parliament
parliament copied to clipboard
duo-labs
AWS IAM linting library
Ran the update script with a few improvements to give feedback while it runs.  Feedback welcome
Hi! This merge request implements a `--files` command-line argument that allows passing a list of policies to analyse. The signature of the `main()` function was also modified to get `argv`...
Documentation to solve use cases such as https://github.com/duo-labs/parliament/issues/230.
/fixes #237 In addition to the missing data type mentioned in #237 this includes additional data types that are missing from the function call and present in [iam_definition.json](https://github.com/duo-labs/parliament/blob/main/parliament/iam_definition.json)
When attempting to validate a policy with the below statement ``` { "Sid": "DenyCrossAccountBackupOutOfNonprod", "Effect": "Deny", "Action": "backup:CopyFromBackupVault", "Resource":"*", "Condition":{ "ArnNotLike":{ "backup:CopyTargets": [ "arn:aws:backup:eu-west-1:*:backup-vault/*" ] } } } ``` An...
Hello, While trying to run parliament on the output of `aws iam get-account-authorization-details`, I got a fatal error: ```text Traceback (most recent call last): File "/usr/local/bin/parliament", line 33, in sys.exit(load_entry_point('parliament==1.6.2',...
### Problem Observed `UNKNOWN_PREFIX - Unknown prefix bedrock` from parliament. This is a new AWS service called Bedrock. We need to refresh the mappings with the most recent services. ###...
Bumps [certifi](https://github.com/certifi/python-certifi) from 2022.6.15 to 2023.7.22. Commits 8fb96ed 2023.07.22 afe7722 Bump actions/setup-python from 4.6.1 to 4.7.0 (#230) 2038739 Bump dessant/lock-threads from 3.0.0 to 4.0.1 (#229) 44df761 Hash pin Actions and...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
While running parliament against an IAM policy document it throws an error: LOW - Unknown action - - Unknown action logs:TagResource - {'string': 'logs:TagResource', 'line': 1, 'column': 5000, 'filepath': 'test.json'}...
Bumps [requests](https://github.com/psf/requests) from 2.28.1 to 2.31.0. Release notes Sourced from requests's releases. v2.31.0 2.31.0 (2023-05-22) Security Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization...