iam-policy-validator 1.7.1__py3-none-any.whl → 1.8.0__py3-none-any.whl

iam_validator/core/policy_loader.py

@@ -29,8 +29,10 @@ import json
 import logging
 from collections.abc import Generator
 from pathlib import Path
+from typing import overload
 
 import yaml
+from pydantic import ValidationError
 
 from iam_validator.core.models import IAMPolicy
 
@@ -44,6 +46,8 @@ class PolicyLoader:
     """
 
     SUPPORTED_EXTENSIONS = {".json", ".yaml", ".yml"}
+    # Directories to skip when scanning recursively (cache, build artifacts, etc.)
+    SKIP_DIRECTORIES = {".cache", ".git", "node_modules", "__pycache__", ".venv", "venv"}
 
     def __init__(self, max_file_size_mb: int = 100) -> None:
         """Initialize the policy loader.
@@ -53,6 +57,8 @@ class PolicyLoader:
         """
         self.loaded_policies: list[tuple[str, IAMPolicy]] = []
         self.max_file_size_bytes = max_file_size_mb * 1024 * 1024
+        # Track parsing/validation errors for reporting
+        self.parsing_errors: list[tuple[str, str]] = []  # (file_path, error_message)
 
     @staticmethod
     def _find_statement_line_numbers(file_content: str) -> list[int]:
@@ -142,26 +148,38 @@ class PolicyLoader:
                 return False
             return True
         except OSError as e:
-            logger.error(f"Failed to check file size for {path}: {e}")
+            logger.error("Failed to check file size for %s: %s", path, e)
             return False
 
-    def load_from_file(self, file_path: str) -> IAMPolicy | None:
+    @overload
+    def load_from_file(self, file_path: str, return_raw_dict: bool = False) -> IAMPolicy | None: ...
+
+    @overload
+    def load_from_file(
+        self, file_path: str, return_raw_dict: bool = True
+    ) -> tuple[IAMPolicy, dict] | None: ...
+
+    def load_from_file(
+        self, file_path: str, return_raw_dict: bool = False
+    ) -> IAMPolicy | tuple[IAMPolicy, dict] | None:
         """Load a single IAM policy from a file.
 
         Args:
             file_path: Path to the policy file
+            return_raw_dict: If True, return tuple of (policy, raw_dict) for validation
 
         Returns:
-            Parsed IAMPolicy or None if loading fails
+            Parsed IAMPolicy, or tuple of (IAMPolicy, raw_dict) if return_raw_dict=True,
+            or None if loading fails
         """
         path = Path(file_path)
 
         if not path.exists():
-            logger.error(f"File not found: {file_path}")
+            logger.error("File not found: %s", file_path)
             return None
 
         if not path.is_file():
-            logger.error(f"Not a file: {file_path}")
+            logger.error("Not a file: %s", file_path)
             return None
 
         if path.suffix.lower() not in self.SUPPORTED_EXTENSIONS:
@@ -193,21 +211,52 @@ class PolicyLoader:
 
             # Attach line numbers to statements
             if statement_line_numbers:
-                for idx, statement in enumerate(policy.statement):
+                for idx, statement in enumerate(policy.statement or []):
                     if idx < len(statement_line_numbers):
                         statement.line_number = statement_line_numbers[idx]
 
-            logger.info(f"Successfully loaded policy from {file_path}")
-            return policy
+            logger.info("Successfully loaded policy from %s", file_path)
+            return (policy, data) if return_raw_dict else policy
 
         except json.JSONDecodeError as e:
-            logger.error(f"Invalid JSON in {file_path}: {e}")
+            error_msg = f"Invalid JSON: {e}"
+            logger.error("Invalid JSON in %s: %s", file_path, e)
+            self.parsing_errors.append((file_path, error_msg))
             return None
         except yaml.YAMLError as e:
-            logger.error(f"Invalid YAML in {file_path}: {e}")
+            error_msg = f"Invalid YAML: {e}"
+            logger.error("Invalid YAML in %s: %s", file_path, e)
+            self.parsing_errors.append((file_path, error_msg))
+            return None
+        except ValidationError as e:
+            # Handle Pydantic validation errors with helpful messages
+            error_messages = []
+            for error in e.errors():
+                loc = ".".join(str(x) for x in error["loc"])
+                error_type = error["type"]
+
+                # Provide user-friendly messages for common errors
+                if error_type == "extra_forbidden":
+                    # Extract the field name that has a typo
+                    field_name = error["loc"][-1] if error["loc"] else "unknown"
+                    error_messages.append(
+                        f"Unknown field '{field_name}' at {loc}. "
+                        f"This might be a typo. Did you mean 'Condition', 'Action', or 'Resource'?"
+                    )
+                else:
+                    error_messages.append(f"{loc}: {error['msg']}")
+
+            error_summary = "\n  ".join(error_messages)
+            logger.error(
+                "Policy validation failed for %s:\n  %s",
+                file_path,
+                error_summary,
+            )
+            # Track parsing error for GitHub reporting
+            self.parsing_errors.append((file_path, error_summary))
             return None
         except Exception as e:
-            logger.error(f"Failed to load policy from {file_path}: {e}")
+            logger.error("Failed to load policy from %s: %s", file_path, e)
             return None
 
     def load_from_directory(
@@ -225,23 +274,27 @@ class PolicyLoader:
         path = Path(directory_path)
 
         if not path.exists():
-            logger.error(f"Directory not found: {directory_path}")
+            logger.error("Directory not found: %s", directory_path)
             return []
 
         if not path.is_dir():
-            logger.error(f"Not a directory: {directory_path}")
+            logger.error("Not a directory: %s", directory_path)
             return []
 
         policies: list[tuple[str, IAMPolicy]] = []
         pattern = "**/*" if recursive else "*"
 
         for file_path in path.glob(pattern):
+            # Skip directories that shouldn't be scanned
+            if any(skip_dir in file_path.parts for skip_dir in self.SKIP_DIRECTORIES):
+                continue
+
             if file_path.is_file() and file_path.suffix.lower() in self.SUPPORTED_EXTENSIONS:
                 policy = self.load_from_file(str(file_path))
                 if policy:
                     policies.append((str(file_path), policy))
 
-        logger.info(f"Loaded {len(policies)} policies from {directory_path}")
+        logger.info("Loaded %d policies from %s", len(policies), directory_path)
         return policies
 
     def load_from_path(self, path: str, recursive: bool = True) -> list[tuple[str, IAMPolicy]]:
@@ -262,7 +315,7 @@ class PolicyLoader:
         elif path_obj.is_dir():
             return self.load_from_directory(path, recursive)
         else:
-            logger.error(f"Path not found: {path}")
+            logger.error("Path not found: %s", path)
             return []
 
     def load_from_paths(
@@ -283,7 +336,7 @@ class PolicyLoader:
             policies = self.load_from_path(path.strip(), recursive)
             all_policies.extend(policies)
 
-        logger.info(f"Loaded {len(all_policies)} total policies from {len(paths)} path(s)")
+        logger.info("Loaded %d total policies from %d path(s)", len(all_policies), len(paths))
         return all_policies
 
     def _get_policy_files(self, path: str, recursive: bool = True) -> Generator[Path, None, None]:
@@ -307,10 +360,14 @@ class PolicyLoader:
         elif path_obj.is_dir():
             pattern = "**/*" if recursive else "*"
             for file_path in path_obj.glob(pattern):
+                # Skip directories that shouldn't be scanned
+                if any(skip_dir in file_path.parts for skip_dir in self.SKIP_DIRECTORIES):
+                    continue
+
                 if file_path.is_file() and file_path.suffix.lower() in self.SUPPORTED_EXTENSIONS:
                     yield file_path
         else:
-            logger.error(f"Path not found: {path}")
+            logger.error("Path not found: %s", path)
 
