cloudx-proxy 0.6.0__tar.gz → 0.7.0__tar.gz

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/.github/workflows/release.yml

@@ -5,6 +5,33 @@ on:
       - main
 
 jobs:
+  security-audit:
+    name: Security Audit
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v5
+
+      - name: Setup Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.x'
+
+      - name: Install pip-audit
+        run: |
+          python -m pip install --upgrade pip
+          pip install pip-audit
+
+      - name: Run pip-audit
+        run: pip-audit --format=json --output=pip-audit-report.json .
+
+      - name: Upload pip-audit results
+        uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: pip-audit-report
+          path: pip-audit-report.json
+
   release:
     name: Release
     runs-on: ubuntu-latest
@@ -38,7 +65,7 @@ jobs:
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
-          version=$(npx semantic-release --dry-run --initial-version 2025.1.0 | grep -oP 'The next release version is \K[0-9]+\.[0-9]+\.[0-9]+' || echo "")
+          version=$(npx semantic-release --dry-run  | grep -oP 'The next release version is \K[0-9]+\.[0-9]+\.[0-9]+' || echo "")
           if [ -n "$version" ]; then
             echo "new_release_version=$version" >> $GITHUB_OUTPUT
             echo "Version to be released: $version"
@@ -51,7 +78,7 @@ jobs:
         if: steps.semantic.outputs.new_release_version != ''
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        run: npx semantic-release --initial-version 2025.1.0
+        run: npx semantic-release 
 
       - name: Build package
         if: steps.semantic.outputs.new_release_version != ''

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/CHANGELOG.md

@@ -1,3 +1,17 @@
+# [0.7.0](https://github.com/easytocloud/cloudX-proxy/compare/v0.6.1...v0.7.0) (2025-09-02)
+
+
+### Features
+
+* add pip-audit security scanning to CI/CD pipeline ([3ded9bb](https://github.com/easytocloud/cloudX-proxy/commit/3ded9bbeaeee0e25cb3ca981ca0204faf4735ca7))
+
+## [0.6.1](https://github.com/easytocloud/cloudX-proxy/compare/v0.6.0...v0.6.1) (2025-08-22)
+
+
+### Bug Fixes
+
+* clean up versioning configuration and remove unnecessary package.json ([62af606](https://github.com/easytocloud/cloudX-proxy/commit/62af606f57367948845fc16863e196207b92645d))
+
 # [0.6.0](https://github.com/easytocloud/cloudX-proxy/compare/v0.5.3...v0.6.0) (2025-08-22)
 
 

