parliament audits your AWS IAM policies

These details have not been verified by PyPI

Project links

Homepage

Project description

parliament is an AWS IAM linting library. It reviews policies looking for problems such as:

malformed json
missing required elements
incorrect prefix and action names
incorrect resources or conditions for the actions provided
type mismatches
bad policy patterns

This library duplicates (and adds to!) much of the functionality in the web console page when reviewing IAM policies in the browser. We wanted that functionality as a library.

The IAM data is obtained from scraping the docs here and parsing this information with beautifulsoup using ./utils/update_iam_data.py.

Installation

pip install parliament

Usage

$ parliament --string '{"Version":"2012-10-17","Statement": {"Effect": "Allow","Action":["s3:GetObject"],"Resource": ["arn:aws:s3:::bucket1"]}}'
INVALID - No resources match for s3:GetObject which requires a resource format of arn:*:s3:::*/* for the resource object* - {'filepath': None}

This example is showing that a resource specifying an S3 bucket (not an object path) was given in a policy with s3:GetObject, which requires an object path.

See ./bin/parliament.py for further examples.

Development

Setup a testing environment

python3 -m venv ./venv && source venv/bin/activate
pip install boto3 jmespath pyyaml nose coverage

Run unit tests with:

./tests/scripts/unit_tests.sh

Run locally as:

bin/parliament

Project details

These details have not been verified by PyPI

Project links

Homepage

Release history Release notifications | RSS feed

1.6.3

Jul 26, 2024

1.6.2

Jul 6, 2023

1.6.1

Sep 6, 2022

1.6.0

Sep 5, 2022

1.5.2

Nov 8, 2021

1.5.1

Nov 8, 2021

1.5.0

Nov 3, 2021

1.4.1

Oct 8, 2021

1.4.0

Mar 15, 2021

1.3.1

Jan 21, 2021

1.3.0

Dec 8, 2020

1.2.3

Nov 19, 2020

1.2.2

Nov 16, 2020

1.2.1

Oct 15, 2020

1.2.0

Aug 20, 2020

1.0.0

Aug 13, 2020

0.6.0

Jun 23, 2020

0.5.0

Jun 8, 2020

0.4.14

May 18, 2020

0.4.13

May 12, 2020

0.4.12

Apr 23, 2020

0.4.11

Apr 15, 2020

0.4.10

Mar 21, 2020

0.4.9

Feb 28, 2020

0.4.8

Feb 21, 2020

0.4.7

Feb 21, 2020

0.4.6

Jan 15, 2020

0.4.5

Jan 14, 2020

0.4.4

Jan 14, 2020

0.4.3

Jan 13, 2020

0.4.2

Jan 10, 2020

0.4.1

Jan 9, 2020

0.4.0

Jan 9, 2020

0.3.7

Jan 7, 2020

0.3.6

Dec 13, 2019

0.3.5

Dec 12, 2019

This version

0.3.4

Dec 12, 2019

0.3.3

Dec 11, 2019

0.3.2

Dec 11, 2019

0.3.1

Dec 10, 2019

0.3.0

Dec 10, 2019

0.2.7

Dec 2, 2019

0.2.6

Nov 22, 2019

0.2.5

Nov 20, 2019

0.2.4

Nov 18, 2019

0.2.3

Nov 18, 2019

0.2.2

Nov 18, 2019

0.2.1

Nov 18, 2019

0.0.0

Sep 12, 2019

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

parliament-0.3.4.tar.gz (238.7 kB view details)

Uploaded Dec 12, 2019 Source

File details

Details for the file parliament-0.3.4.tar.gz.

File metadata

Download URL: parliament-0.3.4.tar.gz
Upload date: Dec 12, 2019
Size: 238.7 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.1.1 pkginfo/1.5.0.1 requests/2.22.0 setuptools/39.0.1 requests-toolbelt/0.9.1 tqdm/4.40.2 CPython/3.7.0

File hashes

Hashes for parliament-0.3.4.tar.gz
Algorithm	Hash digest
SHA256	`508bc8c2e705b0f7518dc2afaf2c62c94315505c88457deb9d5ef1e747dd4230`
MD5	`6d08a27af7913508fccb190affe25fe0`
BLAKE2b-256	`efa2e5183bf5c1d094ac458457d55ce74b58a5fff97bb52e6f68855fbda62eae`