├── .actrc ├── .editorconfig ├── .env.development ├── .env.production ├── .gitattributes ├── .github ├── PULL_REQUEST_TEMPLATE ├── dependabot.yml ├── exclude-patterns.txt ├── release-drafter.yml └── workflows │ ├── bump-version.yml │ ├── nodejs-test.yml │ ├── publish.yml │ ├── release-drafter.yml │ ├── security.yml │ ├── test.yml │ └── update-bundle-report.yml ├── .gitignore ├── .nvmrc ├── .pre-commit-config.yaml ├── .python-version ├── .readthedocs.yml ├── CHANGELOG.md ├── CODEOWNERS ├── CODE_OF_CONDUCT.md ├── Dockerfile ├── HomebrewFormula └── cloudsplaining.rb ├── LICENSE ├── README.md ├── SECURITY.md ├── babel.config.js ├── cloudsplaining ├── __init__.py ├── bin │ ├── __init__.py │ ├── cli.py │ └── version.py ├── command │ ├── __init__.py │ ├── create_exclusions_file.py │ ├── create_multi_account_config_file.py │ ├── download.py │ ├── expand_policy.py │ ├── scan.py │ ├── scan_multi_account.py │ └── scan_policy_file.py ├── output │ ├── __init__.py │ ├── dist │ │ ├── index.html │ │ └── js │ │ │ ├── chunk-vendors.js │ │ │ └── index.js │ ├── policy_finding.py │ ├── public │ │ └── index.html │ ├── report.py │ ├── src │ │ ├── App.vue │ │ ├── assets │ │ │ ├── 1-overview.md │ │ │ ├── 2-triage-guidance.md │ │ │ ├── 3-remediation-guidance.md │ │ │ ├── 4-validation.md │ │ │ ├── definition-assumable-by-compute-service.md │ │ │ ├── definition-credentials-exposure.md │ │ │ ├── definition-data-exfiltration.md │ │ │ ├── definition-infrastructure-modification.md │ │ │ ├── definition-privilege-escalation.md │ │ │ ├── definition-resource-exposure.md │ │ │ ├── definition-service-wildcard.md │ │ │ ├── glossary.md │ │ │ ├── how-do-i-validate-results.md │ │ │ ├── identifying-false-positives.md │ │ │ ├── logo.png │ │ │ ├── summary.md │ │ │ └── what-should-i-do.md │ │ ├── components │ │ │ ├── Appendix.vue │ │ │ ├── Button.vue │ │ │ ├── Glossary.vue │ │ │ ├── Guidance.vue │ │ │ ├── InlinePolicies.vue │ │ │ ├── LinkToFinding.vue │ │ │ ├── ManagedPolicies.vue │ │ │ ├── PolicyTable.vue │ │ │ ├── Principals.vue │ │ │ ├── ReportMetadata.vue │ │ │ ├── Summary.vue │ │ │ ├── TaskTable.vue │ │ │ ├── charts │ │ │ │ └── SummaryFindings.vue │ │ │ ├── finding │ │ │ │ ├── AssumeRoleDetails.vue │ │ │ │ ├── FindingCard.vue │ │ │ │ ├── FindingDetails.vue │ │ │ │ ├── PolicyDocumentDetails.vue │ │ │ │ ├── PrivilegeEscalationDetails.vue │ │ │ │ ├── PrivilegeEscalationFormat.vue │ │ │ │ ├── RiskAlertIndicators.vue │ │ │ │ └── StandardRiskDetails.vue │ │ │ └── principals │ │ │ │ ├── PrincipalMetadata.vue │ │ │ │ └── RisksPerPrincipal.vue │ │ ├── main.js │ │ ├── routes │ │ │ └── routes.js │ │ ├── sampleData.js │ │ ├── test │ │ │ ├── groups-test.js │ │ │ ├── inline-policies-test.js │ │ │ ├── managed-policies-test.js │ │ │ ├── other-test.js │ │ │ ├── principals-test.js │ │ │ ├── roles-test.js │ │ │ └── task-table-test.js │ │ ├── util │ │ │ ├── glossary.js │ │ │ ├── groups.js │ │ │ ├── inline-policies.js │ │ │ ├── managed-policies.js │ │ │ ├── other.js │ │ │ ├── principals.js │ │ │ ├── roles.js │ │ │ └── task-table.js │ │ └── views │ │ │ ├── Appendices.vue │ │ │ ├── AwsPolicies.vue │ │ │ ├── CustomerPolicies.vue │ │ │ ├── Guidance.vue │ │ │ ├── IamPrincipals.vue │ │ │ ├── InlinePolicies.vue │ │ │ └── Summary.vue │ └── template.html ├── py.typed ├── scan │ ├── __init__.py │ ├── assume_role_policy_document.py │ ├── authorization_details.py │ ├── group_details.py │ ├── inline_policy.py │ ├── managed_policy_detail.py │ ├── policy_document.py │ ├── resource_policy_document.py │ ├── role_details.py │ ├── statement_detail.py │ └── user_details.py └── shared │ ├── __init__.py │ ├── aws_login.py │ ├── constants.py │ ├── default-exclusions.yml │ ├── exceptions.py │ ├── exclusions.py │ ├── multi-account-config.yml │ ├── template_config.py │ ├── utils.py │ └── validation.py ├── docs ├── _images │ ├── cloudsplaining-report.gif │ ├── report-aws-managed-details.png │ ├── report-customer-managed-details.png │ ├── report-customer-managed-summary.png │ ├── report-overview.png │ └── scan-multiple-accounts.png ├── appendices │ ├── comparison-to-other-tools.md │ ├── faq.md │ └── jira-ticket-automation.md ├── contributing │ ├── contributing.md │ ├── documentation.md │ ├── javascript.md │ ├── python.md │ ├── release-drafter.md │ ├── report.md │ ├── results-json-schema.md │ ├── testing.md │ └── versioning.md ├── example-report.html ├── glossary │ ├── credentials-exposure.md │ ├── data-exfiltration.md │ ├── infrastructure-modification.md │ ├── privilege-escalation.md │ ├── resource-exposure.md │ ├── roles-assumable-by-any-principal-with-conditions.md │ ├── roles-assumable-by-any-principal.md │ ├── roles-assumable-by-compute-service.md │ ├── roles-assumable-by-cross-account-principal.md │ ├── service-wildcard.md │ └── trust-policy.md ├── index.md ├── report │ ├── overview.md │ ├── remediation.md │ ├── triage.md │ └── validation.md └── user-guide │ ├── create-exclusions-file.md │ ├── download.md │ ├── installation.md │ ├── overview.md │ ├── scan-account.md │ ├── scan-multiple-accounts.md │ ├── scan-policy-file.md │ └── troubleshooting.md ├── examples ├── example-exclusions.yml ├── files │ ├── accounts.yaml │ ├── example.json │ ├── iam-report-example.html │ └── iam-results-example.json ├── jira-tickets │ ├── README.md │ └── open_jira_ticket.py ├── policies │ ├── explicit-actions.json │ └── wildcards.json └── scripts │ └── scripting_example.py ├── index.html ├── justfile ├── mkdocs.yml ├── package.json ├── pyproject.toml ├── test ├── command │ ├── test_create_multi_account_config_file.py │ ├── test_expand.py │ ├── test_expand_policy.py │ ├── test_scan.py │ ├── test_scan_multi_account.py │ └── test_scan_policy_file.py ├── files │ ├── example-authz-details.json │ ├── example_authz_details_for_overrides.json │ ├── example_authz_details_for_overrides_complete.json │ ├── example_authz_v2.json │ ├── managed_policy_mismatch.json │ ├── policy-overrides.json │ ├── scanning │ │ ├── test_authorization_file_details_missing_constraints_v2.json │ │ ├── test_group_detail_results.json │ │ ├── test_inline_policy_results.json │ │ ├── test_role_detail_results.json │ │ └── test_user_detail_results.json │ ├── test-exclusions.yml │ └── test_policy_file.json ├── output │ └── test_policy_finding.py ├── scanning │ ├── test_action_links.py │ ├── test_authorization_details.py │ ├── test_exclusions_on_attached_policies.py │ ├── test_group_detail_list.py │ ├── test_inline_policy.py │ ├── test_managed_policy_detail.py │ ├── test_policy_document.py │ ├── test_resource_policy_document.py │ ├── test_role_detail_list.py │ ├── test_statement_detail.py │ ├── test_trust_policies.py │ └── test_user_detail_list.py └── shared │ ├── test_aws_login.py │ ├── test_exclusions.py │ ├── test_template_config.py │ ├── test_utils.py │ └── test_validation.py ├── utils ├── example-iam-data.json ├── generate_example_iam_data.py ├── generate_example_report.py └── update-brew.sh ├── uv.lock └── vue.config.js /.actrc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.actrc -------------------------------------------------------------------------------- /.editorconfig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.editorconfig -------------------------------------------------------------------------------- /.env.development: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.env.development -------------------------------------------------------------------------------- /.env.production: -------------------------------------------------------------------------------- 1 | VUE_APP_TITLE=Cloudsplaining 2 | NODE_ENV=production -------------------------------------------------------------------------------- /.gitattributes: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.gitattributes -------------------------------------------------------------------------------- /.github/PULL_REQUEST_TEMPLATE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/PULL_REQUEST_TEMPLATE -------------------------------------------------------------------------------- /.github/dependabot.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/dependabot.yml -------------------------------------------------------------------------------- /.github/exclude-patterns.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/exclude-patterns.txt -------------------------------------------------------------------------------- /.github/release-drafter.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/release-drafter.yml -------------------------------------------------------------------------------- /.github/workflows/bump-version.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/bump-version.yml -------------------------------------------------------------------------------- /.github/workflows/nodejs-test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/nodejs-test.yml -------------------------------------------------------------------------------- /.github/workflows/publish.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/publish.yml -------------------------------------------------------------------------------- /.github/workflows/release-drafter.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/release-drafter.yml -------------------------------------------------------------------------------- /.github/workflows/security.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/security.yml -------------------------------------------------------------------------------- /.github/workflows/test.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/test.yml -------------------------------------------------------------------------------- /.github/workflows/update-bundle-report.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.github/workflows/update-bundle-report.yml -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.gitignore -------------------------------------------------------------------------------- /.nvmrc: -------------------------------------------------------------------------------- 1 | 20 2 | -------------------------------------------------------------------------------- /.pre-commit-config.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.pre-commit-config.yaml -------------------------------------------------------------------------------- /.python-version: -------------------------------------------------------------------------------- 1 | 3.10 2 | -------------------------------------------------------------------------------- /.readthedocs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/.readthedocs.yml -------------------------------------------------------------------------------- /CHANGELOG.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/CHANGELOG.md -------------------------------------------------------------------------------- /CODEOWNERS: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/CODEOWNERS -------------------------------------------------------------------------------- /CODE_OF_CONDUCT.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/CODE_OF_CONDUCT.md -------------------------------------------------------------------------------- /Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/Dockerfile -------------------------------------------------------------------------------- /HomebrewFormula/cloudsplaining.rb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/HomebrewFormula/cloudsplaining.rb -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/README.md -------------------------------------------------------------------------------- /SECURITY.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/SECURITY.md -------------------------------------------------------------------------------- /babel.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/babel.config.js -------------------------------------------------------------------------------- /cloudsplaining/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/__init__.py -------------------------------------------------------------------------------- /cloudsplaining/bin/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /cloudsplaining/bin/cli.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/bin/cli.py -------------------------------------------------------------------------------- /cloudsplaining/bin/version.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/bin/version.py -------------------------------------------------------------------------------- /cloudsplaining/command/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/__init__.py -------------------------------------------------------------------------------- /cloudsplaining/command/create_exclusions_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/create_exclusions_file.py -------------------------------------------------------------------------------- /cloudsplaining/command/create_multi_account_config_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/create_multi_account_config_file.py -------------------------------------------------------------------------------- /cloudsplaining/command/download.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/download.py -------------------------------------------------------------------------------- /cloudsplaining/command/expand_policy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/expand_policy.py -------------------------------------------------------------------------------- /cloudsplaining/command/scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/scan.py -------------------------------------------------------------------------------- /cloudsplaining/command/scan_multi_account.