cloudwire 0.2.5__tar.gz → 0.2.11__tar.gz

{cloudwire-0.2.5 → cloudwire-0.2.11}/PKG-INFO

@@ -1,10 +1,12 @@
-Metadata-Version: 2.4
+Metadata-Version: 2.2
 Name: cloudwire
-Version: 0.2.5
+Version: 0.2.11
 Summary: Scan and visualize your AWS infrastructure as an interactive graph
-License-Expression: MIT
+License: MIT
 Project-URL: Homepage, https://github.com/Himanshu-370/cloudwire
 Project-URL: Issues, https://github.com/Himanshu-370/cloudwire/issues
+Project-URL: Changelog, https://github.com/Himanshu-370/cloudwire/blob/main/CHANGELOG.md
+Project-URL: Documentation, https://github.com/Himanshu-370/cloudwire/blob/main/docs/USAGE.md
 Keywords: aws,cloud,visualization,graph,infrastructure
 Classifier: Development Status :: 4 - Beta
 Classifier: Environment :: Console
@@ -25,6 +27,8 @@ License-File: LICENSE
 Provides-Extra: dev
 Requires-Dist: twine; extra == "dev"
 Requires-Dist: build; extra == "dev"
+Requires-Dist: ruff>=0.4; extra == "dev"
+Requires-Dist: mypy>=1.0; extra == "dev"
 Provides-Extra: dependencies
 Requires-Dist: fastapi>=0.100; extra == "dependencies"
 Requires-Dist: uvicorn>=0.20; extra == "dependencies"
@@ -35,7 +39,6 @@ Requires-Dist: pydantic>=2.0; extra == "dependencies"
 Requires-Dist: click>=8.0; extra == "dependencies"
 Requires-Dist: python-multipart>=0.0.5; extra == "dependencies"
 Requires-Dist: python-hcl2>=4.3; extra == "dependencies"
-Dynamic: license-file
 
 # CloudWire
 
@@ -54,16 +57,6 @@ No data leaves your system. AWS credentials never leave your terminal. The graph
   <img src="docs/cloudgraph.svg" alt="CloudWire — AWS infrastructure graph visualization" width="100%">
 </p>
 
-> **Note:** The screenshot above contains placeholder resource IDs. Replace `docs/cloudgraph.svg` with a sanitized screenshot from your own environment.
-
-<!-- TODO: Once a demo video is recorded, replace the static image above with:
-<p align="center">
-  <a href="https://www.youtube.com/watch?v=YOUR_VIDEO_ID">
-    <img src="docs/demo-thumbnail.png" alt="CloudWire demo — click to watch" width="100%">
-  </a>
-</p>
--->
-
 ---
 
 ## Quick start
@@ -87,6 +80,16 @@ On first load, select the services you want to scan from the top bar and click *
 
 ---
 
+## Why CloudWire?
+
+Tools like [Rover](https://github.com/im2nguyen/rover), [Terravision](https://github.com/patrickchugh/terravision), and [Inframap](https://github.com/cycloidio/inframap) visualize infrastructure from Terraform state files. CloudWire takes a different approach:
+
+- **Live scanning, not plan-file parsing** — CloudWire queries your AWS account directly via boto3, discovering resources and relationships in real time. No Terraform required. You can also import `.tfstate`/`.tf` files if you prefer.
+- **Relationship inference** — edges aren't just "resource A references resource B." CloudWire resolves IAM policies, environment variable references, event triggers, and VPC containment to surface connections that don't appear in any state file.
+- **Runs entirely local** — single Python process, no database, no cloud backend, no signup. Your AWS credentials never leave your machine.
+
+---
+
 ## Key features
 
 - **Interactive graph** — dark-themed canvas with animated data flow, pan/zoom, and SVG export
@@ -96,14 +99,9 @@ On first load, select the services you want to scan from the top bar and click *
 - **Tag-based scanning** — discover and scan resources by AWS tags
 - **Terraform import** — upload `.tfstate` or `.tf` files to visualize without AWS credentials
 - **Analysis tools** — blast radius, shortest path, architecture summary, pattern detection
-- **Four layout modes** — Circular, Flow, Swimlane — switchable from the toolbar
+- **Three layout modes** — Circular, Flow, Swimlane — switchable from the toolbar
 - **Permission-aware** — missing IAM policies surfaced clearly, never blocks the scan
 
-<!-- TODO: Add 2-3 annotated screenshots here showing:
-  1. Full UI with sidebar + multi-service graph (Lambda → SQS → DynamoDB)
-  2. Inspector panel open on a node showing attributes and edges
-  3. VPC topology view with AZ grouping
--->
 
 ---
 

{cloudwire-0.2.5 → cloudwire-0.2.11}/README.md

@@ -15,16 +15,6 @@ No data leaves your system. AWS credentials never leave your terminal. The graph
   <img src="docs/cloudgraph.svg" alt="CloudWire — AWS infrastructure graph visualization" width="100%">
 </p>
 
-> **Note:** The screenshot above contains placeholder resource IDs. Replace `docs/cloudgraph.svg` with a sanitized screenshot from your own environment.
-
-<!-- TODO: Once a demo video is recorded, replace the static image above with:
-<p align="center">
-  <a href="https://www.youtube.com/watch?v=YOUR_VIDEO_ID">
-    <img src="docs/demo-thumbnail.png" alt="CloudWire demo — click to watch" width="100%">
-  </a>
-</p>
--->
-
 ---
 
