aws-allowlister
aws-allowlister copied to clipboard
Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.
This is an automated PR created because AWS compliances resources were updated.
This one uses a 2-column approach. https://aws.amazon.com/compliance/services-in-scope/. Should be straightforward
K-ISMS is not currently scraped or included. It uses a 2-column structure so it can't use the same standard_scraper, but should be pretty straightforward to adjust the approach from the...
Bumps [gitpython](https://github.com/gitpython-developers/GitPython) from 3.1.18 to 3.1.32. Release notes Sourced from gitpython's releases. v3.1.32 - with another security update What's Changed Bump cygwin/cygwin-install-action from 3 to 4 by @dependabot in gitpython-developers/GitPython#1572...
Bumps [certifi](https://github.com/certifi/python-certifi) from 2021.5.30 to 2023.7.22. Commits 8fb96ed 2023.07.22 afe7722 Bump actions/setup-python from 4.6.1 to 4.7.0 (#230) 2038739 Bump dessant/lock-threads from 3.0.0 to 4.0.1 (#229) 44df761 Hash pin Actions and...
Bumps [requests](https://github.com/psf/requests) from 2.26.0 to 2.31.0. Release notes Sourced from requests's releases. v2.31.0 2.31.0 (2023-05-22) Security Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization...
It looks like compliance data is no longer updated due to outdated dependencies. Is this on the roadmap to be fixed?
I used this tool to generate an SCP for FedRAMP High services restriction, and I noticed a few services that were added into the "NotAction" section in the resulting JSON...