     def stream_from_path(
         self, path: str, recursive: bool = True
@@ -391,6 +448,29 @@ class PolicyLoader:
             policy = IAMPolicy.model_validate(data)
             logger.info("Successfully parsed policy from string")
             return policy
+        except json.JSONDecodeError as e:
+            logger.error("Invalid JSON: %s", e)
+            return None
+        except ValidationError as e:
+            # Handle Pydantic validation errors with helpful messages
+            error_messages = []
+            for error in e.errors():
+                loc = ".".join(str(x) for x in error["loc"])
+                error_type = error["type"]
+
+                # Provide user-friendly messages for common errors
+                if error_type == "extra_forbidden":
+                    # Extract the field name that has a typo
+                    field_name = error["loc"][-1] if error["loc"] else "unknown"
+                    error_messages.append(
+                        f"Unknown field '{field_name}' at {loc}. "
+                        f"This might be a typo. Did you mean 'Condition', 'Action', or 'Resource'?"
+                    )
+                else:
+                    error_messages.append(f"{loc}: {error['msg']}")
+
+            logger.error("Policy validation failed:\n  %s", "\n  ".join(error_messages))
+            return None
         except Exception as e:
-            logger.error(f"Failed to parse policy string: {e}")
+            logger.error("Failed to parse policy string: %s", e)
             return None

iam_validator/core/report.py

@@ -12,6 +12,7 @@ from rich.table import Table
 from rich.text import Text
 
 from iam_validator.__version__ import __version__
+from iam_validator.core import constants
 from iam_validator.core.formatters import (
     ConsoleFormatter,
     CSVFormatter,
@@ -71,11 +72,16 @@ class ReportGenerator:
         """
         return self.formatter_registry.format_report(report, format_id, **kwargs)
 
-    def generate_report(self, results: list[PolicyValidationResult]) -> ValidationReport:
+    def generate_report(
+        self,
+        results: list[PolicyValidationResult],
+        parsing_errors: list[tuple[str, str]] | None = None,
+    ) -> ValidationReport:
         """Generate a validation report from results.
 
         Args:
             results: List of policy validation results
+            parsing_errors: Optional list of (file_path, error_message) for files that failed to parse
 
         Returns:
             ValidationReport
@@ -106,6 +112,7 @@ class ReportGenerator:
             validity_issues=validity_issues,
             security_issues=security_issues,
             results=results,
+            parsing_errors=parsing_errors or [],
         )
 
     def print_console_report(self, report: ValidationReport) -> None:
@@ -150,6 +157,7 @@ class ReportGenerator:
                 summary_text,
                 title=f"Validation Summary (iam-validator v{__version__})",
                 border_style="blue",
+                width=constants.CONSOLE_PANEL_WIDTH,
             )
         )
 
@@ -177,11 +185,12 @@ class ReportGenerator:
             self.console.print("  [dim]No issues found[/dim]")
             return
 
-        # Create issues table with adjusted column widths for better readability
-        table = Table(show_header=True, header_style="bold", box=None, padding=(0, 1))
-        table.add_column("Severity", style="cyan", width=12, no_wrap=False)
-        table.add_column("Type", style="magenta", width=25, no_wrap=False)
-        table.add_column("Message", style="white", no_wrap=False)
+        # Create issues table with flexible column widths
+        # Use wider columns and more padding to better utilize terminal width
+        table = Table(show_header=True, header_style="bold", box=None, padding=(0, 2), expand=True)
+        table.add_column("Severity", style="cyan", no_wrap=True, min_width=12)
+        table.add_column("Type", style="magenta", no_wrap=False, min_width=32)
+        table.add_column("Message", style="white", no_wrap=False, ratio=3)
 
         for issue in result.issues:
             severity_style = {
@@ -207,6 +216,8 @@ class ReportGenerator:
             message = f"{location}: {issue.message}"
             if issue.suggestion:
                 message += f"\n  → {issue.suggestion}"
+            if issue.example:
+                message += f"\n[dim]Example:[/dim]\n[dim]{issue.example}[/dim]"
 
             table.add_row(severity_style, issue.issue_type, message)
 
@@ -224,13 +235,15 @@ class ReportGenerator:
         return report.model_dump_json(indent=2)
 
     def generate_github_comment_parts(
-        self, report: ValidationReport, max_length_per_part: int = 60000
+        self,
+        report: ValidationReport,
+        max_length_per_part: int = constants.GITHUB_COMMENT_SPLIT_LIMIT,
     ) -> list[str]:
         """Generate GitHub PR comment(s), splitting into multiple parts if needed.
 
