWorkteam — destructive operation
category: cloud
- name: aws-sagemaker-deregister-devices
pattern: (?i)aws\s+deregister\-devices\b
severity: warn
message: DeregisterDevices — destructive operation
category: cloud
- name: aws-sagemaker-disable-sagemaker-servicecatalog-portfolio
pattern: (?i)aws\s+disable\-sagemaker\-servicecatalog\-portfolio\b
severity: warn
message: DisableSagemakerServicecatalogPortfolio — destructive operation
category: cloud
- name: aws-sagemaker-disassociate-trial-component
pattern: (?i)aws\s+disassociate\-trial\-component\b
severity: warn
message: DisassociateTrialComponent — destructive operation
category: cloud
- name: aws-savingsplans-delete-queued-savings-plan
pattern: (?i)aws\s+delete\-queued\-savings\-plan\b
severity: warn
message: DeleteQueuedSavingsPlan — destructive operation
category: cloud
- name: aws-scheduler-delete-schedule
pattern: (?i)aws\s+delete\-schedule\b
severity: block
message: DeleteSchedule — destructive operation
category: cloud
- name: aws-scheduler-delete-schedule-group
pattern: (?i)aws\s+delete\-schedule\-group\b
severity: block
message: DeleteScheduleGroup — destructive operation
category: cloud
- name: aws-scheduler-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-schemas-delete-discoverer
pattern: (?i)aws\s+delete\-discoverer\b
severity: block
message: DeleteDiscoverer — destructive operation
category: cloud
- name: aws-schemas-delete-registry
pattern: (?i)aws\s+delete\-registry\b
severity: block
message: DeleteRegistry — destructive operation
category: cloud
- name: aws-schemas-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-schemas-delete-schema
pattern: (?i)aws\s+delete\-schema\b
severity: block
message: DeleteSchema — destructive operation
category: cloud
- name: aws-schemas-delete-schema-version
pattern: (?i)aws\s+delete\-schema\-version\b
severity: block
message: DeleteSchemaVersion — destructive operation
category: cloud
- name: aws-schemas-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-sdb-batch-delete-attributes
pattern: (?i)aws\s+batch\-delete\-attributes\b
severity: warn
message: BatchDeleteAttributes — destructive operation
category: cloud
- name: aws-sdb-delete-attributes
pattern: (?i)aws\s+delete\-attributes\b
severity: warn
message: DeleteAttributes — destructive operation
category: cloud
- name: aws-sdb-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-secretsmanager-cancel-rotate-secret
pattern: (?i)aws\s+cancel\-rotate\-secret\b
severity: block
message: CancelRotateSecret — destructive operation
category: cloud
- name: aws-secretsmanager-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-secretsmanager-delete-secret
pattern: (?i)aws\s+delete\-secret\b
severity: block
message: DeleteSecret — destructive operation
category: cloud
- name: aws-secretsmanager-remove-regions-from-replication
pattern: (?i)aws\s+remove\-regions\-from\-replication\b
severity: warn
message: RemoveRegionsFromReplication — destructive operation
category: cloud
- name: aws-securityhub-batch-disable-standards
pattern: (?i)aws\s+batch\-disable\-standards\b
severity: warn
message: BatchDisableStandards — destructive operation
category: cloud
- name: aws-securityhub-delete-action-target
pattern: (?i)aws\s+delete\-action\-target\b
severity: block
message: DeleteActionTarget — destructive operation
category: cloud
- name: aws-securityhub-delete-finding-aggregator
pattern: (?i)aws\s+delete\-finding\-aggregator\b
severity: block
message: DeleteFindingAggregator — destructive operation
category: cloud
- name: aws-securityhub-delete-insight
pattern: (?i)aws\s+delete\-insight\b
severity: block
message: DeleteInsight — destructive operation
category: cloud
- name: aws-securityhub-delete-invitations
pattern: (?i)aws\s+delete\-invitations\b
severity: warn
message: DeleteInvitations — destructive operation
category: cloud
- name: aws-securityhub-delete-members
pattern: (?i)aws\s+delete\-members\b
severity: warn
message: DeleteMembers — destructive operation
category: cloud
- name: aws-securityhub-disable-import-findings-for-product
pattern: (?i)aws\s+disable\-import\-findings\-for\-product\b
severity: warn
message: DisableImportFindingsForProduct — destructive operation
category: cloud
- name: aws-securityhub-disable-organization-admin-account
pattern: (?i)aws\s+disable\-organization\-admin\-account\b
severity: block
message: DisableOrganizationAdminAccount — destructive operation
category: cloud
- name: aws-securityhub-disable-security-hub
pattern: (?i)aws\s+disable\-security\-hub\b
severity: block
message: DisableSecurityHub — destructive operation
category: cloud
- name: aws-securityhub-disassociate-from-administrator-account
pattern: (?i)aws\s+disassociate\-from\-administrator\-account\b
severity: block
message: DisassociateFromAdministratorAccount — destructive operation
category: cloud
- name: aws-securityhub-disassociate-from-master-account
pattern: (?i)aws\s+disassociate\-from\-master\-account\b
severity: block
message: DisassociateFromMasterAccount — destructive operation
category: cloud
- name: aws-securityhub-disassociate-members
pattern: (?i)aws\s+disassociate\-members\b
severity: warn
message: DisassociateMembers — destructive operation
category: cloud
- name: aws-securityhub-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-securitylake-delete-aws-log-source
pattern: (?i)aws\s+delete\-aws\-log\-source\b
severity: warn
message: DeleteAwsLogSource — destructive operation
category: cloud
- name: aws-securitylake-delete-custom-log-source
pattern: (?i)aws\s+delete\-custom\-log\-source\b
severity: warn
message: DeleteCustomLogSource — destructive operation
category: cloud
- name: aws-securitylake-delete-datalake
pattern: (?i)aws\s+delete\-datalake\b
severity: block
message: DeleteDatalake — destructive operation
category: cloud
- name: aws-securitylake-delete-datalake-auto-enable
pattern: (?i)aws\s+delete\-datalake\-auto\-enable\b
severity: warn
message: DeleteDatalakeAutoEnable — destructive operation
category: cloud
- name: aws-securitylake-delete-datalake-delegated-admin
pattern: (?i)aws\s+delete\-datalake\-delegated\-admin\b
severity: block
message: DeleteDatalakeDelegatedAdmin — destructive operation
category: cloud
- name: aws-securitylake-delete-datalake-exceptions-subscription
pattern: (?i)aws\s+delete\-datalake\-exceptions\-subscription\b
severity: warn
message: DeleteDatalakeExceptionsSubscription — destructive operation
category: cloud
- name: aws-securitylake-delete-subscriber
pattern: (?i)aws\s+delete\-subscriber\b
severity: block
message: DeleteSubscriber — destructive operation
category: cloud
- name: aws-securitylake-delete-subscription-notification-configuration
pattern: (?i)aws\s+delete\-subscription\-notification\-configuration\b
severity: warn
message: DeleteSubscriptionNotificationConfiguration — destructive operation
category: cloud
- name: aws-serverlessrepo-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-service-quotas-delete-service-quota-increase-request-from-template
pattern: (?i)aws\s+delete\-service\-quota\-increase\-request\-from\-template\b