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/scan_multi_account.py -------------------------------------------------------------------------------- /cloudsplaining/command/scan_policy_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/command/scan_policy_file.py -------------------------------------------------------------------------------- /cloudsplaining/output/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /cloudsplaining/output/dist/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/dist/index.html -------------------------------------------------------------------------------- /cloudsplaining/output/dist/js/chunk-vendors.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/dist/js/chunk-vendors.js -------------------------------------------------------------------------------- /cloudsplaining/output/dist/js/index.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/dist/js/index.js -------------------------------------------------------------------------------- /cloudsplaining/output/policy_finding.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/policy_finding.py -------------------------------------------------------------------------------- /cloudsplaining/output/public/index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/public/index.html -------------------------------------------------------------------------------- /cloudsplaining/output/report.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/report.py -------------------------------------------------------------------------------- /cloudsplaining/output/src/App.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/App.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/1-overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/1-overview.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/2-triage-guidance.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/2-triage-guidance.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/3-remediation-guidance.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/3-remediation-guidance.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/4-validation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/4-validation.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-assumable-by-compute-service.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-assumable-by-compute-service.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-credentials-exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-credentials-exposure.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-data-exfiltration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-data-exfiltration.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-infrastructure-modification.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-infrastructure-modification.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-privilege-escalation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-privilege-escalation.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-resource-exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-resource-exposure.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/definition-service-wildcard.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/definition-service-wildcard.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/glossary.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/glossary.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/how-do-i-validate-results.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/how-do-i-validate-results.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/identifying-false-positives.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/identifying-false-positives.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/logo.png -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/summary.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/summary.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/assets/what-should-i-do.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/assets/what-should-i-do.md -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Appendix.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Appendix.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Button.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Button.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Glossary.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Glossary.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Guidance.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Guidance.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/InlinePolicies.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/InlinePolicies.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/LinkToFinding.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/LinkToFinding.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/ManagedPolicies.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/ManagedPolicies.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/PolicyTable.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/PolicyTable.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Principals.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Principals.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/ReportMetadata.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/ReportMetadata.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/Summary.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/Summary.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/TaskTable.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/TaskTable.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/charts/SummaryFindings.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/charts/SummaryFindings.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/AssumeRoleDetails.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/AssumeRoleDetails.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/FindingCard.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/FindingCard.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/FindingDetails.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/FindingDetails.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/PolicyDocumentDetails.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/PolicyDocumentDetails.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/PrivilegeEscalationDetails.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/PrivilegeEscalationDetails.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/PrivilegeEscalationFormat.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/PrivilegeEscalationFormat.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/RiskAlertIndicators.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/RiskAlertIndicators.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/finding/StandardRiskDetails.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/finding/StandardRiskDetails.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/principals/PrincipalMetadata.