iam-policy-validator 1.14.7__py3-none-any.whl → 1.15.0__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- {iam_policy_validator-1.14.7.dist-info → iam_policy_validator-1.15.0.dist-info}/METADATA +16 -11
- {iam_policy_validator-1.14.7.dist-info → iam_policy_validator-1.15.0.dist-info}/RECORD +41 -28
- iam_policy_validator-1.15.0.dist-info/entry_points.txt +4 -0
- iam_validator/__version__.py +1 -1
- iam_validator/checks/__init__.py +2 -0
- iam_validator/checks/action_validation.py +91 -27
- iam_validator/checks/not_action_not_resource.py +163 -0
- iam_validator/checks/resource_validation.py +132 -81
- iam_validator/checks/wildcard_resource.py +136 -6
- iam_validator/commands/__init__.py +3 -0
- iam_validator/commands/cache.py +66 -24
- iam_validator/commands/completion.py +94 -15
- iam_validator/commands/mcp.py +210 -0
- iam_validator/commands/query.py +489 -65
- iam_validator/core/aws_service/__init__.py +5 -1
- iam_validator/core/aws_service/cache.py +20 -0
- iam_validator/core/aws_service/fetcher.py +180 -11
- iam_validator/core/aws_service/storage.py +14 -6
- iam_validator/core/aws_service/validators.py +32 -41
- iam_validator/core/check_registry.py +100 -35
- iam_validator/core/config/aws_global_conditions.py +13 -0
- iam_validator/core/config/check_documentation.py +104 -51
- iam_validator/core/config/config_loader.py +39 -3
- iam_validator/core/config/defaults.py +6 -0
- iam_validator/core/constants.py +11 -4
- iam_validator/core/models.py +39 -14
- iam_validator/mcp/__init__.py +162 -0
- iam_validator/mcp/models.py +118 -0
- iam_validator/mcp/server.py +2928 -0
- iam_validator/mcp/session_config.py +319 -0
- iam_validator/mcp/templates/__init__.py +79 -0
- iam_validator/mcp/templates/builtin.py +856 -0
- iam_validator/mcp/tools/__init__.py +72 -0
- iam_validator/mcp/tools/generation.py +888 -0
- iam_validator/mcp/tools/org_config_tools.py +263 -0
- iam_validator/mcp/tools/query.py +395 -0
- iam_validator/mcp/tools/validation.py +376 -0
- iam_validator/sdk/__init__.py +2 -0
- iam_validator/sdk/policy_utils.py +31 -5
- iam_policy_validator-1.14.7.dist-info/entry_points.txt +0 -2
- {iam_policy_validator-1.14.7.dist-info → iam_policy_validator-1.15.0.dist-info}/WHEEL +0 -0
- {iam_policy_validator-1.14.7.dist-info → iam_policy_validator-1.15.0.dist-info}/licenses/LICENSE +0 -0
|
@@ -0,0 +1,72 @@
|
|
|
1
|
+
"""MCP tools for IAM policy validation, generation, and querying.
|
|
2
|
+
|
|
3
|
+
This package contains the MCP tool implementations organized by category:
|
|
4
|
+
- validation: Policy validation tools
|
|
5
|
+
- generation: Policy generation tools (templates and NL)
|
|
6
|
+
- query: AWS service and action query tools
|
|
7
|
+
- org_config_tools: Organization configuration tools
|
|
8
|
+
"""
|
|
9
|
+
|
|
10
|
+
from iam_validator.mcp.tools.generation import (
|
|
11
|
+
build_minimal_policy,
|
|
12
|
+
check_sensitive_actions,
|
|
13
|
+
generate_policy_from_template,
|
|
14
|
+
get_required_conditions,
|
|
15
|
+
list_templates,
|
|
16
|
+
suggest_actions,
|
|
17
|
+
)
|
|
18
|
+
from iam_validator.mcp.tools.org_config_tools import (
|
|
19
|
+
check_org_compliance_impl,
|
|
20
|
+
clear_organization_config_impl,
|
|
21
|
+
get_organization_config_impl,
|
|
22
|
+
load_organization_config_from_yaml_impl,
|
|
23
|
+
set_organization_config_impl,
|
|
24
|
+
validate_with_config_impl,
|
|
25
|
+
)
|
|
26
|
+
from iam_validator.mcp.tools.query import (
|
|
27
|
+
expand_wildcard_action,
|
|
28
|
+
get_condition_requirements,
|
|
29
|
+
get_policy_summary,
|
|
30
|
+
list_checks,
|
|
31
|
+
list_sensitive_actions,
|
|
32
|
+
query_action_details,
|
|
33
|
+
query_arn_formats,
|
|
34
|
+
query_condition_keys,
|
|
35
|
+
query_service_actions,
|
|
36
|
+
)
|
|
37
|
+
from iam_validator.mcp.tools.validation import (
|
|
38
|
+
quick_validate,
|
|
39
|
+
validate_policy,
|
|
40
|
+
validate_policy_json,
|
|
41
|
+
)
|
|
42
|
+
|
|
43
|
+
__all__ = [
|
|
44
|
+
# Validation tools
|
|
45
|
+
"validate_policy",
|
|
46
|
+
"validate_policy_json",
|
|
47
|
+
"quick_validate",
|
|
48
|
+
# Generation tools
|
|
49
|
+
"generate_policy_from_template",
|
|
50
|
+
"build_minimal_policy",
|
|
51
|
+
"list_templates",
|
|
52
|
+
"suggest_actions",
|
|
53
|
+
"get_required_conditions",
|
|
54
|
+
"check_sensitive_actions",
|
|
55
|
+
# Query tools
|
|
56
|
+
"query_service_actions",
|
|
57
|
+
"query_action_details",
|
|
58
|
+
"expand_wildcard_action",
|
|
59
|
+
"query_condition_keys",
|
|
60
|
+
"query_arn_formats",
|
|
61
|
+
"list_checks",
|
|
62
|
+
"get_policy_summary",
|
|
63
|
+
"list_sensitive_actions",
|
|
64
|
+
"get_condition_requirements",
|
|
65
|
+
# Organization config tools
|
|
66
|
+
"set_organization_config_impl",
|
|
67
|
+
"get_organization_config_impl",
|
|
68
|
+
"clear_organization_config_impl",
|
|
69
|
+
"load_organization_config_from_yaml_impl",
|
|
70
|
+
"check_org_compliance_impl",
|
|
71
|
+
"validate_with_config_impl",
|
|
72
|
+
]
|