severity: warn
message: DeleteServiceQuotaIncreaseRequestFromTemplate — destructive operation
category: cloud
- name: aws-service-quotas-disassociate-service-quota-template
pattern: (?i)aws\s+disassociate\-service\-quota\-template\b
severity: warn
message: DisassociateServiceQuotaTemplate — destructive operation
category: cloud
- name: aws-servicecatalog-appregistry-delete-application
pattern: (?i)aws\s+delete\-application\b
severity: block
message: DeleteApplication — destructive operation
category: cloud
- name: aws-servicecatalog-appregistry-delete-attribute-group
pattern: (?i)aws\s+delete\-attribute\-group\b
severity: block
message: DeleteAttributeGroup — destructive operation
category: cloud
- name: aws-servicecatalog-appregistry-disassociate-attribute-group
pattern: (?i)aws\s+disassociate\-attribute\-group\b
severity: block
message: DisassociateAttributeGroup — destructive operation
category: cloud
- name: aws-servicecatalog-appregistry-disassociate-resource
pattern: (?i)aws\s+disassociate\-resource\b
severity: block
message: DisassociateResource — destructive operation
category: cloud
- name: aws-servicecatalog-appregistry-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-servicecatalog-batch-disassociate-service-action-from-provisioning-artifact
pattern: (?i)aws\s+batch\-disassociate\-service\-action\-from\-provisioning\-artifact\b
severity: warn
message: BatchDisassociateServiceActionFromProvisioningArtifact — destructive operation
category: cloud
- name: aws-servicecatalog-delete-constraint
pattern: (?i)aws\s+delete\-constraint\b
severity: warn
message: DeleteConstraint — destructive operation
category: cloud
- name: aws-servicecatalog-delete-portfolio
pattern: (?i)aws\s+delete\-portfolio\b
severity: warn
message: DeletePortfolio — destructive operation
category: cloud
- name: aws-servicecatalog-delete-portfolio-share
pattern: (?i)aws\s+delete\-portfolio\-share\b
severity: warn
message: DeletePortfolioShare — destructive operation
category: cloud
- name: aws-servicecatalog-delete-product
pattern: (?i)aws\s+delete\-product\b
severity: warn
message: DeleteProduct — destructive operation
category: cloud
- name: aws-servicecatalog-delete-provisioned-product-plan
pattern: (?i)aws\s+delete\-provisioned\-product\-plan\b
severity: warn
message: DeleteProvisionedProductPlan — destructive operation
category: cloud
- name: aws-servicecatalog-delete-provisioning-artifact
pattern: (?i)aws\s+delete\-provisioning\-artifact\b
severity: warn
message: DeleteProvisioningArtifact — destructive operation
category: cloud
- name: aws-servicecatalog-delete-service-action
pattern: (?i)aws\s+delete\-service\-action\b
severity: warn
message: DeleteServiceAction — destructive operation
category: cloud
- name: aws-servicecatalog-delete-tag-option
pattern: (?i)aws\s+delete\-tag\-option\b
severity: warn
message: DeleteTagOption — destructive operation
category: cloud
- name: aws-servicecatalog-disable-a-w-s-organizations-access
pattern: (?i)aws\s+disable\-a\-w\-s\-organizations\-access\b
severity: warn
message: DisableAWSOrganizationsAccess — destructive operation
category: cloud
- name: aws-servicecatalog-disassociate-budget-from-resource
pattern: (?i)aws\s+disassociate\-budget\-from\-resource\b
severity: warn
message: DisassociateBudgetFromResource — destructive operation
category: cloud
- name: aws-servicecatalog-disassociate-principal-from-portfolio
pattern: (?i)aws\s+disassociate\-principal\-from\-portfolio\b
severity: warn
message: DisassociatePrincipalFromPortfolio — destructive operation
category: cloud
- name: aws-servicecatalog-disassociate-product-from-portfolio
pattern: (?i)aws\s+disassociate\-product\-from\-portfolio\b
severity: warn
message: DisassociateProductFromPortfolio — destructive operation
category: cloud
- name: aws-servicecatalog-disassociate-service-action-from-provisioning-artifact
pattern: (?i)aws\s+disassociate\-service\-action\-from\-provisioning\-artifact\b
severity: warn
message: DisassociateServiceActionFromProvisioningArtifact — destructive operation
category: cloud
- name: aws-servicecatalog-disassociate-tag-option-from-resource
pattern: (?i)aws\s+disassociate\-tag\-option\-from\-resource\b
severity: warn
message: DisassociateTagOptionFromResource — destructive operation
category: cloud
- name: aws-servicecatalog-terminate-provisioned-product
pattern: (?i)aws\s+terminate\-provisioned\-product\b
severity: warn
message: TerminateProvisionedProduct — destructive operation
category: cloud
- name: aws-servicediscovery-delete-namespace
pattern: (?i)aws\s+delete\-namespace\b
severity: block
message: DeleteNamespace — destructive operation
category: cloud
- name: aws-servicediscovery-delete-service
pattern: (?i)aws\s+delete\-service\b
severity: warn
message: DeleteService — destructive operation
category: cloud
- name: aws-servicediscovery-deregister-instance
pattern: (?i)aws\s+deregister\-instance\b
severity: block
message: DeregisterInstance — destructive operation
category: cloud
- name: aws-sesv2-delete-configuration-set
pattern: (?i)aws\s+delete\-configuration\-set\b
severity: block
message: DeleteConfigurationSet — destructive operation
category: cloud
- name: aws-sesv2-delete-configuration-set-event-destination
pattern: (?i)aws\s+delete\-configuration\-set\-event\-destination\b
severity: warn
message: DeleteConfigurationSetEventDestination — destructive operation
category: cloud
- name: aws-sesv2-delete-contact
pattern: (?i)aws\s+delete\-contact\b
severity: block
message: DeleteContact — destructive operation
category: cloud
- name: aws-sesv2-delete-contact-list
pattern: (?i)aws\s+delete\-contact\-list\b
severity: block
message: DeleteContactList — destructive operation
category: cloud
- name: aws-sesv2-delete-custom-verification-email-template
pattern: (?i)aws\s+delete\-custom\-verification\-email\-template\b
severity: block
message: DeleteCustomVerificationEmailTemplate — destructive operation
category: cloud
- name: aws-sesv2-delete-dedicated-ip-pool
pattern: (?i)aws\s+delete\-dedicated\-ip\-pool\b
severity: block
message: DeleteDedicatedIpPool — destructive operation
category: cloud
- name: aws-sesv2-delete-email-identity
pattern: (?i)aws\s+delete\-email\-identity\b
severity: block
message: DeleteEmailIdentity — destructive operation
category: cloud
- name: aws-sesv2-delete-email-identity-policy
pattern: (?i)aws\s+delete\-email\-identity\-policy\b
severity: block
message: DeleteEmailIdentityPolicy — destructive operation
category: cloud
- name: aws-sesv2-delete-email-template
pattern: (?i)aws\s+delete\-email\-template\b
severity: block
message: DeleteEmailTemplate — destructive operation
category: cloud
- name: aws-sesv2-delete-suppressed-destination
pattern: (?i)aws\s+delete\-suppressed\-destination\b
severity: block
message: DeleteSuppressedDestination — destructive operation
category: cloud
- name: aws-sesv2-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-shield-delete-protection
pattern: (?i)aws\s+delete\-protection\b
severity: warn
