Apply the rules to Ingress and Egress resources

src/cfnlint/data/DownloadsMetadata/23be708e675cb6098b08969e4dbbc3f54cfc32461d10e077e7e5de1fc25d8b8f.meta.json

@@ -1 +1 @@
-{"etag": "\"abbad2d61bce41659bca87b27e9ee78f\"", "url": "https://schema.cloudformation.us-gov-west-1.amazonaws.com/CloudformationSchema.zip"}
+{"etag": "\"176f4e2894ec2acb6290a05a269e6140\"", "url": "https://schema.cloudformation.us-gov-west-1.amazonaws.com/CloudformationSchema.zip"}

src/cfnlint/data/schemas/patches/extensions/all/aws_ec2_securitygroupegress/cfn_schemas.json

@@ -0,0 +1,11 @@
+[
+ {
+  "op": "add",
+  "path": "/cfnSchema",
+  "value": [
+   "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+   "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+   "aws_ec2_securitygroup/all_to_and_from_ports"
+  ]
+ }
+]

src/cfnlint/data/schemas/patches/extensions/all/aws_ec2_securitygroupingress/cfn_schemas.json

@@ -0,0 +1,11 @@
+[
+ {
+  "op": "add",
+  "path": "/cfnSchema",
+  "value": [
+   "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+   "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+   "aws_ec2_securitygroup/all_to_and_from_ports"
+  ]
+ }
+]

src/cfnlint/data/schemas/providers/us_east_1/aws-ec2-securitygroup.json

@@ -59,14 +59,6 @@
     "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
     "aws_ec2_securitygroup/all_to_and_from_ports"
    ],
-   "dependencies": {
-    "FromPort": [
-     "ToPort"
-    ],
-    "ToPort": [
-     "FromPort"
-    ]
-   },
    "properties": {
     "CidrIp": {
      "type": "string"

src/cfnlint/data/schemas/providers/us_east_1/aws-ec2-securitygroupegress.json

@@ -1,5 +1,10 @@
 {
  "additionalProperties": false,
+ "cfnSchema": [
+  "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+  "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+  "aws_ec2_securitygroup/all_to_and_from_ports"
+ ],
  "createOnlyProperties": [
   "/properties/IpProtocol",
   "/properties/DestinationSecurityGroupId",

src/cfnlint/data/schemas/providers/us_east_1/aws-ec2-securitygroupingress.json

@@ -1,5 +1,10 @@
 {
  "additionalProperties": false,
+ "cfnSchema": [
+  "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+  "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+  "aws_ec2_securitygroup/all_to_and_from_ports"
+ ],
  "createOnlyProperties": [
   "/properties/GroupName",
   "/properties/IpProtocol",

src/cfnlint/data/schemas/providers/us_gov_east_1/aws-ec2-securitygroupegress.json

@@ -1,5 +1,10 @@
 {
  "additionalProperties": false,
+ "cfnSchema": [
+  "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+  "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+  "aws_ec2_securitygroup/all_to_and_from_ports"
+ ],
  "createOnlyProperties": [
   "/properties/IpProtocol",
   "/properties/DestinationSecurityGroupId",

src/cfnlint/data/schemas/providers/us_gov_west_1/aws-ec2-securitygroupegress.json

@@ -1,5 +1,10 @@
 {
  "additionalProperties": false,
+ "cfnSchema": [
+  "aws_ec2_securitygroup/protocols_and_port_ranges_include",
+  "aws_ec2_securitygroup/protocols_and_port_ranges_exclude",
+  "aws_ec2_securitygroup/all_to_and_from_ports"
+ ],
  "createOnlyProperties": [
   "/properties/IpProtocol",
   "/properties/DestinationSecurityGroupId",

test/unit/module/cfn_yaml/test_yaml.py

@@ -26,7 +26,7 @@ def setUp(self):
             },
             "generic_bad": {
                 "filename": "test/fixtures/templates/bad/generic.yaml",
-                "failures": 33,
+                "failures": 34,
             },
         }
 

test/unit/module/test_rules_collections.py

@@ -53,7 +53,7 @@ def test_fail_run(self):
         filename = "test/fixtures/templates/bad/generic.yaml"
         template = cfnlint.decode.cfn_yaml.load(filename)
         cfn = Template(filename, template, ["us-east-1"])
-        expected_err_count = 36
+        expected_err_count = 37
         matches = []
         matches.extend(self.rules.run(filename, cfn))
         assert (