feat(compliance): Loader and Execute (#1465)

providers/aws/services/apigateway/apigateway_authorizers_enabled/apigateway_authorizers_enabled.metadata.json

@@ -2,7 +2,9 @@
   "Provider": "aws",
   "CheckID": "apigateway_authorizers_enabled",
   "CheckTitle": "Check if API Gateway has configured authorizers.",
-  "CheckType": ["IAM"],
+  "CheckType": [
+    "IAM"
+  ],
   "ServiceName": "apigateway",
   "SubServiceName": "rest_api",
   "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
@@ -30,6 +32,5 @@
   },
   "DependsOn": [],
   "RelatedTo": [],
-  "Notes": "",
-  "Compliance": []
+  "Notes": ""
 }

providers/aws/services/apigateway/apigateway_authorizers_enabled/apigateway_authorizers_enabled.py

@@ -6,7 +6,7 @@ class apigateway_authorizers_enabled(Check):
     def execute(self):
         findings = []
         for rest_api in apigateway_client.rest_apis:
-            report = Check_Report(self.metadata)
+            report = Check_Report(self.metadata())
             report.region = rest_api.region
             if rest_api.authorizer:
                 report.status = "PASS"

providers/aws/services/apigateway/apigateway_client_certificate_enabled/apigateway_client_certificate_enabled.metadata.json

@@ -2,7 +2,9 @@
   "Provider": "aws",
   "CheckID": "apigateway_client_certificate_enabled",
   "CheckTitle": "Check if API Gateway has client certificate enabled to access your backend endpoint.",
-  "CheckType": ["Data Protection"],
+  "CheckType": [
+    "Data Protection"
+  ],
   "ServiceName": "apigateway",
   "SubServiceName": "rest_api",
   "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
@@ -30,6 +32,5 @@
   },
   "DependsOn": [],
   "RelatedTo": [],
-  "Notes": "",
-  "Compliance": []
+  "Notes": ""
 }

providers/aws/services/apigateway/apigateway_client_certificate_enabled/apigateway_client_certificate_enabled.py

@@ -7,7 +7,7 @@ class apigateway_client_certificate_enabled(Check):
         findings = []
         for rest_api in apigateway_client.rest_apis:
             for stage in rest_api.stages:
-                report = Check_Report(self.metadata)
+                report = Check_Report(self.metadata())
                 if stage.client_certificate:
                     report.status = "PASS"
                     report.status_extended = f"API Gateway {rest_api.name} ID {rest_api.id} in stage {stage.name} has client certificate enabled."

providers/aws/services/apigateway/apigateway_endpoint_public/apigateway_endpoint_public.metadata.json

@@ -2,7 +2,9 @@
   "Provider": "aws",
   "CheckID": "apigateway_endpoint_public",
   "CheckTitle": "Check if API Gateway endpoint is public or private.",
-  "CheckType": ["Infrastructure Security"],
+  "CheckType": [
+    "Infrastructure Security"
+  ],
   "ServiceName": "apigateway",
   "SubServiceName": "rest_api",
   "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
@@ -30,6 +32,5 @@
   },
   "DependsOn": [],
   "RelatedTo": [],
-  "Notes": "",
-  "Compliance": []
+  "Notes": ""
 }

providers/aws/services/apigateway/apigateway_endpoint_public/apigateway_endpoint_public.py

@@ -6,7 +6,7 @@ class apigateway_endpoint_public(Check):
     def execute(self):
         findings = []
         for rest_api in apigateway_client.rest_apis:
-            report = Check_Report(self.metadata)
+            report = Check_Report(self.metadata())
             report.region = rest_api.region
             if rest_api.public_endpoint:
                 report.status = "FAIL"

providers/aws/services/apigateway/apigateway_logging_enabled/apigateway_logging_enabled.metadata.json

@@ -2,7 +2,9 @@
   "Provider": "aws",
   "CheckID": "apigateway_logging_enabled",
   "CheckTitle": "Check if API Gateway has logging enabled.",
-  "CheckType": ["Logging and Monitoring"],
+  "CheckType": [
+    "Logging and Monitoring"
+  ],
   "ServiceName": "apigateway",
   "SubServiceName": "rest_api",
   "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
@@ -30,6 +32,5 @@
   },
   "DependsOn": [],
   "RelatedTo": [],
-  "Notes": "",
-  "Compliance": []
+  "Notes": ""
 }

providers/aws/services/apigateway/apigateway_logging_enabled/apigateway_logging_enabled.py

@@ -6,7 +6,7 @@ class apigateway_logging_enabled(Check):
     def execute(self):
         findings = []
         for rest_api in apigateway_client.rest_apis:
-            report = Check_Report(self.metadata)
+            report = Check_Report(self.metadata())
             report.region = rest_api.region
             for stage in rest_api.stages:
                 if stage.logging:

providers/aws/services/apigateway/apigateway_waf_acl_attached/apigateway_waf_acl_attached.metadata.json

@@ -2,7 +2,9 @@
   "Provider": "aws",
   "CheckID": "apigateway_waf_acl_attached",
   "CheckTitle": "Check if API Gateway has a WAF ACL attached.",
-  "CheckType": ["Infrastructure Security"],
+  "CheckType": [
+    "Infrastructure Security"
+  ],
   "ServiceName": "apigateway",
   "SubServiceName": "rest_api",
   "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
@@ -30,6 +32,5 @@
   },
   "DependsOn": [],
   "RelatedTo": [],
-  "Notes": "",
-  "Compliance": []
+  "Notes": ""
 }

providers/aws/services/apigateway/apigateway_waf_acl_attached/apigateway_waf_acl_attached.py

@@ -6,7 +6,7 @@ class apigateway_waf_acl_attached(Check):
     def execute(self):
         findings = []
         for rest_api in apigateway_client.rest_apis:
-            report = Check_Report(self.metadata)
+            report = Check_Report(self.metadata())
             report.region = rest_api.region
             for stage in rest_api.stages:
                 if stage.waf: