iam-policy-validator 1.0.3__tar.gz → 1.0.4__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of iam-policy-validator might be problematic. Click here for more details.

Files changed (136) hide show
  1. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.github/workflows/release.yml +4 -3
  2. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/PKG-INFO +169 -473
  3. iam_policy_validator-1.0.4/README.md +638 -0
  4. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/configs/action-condition-enforcement-advanced.yaml +7 -7
  5. iam_policy_validator-1.0.4/examples/configs/config-privilege-escalation.yaml +36 -0
  6. iam_policy_validator-1.0.4/examples/configs/custom-business-rules.yaml +84 -0
  7. iam_policy_validator-1.0.4/examples/configs/custom-wildcard-config.yaml +44 -0
  8. iam_policy_validator-1.0.4/examples/configs/none_of_example.yaml +54 -0
  9. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/configs/unified-condition-enforcement.yaml +5 -6
  10. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/__version__.py +1 -1
  11. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/cli.py +26 -9
  12. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/pyproject.toml +1 -1
  13. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/uv.lock +1 -1
  14. iam_policy_validator-1.0.3/README.md +0 -942
  15. iam_policy_validator-1.0.3/examples/configs/config-privilege-escalation.yaml +0 -36
  16. iam_policy_validator-1.0.3/examples/configs/custom-business-rules.yaml +0 -83
  17. iam_policy_validator-1.0.3/examples/configs/custom-wildcard-config.yaml +0 -44
  18. iam_policy_validator-1.0.3/examples/configs/none_of_example.yaml +0 -54
  19. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.github/dependabot.yml +0 -0
  20. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.github/workflows/ci.yml +0 -0
  21. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.gitignore +0 -0
  22. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.python-version +0 -0
  23. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/CONTRIBUTING.md +0 -0
  24. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/DOCS.md +0 -0
  25. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/LICENSE +0 -0
  26. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/Makefile +0 -0
  27. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/action.yaml +0 -0
  28. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/docs/README.md +0 -0
  29. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/docs/development/PUBLISHING.md +0 -0
  30. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/README.md +0 -0
  31. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/access-analyzer/example1.json +0 -0
  32. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/access-analyzer/example2.json +0 -0
  33. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/README.md +0 -0
  34. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/advanced_multi_condition_validator.py +0 -0
  35. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/cross_account_external_id_check.py +0 -0
  36. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/domain_restriction_check.py +0 -0
  37. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/encryption_required_check.py +0 -0
  38. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/mfa_required_check.py +0 -0
  39. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/region_restriction_check.py +0 -0
  40. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/tag_enforcement_check.py +0 -0
  41. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/custom_checks/time_based_access_check.py +0 -0
  42. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/README.md +0 -0
  43. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/access-analyzer-only.yaml +0 -0
  44. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/action-examples.md +0 -0
  45. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/basic-validation.yaml +0 -0
  46. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/custom-policy-checks.yml +0 -0
  47. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/multi-region-validation.yaml +0 -0
  48. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/resource-policy-validation.yaml +0 -0
  49. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/sequential-validation.yaml +0 -0
  50. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/github-actions/two-step-validation.yaml +0 -0
  51. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/README-privilege-escalation.md +0 -0
  52. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/api_gateway_management.json +0 -0
  53. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/athena_query_access.json +0 -0
  54. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/backup_vault_access.json +0 -0
  55. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/cloudformation_deployer.json +0 -0
  56. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/cloudwatch_monitoring.json +0 -0
  57. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/cognito_user_pool.json +0 -0
  58. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/dynamodb_table_access.json +0 -0
  59. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/ecs_task_execution.json +0 -0
  60. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/eventbridge_rules.json +0 -0
  61. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/glue_etl_jobs.json +0 -0
  62. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/insecure_policy.json +0 -0
  63. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/invalid_policy.json +0 -0
  64. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/kms_encryption_keys.json +0 -0
  65. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/lambda_developer.json +0 -0
  66. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/maximum_size_policy.json +0 -0
  67. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/policy_missing_required_tags.json +0 -0
  68. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/policy_tag_enforcement_example.json +0 -0
  69. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/policy_with_wildcard_resources.json +0 -0
  70. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/privilege_escalation_scattered.json +0 -0
  71. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/rds_database_admin.json +0 -0
  72. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/sample_policy.json +0 -0