message: DeleteProtection — destructive operation
category: cloud
- name: aws-shield-delete-protection-group
pattern: (?i)aws\s+delete\-protection\-group\b
severity: block
message: DeleteProtectionGroup — destructive operation
category: cloud
- name: aws-shield-delete-subscription
pattern: (?i)aws\s+delete\-subscription\b
severity: warn
message: DeleteSubscription — destructive operation
category: cloud
- name: aws-shield-disable-application-layer-automatic-response
pattern: (?i)aws\s+disable\-application\-layer\-automatic\-response\b
severity: warn
message: DisableApplicationLayerAutomaticResponse — destructive operation
category: cloud
- name: aws-shield-disable-proactive-engagement
pattern: (?i)aws\s+disable\-proactive\-engagement\b
severity: warn
message: DisableProactiveEngagement — destructive operation
category: cloud
- name: aws-shield-disassociate-d-r-t-log-bucket
pattern: (?i)aws\s+disassociate\-d\-r\-t\-log\-bucket\b
severity: block
message: DisassociateDRTLogBucket — destructive operation
category: cloud
- name: aws-shield-disassociate-d-r-t-role
pattern: (?i)aws\s+disassociate\-d\-r\-t\-role\b
severity: block
message: DisassociateDRTRole — destructive operation
category: cloud
- name: aws-shield-disassociate-health-check
pattern: (?i)aws\s+disassociate\-health\-check\b
severity: warn
message: DisassociateHealthCheck — destructive operation
category: cloud
- name: aws-signer-cancel-signing-profile
pattern: (?i)aws\s+cancel\-signing\-profile\b
severity: block
message: CancelSigningProfile — destructive operation
category: cloud
- name: aws-signer-remove-profile-permission
pattern: (?i)aws\s+remove\-profile\-permission\b
severity: warn
message: RemoveProfilePermission — destructive operation
category: cloud
- name: aws-signer-revoke-signature
pattern: (?i)aws\s+revoke\-signature\b
severity: warn
message: RevokeSignature — destructive operation
category: cloud
- name: aws-signer-revoke-signing-profile
pattern: (?i)aws\s+revoke\-signing\-profile\b
severity: warn
message: RevokeSigningProfile — destructive operation
category: cloud
- name: aws-signer-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-simspaceweaver-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: block
message: DeleteApp — destructive operation
category: cloud
- name: aws-simspaceweaver-delete-simulation
pattern: (?i)aws\s+delete\-simulation\b
severity: block
message: DeleteSimulation — destructive operation
category: cloud
- name: aws-simspaceweaver-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-sms-voice-delete-configuration-set
pattern: (?i)aws\s+delete\-configuration\-set\b
severity: block
message: DeleteConfigurationSet — destructive operation
category: cloud
- name: aws-sms-voice-delete-configuration-set-event-destination
pattern: (?i)aws\s+delete\-configuration\-set\-event\-destination\b
severity: warn
message: DeleteConfigurationSetEventDestination — destructive operation
category: cloud
- name: aws-sms-delete-app
pattern: (?i)aws\s+delete\-app\b
severity: warn
message: DeleteApp — destructive operation
category: cloud
- name: aws-sms-delete-app-launch-configuration
pattern: (?i)aws\s+delete\-app\-launch\-configuration\b
severity: warn
message: DeleteAppLaunchConfiguration — destructive operation
category: cloud
- name: aws-sms-delete-app-replication-configuration
pattern: (?i)aws\s+delete\-app\-replication\-configuration\b
severity: warn
message: DeleteAppReplicationConfiguration — destructive operation
category: cloud
- name: aws-sms-delete-app-validation-configuration
pattern: (?i)aws\s+delete\-app\-validation\-configuration\b
severity: warn
message: DeleteAppValidationConfiguration — destructive operation
category: cloud
- name: aws-sms-delete-replication-job
pattern: (?i)aws\s+delete\-replication\-job\b
severity: warn
message: DeleteReplicationJob — destructive operation
category: cloud
- name: aws-sms-delete-server-catalog
pattern: (?i)aws\s+delete\-server\-catalog\b
severity: block
message: DeleteServerCatalog — destructive operation
category: cloud
- name: aws-sms-disassociate-connector
pattern: (?i)aws\s+disassociate\-connector\b
severity: warn
message: DisassociateConnector — destructive operation
category: cloud
- name: aws-sms-terminate-app
pattern: (?i)aws\s+terminate\-app\b
severity: warn
message: TerminateApp — destructive operation
category: cloud
- name: aws-snow-device-management-cancel-task
pattern: (?i)aws\s+cancel\-task\b
severity: warn
message: CancelTask — destructive operation
category: cloud
- name: aws-snow-device-management-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-snowball-cancel-cluster
pattern: (?i)aws\s+cancel\-cluster\b
severity: block
message: CancelCluster — destructive operation
category: cloud
- name: aws-snowball-cancel-job
pattern: (?i)aws\s+cancel\-job\b
severity: warn
message: CancelJob — destructive operation
category: cloud
- name: aws-sns-delete-endpoint
pattern: (?i)aws\s+delete\-endpoint\b
severity: warn
message: DeleteEndpoint — destructive operation
category: cloud
- name: aws-sns-delete-platform-application
pattern: (?i)aws\s+delete\-platform\-application\b
severity: warn
message: DeletePlatformApplication — destructive operation
category: cloud
- name: aws-sns-delete-s-m-s-sandbox-phone-number
pattern: (?i)aws\s+delete\-s\-m\-s\-sandbox\-phone\-number\b
severity: block
message: DeleteSMSSandboxPhoneNumber — destructive operation
category: cloud
- name: aws-sns-delete-topic
pattern: (?i)aws\s+delete\-topic\b
severity: warn
message: DeleteTopic — destructive operation
category: cloud
- name: aws-sns-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: warn
message: RemovePermission — destructive operation
category: cloud
- name: aws-sqs-delete-message
pattern: (?i)aws\s+delete\-message\b
severity: warn
message: DeleteMessage — destructive operation
category: cloud
- name: aws-sqs-delete-message-batch
pattern: (?i)aws\s+delete\-message\-batch\b
severity: warn
message: DeleteMessageBatch — destructive operation
category: cloud
- name: aws-sqs-delete-queue
pattern: (?i)aws\s+delete\-queue\b
severity: warn
message: DeleteQueue — destructive operation
category: cloud
- name: aws-sqs-purge-queue
pattern: (?i)aws\s+purge\-queue\b
severity: warn
message: PurgeQueue — destructive operation
category: cloud
- name: aws-sqs-remove-permission
pattern: (?i)aws\s+remove\-permission\b
severity: warn
message: RemovePermission — destructive operation
category: cloud
- name: aws-ssm-contacts-delete-contact
pattern: (?i)aws\s+delete\-contact\b
severity: warn
message: DeleteContact — destructive operation
category: cloud
- name: aws-ssm-contacts-delete-contact-channel
pattern: (?i)aws\s+delete\-contact\-channel\b
severity: warn
message: DeleteContactChannel — destructive operation
category: cloud
- name: aws-ssm-incidents-delete-incident-record
pattern: (?i)aws\s+delete\-incident\-record\b
severity: warn
message: DeleteIncidentRecord — destructive operation
category: cloud
- name: aws-ssm-incidents-delete-replication-set
pattern: (?i)aws\s+delete\-replication\-set\b
severity: warn
