Controls with Inline Policy

id: aws_access_keys_during_initial_iam_user_setup  # Unique ID 
title: Access Keys During Initial IAM User Setup   # Descriptive title
description: Prevent access key creation during initial IAM user setup. 
integration_type:
  - aws_cloud_account                   # Platform this Control applies to
parameters: []
policy:
  language: sql               # Policy language (e.g., "sql", "rego")
  primary_resource: aws_iam_credential_report 
  definition: |
    SELECT
      user_name AS resource, 
      ...
      CASE 
        WHEN <condition> THEN 'alarm'
        ELSE 'ok'
      END AS status,
      ...
    FROM
      aws_iam_credential_report
severity: medium               # Impact level (Critical, High, Medium, Low, None)
tags: 
  platform_score_cloud_service_name:
    - AWS Identity and Access Management (IAM)