Skip to content

Latest commit

 

History

History
55 lines (43 loc) · 960 Bytes

README.md

File metadata and controls

55 lines (43 loc) · 960 Bytes

Simple CLI for expanding your IAM policies' actions.

Expand cryptic policies to achieve least privilege

Usage

Expand policy file and save as

$ ./polic --file=foo.json --out=out.json # Also can --sort

Expand policy file and change the file

$ ./polic --file=foo.json --inline --sort

Expand single action

$ ./polic -single waf:Get*
waf:GetByteMatchSet
waf:GetChangeToken
waf:GetChangeTokenStatus
waf:GetGeoMatchSet
waf:GetIPSet
waf:GetLoggingConfiguration
waf:GetPermissionPolicy
waf:GetRateBasedRule
waf:GetRateBasedRuleManagedKeys
waf:GetRegexMatchSet
waf:GetRegexPatternSet
waf:GetRule
waf:GetRuleGroup
waf:GetSampledRequests
waf:GetSizeConstraintSet
waf:GetSqlInjectionMatchSet
waf:GetWebACL
waf:GetXssMatchSet

Expand in a repl

$ ./polic
Enter an AWS action: (enter-something)
.... # results
Enter an AWS action: (enter-something)
.... # results
Enter an AWS action: exit # Or <Ctrl-C>

TODO