message: DeleteReplicationSet — destructive operation
category: cloud
- name: aws-ssm-incidents-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-ssm-incidents-delete-response-plan
pattern: (?i)aws\s+delete\-response\-plan\b
severity: warn
message: DeleteResponsePlan — destructive operation
category: cloud
- name: aws-ssm-incidents-delete-timeline-event
pattern: (?i)aws\s+delete\-timeline\-event\b
severity: warn
message: DeleteTimelineEvent — destructive operation
category: cloud
- name: aws-ssm-incidents-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ssm-sap-delete-resource-permission
pattern: (?i)aws\s+delete\-resource\-permission\b
severity: warn
message: DeleteResourcePermission — destructive operation
category: cloud
- name: aws-ssm-sap-deregister-application
pattern: (?i)aws\s+deregister\-application\b
severity: warn
message: DeregisterApplication — destructive operation
category: cloud
- name: aws-ssm-sap-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-ssm-cancel-command
pattern: (?i)aws\s+cancel\-command\b
severity: warn
message: CancelCommand — destructive operation
category: cloud
- name: aws-ssm-cancel-maintenance-window-execution
pattern: (?i)aws\s+cancel\-maintenance\-window\-execution\b
severity: warn
message: CancelMaintenanceWindowExecution — destructive operation
category: cloud
- name: aws-ssm-delete-activation
pattern: (?i)aws\s+delete\-activation\b
severity: warn
message: DeleteActivation — destructive operation
category: cloud
- name: aws-ssm-delete-association
pattern: (?i)aws\s+delete\-association\b
severity: warn
message: DeleteAssociation — destructive operation
category: cloud
- name: aws-ssm-delete-document
pattern: (?i)aws\s+delete\-document\b
severity: warn
message: DeleteDocument — destructive operation
category: cloud
- name: aws-ssm-delete-inventory
pattern: (?i)aws\s+delete\-inventory\b
severity: warn
message: DeleteInventory — destructive operation
category: cloud
- name: aws-ssm-delete-maintenance-window
pattern: (?i)aws\s+delete\-maintenance\-window\b
severity: warn
message: DeleteMaintenanceWindow — destructive operation
category: cloud
- name: aws-ssm-delete-ops-metadata
pattern: (?i)aws\s+delete\-ops\-metadata\b
severity: warn
message: DeleteOpsMetadata — destructive operation
category: cloud
- name: aws-ssm-delete-parameter
pattern: (?i)aws\s+delete\-parameter\b
severity: warn
message: DeleteParameter — destructive operation
category: cloud
- name: aws-ssm-delete-parameters
pattern: (?i)aws\s+delete\-parameters\b
severity: warn
message: DeleteParameters — destructive operation
category: cloud
- name: aws-ssm-delete-patch-baseline
pattern: (?i)aws\s+delete\-patch\-baseline\b
severity: warn
message: DeletePatchBaseline — destructive operation
category: cloud
- name: aws-ssm-delete-resource-data-sync
pattern: (?i)aws\s+delete\-resource\-data\-sync\b
severity: warn
message: DeleteResourceDataSync — destructive operation
category: cloud
- name: aws-ssm-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-ssm-deregister-managed-instance
pattern: (?i)aws\s+deregister\-managed\-instance\b
severity: block
message: DeregisterManagedInstance — destructive operation
category: cloud
- name: aws-ssm-deregister-patch-baseline-for-patch-group
pattern: (?i)aws\s+deregister\-patch\-baseline\-for\-patch\-group\b
severity: block
message: DeregisterPatchBaselineForPatchGroup — destructive operation
category: cloud
- name: aws-ssm-deregister-target-from-maintenance-window
pattern: (?i)aws\s+deregister\-target\-from\-maintenance\-window\b
severity: block
message: DeregisterTargetFromMaintenanceWindow — destructive operation
category: cloud
- name: aws-ssm-deregister-task-from-maintenance-window
pattern: (?i)aws\s+deregister\-task\-from\-maintenance\-window\b
severity: warn
message: DeregisterTaskFromMaintenanceWindow — destructive operation
category: cloud
- name: aws-ssm-disassociate-ops-item-related-item
pattern: (?i)aws\s+disassociate\-ops\-item\-related\-item\b
severity: block
message: DisassociateOpsItemRelatedItem — destructive operation
category: cloud
- name: aws-ssm-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-ssm-reset-service-setting
pattern: (?i)aws\s+reset\-service\-setting\b
severity: warn
message: ResetServiceSetting — destructive operation
category: cloud
- name: aws-ssm-terminate-session
pattern: (?i)aws\s+terminate\-session\b
severity: warn
message: TerminateSession — destructive operation
category: cloud
- name: aws-sso-admin-delete-account-assignment
pattern: (?i)aws\s+delete\-account\-assignment\b
severity: block
message: DeleteAccountAssignment — destructive operation
category: cloud
- name: aws-sso-admin-delete-inline-policy-from-permission-set
pattern: (?i)aws\s+delete\-inline\-policy\-from\-permission\-set\b
severity: block
message: DeleteInlinePolicyFromPermissionSet — destructive operation
category: cloud
- name: aws-sso-admin-delete-instance-access-control-attribute-configuration
pattern: (?i)aws\s+delete\-instance\-access\-control\-attribute\-configuration\b
severity: block
message: DeleteInstanceAccessControlAttributeConfiguration — destructive operation
category: cloud
- name: aws-sso-admin-delete-permission-set
pattern: (?i)aws\s+delete\-permission\-set\b
severity: warn
message: DeletePermissionSet — destructive operation
category: cloud
- name: aws-sso-admin-delete-permissions-boundary-from-permission-set
pattern: (?i)aws\s+delete\-permissions\-boundary\-from\-permission\-set\b
severity: warn
message: DeletePermissionsBoundaryFromPermissionSet — destructive operation
category: cloud
- name: aws-sso-admin-detach-customer-managed-policy-reference-from-permission-set
pattern: (?i)aws\s+detach\-customer\-managed\-policy\-reference\-from\-permission\-set\b
severity: block
message: DetachCustomerManagedPolicyReferenceFromPermissionSet — destructive operation
category: cloud
- name: aws-sso-admin-detach-managed-policy-from-permission-set
pattern: (?i)aws\s+detach\-managed\-policy\-from\-permission\-set\b
severity: block
message: DetachManagedPolicyFromPermissionSet — destructive operation
category: cloud
- name: aws-states-delete-activity
pattern: (?i)aws\s+delete\-activity\b
severity: warn
message: DeleteActivity — destructive operation
category: cloud
- name: aws-states-delete-state-machine
pattern: (?i)aws\s+delete\-state\-machine\b
severity: warn
message: DeleteStateMachine — destructive operation
category: cloud
- name: aws-storagegateway-cancel-archival
pattern: (?i)aws\s+cancel\-archival\b
severity: warn
message: CancelArchival — destructive operation
category: cloud
- name: aws-storagegateway-cancel-retrieval
pattern: (?i)aws\s+cancel\-retrieval\b
severity: warn
message: CancelRetrieval — destructive operation
category: cloud
- name: aws-storagegateway-delete-automatic-tape-creation-policy
pattern: (?i)aws\s+delete\-automatic\-tape\-creation\-policy\b
severity: block
message: DeleteAutomaticTapeCreationPolicy — destructive operation
category: cloud
- name: aws-storagegateway-delete-bandwidth-rate-limit
pattern: (?i)aws\s+delete\-bandwidth\-rate\-limit\b
