fix: ci build (#212)

* init cicd fix

* bump version

.github/workflows/publish.yml

@@ -12,7 +12,7 @@ env:
   ECR_REGISTRY: ${{ secrets.ECR_REGISTRY }}
   ECR_REPOSITORY: ${{ secrets.ECR_REPOSITORY }}
   ## publish version for docker image
-  VERSION: "1.0.0"
+  VERSION: "1.0.1"
 
 jobs:
   testRules:

docker/Dockerfile

@@ -1,8 +1,11 @@
 
-FROM rust:alpine
-
-RUN apk add --no-cache cargo tree
-RUN cargo install cfn-guard
-ENV PATH "/root/.cargo/bin:${PATH}"
+FROM ubuntu:22.10
+RUN apt-get update && \
+  apt-get install -y \
+  curl && \
+  apt-get clean && \
+  rm -rf /var/lib/apt/lists/*
+RUN curl --proto '=https' --tlsv1.2 -sSf https://raw.githubusercontent.com/aws-cloudformation/cloudformation-guard/main/install-guard.sh | sh
+ENV PATH "${PATH}:~/.guard/bin"
 
 COPY ./output/ /

mappings/build.py

@@ -55,6 +55,7 @@ def main(directory):
         output_file_name = "./docker/output/" + rule_set + ".guard"
         outputfile = open(output_file_name, "a")
         outputfile.write(re.sub('<<', custom_message, inputfile, flags=re.M))
+        outputfile.write("\n")
         outputfile.close()
     # Closing file
     build_file_contents.close()

rules/aws/amazon_s3/s3_bucket_policy_grantee_check.guard

@@ -1,4 +1,4 @@
 ## Config Rule Name : s3-bucket-policy-grantee-check
 ## Config Rule URL: https://docs.aws.amazon.com/config/latest/developerguide/s3-bucket-policy-grantee-check.html
 
-# Rule Intent: Checks that the access granted by the Amazon S3 bucket is restricted by any of the AWS principals, federated users, service principals, IP addresses, or VPCs that you provide.
+# Rule Intent: Checks that the access granted by the Amazon S3 bucket is restricted by any of the AWS principals, federated users, service principals, IP addresses, or VPCs that you provide.