Hi all, I'm currently writing a CrossGuard policy and was wondering if it's possible to check if all API Gateways have a Web ACL Association? The

WebAclAssociation

resource requires ARNs which can't be manually set from both the APIGW and Web ACL. Not sure the best way to go about this (working in TypeScript) or if it's possible. I'd be wanting to test the policy with

assertNoStackViolations