severity: warn
message: DeleteBandwidthRateLimit — destructive operation
category: cloud
- name: aws-storagegateway-delete-chap-credentials
pattern: (?i)aws\s+delete\-chap\-credentials\b
severity: block
message: DeleteChapCredentials — destructive operation
category: cloud
- name: aws-storagegateway-delete-file-share
pattern: (?i)aws\s+delete\-file\-share\b
severity: warn
message: DeleteFileShare — destructive operation
category: cloud
- name: aws-storagegateway-delete-gateway
pattern: (?i)aws\s+delete\-gateway\b
severity: block
message: DeleteGateway — destructive operation
category: cloud
- name: aws-storagegateway-delete-snapshot-schedule
pattern: (?i)aws\s+delete\-snapshot\-schedule\b
severity: warn
message: DeleteSnapshotSchedule — destructive operation
category: cloud
- name: aws-storagegateway-delete-tape
pattern: (?i)aws\s+delete\-tape\b
severity: warn
message: DeleteTape — destructive operation
category: cloud
- name: aws-storagegateway-delete-tape-archive
pattern: (?i)aws\s+delete\-tape\-archive\b
severity: warn
message: DeleteTapeArchive — destructive operation
category: cloud
- name: aws-storagegateway-delete-tape-pool
pattern: (?i)aws\s+delete\-tape\-pool\b
severity: warn
message: DeleteTapePool — destructive operation
category: cloud
- name: aws-storagegateway-delete-volume
pattern: (?i)aws\s+delete\-volume\b
severity: block
message: DeleteVolume — destructive operation
category: cloud
- name: aws-storagegateway-detach-volume
pattern: (?i)aws\s+detach\-volume\b
severity: block
message: DetachVolume — destructive operation
category: cloud
- name: aws-storagegateway-disable-gateway
pattern: (?i)aws\s+disable\-gateway\b
severity: block
message: DisableGateway — destructive operation
category: cloud
- name: aws-storagegateway-disassociate-file-system
pattern: (?i)aws\s+disassociate\-file\-system\b
severity: warn
message: DisassociateFileSystem — destructive operation
category: cloud
- name: aws-storagegateway-remove-tags-from-resource
pattern: (?i)aws\s+remove\-tags\-from\-resource\b
severity: warn
message: RemoveTagsFromResource — destructive operation
category: cloud
- name: aws-storagegateway-reset-cache
pattern: (?i)aws\s+reset\-cache\b
severity: warn
message: ResetCache — destructive operation
category: cloud
- name: aws-support-app-delete-account-alias
pattern: (?i)aws\s+delete\-account\-alias\b
severity: block
message: DeleteAccountAlias — destructive operation
category: cloud
- name: aws-support-app-delete-slack-channel-configuration
pattern: (?i)aws\s+delete\-slack\-channel\-configuration\b
severity: warn
message: DeleteSlackChannelConfiguration — destructive operation
category: cloud
- name: aws-support-app-delete-slack-workspace-configuration
pattern: (?i)aws\s+delete\-slack\-workspace\-configuration\b
severity: warn
message: DeleteSlackWorkspaceConfiguration — destructive operation
category: cloud
- name: aws-swf-request-cancel-workflow-execution
pattern: (?i)aws\s+request\-cancel\-workflow\-execution\b
severity: warn
message: RequestCancelWorkflowExecution — destructive operation
category: cloud
- name: aws-swf-respond-activity-task-canceled
pattern: (?i)aws\s+respond\-activity\-task\-canceled\b
severity: warn
message: RespondActivityTaskCanceled — destructive operation
category: cloud
- name: aws-swf-terminate-workflow-execution
pattern: (?i)aws\s+terminate\-workflow\-execution\b
severity: warn
message: TerminateWorkflowExecution — destructive operation
category: cloud
- name: aws-synthetics-delete-canary
pattern: (?i)aws\s+delete\-canary\b
severity: block
message: DeleteCanary — destructive operation
category: cloud
- name: aws-synthetics-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-synthetics-disassociate-resource
pattern: (?i)aws\s+disassociate\-resource\b
severity: block
message: DisassociateResource — destructive operation
category: cloud
- name: aws-synthetics-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-timestream-query-cancel-query
pattern: (?i)aws\s+cancel\-query\b
severity: warn
message: CancelQuery — destructive operation
category: cloud
- name: aws-timestream-query-delete-scheduled-query
pattern: (?i)aws\s+delete\-scheduled\-query\b
severity: warn
message: DeleteScheduledQuery — destructive operation
category: cloud
- name: aws-timestream-write-delete-database
pattern: (?i)aws\s+delete\-database\b
severity: block
message: DeleteDatabase — destructive operation
category: cloud
- name: aws-timestream-write-delete-table
pattern: (?i)aws\s+delete\-table\b
severity: warn
message: DeleteTable — destructive operation
category: cloud
- name: aws-transcribe-delete-call-analytics-category
pattern: (?i)aws\s+delete\-call\-analytics\-category\b
severity: warn
message: DeleteCallAnalyticsCategory — destructive operation
category: cloud
- name: aws-transcribe-delete-call-analytics-job
pattern: (?i)aws\s+delete\-call\-analytics\-job\b
severity: warn
message: DeleteCallAnalyticsJob — destructive operation
category: cloud
- name: aws-transcribe-delete-language-model
pattern: (?i)aws\s+delete\-language\-model\b
severity: warn
message: DeleteLanguageModel — destructive operation
category: cloud
- name: aws-transcribe-delete-medical-transcription-job
pattern: (?i)aws\s+delete\-medical\-transcription\-job\b
severity: warn
message: DeleteMedicalTranscriptionJob — destructive operation
category: cloud
- name: aws-transcribe-delete-medical-vocabulary
pattern: (?i)aws\s+delete\-medical\-vocabulary\b
severity: warn
message: DeleteMedicalVocabulary — destructive operation
category: cloud
- name: aws-transcribe-delete-transcription-job
pattern: (?i)aws\s+delete\-transcription\-job\b
severity: warn
message: DeleteTranscriptionJob — destructive operation
category: cloud
- name: aws-transcribe-delete-vocabulary
pattern: (?i)aws\s+delete\-vocabulary\b
severity: warn
message: DeleteVocabulary — destructive operation
category: cloud
- name: aws-transcribe-delete-vocabulary-filter
pattern: (?i)aws\s+delete\-vocabulary\-filter\b
severity: warn
message: DeleteVocabularyFilter — destructive operation
category: cloud
- name: aws-transfer-delete-access
pattern: (?i)aws\s+delete\-access\b
severity: warn
message: DeleteAccess — destructive operation
category: cloud
- name: aws-transfer-delete-agreement
pattern: (?i)aws\s+delete\-agreement\b
severity: warn
message: DeleteAgreement — destructive operation
category: cloud
- name: aws-transfer-delete-certificate
pattern: (?i)aws\s+delete\-certificate\b
severity: block
message: DeleteCertificate — destructive operation
category: cloud
- name: aws-transfer-delete-connector
pattern: (?i)aws\s+delete\-connector\b
severity: warn
message: DeleteConnector — destructive operation
category: cloud
- name: aws-transfer-delete-host-key
pattern: (?i)aws\s+delete\-host\-key\b
severity: block
message: DeleteHostKey — destructive operation
category: cloud
- name: aws-transfer-delete-profile
pattern: (?i)aws\s+delete\-profile\b
severity: warn
message: DeleteProfile — destructive operation
category: cloud
- name: aws-transfer-delete-server