         Args:
             report: Validation report
-            max_length_per_part: Maximum character length per comment part (default 60000)
+            max_length_per_part: Maximum character length per comment part (default from GITHUB_COMMENT_SPLIT_LIMIT)
 
         Returns:
             List of comment parts (each under max_length_per_part)
@@ -260,9 +273,9 @@ class ReportGenerator:
             Estimated character count
         """
         # Rough estimate: ~500 chars per issue + overhead
-        base_overhead = 2000  # Header + footer
-        chars_per_issue = 500
-        return base_overhead + (report.total_issues * chars_per_issue)
+        return constants.COMMENT_BASE_OVERHEAD_CHARS + (
+            report.total_issues * constants.COMMENT_CHARS_PER_ISSUE_ESTIMATE
+        )
 
     def _generate_split_comments(self, report: ValidationReport, max_length: int) -> list[str]:
         """Split a large report into multiple comment parts.
@@ -289,13 +302,13 @@ class ReportGenerator:
         # - Part indicator: "**(Part N/M)**\n\n" (estimated ~20 chars)
         # - HTML comment identifier: "<!-- iam-policy-validator -->\n" (~35 chars)
         # - Safety buffer for formatting
-        continuation_overhead = 200
+        continuation_overhead = constants.COMMENT_CONTINUATION_OVERHEAD_CHARS
 
         # Sort results to prioritize errors - support both IAM validity and security severities
         sorted_results = sorted(
             [(idx, r) for idx, r in enumerate(report.results, 1) if r.issues],
             key=lambda x: (
-                -sum(1 for i in x[1].issues if i.severity in ("error", "critical", "high")),
+                -sum(1 for i in x[1].issues if i.severity in constants.HIGH_SEVERITY_LEVELS),
                 -len(x[1].issues),
             ),
         )
@@ -410,7 +423,7 @@ class ReportGenerator:
                 1
                 for r in report.results
                 for i in r.issues
-                if i.severity in ("error", "critical", "high")
+                if i.severity in constants.HIGH_SEVERITY_LEVELS
             )
             warnings = sum(
                 1 for r in report.results for i in r.issues if i.severity in ("warning", "medium")
@@ -456,9 +469,9 @@ class ReportGenerator:
         lines.append("")
 
         # Group issues by severity - support both IAM validity and security severities
-        errors = [i for i in result.issues if i.severity in ("error", "critical", "high")]
-        warnings = [i for i in result.issues if i.severity in ("warning", "medium")]
-        infos = [i for i in result.issues if i.severity in ("info", "low")]
+        errors = [i for i in result.issues if i.severity in constants.HIGH_SEVERITY_LEVELS]
+        warnings = [i for i in result.issues if i.severity in constants.MEDIUM_SEVERITY_LEVELS]
+        infos = [i for i in result.issues if i.severity in constants.LOW_SEVERITY_LEVELS]
 
         if errors:
             lines.append("### 🔴 Errors")
@@ -510,12 +523,16 @@ class ReportGenerator:
 
         return "\n".join(parts)
 
-    def generate_github_comment(self, report: ValidationReport, max_length: int = 65000) -> str:
+    def generate_github_comment(
+        self,
+        report: ValidationReport,
+        max_length: int = constants.GITHUB_MAX_COMMENT_LENGTH,
+    ) -> str:
         """Generate a GitHub-flavored markdown comment for PR reviews.
 
         Args:
             report: Validation report
-            max_length: Maximum character length (GitHub limit is 65536, we use 65000 for safety)
+            max_length: Maximum character length (default from GITHUB_MAX_COMMENT_LENGTH constant)
 
         Returns:
             Markdown formatted string
@@ -523,7 +540,8 @@ class ReportGenerator:
         lines = []
 