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/principals/PrincipalMetadata.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/components/principals/RisksPerPrincipal.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/components/principals/RisksPerPrincipal.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/main.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/main.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/routes/routes.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/routes/routes.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/sampleData.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/sampleData.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/groups-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/groups-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/inline-policies-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/inline-policies-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/managed-policies-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/managed-policies-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/other-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/other-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/principals-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/principals-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/roles-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/roles-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/test/task-table-test.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/test/task-table-test.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/glossary.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/glossary.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/groups.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/groups.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/inline-policies.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/inline-policies.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/managed-policies.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/managed-policies.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/other.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/other.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/principals.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/principals.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/roles.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/roles.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/util/task-table.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/util/task-table.js -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/Appendices.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/Appendices.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/AwsPolicies.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/AwsPolicies.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/CustomerPolicies.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/CustomerPolicies.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/Guidance.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/Guidance.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/IamPrincipals.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/IamPrincipals.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/InlinePolicies.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/InlinePolicies.vue -------------------------------------------------------------------------------- /cloudsplaining/output/src/views/Summary.vue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/src/views/Summary.vue -------------------------------------------------------------------------------- /cloudsplaining/output/template.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/output/template.html -------------------------------------------------------------------------------- /cloudsplaining/py.typed: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /cloudsplaining/scan/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/__init__.py -------------------------------------------------------------------------------- /cloudsplaining/scan/assume_role_policy_document.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/assume_role_policy_document.py -------------------------------------------------------------------------------- /cloudsplaining/scan/authorization_details.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/authorization_details.py -------------------------------------------------------------------------------- /cloudsplaining/scan/group_details.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/group_details.py -------------------------------------------------------------------------------- /cloudsplaining/scan/inline_policy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/inline_policy.py -------------------------------------------------------------------------------- /cloudsplaining/scan/managed_policy_detail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/managed_policy_detail.py -------------------------------------------------------------------------------- /cloudsplaining/scan/policy_document.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/policy_document.py -------------------------------------------------------------------------------- /cloudsplaining/scan/resource_policy_document.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/resource_policy_document.py -------------------------------------------------------------------------------- /cloudsplaining/scan/role_details.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/role_details.py -------------------------------------------------------------------------------- /cloudsplaining/scan/statement_detail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/statement_detail.py -------------------------------------------------------------------------------- /cloudsplaining/scan/user_details.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/scan/user_details.py -------------------------------------------------------------------------------- /cloudsplaining/shared/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/__init__.py -------------------------------------------------------------------------------- /cloudsplaining/shared/aws_login.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/aws_login.py -------------------------------------------------------------------------------- /cloudsplaining/shared/constants.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/constants.py -------------------------------------------------------------------------------- /cloudsplaining/shared/default-exclusions.