  73. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/secrets_manager_access.json +0 -0
  74. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/sns_sqs_messaging.json +0 -0
  75. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/step_functions_workflow.json +0 -0
  76. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/test_none_of_valid.json +0 -0
  77. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/test_none_of_violations.json +0 -0
  78. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/examples/policies/test-cases/wildcard_examples.json +0 -0
  79. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam-validator.yaml +0 -0
  80. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/__init__.py +0 -0
  81. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/__main__.py +0 -0
  82. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/__init__.py +0 -0
  83. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/action_condition_enforcement.py +0 -0
  84. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/action_validation.py +0 -0
  85. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/condition_key_validation.py +0 -0
  86. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/policy_size.py +0 -0
  87. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/resource_validation.py +0 -0
  88. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/security_best_practices.py +0 -0
  89. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/checks/sid_uniqueness.py +0 -0
  90. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/commands/__init__.py +0 -0
  91. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/commands/analyze.py +0 -0
  92. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/commands/base.py +0 -0
  93. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/commands/post_to_pr.py +0 -0
  94. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/commands/validate.py +0 -0
  95. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/__init__.py +0 -0
  96. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/access_analyzer.py +0 -0
  97. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/access_analyzer_report.py +0 -0
  98. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/aws_fetcher.py +0 -0
  99. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/aws_global_conditions.py +0 -0
  100. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/check_registry.py +0 -0
  101. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/config_loader.py +0 -0
  102. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/__init__.py +0 -0
  103. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/base.py +0 -0
  104. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/console.py +0 -0
  105. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/csv.py +0 -0
  106. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/html.py +0 -0
  107. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/json.py +0 -0
  108. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/markdown.py +0 -0
  109. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/formatters/sarif.py +0 -0
  110. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/models.py +0 -0
  111. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/policy_checks.py +0 -0
  112. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/policy_loader.py +0 -0
  113. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/pr_commenter.py +0 -0
  114. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/core/report.py +0 -0
  115. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/integrations/__init__.py +0 -0
  116. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/integrations/github_integration.py +0 -0
  117. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/iam_validator/integrations/ms_teams.py +0 -0
  118. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/README.md +0 -0
  119. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/__init__.py +0 -0
  120. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_action_condition_enforcement.py +0 -0
  121. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_action_validation_check.py +0 -0
  122. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_aws_fetcher_wildcards.py +0 -0
  123. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_aws_global_conditions.py +0 -0
  124. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_check_registry.py +0 -0
  125. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_comment_truncation.py +0 -0
  126. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_condition_key_validation_check.py +0 -0
  127. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_config_loader.py +0 -0
  128. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_custom_policy_checks.py +0 -0
  129. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_models.py +0 -0
  130. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_multipart_comments.py +0 -0
  131. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_policy_loader.py +0 -0
  132. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_policy_size_check.py +0 -0
  133. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_resource_validation_check.py +0 -0
  134. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_security_best_practices.py +0 -0
  135. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_sid_uniqueness_check.py +0 -0
  136. {iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/tests/test_wildcard_allowlist.py +0 -0
{iam_policy_validator-1.0.3 → iam_policy_validator-1.0.4}/.github/workflows/release.yml RENAMED
@@ -158,12 +158,13 @@ jobs:
158
158
  MAJOR=$(echo $VERSION | cut -d. -f1)
159
159
  MINOR=$(echo $VERSION | cut -d. -f1-2)
160
160
 
161
- # Update vX tag (e.g., v1)
161
+ # Update vX tag (e.g., v1) - annotated (unsigned by bot)
162
162
  git tag -fa "v$MAJOR" -m "Update v$MAJOR to $VERSION"
163
163
  git push origin "v$MAJOR" --force
164
164
 
165
- # Update vX.Y tag (e.g., v1.2)
165
+ # Update vX.Y tag (e.g., v1.2) - annotated (unsigned by bot)
166
166
  git tag -fa "v$MINOR" -m "Updated v$MINOR to $VERSION"
167
167
  git push origin "v$MINOR" --force
168
168
 
169
- echo "Updated tags: v$MAJOR and v$MINOR to point to $VERSION"
169
+ echo "Updated tags: v$MAJOR and v$MINOR to point to $VERSION"
170
+ echo "ℹ️ Note: Automated tags are annotated but not signed by the bot."