         # Header with emoji and status badge
-        if report.invalid_policies == 0:
+        has_parsing_errors = len(report.parsing_errors) > 0
+        if report.invalid_policies == 0 and not has_parsing_errors:
             lines.append("# 🎉 IAM Policy Validation Passed!")
             status_badge = (
                 "![Status](https://img.shields.io/badge/status-passed-success?style=flat-square)"
@@ -558,7 +576,7 @@ class ReportGenerator:
                 1
                 for r in report.results
                 for i in r.issues
-                if i.severity in ("error", "critical", "high")
+                if i.severity in constants.HIGH_SEVERITY_LEVELS
             )
             warnings = sum(
                 1 for r in report.results for i in r.issues if i.severity in ("warning", "medium")
@@ -579,6 +597,29 @@ class ReportGenerator:
                 lines.append(f"| 🔵 **Info** | {infos} |")
             lines.append("")
 
+        # Parsing errors section (if any)
+        if report.parsing_errors:
+            lines.append("### ⚠️ Parsing Errors")
+            lines.append("")
+            lines.append(
+                f"**{len(report.parsing_errors)} file(s) failed to parse** and were excluded from validation:"
+            )
+            lines.append("")
+            for file_path, error_msg in report.parsing_errors:
+                # Extract just the filename for cleaner display
+                from pathlib import Path
+
+                filename = Path(file_path).name
+                lines.append(f"- **`{filename}`**")
+                lines.append("  ```")
+                lines.append(f"  {error_msg}")
+                lines.append("  ```")
+            lines.append("")
+            lines.append(
+                "> **Note:** Fix these parsing errors first before validation can proceed on these files."
+            )
+            lines.append("")
+
         # Store header for later (we always include this)
         header_content = "\n".join(lines)
 
@@ -594,7 +635,7 @@ class ReportGenerator:
         footer_content = "\n".join(footer_lines)
 
         # Calculate remaining space for details
-        base_length = len(header_content) + len(footer_content) + 100  # 100 for safety
+        base_length = len(header_content) + len(footer_content) + constants.FORMATTING_SAFETY_BUFFER
         available_length = max_length - base_length
 
         # Detailed findings
@@ -611,7 +652,7 @@ class ReportGenerator:
             sorted_results = sorted(
                 [(idx, r) for idx, r in enumerate(report.results, 1) if r.issues],
                 key=lambda x: (
-                    -sum(1 for i in x[1].issues if i.severity in ("error", "critical", "high")),
+                    -sum(1 for i in x[1].issues if i.severity in constants.HIGH_SEVERITY_LEVELS),
                     -len(x[1].issues),
                 ),
             )
@@ -623,7 +664,7 @@ class ReportGenerator:
                 policy_lines = []
 
                 # Group issues by severity - support both IAM validity and security severities
-                errors = [i for i in result.issues if i.severity in ("error", "critical", "high")]
+                errors = [i for i in result.issues if i.severity in constants.HIGH_SEVERITY_LEVELS]
                 warnings = [i for i in result.issues if i.severity in ("warning", "medium")]
                 infos = [i for i in result.issues if i.severity in ("info", "low")]
 

iam_validator/integrations/github_integration.py

@@ -6,11 +6,14 @@ including posting PR comments, line comments, labels, and retrieving PR informat
 
 import logging
 import os
+import re
 from enum import Enum
 from typing import Any
 
 import httpx
 
+from iam_validator.core import constants
+
 logger = logging.getLogger(__name__)
 
 
@@ -134,8 +137,6 @@ class GitHubIntegration:
 
         # Basic sanitization - alphanumeric, hyphens, underscores, dots
         # GitHub allows these characters in usernames and repo names
-        import re
-
         valid_pattern = re.compile(r"^[a-zA-Z0-9._-]+$")
         if not valid_pattern.match(owner) or not valid_pattern.match(repo):
             logger.warning(
@@ -199,8 +200,6 @@ class GitHubIntegration:
             return "https://api.github.com"
 
         # Basic URL validation
-        import re
-
         # Simple URL pattern check
         url_pattern = re.compile(r"^https://[a-zA-Z0-9.-]+(?:/.*)?$")
         if not url_pattern.match(api_url):
@@ -506,7 +505,7 @@ class GitHubIntegration:
             return True
         return False
 
-    async def cleanup_bot_review_comments(self, identifier: str = "🤖 IAM Policy Validator") -> int:
+    async def cleanup_bot_review_comments(self, identifier: str = constants.BOT_IDENTIFIER) -> int:
         """Delete all review comments from the bot (from previous runs).
 
