Using a IAM role, a custom profile or instance profile instead of passing AWS access and secret key

[kyrylo-hulak]

Hello Tech,

As the first, I wanted to thank you for a such great tool! I wanted to ask if you ever thought about enhancing and passing to AWS provider rather a specific profile or IAM role instead of the AWS keys. The last option is inconvenient as it demands additional maintenance of those access keys e.g.its rotation.

I have tried to pass through -e variable, like AWS_PROFILE as well as mount local ~/.aws/ to punksecurity/dnsreaper container. But it didn't work out. It returns error

docker run --rm -it -v ~/.aws/:/root/.aws:ro -e AWS_PROFILE="profile_name" punksecurity/dnsreaper aws

Error:
botocore.exceptions.ProfileNotFound: The config profile (profile_name) could not be found

Am I doing something wrong? I would appreciate your assistance on that. Thank you very much!