RubyGems - aws_recon - Versions diffs - 0.5.30 → 0.5.32 - Mend

aws_recon 0.5.30 → 0.5.32

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

checksums.yaml +4 -4
data/lib/aws_recon/collectors/ecrpublic.rb +58 -0
data/lib/aws_recon/services.yaml +27 -1
data/lib/aws_recon/version.rb +1 -1
data/readme.md +1 -0
metadata +8 -7

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 55427b9861844e442faada828be71ec501bd776b273d5a316380e34bbaab21d5
-  data.tar.gz: cd06fa9cde28baa831c285e8220e329a09a8b28b5a73760bc6ee2f68b8e9fa18
+  metadata.gz: 796c2c70d8fd50ebfd30491a881dc09b7a1dbf79ce9e6c3fa0fd3ee9a748c422
+  data.tar.gz: 3bb41eba68b0b6bf3ee86ecc33d1fe0d30a852253599dd3afb5c451bdd1c9a70
 SHA512:
-  metadata.gz: 47d8288df62a31125dd44452d5dd166597785b80ee951f9d3f23b283640c3d047c90e4522461dfb170e36618dbac02ff175fba521ed3c70b28e0bb7fbcf76aa6
-  data.tar.gz: f4d9abf53442068c7ff5f81708642f2c3fd59b52540cd9479551586cc4ac6a9c590d4d27bb68f51490df19b5f5f0ecb659c4161bc62e51251fea47c27cd45ca6
+  metadata.gz: f425e8fe76be0ce0ee6de7fae5f78f68ff636cebe5f5d9a921c355af43775125a23d80dbc6529af7adee9e727403021a1284f8b011b12adc89b1eb3f297e2ef7
+  data.tar.gz: eb1b658869cd865a28e237ca9f7134c4c1a39935dc845e5c8b6ad08fef2c3617d9e454ffb4450af7e7a59ae6b4a308f52a4db785c962420ae0147af540531e7a

data/lib/aws_recon/collectors/ecrpublic.rb ADDED Viewed

@@ -0,0 +1,58 @@
+# frozen_string_literal: true
+#
+# Collect ECRPublic resources
+#
+class ECRPublic < Mapper
+  #
+  # Returns an array of resources.
+  #
+  def collect
+    resources = []
+    #
+    # describe_repositories
+    #
+    puts(@client.describe_repositories)
+    @client.describe_repositories.each_with_index do |response, page|
+      log(response.context.operation_name, page)
+      response.repositories.each do |repo|
+        struct = OpenStruct.new(repo.to_h)
+        struct.type = "repository"
+        struct.arn = repo.repository_arn
+        struct.policy = @client
+          .get_repository_policy({ repository_name: repo.repository_name }).policy_text.parse_policy
+        struct.images = []
+        #
+        # describe images
+        #
+        @client.describe_images({ repository_name: repo.repository_name }).image_details.each_with_index do |image, page|
+          log(response.context.operation_name, "describe_images", page)
+          image_hash = image.to_h
+          struct.images << image_hash
+        end
+      rescue Aws::ECR::Errors::ServiceError => e
+        log_error(e.code)
+        raise e unless suppressed_errors.include?(e.code) && !@options.quit_on_exception
+      ensure
+        resources.push(struct.to_h)
+      end
+    end
+    resources
+  end
+  private
+  # not an error
+  def suppressed_errors
+    %w[
+      RepositoryPolicyNotFoundException,
+      ScanNotFoundException
+    ]
+  end
+end

data/lib/aws_recon/services.yaml CHANGED Viewed

@@ -55,6 +55,33 @@
   alias: rds
 - name: ECR
   alias: ecr
+- name: ECRPublic
+  alias: ecrpublic
+  excluded_regions:
+    - af-south-1
+    - ap-east-1
+    - ap-northeast-1
+    - ap-northeast-2
+    - ap-northeast-3
+    - ap-south-1
+    - ap-southeast-1
+    - ap-southeast-2
+    - ca-central-1
+    - eu-central-1
+    - eu-north-1
+    - eu-south-1
+    - eu-west-1
+    - eu-west-2
+    - eu-west-3
+    - me-south-1
+    - sa-east-1
+    - us-east-2
+    - us-west-1
+    - us-west-2
+    - af-south-1
+    - ap-east-1
+    - eu-south-1
+    - me-south-1
 - name: DynamoDB
   alias: dynamodb
 - name: KMS
@@ -125,7 +152,6 @@
 - name: WorkSpaces
   alias: workspaces
   excluded_regions:
-    - af-south-1
     - ap-east-1
     - ap-northeast-3
     - eu-north-1

data/lib/aws_recon/version.rb CHANGED Viewed

@@ -1,3 +1,3 @@
 module AwsRecon
-  VERSION = "0.5.30"
+  VERSION = "0.5.32"
 end

data/readme.md CHANGED Viewed

@@ -358,6 +358,7 @@ AWS Recon aims to collect all resources and metadata that are relevant in determ
 - [x] DynamoDB
 - [x] EC2
 - [x] ECR
+- [x] ECRPublic
 - [x] ECS
 - [x] EFS
 - [x] EKS

metadata CHANGED Viewed

@@ -1,15 +1,15 @@
 --- !ruby/object:Gem::Specification
 name: aws_recon
 version: !ruby/object:Gem::Version
-  version: 0.5.30
+  version: 0.5.32
 platform: ruby
 authors:
 - Josh Larsen
 - Darkbit
-autorequire:
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2022-03-31 00:00:00.000000000 Z
+date: 2022-10-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -154,7 +154,7 @@ dependencies:
 description: AWS Recon is a command line tool to collect resources from an Amazon
   Web Services (AWS) account. The tool outputs JSON suitable for processing with other
   tools.
-email:
+email:
 executables:
 - aws_recon
 - console
@@ -203,6 +203,7 @@ files:
 - lib/aws_recon/collectors/dynamodb.rb
 - lib/aws_recon/collectors/ec2.rb
 - lib/aws_recon/collectors/ecr.rb
+- lib/aws_recon/collectors/ecrpublic.rb
 - lib/aws_recon/collectors/ecs.rb
 - lib/aws_recon/collectors/efs.rb
 - lib/aws_recon/collectors/eks.rb
@@ -263,7 +264,7 @@ homepage: https://github.com/darkbitio/aws-recon
 licenses:
 - MIT
 metadata: {}
-post_install_message:
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -278,8 +279,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.8
-signing_key:
+rubygems_version: 3.1.6
+signing_key:
 specification_version: 4
 summary: A multi-threaded AWS security-focused inventory collection tool.
 test_files: []