"""
Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
SPDX-License-Identifier: MIT-0
"""
from cfnlint.helpers import LIMITS
from cfnlint.rules import CloudFormationLintRule, RuleMatch
class LimitValue(CloudFormationLintRule):
"""Check maximum Parameter value size limit"""
id = "I2012"
shortdesc = "Parameter value limit"
description = "Check if the size of Parameter values in the template is approaching the upper limit"
source_url = "https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cloudformation-limits.html"
tags = ["parameters", "limits"]
def match(self, cfn):
matches = []
value_limit = LIMITS["Parameters"]["value"]
# There are no real "Values" in the template, check the "meta" information
# (Default, AllowedValue and MaxLength) against the limit
for paramname, paramvalue in cfn.get_parameters().items():
# Check Default value
default_value = paramvalue.get("Default")
if isinstance(default_value, (str)):
if (
LIMITS["threshold"] * value_limit
< len(default_value)
<= value_limit
):
path = ["Parameters", paramname, "Default"]
message = "The length of parameter default value ({0}) is approaching the limit ({1})"
matches.append(
RuleMatch(path, message.format(len(default_value), value_limit))
)
# Check MaxLength parameters
max_length = paramvalue.get("MaxLength", 0)
if isinstance(max_length, (str)):
try:
max_length = int(max_length)
except ValueError:
# Configuration errors are not the responsibility of this rule
max_length = 0
if isinstance(max_length, int):
if LIMITS["threshold"] * value_limit < max_length <= value_limit:
path = ["Parameters", paramname, "MaxLength"]
message = "The MaxLength of parameter ({0}) is approaching the limit ({1})"
matches.append(
RuleMatch(path, message.format(max_length, value_limit))
)
# Check AllowedValues
allowed_values = paramvalue.get("AllowedValues", [])
for allowed_value in allowed_values:
if isinstance(allowed_value, str):
if (
LIMITS["threshold"] * value_limit
< len(allowed_value)
<= value_limit
):
path = ["Parameters", paramname, "AllowedValues"]
message = "The length of parameter allowed value ({0}) is approaching the limit ({1})"
matches.append(
RuleMatch(
path, message.format(len(allowed_value), value_limit)
)
)
return matches
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| __pycache__ | Folder | 0755 |
|
|
| AllowedPattern.py | File | 7.98 KB | 0644 |
|
| AllowedValue.py | File | 7.12 KB | 0644 |
|
| ApproachingLimitName.py | File | 691 B | 0644 |
|
| ApproachingLimitNumber.py | File | 695 B | 0644 |
|
| ApproachingLimitValue.py | File | 3.09 KB | 0644 |
|
| Configuration.py | File | 6.65 KB | 0644 |
|
| Default.py | File | 5.51 KB | 0644 |
|
| DefaultRef.py | File | 986 B | 0644 |
|
| LambdaMemorySize.py | File | 2.45 KB | 0644 |
|
| LimitName.py | File | 709 B | 0644 |
|
| LimitNumber.py | File | 697 B | 0644 |
|
| LimitValue.py | File | 2.82 KB | 0644 |
|
| Name.py | File | 698 B | 0644 |
|
| Types.py | File | 1.24 KB | 0644 |
|
| Used.py | File | 1.82 KB | 0644 |
|
| __init__.py | File | 106 B | 0644 |
|