pattern: (?i)aws\s+delete\-server\b
severity: block
message: DeleteServer — destructive operation
category: cloud
- name: aws-transfer-delete-ssh-public-key
pattern: (?i)aws\s+delete\-ssh\-public\-key\b
severity: block
message: DeleteSshPublicKey — destructive operation
category: cloud
- name: aws-transfer-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-transfer-delete-workflow
pattern: (?i)aws\s+delete\-workflow\b
severity: warn
message: DeleteWorkflow — destructive operation
category: cloud
- name: aws-translate-delete-parallel-data
pattern: (?i)aws\s+delete\-parallel\-data\b
severity: warn
message: DeleteParallelData — destructive operation
category: cloud
- name: aws-translate-delete-terminology
pattern: (?i)aws\s+delete\-terminology\b
severity: warn
message: DeleteTerminology — destructive operation
category: cloud
- name: aws-voice-id-delete-domain
pattern: (?i)aws\s+delete\-domain\b
severity: warn
message: DeleteDomain — destructive operation
category: cloud
- name: aws-voice-id-delete-fraudster
pattern: (?i)aws\s+delete\-fraudster\b
severity: warn
message: DeleteFraudster — destructive operation
category: cloud
- name: aws-voice-id-delete-speaker
pattern: (?i)aws\s+delete\-speaker\b
severity: warn
message: DeleteSpeaker — destructive operation
category: cloud
- name: aws-waf-regional-delete-byte-match-set
pattern: (?i)aws\s+delete\-byte\-match\-set\b
severity: warn
message: DeleteByteMatchSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-geo-match-set
pattern: (?i)aws\s+delete\-geo\-match\-set\b
severity: warn
message: DeleteGeoMatchSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-i-p-set
pattern: (?i)aws\s+delete\-i\-p\-set\b
severity: warn
message: DeleteIPSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-logging-configuration
pattern: (?i)aws\s+delete\-logging\-configuration\b
severity: warn
message: DeleteLoggingConfiguration — destructive operation
category: cloud
- name: aws-waf-regional-delete-permission-policy
pattern: (?i)aws\s+delete\-permission\-policy\b
severity: block
message: DeletePermissionPolicy — destructive operation
category: cloud
- name: aws-waf-regional-delete-rate-based-rule
pattern: (?i)aws\s+delete\-rate\-based\-rule\b
severity: warn
message: DeleteRateBasedRule — destructive operation
category: cloud
- name: aws-waf-regional-delete-regex-match-set
pattern: (?i)aws\s+delete\-regex\-match\-set\b
severity: warn
message: DeleteRegexMatchSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-regex-pattern-set
pattern: (?i)aws\s+delete\-regex\-pattern\-set\b
severity: warn
message: DeleteRegexPatternSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-waf-regional-delete-rule-group
pattern: (?i)aws\s+delete\-rule\-group\b
severity: block
message: DeleteRuleGroup — destructive operation
category: cloud
- name: aws-waf-regional-delete-size-constraint-set
pattern: (?i)aws\s+delete\-size\-constraint\-set\b
severity: warn
message: DeleteSizeConstraintSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-sql-injection-match-set
pattern: (?i)aws\s+delete\-sql\-injection\-match\-set\b
severity: warn
message: DeleteSqlInjectionMatchSet — destructive operation
category: cloud
- name: aws-waf-regional-delete-web-a-c-l
pattern: (?i)aws\s+delete\-web\-a\-c\-l\b
severity: warn
message: DeleteWebACL — destructive operation
category: cloud
- name: aws-waf-regional-delete-xss-match-set
pattern: (?i)aws\s+delete\-xss\-match\-set\b
severity: warn
message: DeleteXssMatchSet — destructive operation
category: cloud
- name: aws-waf-regional-disassociate-web-a-c-l
pattern: (?i)aws\s+disassociate\-web\-a\-c\-l\b
severity: warn
message: DisassociateWebACL — destructive operation
category: cloud
- name: aws-waf-delete-byte-match-set
pattern: (?i)aws\s+delete\-byte\-match\-set\b
severity: warn
message: DeleteByteMatchSet — destructive operation
category: cloud
- name: aws-waf-delete-geo-match-set
pattern: (?i)aws\s+delete\-geo\-match\-set\b
severity: warn
message: DeleteGeoMatchSet — destructive operation
category: cloud
- name: aws-waf-delete-i-p-set
pattern: (?i)aws\s+delete\-i\-p\-set\b
severity: warn
message: DeleteIPSet — destructive operation
category: cloud
- name: aws-waf-delete-logging-configuration
pattern: (?i)aws\s+delete\-logging\-configuration\b
severity: warn
message: DeleteLoggingConfiguration — destructive operation
category: cloud
- name: aws-waf-delete-permission-policy
pattern: (?i)aws\s+delete\-permission\-policy\b
severity: block
message: DeletePermissionPolicy — destructive operation
category: cloud
- name: aws-waf-delete-rate-based-rule
pattern: (?i)aws\s+delete\-rate\-based\-rule\b
severity: warn
message: DeleteRateBasedRule — destructive operation
category: cloud
- name: aws-waf-delete-regex-match-set
pattern: (?i)aws\s+delete\-regex\-match\-set\b
severity: warn
message: DeleteRegexMatchSet — destructive operation
category: cloud
- name: aws-waf-delete-regex-pattern-set
pattern: (?i)aws\s+delete\-regex\-pattern\-set\b
severity: warn
message: DeleteRegexPatternSet — destructive operation
category: cloud
- name: aws-waf-delete-rule
pattern: (?i)aws\s+delete\-rule\b
severity: warn
message: DeleteRule — destructive operation
category: cloud
- name: aws-waf-delete-rule-group
pattern: (?i)aws\s+delete\-rule\-group\b
severity: block
message: DeleteRuleGroup — destructive operation
category: cloud
- name: aws-waf-delete-size-constraint-set
pattern: (?i)aws\s+delete\-size\-constraint\-set\b
severity: warn
message: DeleteSizeConstraintSet — destructive operation
category: cloud
- name: aws-waf-delete-sql-injection-match-set
pattern: (?i)aws\s+delete\-sql\-injection\-match\-set\b
severity: warn
message: DeleteSqlInjectionMatchSet — destructive operation
category: cloud
- name: aws-waf-delete-web-a-c-l
pattern: (?i)aws\s+delete\-web\-a\-c\-l\b
severity: warn
message: DeleteWebACL — destructive operation
category: cloud
- name: aws-waf-delete-xss-match-set
pattern: (?i)aws\s+delete\-xss\-match\-set\b
severity: warn
message: DeleteXssMatchSet — destructive operation
category: cloud
- name: aws-wafv2-delete-firewall-manager-rule-groups
pattern: (?i)aws\s+delete\-firewall\-manager\-rule\-groups\b
severity: block
message: DeleteFirewallManagerRuleGroups — destructive operation
category: cloud
- name: aws-wafv2-delete-i-p-set
pattern: (?i)aws\s+delete\-i\-p\-set\b
severity: warn
message: DeleteIPSet — destructive operation
category: cloud
- name: aws-wafv2-delete-logging-configuration
pattern: (?i)aws\s+delete\-logging\-configuration\b
severity: warn
message: DeleteLoggingConfiguration — destructive operation
category: cloud
- name: aws-wafv2-delete-permission-policy
pattern: (?i)aws\s+delete\-permission\-policy\b
severity: block
message: DeletePermissionPolicy — destructive operation
category: cloud
- name: aws-wafv2-delete-regex-pattern-set
pattern: (?i)aws\s+delete\-regex\-pattern\-set\b
severity: warn
message: DeleteRegexPatternSet — destructive operation
category: cloud
- name: aws-wafv2-delete-rule-group
pattern: (?i)aws\s+delete\-rule\-group\b
severity: block
