aws_recon 0.5.30 → 0.5.31

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 55427b9861844e442faada828be71ec501bd776b273d5a316380e34bbaab21d5
-  data.tar.gz: cd06fa9cde28baa831c285e8220e329a09a8b28b5a73760bc6ee2f68b8e9fa18
+  metadata.gz: d5d30a79acd6256deaea52f09600427740cd821ae4f5d65daf6012dc95cb44e4
+  data.tar.gz: cc51789bcae95c1339af7edc86417de46fd92f089bf1d01e9d296d314a9342ea
 SHA512:
-  metadata.gz: 47d8288df62a31125dd44452d5dd166597785b80ee951f9d3f23b283640c3d047c90e4522461dfb170e36618dbac02ff175fba521ed3c70b28e0bb7fbcf76aa6
-  data.tar.gz: f4d9abf53442068c7ff5f81708642f2c3fd59b52540cd9479551586cc4ac6a9c590d4d27bb68f51490df19b5f5f0ecb659c4161bc62e51251fea47c27cd45ca6
+  metadata.gz: d7a7bb7de812452842f330625c714cdb6028b80af72f6034e762057a905c445c943d96a3849e7dea992db8fb76151139ebb5a5338665b836800228ef0a284f1b
+  data.tar.gz: 2079f1d21b47dffd3b8923e1e7ab093c363932aaa5028d3bfce15acbf9e185be9e93dbdfb33d024555675ffb91d33074b60a85bf55a18fefe29292c2f6592064

data/lib/aws_recon/collectors/ecrpublic.rb

@@ -0,0 +1,58 @@
+# frozen_string_literal: true
+
+#
+# Collect ECRPublic resources
+#
+class ECRPublic < Mapper
+  #
+  # Returns an array of resources.
+  #
+  def collect
+    resources = []
+
+    #
+    # describe_repositories
+    #
+
+    puts(@client.describe_repositories)
+    @client.describe_repositories.each_with_index do |response, page|
+      log(response.context.operation_name, page)
+
+      response.repositories.each do |repo|
+        struct = OpenStruct.new(repo.to_h)
+        struct.type = "repository"
+        struct.arn = repo.repository_arn
+        struct.policy = @client
+          .get_repository_policy({ repository_name: repo.repository_name }).policy_text.parse_policy
+
+        struct.images = []
+        #
+        # describe images
+        #
+        @client.describe_images({ repository_name: repo.repository_name }).image_details.each_with_index do |image, page|
+          log(response.context.operation_name, "describe_images", page)
+          image_hash = image.to_h
+          struct.images << image_hash
+        end
+      rescue Aws::ECR::Errors::ServiceError => e
+        log_error(e.code)
+
+        raise e unless suppressed_errors.include?(e.code) && !@options.quit_on_exception
+      ensure
+        resources.push(struct.to_h)
+      end
+    end
+
+    resources
+  end
+
+  private
+
+  # not an error
+  def suppressed_errors
+    %w[
+      RepositoryPolicyNotFoundException,
+      ScanNotFoundException
+    ]
+  end
+end

data/lib/aws_recon/services.yaml

@@ -55,6 +55,33 @@
   alias: rds
 - name: ECR
   alias: ecr
+- name: ECRPublic
+  alias: ecrpublic
+  excluded_regions:
+    - af-south-1
+    - ap-east-1
+    - ap-northeast-1
+    - ap-northeast-2
+    - ap-northeast-3
+    - ap-south-1
+    - ap-southeast-1
+    - ap-southeast-2
+    - ca-central-1
+    - eu-central-1
+    - eu-north-1
+    - eu-south-1
+    - eu-west-1
+    - eu-west-2
+    - eu-west-3
+    - me-south-1
+    - sa-east-1
+    - us-east-2
+    - us-west-1
+    - us-west-2
+    - af-south-1
+    - ap-east-1
+    - eu-south-1
+    - me-south-1
 - name: DynamoDB
   alias: dynamodb
 - name: KMS

data/lib/aws_recon/version.rb

@@ -1,3 +1,3 @@
 module AwsRecon
-  VERSION = "0.5.30"
+  VERSION = "0.5.31"
 end

data/readme.md

@@ -358,6 +358,7 @@ AWS Recon aims to collect all resources and metadata that are relevant in determ
 - [x] DynamoDB
 - [x] EC2
 - [x] ECR
+- [x] ECRPublic
 - [x] ECS
 - [x] EFS
 - [x] EKS

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws_recon
 version: !ruby/object:Gem::Version
-  version: 0.5.30
+  version: 0.5.31
 platform: ruby
 authors:
 - Josh Larsen
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-03-31 00:00:00.000000000 Z
+date: 2022-04-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -203,6 +203,7 @@ files:
 - lib/aws_recon/collectors/dynamodb.rb
 - lib/aws_recon/collectors/ec2.rb
 - lib/aws_recon/collectors/ecr.rb
+- lib/aws_recon/collectors/ecrpublic.rb
 - lib/aws_recon/collectors/ecs.rb
 - lib/aws_recon/collectors/efs.rb
 - lib/aws_recon/collectors/eks.rb