IAM Least Privilege Policy Generator
--resource-type
flag added to policy_sentry query action-table
command (Fixes #255)get_statement_from_policy_using_sid
, get_sid_names_from_policy
to make it easier to future-proof unit tests that rely on the ever-changing AWS IAM data.get_actions_for_service
(Fixes #245)create_policy_sid_namespace
(Fixes #266)write-policy --fmt yaml
is now supportedBackend improvements:
policy_sentry query action-table --service s3 --access-level read --wildcard-only --fmt yaml
- previously was not transforming user input properly.