message: DeleteRuleGroup — destructive operation
category: cloud
- name: aws-wafv2-delete-web-a-c-l
pattern: (?i)aws\s+delete\-web\-a\-c\-l\b
severity: warn
message: DeleteWebACL — destructive operation
category: cloud
- name: aws-wafv2-disassociate-web-a-c-l
pattern: (?i)aws\s+disassociate\-web\-a\-c\-l\b
severity: warn
message: DisassociateWebACL — destructive operation
category: cloud
- name: aws-wafv2-generate-mobile-sdk-release-url
pattern: (?i)aws\s+generate\-mobile\-sdk\-release\-url\b
severity: warn
message: GenerateMobileSdkReleaseUrl — destructive operation
category: cloud
- name: aws-wellarchitected-delete-lens
pattern: (?i)aws\s+delete\-lens\b
severity: block
message: DeleteLens — destructive operation
category: cloud
- name: aws-wellarchitected-delete-lens-share
pattern: (?i)aws\s+delete\-lens\-share\b
severity: block
message: DeleteLensShare — destructive operation
category: cloud
- name: aws-wellarchitected-delete-workload
pattern: (?i)aws\s+delete\-workload\b
severity: block
message: DeleteWorkload — destructive operation
category: cloud
- name: aws-wellarchitected-delete-workload-share
pattern: (?i)aws\s+delete\-workload\-share\b
severity: block
message: DeleteWorkloadShare — destructive operation
category: cloud
- name: aws-wellarchitected-disassociate-lenses
pattern: (?i)aws\s+disassociate\-lenses\b
severity: warn
message: DisassociateLenses — destructive operation
category: cloud
- name: aws-wellarchitected-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-wisdom-delete-assistant
pattern: (?i)aws\s+delete\-assistant\b
severity: block
message: DeleteAssistant — destructive operation
category: cloud
- name: aws-wisdom-delete-assistant-association
pattern: (?i)aws\s+delete\-assistant\-association\b
severity: warn
message: DeleteAssistantAssociation — destructive operation
category: cloud
- name: aws-wisdom-delete-content
pattern: (?i)aws\s+delete\-content\b
severity: block
message: DeleteContent — destructive operation
category: cloud
- name: aws-wisdom-delete-knowledge-base
pattern: (?i)aws\s+delete\-knowledge\-base\b
severity: block
message: DeleteKnowledgeBase — destructive operation
category: cloud
- name: aws-wisdom-remove-knowledge-base-template-uri
pattern: (?i)aws\s+remove\-knowledge\-base\-template\-uri\b
severity: block
message: RemoveKnowledgeBaseTemplateUri — destructive operation
category: cloud
- name: aws-wisdom-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-workdocs-abort-document-version-upload
pattern: (?i)aws\s+abort\-document\-version\-upload\b
severity: block
message: AbortDocumentVersionUpload — destructive operation
category: cloud
- name: aws-workdocs-deactivate-user
pattern: (?i)aws\s+deactivate\-user\b
severity: block
message: DeactivateUser — destructive operation
category: cloud
- name: aws-workdocs-delete-comment
pattern: (?i)aws\s+delete\-comment\b
severity: block
message: DeleteComment — destructive operation
category: cloud
- name: aws-workdocs-delete-custom-metadata
pattern: (?i)aws\s+delete\-custom\-metadata\b
severity: block
message: DeleteCustomMetadata — destructive operation
category: cloud
- name: aws-workdocs-delete-document
pattern: (?i)aws\s+delete\-document\b
severity: block
message: DeleteDocument — destructive operation
category: cloud
- name: aws-workdocs-delete-document-version
pattern: (?i)aws\s+delete\-document\-version\b
severity: block
message: DeleteDocumentVersion — destructive operation
category: cloud
- name: aws-workdocs-delete-folder
pattern: (?i)aws\s+delete\-folder\b
severity: block
message: DeleteFolder — destructive operation
category: cloud
- name: aws-workdocs-delete-folder-contents
pattern: (?i)aws\s+delete\-folder\-contents\b
severity: block
message: DeleteFolderContents — destructive operation
category: cloud
- name: aws-workdocs-delete-labels
pattern: (?i)aws\s+delete\-labels\b
severity: warn
message: DeleteLabels — destructive operation
category: cloud
- name: aws-workdocs-delete-notification-subscription
pattern: (?i)aws\s+delete\-notification\-subscription\b
severity: warn
message: DeleteNotificationSubscription — destructive operation
category: cloud
- name: aws-workdocs-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: block
message: DeleteUser — destructive operation
category: cloud
- name: aws-workdocs-remove-all-resource-permissions
pattern: (?i)aws\s+remove\-all\-resource\-permissions\b
severity: warn
message: RemoveAllResourcePermissions — destructive operation
category: cloud
- name: aws-workdocs-remove-resource-permission
pattern: (?i)aws\s+remove\-resource\-permission\b
severity: warn
message: RemoveResourcePermission — destructive operation
category: cloud
- name: aws-worklink-delete-fleet
pattern: (?i)aws\s+delete\-fleet\b
severity: warn
message: DeleteFleet — destructive operation
category: cloud
- name: aws-worklink-disassociate-domain
pattern: (?i)aws\s+disassociate\-domain\b
severity: warn
message: DisassociateDomain — destructive operation
category: cloud
- name: aws-worklink-disassociate-website-authorization-provider
pattern: (?i)aws\s+disassociate\-website\-authorization\-provider\b
severity: block
message: DisassociateWebsiteAuthorizationProvider — destructive operation
category: cloud
- name: aws-worklink-disassociate-website-certificate-authority
pattern: (?i)aws\s+disassociate\-website\-certificate\-authority\b
severity: block
message: DisassociateWebsiteCertificateAuthority — destructive operation
category: cloud
- name: aws-worklink-revoke-domain-access
pattern: (?i)aws\s+revoke\-domain\-access\b
severity: warn
message: RevokeDomainAccess — destructive operation
category: cloud
- name: aws-worklink-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-workmail-cancel-mailbox-export-job
pattern: (?i)aws\s+cancel\-mailbox\-export\-job\b
severity: warn
message: CancelMailboxExportJob — destructive operation
category: cloud
- name: aws-workmail-delete-access-control-rule
pattern: (?i)aws\s+delete\-access\-control\-rule\b
severity: warn
message: DeleteAccessControlRule — destructive operation
category: cloud
- name: aws-workmail-delete-alias
pattern: (?i)aws\s+delete\-alias\b
severity: warn
message: DeleteAlias — destructive operation
category: cloud
- name: aws-workmail-delete-availability-configuration
pattern: (?i)aws\s+delete\-availability\-configuration\b
severity: warn
message: DeleteAvailabilityConfiguration — destructive operation
category: cloud
- name: aws-workmail-delete-email-monitoring-configuration
pattern: (?i)aws\s+delete\-email\-monitoring\-configuration\b
severity: warn
message: DeleteEmailMonitoringConfiguration — destructive operation
category: cloud
- name: aws-workmail-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-workmail-delete-impersonation-role
pattern: (?i)aws\s+delete\-impersonation\-role\b
severity: block
message: DeleteImpersonationRole — destructive operation
category: cloud
- name: aws-workmail-delete-mailbox-permissions
pattern: (?i)aws\s+delete\-mailbox\-permissions\b
severity: warn
message: DeleteMailboxPermissions — destructive operation
category: cloud