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/default-exclusions.yml -------------------------------------------------------------------------------- /cloudsplaining/shared/exceptions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/exceptions.py -------------------------------------------------------------------------------- /cloudsplaining/shared/exclusions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/exclusions.py -------------------------------------------------------------------------------- /cloudsplaining/shared/multi-account-config.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/multi-account-config.yml -------------------------------------------------------------------------------- /cloudsplaining/shared/template_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/template_config.py -------------------------------------------------------------------------------- /cloudsplaining/shared/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/utils.py -------------------------------------------------------------------------------- /cloudsplaining/shared/validation.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/cloudsplaining/shared/validation.py -------------------------------------------------------------------------------- /docs/_images/cloudsplaining-report.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/cloudsplaining-report.gif -------------------------------------------------------------------------------- /docs/_images/report-aws-managed-details.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/report-aws-managed-details.png -------------------------------------------------------------------------------- /docs/_images/report-customer-managed-details.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/report-customer-managed-details.png -------------------------------------------------------------------------------- /docs/_images/report-customer-managed-summary.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/report-customer-managed-summary.png -------------------------------------------------------------------------------- /docs/_images/report-overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/report-overview.png -------------------------------------------------------------------------------- /docs/_images/scan-multiple-accounts.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/_images/scan-multiple-accounts.png -------------------------------------------------------------------------------- /docs/appendices/comparison-to-other-tools.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/appendices/comparison-to-other-tools.md -------------------------------------------------------------------------------- /docs/appendices/faq.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/appendices/faq.md -------------------------------------------------------------------------------- /docs/appendices/jira-ticket-automation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/appendices/jira-ticket-automation.md -------------------------------------------------------------------------------- /docs/contributing/contributing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/contributing.md -------------------------------------------------------------------------------- /docs/contributing/documentation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/documentation.md -------------------------------------------------------------------------------- /docs/contributing/javascript.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/javascript.md -------------------------------------------------------------------------------- /docs/contributing/python.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/python.md -------------------------------------------------------------------------------- /docs/contributing/release-drafter.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/release-drafter.md -------------------------------------------------------------------------------- /docs/contributing/report.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/report.md -------------------------------------------------------------------------------- /docs/contributing/results-json-schema.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/results-json-schema.md -------------------------------------------------------------------------------- /docs/contributing/testing.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/testing.md -------------------------------------------------------------------------------- /docs/contributing/versioning.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/contributing/versioning.md -------------------------------------------------------------------------------- /docs/example-report.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/example-report.html -------------------------------------------------------------------------------- /docs/glossary/credentials-exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/credentials-exposure.md -------------------------------------------------------------------------------- /docs/glossary/data-exfiltration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/data-exfiltration.md -------------------------------------------------------------------------------- /docs/glossary/infrastructure-modification.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/infrastructure-modification.md -------------------------------------------------------------------------------- /docs/glossary/privilege-escalation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/privilege-escalation.md -------------------------------------------------------------------------------- /docs/glossary/resource-exposure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/resource-exposure.md -------------------------------------------------------------------------------- /docs/glossary/roles-assumable-by-any-principal-with-conditions.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/roles-assumable-by-any-principal-with-conditions.md -------------------------------------------------------------------------------- /docs/glossary/roles-assumable-by-any-principal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/roles-assumable-by-any-principal.md -------------------------------------------------------------------------------- /docs/glossary/roles-assumable-by-compute-service.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/roles-assumable-by-compute-service.md -------------------------------------------------------------------------------- /docs/glossary/roles-assumable-by-cross-account-principal.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/roles-assumable-by-cross-account-principal.md -------------------------------------------------------------------------------- /docs/glossary/service-wildcard.