         This ensures old/outdated comments are removed before posting new ones.

iam_validator/utils/__init__.py

@@ -10,6 +10,7 @@ see iam_validator.checks.utils instead.
 Organization:
     - cache.py: Generic caching implementations (LRUCache with TTL)
     - regex.py: Regex pattern caching and compilation utilities
+    - terminal.py: Terminal width detection utilities
 """
 
 from iam_validator.utils.cache import LRUCache
@@ -19,6 +20,7 @@ from iam_validator.utils.regex import (
     compile_and_cache,
     get_cached_pattern,
 )
+from iam_validator.utils.terminal import get_terminal_width
 
 __all__ = [
     # Cache utilities
@@ -28,4 +30,6 @@ __all__ = [
     "compile_and_cache",
     "get_cached_pattern",
     "clear_pattern_cache",
+    # Terminal utilities
+    "get_terminal_width",
 ]

iam_validator/utils/terminal.py

@@ -0,0 +1,22 @@
+"""Terminal utilities for console output formatting."""
+
+import shutil
+
+
+def get_terminal_width(min_width: int = 80, max_width: int = 150, fallback: int = 100) -> int:
+    """Get the current terminal width with reasonable bounds.
+
+    Args:
+        min_width: Minimum width to return (default: 80)
+        max_width: Maximum width to return (default: 150)
+        fallback: Fallback width if detection fails (default: 100)
+
+    Returns:
+        Terminal width within the specified bounds
+    """
+    try:
+        terminal_width = shutil.get_terminal_size().columns
+        # Ensure width is within reasonable bounds
+        return max(min(terminal_width, max_width), min_width)
+    except Exception:
+        return fallback

