🧠 AWS IAM Role unused - prod.logic.yaml 🟢

Contextual name: 🧠 prod.logic.yaml 🟢
ID: /ce/ca/aws/iam/role-unused/prod.logic.yaml
Located in: 📝 AWS IAM Role unused 🟢

Flags

Input Type

	Type	API Name	Extracts	Extract Files	Logic Files
🔒	📕 AWS IAM Role	`CA10__CaAwsRole__c`	1	1	1

Uses

🔌 AWS IAM Role - object.extracts.yaml
🧪 test-data.json

Test Results 🟢

Generated at: 2025-04-24T23:44:56.574547285Z Open

Result	Id	Condition Index	Condition Text	Runtime Error
🟢	111	✔️ `99`	✔️ `isDisappeared(CA10__disappearanceTime__c)`	✔️ `null`
🟢	112	✔️ `199`	✔️ `extract('CA10__lastUsedDate__c').isEmpty()`	✔️ `null`
🟢	113	✔️ `299`	✔️ `extract('CA10__lastUsedDate__c').beyondLastDays(90)`	✔️ `null`
🟢	114	✔️ `300`	✔️ `otherwise`	✔️ `null`

Generation

	File	MD5
Open	`/ce/ca/aws/iam/role-unused/policy.yaml`	`645A8526A392E1AD10F10BB04BCBEE0B`
Open	`/ce/ca/aws/iam/role-unused/prod.logic.yaml`	`128FD18CA80CEA117C0110A736B4D386`
Open	`/ce/ca/aws/iam/role-unused/test-data.json`	`C701129617ACE393E12B504C4653D251`
Open	`/types/CA10__CaAwsRole__c/object.extracts.yaml`	`25AA041C020A86410A029D7DB711150E`

Generate FULL script

java -jar repo-manager.jar policies generate FULL /ce/ca/aws/iam/role-unused/prod.logic.yaml

Generate DEBUG script

java -jar repo-manager.jar policies generate DEBUG /ce/ca/aws/iam/role-unused/prod.logic.yaml

Generate CAPTURE_TEST_DATA script

java -jar repo-manager.jar policies generate CAPTURE_TEST_DATA /ce/ca/aws/iam/role-unused/prod.logic.yaml

Generate TESTS script

java -jar repo-manager.jar policies generate TESTS /ce/ca/aws/iam/role-unused/prod.logic.yaml

Execute tests

java -jar repo-manager.jar policies test /ce/ca/aws/iam/role-unused/prod.logic.yaml

Content

Open File

---
inputType: CA10__CaAwsRole__c
testData:
  - file: "test-data.json"
importExtracts:
  - file: "/types/CA10__CaAwsRole__c/object.extracts.yaml"
conditions:
  - status: INCOMPLIANT
    currentStateMessage: "Role has not been used within the tracking period and meets the unused criteria"
    remediationMessage: "Delete unused role"
    check:
      IS_EMPTY:
        arg:
          EXTRACT: "CA10__lastUsedDate__c"
  - status: INCOMPLIANT
    currentStateMessage: "Role has not been used in the past 90 days"
    remediationMessage: "Delete unused role"
    check:
      IS_BEYOND_LAST_DAYS:
        offsetDays: 90
        arg:
          EXTRACT: "CA10__lastUsedDate__c"
otherwise:
  status: COMPLIANT
  currentStateMessage: "The role was used."

Flags​

Input Type​

Uses​

Test Results 🟢​

Generation​

Generate FULL script​

Generate DEBUG script​

Generate CAPTURE_TEST_DATA script​

Generate TESTS script​

Execute tests​

Content​

Flags

Input Type

Uses

Test Results 🟢

Generation

Generate FULL script

Generate DEBUG script

Generate CAPTURE_TEST_DATA script

Generate TESTS script

Execute tests

Content