AWS::Config::ConfigRule:

Properties:
  ConfigRuleName: |
    "rule"
  Description: |
    "desc"
  InputParameters: |
    {
      "parameter-name" => "parameter-value"
    }
  MaximumExecutionFrequency: |
    "One_Hour | Three_Hours | Six_Hours | Twelve_Hours | TwentyFour_Hours"
  Scope: |
    {
      "ComplianceResourceId" => "The ID of an AWS resource that you want AWS Config to evaluate against a rule. If you specify an ID, you must also specify a resource type for the ComplianceResourceTypes property.",
      "ComplianceResourceTypes" => ["The types of AWS resources that you want AWS Config to evaluate against the rule. If you specify the ComplianceResourceId property, specify only one resource type."],
      "TagKey" => "The tag key that is applied to the AWS resources that you want AWS Config to evaluate against the rule.",
      "TagValue" => "The tag value that is applied to the AWS resources that you want AWS Config to evaluate against the rule."
    }
  Source: |
    {
      "Owner" => "CUSTOM_LAMBDA | AWS",
      "SourceDetails" => [{
        "EventSource" => "aws.config",
        "MessageType" => "ConfigurationItemChangeNotification|OversizedConfigurationItemChangeNotification|ScheduledNotification|ConfigurationSnapshotDeliveryCompleted"
      }],
      "SourceIdentifier" => "For AWS managed rules, the identifier of the rule. For customer managed rules, the Amazon Resource Name (ARN) of the rule's Lambda function."
    }