- name: aws-workmail-delete-mobile-device-access-override
pattern: (?i)aws\s+delete\-mobile\-device\-access\-override\b
severity: warn
message: DeleteMobileDeviceAccessOverride — destructive operation
category: cloud
- name: aws-workmail-delete-mobile-device-access-rule
pattern: (?i)aws\s+delete\-mobile\-device\-access\-rule\b
severity: warn
message: DeleteMobileDeviceAccessRule — destructive operation
category: cloud
- name: aws-workmail-delete-organization
pattern: (?i)aws\s+delete\-organization\b
severity: warn
message: DeleteOrganization — destructive operation
category: cloud
- name: aws-workmail-delete-resource
pattern: (?i)aws\s+delete\-resource\b
severity: warn
message: DeleteResource — destructive operation
category: cloud
- name: aws-workmail-delete-retention-policy
pattern: (?i)aws\s+delete\-retention\-policy\b
severity: block
message: DeleteRetentionPolicy — destructive operation
category: cloud
- name: aws-workmail-delete-user
pattern: (?i)aws\s+delete\-user\b
severity: warn
message: DeleteUser — destructive operation
category: cloud
- name: aws-workmail-deregister-from-work-mail
pattern: (?i)aws\s+deregister\-from\-work\-mail\b
severity: warn
message: DeregisterFromWorkMail — destructive operation
category: cloud
- name: aws-workmail-deregister-mail-domain
pattern: (?i)aws\s+deregister\-mail\-domain\b
severity: warn
message: DeregisterMailDomain — destructive operation
category: cloud
- name: aws-workmail-disassociate-delegate-from-resource
pattern: (?i)aws\s+disassociate\-delegate\-from\-resource\b
severity: warn
message: DisassociateDelegateFromResource — destructive operation
category: cloud
- name: aws-workmail-disassociate-member-from-group
pattern: (?i)aws\s+disassociate\-member\-from\-group\b
severity: block
message: DisassociateMemberFromGroup — destructive operation
category: cloud
- name: aws-workmail-reset-password
pattern: (?i)aws\s+reset\-password\b
severity: warn
message: ResetPassword — destructive operation
category: cloud
- name: aws-workspaces-web-delete-browser-settings
pattern: (?i)aws\s+delete\-browser\-settings\b
severity: block
message: DeleteBrowserSettings — destructive operation
category: cloud
- name: aws-workspaces-web-delete-identity-provider
pattern: (?i)aws\s+delete\-identity\-provider\b
severity: block
message: DeleteIdentityProvider — destructive operation
category: cloud
- name: aws-workspaces-web-delete-network-settings
pattern: (?i)aws\s+delete\-network\-settings\b
severity: block
message: DeleteNetworkSettings — destructive operation
category: cloud
- name: aws-workspaces-web-delete-portal
pattern: (?i)aws\s+delete\-portal\b
severity: block
message: DeletePortal — destructive operation
category: cloud
- name: aws-workspaces-web-delete-trust-store
pattern: (?i)aws\s+delete\-trust\-store\b
severity: block
message: DeleteTrustStore — destructive operation
category: cloud
- name: aws-workspaces-web-delete-user-access-logging-settings
pattern: (?i)aws\s+delete\-user\-access\-logging\-settings\b
severity: warn
message: DeleteUserAccessLoggingSettings — destructive operation
category: cloud
- name: aws-workspaces-web-delete-user-settings
pattern: (?i)aws\s+delete\-user\-settings\b
severity: block
message: DeleteUserSettings — destructive operation
category: cloud
- name: aws-workspaces-web-disassociate-browser-settings
pattern: (?i)aws\s+disassociate\-browser\-settings\b
severity: block
message: DisassociateBrowserSettings — destructive operation
category: cloud
- name: aws-workspaces-web-disassociate-network-settings
pattern: (?i)aws\s+disassociate\-network\-settings\b
severity: block
message: DisassociateNetworkSettings — destructive operation
category: cloud
- name: aws-workspaces-web-disassociate-trust-store
pattern: (?i)aws\s+disassociate\-trust\-store\b
severity: block
message: DisassociateTrustStore — destructive operation
category: cloud
- name: aws-workspaces-web-disassociate-user-access-logging-settings
pattern: (?i)aws\s+disassociate\-user\-access\-logging\-settings\b
severity: warn
message: DisassociateUserAccessLoggingSettings — destructive operation
category: cloud
- name: aws-workspaces-web-disassociate-user-settings
pattern: (?i)aws\s+disassociate\-user\-settings\b
severity: block
message: DisassociateUserSettings — destructive operation
category: cloud
- name: aws-workspaces-web-untag-resource
pattern: (?i)aws\s+untag\-resource\b
severity: warn
message: UntagResource — destructive operation
category: cloud
- name: aws-workspaces-delete-client-branding
pattern: (?i)aws\s+delete\-client\-branding\b
severity: warn
message: DeleteClientBranding — destructive operation
category: cloud
- name: aws-workspaces-delete-connect-client-add-in
pattern: (?i)aws\s+delete\-connect\-client\-add\-in\b
severity: warn
message: DeleteConnectClientAddIn — destructive operation
category: cloud
- name: aws-workspaces-delete-connection-alias
pattern: (?i)aws\s+delete\-connection\-alias\b
severity: warn
message: DeleteConnectionAlias — destructive operation
category: cloud
- name: aws-workspaces-delete-ip-group
pattern: (?i)aws\s+delete\-ip\-group\b
severity: block
message: DeleteIpGroup — destructive operation
category: cloud
- name: aws-workspaces-delete-tags
pattern: (?i)aws\s+delete\-tags\b
severity: warn
message: DeleteTags — destructive operation
category: cloud
- name: aws-workspaces-delete-workspace-bundle
pattern: (?i)aws\s+delete\-workspace\-bundle\b
severity: warn
message: DeleteWorkspaceBundle — destructive operation
category: cloud
- name: aws-workspaces-delete-workspace-image
pattern: (?i)aws\s+delete\-workspace\-image\b
severity: warn
message: DeleteWorkspaceImage — destructive operation
category: cloud
- name: aws-workspaces-deregister-workspace-directory
pattern: (?i)aws\s+deregister\-workspace\-directory\b
severity: warn
message: DeregisterWorkspaceDirectory — destructive operation
category: cloud
- name: aws-workspaces-disassociate-connection-alias
pattern: (?i)aws\s+disassociate\-connection\-alias\b
severity: warn
message: DisassociateConnectionAlias — destructive operation
category: cloud
- name: aws-workspaces-disassociate-ip-groups
pattern: (?i)aws\s+disassociate\-ip\-groups\b
severity: block
message: DisassociateIpGroups — destructive operation
category: cloud
- name: aws-workspaces-revoke-ip-rules
pattern: (?i)aws\s+revoke\-ip\-rules\b
severity: warn
message: RevokeIpRules — destructive operation
category: cloud
- name: aws-workspaces-terminate-workspaces
pattern: (?i)aws\s+terminate\-workspaces\b
severity: warn
message: TerminateWorkspaces — destructive operation
category: cloud
- name: aws-xray-delete-group
pattern: (?i)aws\s+delete\-group\b
severity: block
message: DeleteGroup — destructive operation
category: cloud
- name: aws-xray-delete-resource-policy
pattern: (?i)aws\s+delete\-resource\-policy\b
severity: block
message: DeleteResourcePolicy — destructive operation
category: cloud
- name: aws-xray-delete-sampling-rule
pattern: (?i)aws\s+delete\-sampling\-rule\b
severity: warn
message: DeleteSamplingRule — destructive operation
category: cloud