Cloudsplaining Versions Save

Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized report.

0.4.5

2 years ago

Changes

  • Fix homebrew scripts @kmcquade (#218)
  • Fix typo

0.4.4

2 years ago

Changes

  • Finish typing @gruebel (#207)
  • Add type hints to shared and output @gruebel (#206)
  • Add type hints to scan @gruebel (#203)

Dependency updates

  • [Security] Bump dns-packet from 1.3.1 to 1.3.4 @dependabot-preview (#202)
  • [Security] Bump ws from 6.2.1 to 6.2.2 @dependabot-preview (#205)
  • [Security] Bump postcss from 7.0.35 to 7.0.36 @dependabot-preview (#208)
  • Bump urllib3 from 1.26.4 to 1.26.5 @dependabot (#204)

πŸ› Bug Fixes

  • Fix integrity value issue @kmcquade (#213)

🧰 Maintenance

  • Log verbosity option is easier to specify. Use -vvv instead of -v debug @kmcquade (#214)

0.4.3

2 years ago

Changes

  • Updated report before 0.4.3 release @kmcquade (#199)
  • update Credentials Exposure actions @ismailyenigul (#198)
  • Add type hints to PolicyDocument and StatementDetail @gruebel (#191)

πŸ› Bug Fixes

  • change behavior of has_resource_constraints and add new unrestrictabl… @gruebel (#196)
  • exclude non restrictable actions from actions_without_constraints @gruebel (#194)

🧰 Maintenance

  • Clean up dev environment, remove PyInvoke @kmcquade (#189)

0.4.2

3 years ago

Changes

  • Add version bump automation @kmcquade (#184)
  • Add update automation @kmcquade (#183)
  • [Security] Bump ssri from 6.0.1 to 6.0.2 @dependabot-preview (#182)
  • Add quotes around example account numbers @fruechel (#179)
  • Fix PyUp with GitHub actions workaround @kmcquade (#180)

πŸ› Bug Fixes

  • Fixes unicode decode error @kmcquade (#185)

0.4.1

3 years ago

πŸ› Bug Fixes

  • Avoid Flagging If Deny On Scan Actions Without Constraints @njgibbon (#177)

πŸ“ Documentation

  • Fix some small documentation issues @kmcquade (#176)

0.4.0

3 years ago

πŸš€ Features

  • Scan Multiple AWS accounts via AssumeRole @kmcquade (#172)
  • Adds short command flags (fixes #171) @kmcquade (#175)

0.3.2

3 years ago

Changes

  • Filter deny from unrestricted actions @schosterbarak (#170)

0.3.1

3 years ago

Changes

  • Update Credentials Exposure actions, dependencies @kmcquade (#169)
  • consider iam policy statement condition as a restricted action @schosterbarak (#167)

πŸ› Bug Fixes

  • expand only allowed actions (not deny actions) @schosterbarak (#166)

0.3.0

3 years ago

πŸ› Bug Fixes

  • Statement scanning performance improvements @verkaufer (#156)
  • Update setup.py to include cached-property; Fix linting @kmcquade (#160)

0.2.5

3 years ago

Changes

  • Add GitHub workflow to combine Dependabot PRs into a single one @kmcquade (#150)
  • Add deeplinks to report findings (#133) @verkaufer (#151)

πŸš€ Features

  • Added links to API docs for every IAM action in the findings @kmcquade (#153)

πŸ“ Documentation

  • Updating dependencies. Fixed some documentation as well. @kmcquade (#152)