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/service-wildcard.md -------------------------------------------------------------------------------- /docs/glossary/trust-policy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/glossary/trust-policy.md -------------------------------------------------------------------------------- /docs/index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/index.md -------------------------------------------------------------------------------- /docs/report/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/report/overview.md -------------------------------------------------------------------------------- /docs/report/remediation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/report/remediation.md -------------------------------------------------------------------------------- /docs/report/triage.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/report/triage.md -------------------------------------------------------------------------------- /docs/report/validation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/report/validation.md -------------------------------------------------------------------------------- /docs/user-guide/create-exclusions-file.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/create-exclusions-file.md -------------------------------------------------------------------------------- /docs/user-guide/download.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/download.md -------------------------------------------------------------------------------- /docs/user-guide/installation.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/installation.md -------------------------------------------------------------------------------- /docs/user-guide/overview.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/overview.md -------------------------------------------------------------------------------- /docs/user-guide/scan-account.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/scan-account.md -------------------------------------------------------------------------------- /docs/user-guide/scan-multiple-accounts.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/scan-multiple-accounts.md -------------------------------------------------------------------------------- /docs/user-guide/scan-policy-file.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/scan-policy-file.md -------------------------------------------------------------------------------- /docs/user-guide/troubleshooting.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/docs/user-guide/troubleshooting.md -------------------------------------------------------------------------------- /examples/example-exclusions.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/example-exclusions.yml -------------------------------------------------------------------------------- /examples/files/accounts.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/files/accounts.yaml -------------------------------------------------------------------------------- /examples/files/example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/files/example.json -------------------------------------------------------------------------------- /examples/files/iam-report-example.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/files/iam-report-example.html -------------------------------------------------------------------------------- /examples/files/iam-results-example.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/files/iam-results-example.json -------------------------------------------------------------------------------- /examples/jira-tickets/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/jira-tickets/README.md -------------------------------------------------------------------------------- /examples/jira-tickets/open_jira_ticket.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/jira-tickets/open_jira_ticket.py -------------------------------------------------------------------------------- /examples/policies/explicit-actions.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/policies/explicit-actions.json -------------------------------------------------------------------------------- /examples/policies/wildcards.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/policies/wildcards.json -------------------------------------------------------------------------------- /examples/scripts/scripting_example.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/examples/scripts/scripting_example.py -------------------------------------------------------------------------------- /index.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/index.html -------------------------------------------------------------------------------- /justfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/justfile -------------------------------------------------------------------------------- /mkdocs.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/mkdocs.yml -------------------------------------------------------------------------------- /package.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/package.json -------------------------------------------------------------------------------- /pyproject.toml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/pyproject.toml -------------------------------------------------------------------------------- /test/command/test_create_multi_account_config_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_create_multi_account_config_file.py -------------------------------------------------------------------------------- /test/command/test_expand.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_expand.py -------------------------------------------------------------------------------- /test/command/test_expand_policy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_expand_policy.py -------------------------------------------------------------------------------- /test/command/test_scan.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_scan.py -------------------------------------------------------------------------------- /test/command/test_scan_multi_account.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_scan_multi_account.py -------------------------------------------------------------------------------- /test/command/test_scan_policy_file.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/command/test_scan_policy_file.py -------------------------------------------------------------------------------- /test/files/example-authz-details.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/example-authz-details.json -------------------------------------------------------------------------------- /test/files/example_authz_details_for_overrides.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/example_authz_details_for_overrides.json -------------------------------------------------------------------------------- /test/files/example_authz_details_for_overrides_complete.