 ## Quick start
@@ -48,6 +38,16 @@ On first load, select the services you want to scan from the top bar and click *
 
 ---
 
+## Why CloudWire?
+
+Tools like [Rover](https://github.com/im2nguyen/rover), [Terravision](https://github.com/patrickchugh/terravision), and [Inframap](https://github.com/cycloidio/inframap) visualize infrastructure from Terraform state files. CloudWire takes a different approach:
+
+- **Live scanning, not plan-file parsing** — CloudWire queries your AWS account directly via boto3, discovering resources and relationships in real time. No Terraform required. You can also import `.tfstate`/`.tf` files if you prefer.
+- **Relationship inference** — edges aren't just "resource A references resource B." CloudWire resolves IAM policies, environment variable references, event triggers, and VPC containment to surface connections that don't appear in any state file.
+- **Runs entirely local** — single Python process, no database, no cloud backend, no signup. Your AWS credentials never leave your machine.
+
+---
+
 ## Key features
 
 - **Interactive graph** — dark-themed canvas with animated data flow, pan/zoom, and SVG export
@@ -57,14 +57,9 @@ On first load, select the services you want to scan from the top bar and click *
 - **Tag-based scanning** — discover and scan resources by AWS tags
 - **Terraform import** — upload `.tfstate` or `.tf` files to visualize without AWS credentials
 - **Analysis tools** — blast radius, shortest path, architecture summary, pattern detection
-- **Four layout modes** — Circular, Flow, Swimlane — switchable from the toolbar
+- **Three layout modes** — Circular, Flow, Swimlane — switchable from the toolbar
 - **Permission-aware** — missing IAM policies surfaced clearly, never blocks the scan
 
-<!-- TODO: Add 2-3 annotated screenshots here showing:
-  1. Full UI with sidebar + multi-service graph (Lambda → SQS → DynamoDB)
-  2. Inspector panel open on a node showing attributes and edges
-  3. VPC topology view with AZ grouping
--->
 
 ---
 

cloudwire-0.2.11/cloudwire/__init__.py

@@ -0,0 +1,8 @@
+"""CloudWire — scan and visualize your AWS infrastructure."""
+
+from importlib.metadata import version, PackageNotFoundError
+
+try:
+    __version__ = version("cloudwire")
+except PackageNotFoundError:
+    __version__ = "0.2.11"  # fallback when running from source without pip install

{cloudwire-0.2.5 → cloudwire-0.2.11}/cloudwire/app/main.py

@@ -43,9 +43,41 @@ app = FastAPI(title="CloudWire API", version=_app_version, lifespan=lifespan)
 
 
 # ---------------------------------------------------------------------------
-# Security headers middleware
+# Middleware — registered last-in first-out (outermost executes first)
 # ---------------------------------------------------------------------------
 
+_MAX_JSON_BODY_BYTES = 2 * 1024 * 1024  # 2 MB
+
+
+class RequestBodyLimitMiddleware(BaseHTTPMiddleware):
+    """Reject oversized JSON request bodies before Pydantic validation."""
+
+    async def dispatch(self, request: Request, call_next):
+        content_type = request.headers.get("content-type", "")
+        if "application/json" in content_type:
+            # Fast path: reject immediately if Content-Length header exceeds limit
+            content_length = request.headers.get("content-length")
+            if content_length and int(content_length) > _MAX_JSON_BODY_BYTES:
+                return JSONResponse(
+                    status_code=413,
+                    content=error_payload(
+                        "payload_too_large",
+                        f"Request body exceeds the {_MAX_JSON_BODY_BYTES // (1024 * 1024)} MB limit.",
+                    ),
+                )
+            # Also check actual body size (handles chunked transfers / missing header)
+            body = await request.body()
+            if len(body) > _MAX_JSON_BODY_BYTES:
+                return JSONResponse(
+                    status_code=413,
+                    content=error_payload(
+                        "payload_too_large",
+                        f"Request body exceeds the {_MAX_JSON_BODY_BYTES // (1024 * 1024)} MB limit.",
+                    ),
+                )
+        return await call_next(request)
+
+
 class SecurityHeadersMiddleware(BaseHTTPMiddleware):
     async def dispatch(self, request: Request, call_next):
         response = await call_next(request)
@@ -56,6 +88,7 @@ class SecurityHeadersMiddleware(BaseHTTPMiddleware):
         return response
 
 
+app.add_middleware(RequestBodyLimitMiddleware)
 app.add_middleware(SecurityHeadersMiddleware)
 
 
@@ -123,6 +156,14 @@ if _STATIC_DIR.is_dir() and ((_STATIC_DIR / "assets").is_dir()):
     app.mount("/assets", StaticFiles(directory=str(_STATIC_DIR / "assets")), name="assets")
 
 
+@app.api_route("/api/{api_path:path}", methods=["GET", "POST", "PUT", "DELETE", "PATCH", "OPTIONS"], include_in_schema=False)
+def api_not_found(api_path: str) -> JSONResponse:
+    return JSONResponse(
+        status_code=404,
+        content=error_payload("not_found", f"API endpoint '/api/{api_path}' not found."),
+    )
+
+
 @app.get("/{full_path:path}", include_in_schema=False)
 def spa_fallback(full_path: str) -> FileResponse:
     index = _STATIC_DIR / "index.html"