aws_recon 0.2.11 → 0.2.12

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 342238f4c9197721172d05451ed5c3346475b52ae807f27607b83036d15280dd
-  data.tar.gz: 3f26ec0ad41491836331076bac849ab967db5640e9295413db30b21f1567a324
+  metadata.gz: 91c04c23df1fe4fb4ca28ae164c15bc2994a63b8acf0b33b07aedeeb7a11f021
+  data.tar.gz: 148087c3e082a71c78efccdf6628a9d70115a4f409ac9c7dfdb503218e11d168
 SHA512:
-  metadata.gz: b1591c03b3d1608d9a4f38987ff2f7ffce879d685966214184eaa7e8bdc6bb5f39cc2e7e0a99235e48ee6f2b25d927189bc8f8873b693b212ff2671819bd641b
-  data.tar.gz: 407bb475473ba08694681a77a7c8212b4406b8587ba668dfdff0947f514c48fba065cfd5f94e08d8a5cc0567886af944a31c3d0518d1a15537bb8682049078b2
+  metadata.gz: 53d87f172f074567da9b2d31ff9fad2e3507bef9e95da5a419ff30e3fbb70c00c46bc70b8b9b1af57da400aceb8a524b79c042dda648cd6098a9792b5eb628ea
+  data.tar.gz: 90396f3003e5d34b8dd21a582fc2bab93f11b28744cac6c207658e16c4f43376fa42932d03e3e8438b73fd80400036af172b7573da82fa38043e9ba78e29137c

data/.github/workflows/docker-build.yml

@@ -0,0 +1,38 @@
+name: docker-build
+
+on:
+  push:
+    branches: build
+    paths:
+      - 'lib/aws_recon/version.rb '
+
+jobs:
+  docker-build:
+    runs-on: ubuntu-20.04
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+        with:
+          fetch-depth: 1
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+      - name: Login to DockerHub
+        uses: docker/login-action@v1
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+      - name: Set version tag
+        run: |
+          echo "VERSION_TAG=$(grep VERSION lib/aws_recon/version.rb | awk -F\" '{print $2}')" >> $GITHUB_ENV
+      - name: Build and push
+        id: docker_build
+        uses: docker/build-push-action@v2
+        with:
+          push: true
+          build-args: |
+            VERSION=${{ env.VERSION_TAG }}
+          tags: |
+            darkbitio/aws_recon:${{ env.VERSION_TAG }}
+            darkbitio/aws_recon:latest

data/.github/workflows/smoke-test.yml

@@ -0,0 +1,23 @@
+name: smoke-test
+
+on:
+  push:
+    branches: main
+
+jobs:
+  smoke-test:
+    runs-on: ubuntu-20.04
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v2
+        with:
+          fetch-depth: 1
+      - name: Set version tag
+        run: |
+          echo "VERSION_TAG=$(grep VERSION lib/aws_recon/version.rb | awk -F\" '{print $2}')" >> $GITHUB_ENV
+      - name: Smoke Test :${{ env.VERSION_TAG }}
+        run: |
+          docker run -t --rm darkbitio/aws_recon:${{ env.VERSION_TAG }} aws_recon
+      - name: Smoke Test :latest
+        run: |
+          docker run -t --rm darkbitio/aws_recon:latest aws_recon

data/Dockerfile

@@ -3,9 +3,10 @@ FROM ruby:${RUBY_VERSION}-alpine
 
 LABEL maintainer="Darkbit <info@darkbit.io>"
 
+# Supply AWS Recon version at build time
+ARG VERSION
 ARG USER=recon
 ARG GEM=aws_recon
-ARG VERSION=0.2.10
 ARG BUNDLER_VERSION=2.1.4
 
 # Install new Bundler version

data/lib/aws_recon/collectors/accessanalyzer.rb

@@ -0,0 +1,24 @@
+class AccessAnalyzer < Mapper
+  #
+  # Returns an array of resources.
+  #
+  def collect
+    resources = []
+
+    #
+    # list_analyzers
+    #
+    @client.list_analyzers.each_with_index do |response, page|
+      log(response.context.operation_name, page)
+
+      # analyzers
+      response.analyzers.each do |analyzer|
+        struct = OpenStruct.new(analyzer.to_h)
+        struct.type = 'analyzer'
+        resources.push(struct.to_h)
+      end
+    end
+
+    resources
+  end
+end

data/lib/aws_recon/collectors/ec2.rb

@@ -31,6 +31,18 @@ class EC2 < Mapper
 
     # regional calls
     if @region != 'global'
+      #
+      # get_ebs_encryption_by_default
+      #
+      @client.get_ebs_encryption_by_default.each do |response|
+        log(response.context.operation_name)
+
+        struct = OpenStruct.new(response.to_h)
+        struct.type = 'ebs_encryption_settings'
+
+        resources.push(struct.to_h)
+      end
+
       #
       # describe_instances
       #

data/lib/aws_recon/services.yaml

@@ -2,6 +2,8 @@
 - name: Organizations
   global: true
   alias: organizations
+- name: AccessAnalyzer
+  alias: aa
 - name: ConfigService
   alias: config
 - name: CodeBuild

data/lib/aws_recon/version.rb

@@ -1,3 +1,3 @@
 module AwsRecon
-  VERSION = "0.2.11"
+  VERSION = "0.2.12"
 end

data/readme.md

@@ -1,3 +1,4 @@
+![GitHub Workflow Status (branch)](https://img.shields.io/github/workflow/status/darkbitio/aws-recon/smoke-test/main)
 [![Gem Version](https://badge.fury.io/rb/aws_recon.svg)](https://badge.fury.io/rb/aws_recon)
 
 # AWS Recon

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws_recon
 version: !ruby/object:Gem::Version
-  version: 0.2.11
+  version: 0.2.12
 platform: ruby
 authors:
 - Josh Larsen
@@ -9,7 +9,7 @@ authors:
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2020-11-17 00:00:00.000000000 Z
+date: 2020-11-18 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -163,6 +163,8 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".github/stale.yml"
+- ".github/workflows/docker-build.yml"
+- ".github/workflows/smoke-test.yml"
 - ".gitignore"
 - ".rubocop.yml"
 - ".travis.yml"
@@ -178,6 +180,7 @@ files:
 - lib/aws_recon.rb
 - lib/aws_recon/aws_recon.rb
 - lib/aws_recon/collectors.rb
+- lib/aws_recon/collectors/accessanalyzer.rb
 - lib/aws_recon/collectors/acm.rb
 - lib/aws_recon/collectors/apigateway.rb
 - lib/aws_recon/collectors/apigatewayv2.rb