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/example_authz_details_for_overrides_complete.json -------------------------------------------------------------------------------- /test/files/example_authz_v2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/example_authz_v2.json -------------------------------------------------------------------------------- /test/files/managed_policy_mismatch.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/managed_policy_mismatch.json -------------------------------------------------------------------------------- /test/files/policy-overrides.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/policy-overrides.json -------------------------------------------------------------------------------- /test/files/scanning/test_authorization_file_details_missing_constraints_v2.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/scanning/test_authorization_file_details_missing_constraints_v2.json -------------------------------------------------------------------------------- /test/files/scanning/test_group_detail_results.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/scanning/test_group_detail_results.json -------------------------------------------------------------------------------- /test/files/scanning/test_inline_policy_results.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/scanning/test_inline_policy_results.json -------------------------------------------------------------------------------- /test/files/scanning/test_role_detail_results.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/scanning/test_role_detail_results.json -------------------------------------------------------------------------------- /test/files/scanning/test_user_detail_results.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/scanning/test_user_detail_results.json -------------------------------------------------------------------------------- /test/files/test-exclusions.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/test-exclusions.yml -------------------------------------------------------------------------------- /test/files/test_policy_file.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/files/test_policy_file.json -------------------------------------------------------------------------------- /test/output/test_policy_finding.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/output/test_policy_finding.py -------------------------------------------------------------------------------- /test/scanning/test_action_links.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_action_links.py -------------------------------------------------------------------------------- /test/scanning/test_authorization_details.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_authorization_details.py -------------------------------------------------------------------------------- /test/scanning/test_exclusions_on_attached_policies.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_exclusions_on_attached_policies.py -------------------------------------------------------------------------------- /test/scanning/test_group_detail_list.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_group_detail_list.py -------------------------------------------------------------------------------- /test/scanning/test_inline_policy.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_inline_policy.py -------------------------------------------------------------------------------- /test/scanning/test_managed_policy_detail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_managed_policy_detail.py -------------------------------------------------------------------------------- /test/scanning/test_policy_document.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_policy_document.py -------------------------------------------------------------------------------- /test/scanning/test_resource_policy_document.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_resource_policy_document.py -------------------------------------------------------------------------------- /test/scanning/test_role_detail_list.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_role_detail_list.py -------------------------------------------------------------------------------- /test/scanning/test_statement_detail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_statement_detail.py -------------------------------------------------------------------------------- /test/scanning/test_trust_policies.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_trust_policies.py -------------------------------------------------------------------------------- /test/scanning/test_user_detail_list.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/scanning/test_user_detail_list.py -------------------------------------------------------------------------------- /test/shared/test_aws_login.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/shared/test_aws_login.py -------------------------------------------------------------------------------- /test/shared/test_exclusions.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/shared/test_exclusions.py -------------------------------------------------------------------------------- /test/shared/test_template_config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/shared/test_template_config.py -------------------------------------------------------------------------------- /test/shared/test_utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/shared/test_utils.py -------------------------------------------------------------------------------- /test/shared/test_validation.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/test/shared/test_validation.py -------------------------------------------------------------------------------- /utils/example-iam-data.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/utils/example-iam-data.json -------------------------------------------------------------------------------- /utils/generate_example_iam_data.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/utils/generate_example_iam_data.py -------------------------------------------------------------------------------- /utils/generate_example_report.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/utils/generate_example_report.py -------------------------------------------------------------------------------- /utils/update-brew.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/utils/update-brew.sh -------------------------------------------------------------------------------- /uv.lock: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/uv.lock -------------------------------------------------------------------------------- /vue.config.js: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/salesforce/cloudsplaining/HEAD/vue.config.js --------------------------------------------------------------------------------