cloudx_proxy-0.7.0/CLAUDE.md

@@ -0,0 +1,122 @@
+# CLAUDE.md
+
+This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
+
+## Project Overview
+
+cloudX-proxy is a Python CLI tool that enables SSH connections from VSCode to EC2 instances using AWS Systems Manager Session Manager. It eliminates the need for direct SSH access or public IP addresses by creating secure tunnels through AWS SSM.
+
+### Core Architecture
+
+The application consists of three main modules:
+
+- **`cli.py`**: Click-based command-line interface with three main commands:
+  - `setup`: Configure AWS profiles, SSH keys, and SSH configuration
+  - `connect`: Establish connection to EC2 instance via SSM (used internally by SSH)
+  - `list`: Display configured SSH hosts
+
+- **`core.py`**: `CloudXProxy` class that handles the connection workflow:
+  1. Check instance status via SSM
+  2. Start instance if needed and wait for online status
+  3. Push SSH public key via EC2 Instance Connect
+  4. Start SSM session with SSH port forwarding
+
+- **`setup.py`**: `CloudXSetup` class that implements a comprehensive setup wizard with three-tier SSH configuration
+
+### SSH Configuration Architecture
+
+The setup creates a hierarchical three-tier SSH configuration:
+
+1. **Generic (cloudx-*)**: Common settings for all environments (user, keepalive, multiplexing)
+2. **Environment (cloudx-{env}-*)**: Environment-specific settings (authentication, ProxyCommand)
+3. **Host (cloudx-{env}-hostname)**: Instance-specific settings (HostName = instance ID)
+
+This approach minimizes duplication and creates clear inheritance patterns.
+
+### Security Model
+
+Primary security is enforced through AWS IAM/SSM rather than SSH:
+- AWS Systems Manager controls access via IAM permissions
+- EC2 Instance Connect temporarily injects SSH public keys per session
+- No inbound SSH ports needed - all traffic flows through SSM tunneling
+- CloudTrail logs all connection attempts and key pushes
+
+## Development Commands
+
+### Building and Installing
+
+```bash
+# Install in development mode
+pip install -e .
+
+# Build package
+python -m build
+
+# Install from built package
+pip install dist/cloudx_proxy-*.whl
+```
+
+### Running the Application
+
+The application is designed to be run via `uvx` (from the `uv` package manager):
+
+```bash
+# Setup (interactive)
+uvx cloudx-proxy setup
+
+# Setup (non-interactive with parameters)
+uvx cloudx-proxy setup --profile myprofile --ssh-key mykey --instance i-123456789 --hostname myserver --yes
+
+# Connect (typically called by SSH ProxyCommand, not directly)
+uvx cloudx-proxy connect i-123456789 22 --profile myprofile
+
+# List configured hosts
+uvx cloudx-proxy list
+```
+
+### Release Process
+
+The project uses semantic-release with GitHub Actions:
+
+- **Automatic versioning**: Based on conventional commit messages
+- **Release triggers**: Pushes to `main` branch
+- **Artifacts**: GitHub releases, PyPI packages, CHANGELOG.md updates
+
+Commit message format affects version bumps:
+- `feat:` → minor version
+- `fix:`, `docs:`, `style:`, etc. → patch version
+
+### 1Password Integration
+
+When `--1password` is used:
+- Checks for existing SSH keys in any 1Password vault
+- Creates new keys in user-selected vault if needed
+- Configures SSH to use 1Password SSH agent (`IdentityAgent ~/.1password/agent.sock`)
+- Uses public key file to limit SSH agent key search (`IdentitiesOnly yes`)
+
+### AWS Environment Support
+
+The `--aws-env` parameter enables AWS profile organization:
+- Looks for credentials in `~/.aws/aws-envs/{env}/` instead of `~/.aws/`
+- Sets `AWS_CONFIG_FILE` and `AWS_SHARED_CREDENTIALS_FILE` environment variables
+- Supports multiple isolated AWS environments
+
+## Key Configuration Files
+
+- **`pyproject.toml`**: Python packaging configuration with semantic versioning via setuptools_scm
+- **`.releaserc`**: Semantic-release configuration with conventional commits and changelog generation
+- **`.github/workflows/release.yml`**: CI/CD pipeline for automated releases to PyPI
+- **`.clinerules`**: Detailed project documentation including architecture and operating modes
+
+## Code Quality Notes
+
+- Uses modern Python features (pathlib, type hints, f-strings)
+- Supports Python 3.9+ (recently updated from 3.8+)
+- No test suite currently exists
+- Uses Click for CLI with proper help text and option validation
+- Implements comprehensive error handling with user-friendly messages
+- Cross-platform support (Windows, macOS, Linux) with platform-specific adjustments
+
+## Known Issues
+
+- No automated testing framework configured

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/CONTRIBUTING.md

@@ -18,9 +18,11 @@ The package is automatically published to PyPI via GitHub Actions when a new rel
 
 ## Versioning
 
-The project uses semantic-release for versioning, starting at version 2025.1.0. Version numbers are automatically determined based on commit messages following the conventional commits specification.
+The project uses semantic-release for versioning. 
+Version numbers are automatically determined based on commit messages following the conventional commits specification.
 
 The GitHub Actions workflow will:
+
 1. Determine next version based on commits
 2. Update CHANGELOG.md
 3. Create GitHub release

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cloudx-proxy
-Version: 0.6.0
+Version: 0.7.0
 Summary: SSH proxy command to connect VSCode with Cloud9/CloudX instance using AWS Systems Manager
 Author-email: easytocloud <info@easytocloud.com>
 License: MIT License
@@ -56,6 +56,7 @@ Dynamic: license-file
 [![Python Support](https://img.shields.io/pypi/pyversions/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 [![License](https://img.shields.io/github/license/easytocloud/cloudX-proxy.svg)](https://github.com/easytocloud/cloudX-proxy/blob/main/LICENSE)
 [![Release](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml/badge.svg)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
+[![Security Audit](https://img.shields.io/badge/security-pip--audit-blue?logo=python)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
 [![Dependabot](https://img.shields.io/badge/dependabot-enabled-brightgreen?logo=dependabot)](https://github.com/easytocloud/cloudX-proxy/network/updates)
 [![Downloads](https://img.shields.io/pypi/dm/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/README.md

@@ -4,6 +4,7 @@
 [![Python Support](https://img.shields.io/pypi/pyversions/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 [![License](https://img.shields.io/github/license/easytocloud/cloudX-proxy.svg)](https://github.com/easytocloud/cloudX-proxy/blob/main/LICENSE)
 [![Release](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml/badge.svg)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
+[![Security Audit](https://img.shields.io/badge/security-pip--audit-blue?logo=python)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
 [![Dependabot](https://img.shields.io/badge/dependabot-enabled-brightgreen?logo=dependabot)](https://github.com/easytocloud/cloudX-proxy/network/updates)
 [![Downloads](https://img.shields.io/pypi/dm/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/cloudx_proxy/_version.py

@@ -28,7 +28,7 @@ version_tuple: VERSION_TUPLE
 commit_id: COMMIT_ID
 __commit_id__: COMMIT_ID
 
-__version__ = version = '0.6.0'
-__version_tuple__ = version_tuple = (0, 6, 0)
+__version__ = version = '0.7.0'
+__version_tuple__ = version_tuple = (0, 7, 0)
 
 __commit_id__ = commit_id = None

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/cloudx_proxy.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: cloudx-proxy
-Version: 0.6.0
+Version: 0.7.0
 Summary: SSH proxy command to connect VSCode with Cloud9/CloudX instance using AWS Systems Manager
 Author-email: easytocloud <info@easytocloud.com>
 License: MIT License
@@ -56,6 +56,7 @@ Dynamic: license-file
 [![Python Support](https://img.shields.io/pypi/pyversions/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 [![License](https://img.shields.io/github/license/easytocloud/cloudX-proxy.svg)](https://github.com/easytocloud/cloudX-proxy/blob/main/LICENSE)
 [![Release](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml/badge.svg)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
+[![Security Audit](https://img.shields.io/badge/security-pip--audit-blue?logo=python)](https://github.com/easytocloud/cloudX-proxy/actions/workflows/release.yml)
 [![Dependabot](https://img.shields.io/badge/dependabot-enabled-brightgreen?logo=dependabot)](https://github.com/easytocloud/cloudX-proxy/network/updates)
 [![Downloads](https://img.shields.io/pypi/dm/cloudx-proxy.svg)](https://pypi.org/project/cloudx-proxy/)
 

{cloudx_proxy-0.6.0 → cloudx_proxy-0.7.0}/cloudx_proxy.egg-info/SOURCES.txt

@@ -2,10 +2,10 @@
 .gitignore
 .releaserc
 CHANGELOG.md
+CLAUDE.md
 CONTRIBUTING.md
 LICENSE
 README.md
-package.json
 pyproject.toml
 .github/dependabot.yml
 .github/workflows/release.yml

cloudx_proxy-0.6.0/package.json

@@ -1,20 +0,0 @@
-{
-  "name": "cloudx-client",
-  "version": "1.0.0",
-  "description": "Client to connect VSCode with Cloud9/CloudX instance over ssh using Session Manager plugin",
-  "main": "index.js",
-  "scripts": {
-    "test": "echo \"Error: no test specified\" && exit 1"
-  },
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/easytocloud/cloudX-client.git"
-  },
-  "keywords": [],
-  "author": "",
-  "license": "ISC",
-  "bugs": {
-    "url": "https://github.com/easytocloud/cloudX-client/issues"
-  },
-  "homepage": "https://github.com/easytocloud/cloudX-client#readme"
-}