iam_policy_validator-1.7.1.dist-info/RECORD

@@ -1,83 +0,0 @@
-iam_validator/__init__.py,sha256=APnMR3Fu4fHhxfsHBvUM2dJIwazgvLKQbfOsSgFPidg,693
-iam_validator/__main__.py,sha256=to_nz3n_IerJpVVZZ6WSFlFR5s_06J0csfPOTfQZG8g,197
-iam_validator/__version__.py,sha256=hhtguX-fvQWNuUzOdKMFXPyDTbhXhMm7VQgXxQD2xCQ,206
-iam_validator/checks/__init__.py,sha256=eDiDlVon0CwWGSBnZgM-arn1i5R5ZSG89pgR-ifETxE,1782
-iam_validator/checks/action_condition_enforcement.py,sha256=n-F7NEmQm76Hs-Aj5qxgXney3MpkzbWElZUu1Ig73pw,36723
-iam_validator/checks/action_resource_matching.py,sha256=X9dqWy1s_-h1rA81wZRLOxAVLmUHlGVPjxMo0WKIlwM,17433
-iam_validator/checks/action_validation.py,sha256=IpxtTsk58f2zEZ-xzAoyHw4QK8BCRV43OffP-8ydf9E,2578
-iam_validator/checks/condition_key_validation.py,sha256=E-doe2QjvKSkyjXZO9TBp0QS7M0Fv2oYYQQ9738QNxg,3918
-iam_validator/checks/condition_type_mismatch.py,sha256=qAbP6pP_vM1aBvIBRHji56XLH_5cQI4cDhpMQe19CHM,10588
-iam_validator/checks/full_wildcard.py,sha256=0_F6h4goWlc3DuZwo1F9YGw5hvpnkfZxYSDxhXXK50I,2449
-iam_validator/checks/mfa_condition_check.py,sha256=s7K2r9hxlJI1KWk8qXl-JOWE6jLIhpxooK26Pr7acKs,4915
-iam_validator/checks/policy_size.py,sha256=ibgmrErpkz6OfUAN6bFuHe1KHzpzzra9gHwNtVAkPWc,5729
-iam_validator/checks/policy_type_validation.py,sha256=9qmrA8CXwsVpCU4rT0RrqDXgVOzNamMEpdg3cXWAtBI,15213
-iam_validator/checks/principal_validation.py,sha256=Bm4pH6eiJLDa9ID7UyM63phgffh-P5DpPpSBUbYyVn8,29851
-iam_validator/checks/resource_validation.py,sha256=fGi9QuX-lIHDtLm8xB3VReFFhbZpQ2Yub-FKRafQCkw,5984
-iam_validator/checks/sensitive_action.py,sha256=mdl4g67HBioYTvAvar9CaTjxfaPvpYkNo9phL4E1c1w,9794
-iam_validator/checks/service_wildcard.py,sha256=CiQQoti06nqVgvH-HpBIjoW23tnTJqDU4S-ZnM1DwsA,4218
-iam_validator/checks/set_operator_validation.py,sha256=1XjOdf-xk-m6m1bODuHsELZccriGqOJTDI-HCcuId80,7464
-iam_validator/checks/sid_uniqueness.py,sha256=1Ux9W1hPPhzgdCzfxwxvD-nSBRo1SyrxFWlnTXDcOys,6887
-iam_validator/checks/wildcard_action.py,sha256=XAVuk5L9dQqiWPgd3HJXGNmYr2bh2szJMVVcHSBXb_8,2140
-iam_validator/checks/wildcard_resource.py,sha256=IEpyoU4mA3t2kRxSwVavtROYIyF0Bq1xZJAL9P7XbVQ,5582
-iam_validator/checks/utils/__init__.py,sha256=j0X4ibUB6RGx2a-kNoJnlVZwHfoEvzZsIeTmJIAoFzA,45
-iam_validator/checks/utils/policy_level_checks.py,sha256=2V60C0zhKfsFPjQ-NMlD3EemtwA9S6-4no8nETgXdQE,5274
-iam_validator/checks/utils/sensitive_action_matcher.py,sha256=tcWK4nImpSVNia0FUsN2uLK9LM5EnzjRFtaPQLHZaLw,10667
-iam_validator/checks/utils/wildcard_expansion.py,sha256=fSSoquVdVZaVWS_qBxAx7LMOzxgHed4ffQ6OAZnuqos,3132
-iam_validator/commands/__init__.py,sha256=M-5bo8w0TCWydK0cXgJyPD2fmk8bpQs-3b26YbgLzlc,565
-iam_validator/commands/analyze.py,sha256=rvLBJ5_A3HB530xtixhaIsC19QON68olEQnn8TievgI,20784
-iam_validator/commands/base.py,sha256=5baCCMwxz7pdQ6XMpWfXFNz7i1l5dB8Qv9dKKR04Gzs,1074
-iam_validator/commands/cache.py,sha256=p4ucRVuh42sbK3Lk0b610L3ofAR5TnUreF00fpO6VFg,14219
-iam_validator/commands/download_services.py,sha256=KKz3ybMLT8DQUf9aFZ0tilJ-o1b6PE8Pf1pC4K6cT8I,9175
-iam_validator/commands/post_to_pr.py,sha256=CvUXs2xvO-UhluxdfNM6F0TCWD8hDBEOiYw60fm1Dms,2363
-iam_validator/commands/validate.py,sha256=Eik-w613zCnX7hUHziBq4k5la3e3qJ0CO1__7aw-gBk,23554
-iam_validator/core/__init__.py,sha256=1FvJPMrbzJfS9YbRUJCshJLd5gzWwR9Fd_slS0Aq9c8,416
-iam_validator/core/access_analyzer.py,sha256=8GgkR-vCkCtSxtXGywvQNBPYq-rvDLexUuLSyflq0V4,24520
-iam_validator/core/access_analyzer_report.py,sha256=O17gagknvkNMTTlq7BrLM68FjlCEm4LjIKD9oqxEbPg,24860
-iam_validator/core/aws_fetcher.py,sha256=cZFo5JMSoNLx1tpM6NzYr2cnq8Bvc2KQx2nJDmo69lc,36504
-iam_validator/core/check_registry.py,sha256=cMjtJROkZOLzXxl-mTdLYHdxyajNnOsaHGs-EeaSZ7k,21741
-iam_validator/core/cli.py,sha256=PkXiZjlgrQ21QustBbspefYsdbxst4gxoClyG2_HQR8,3843
-iam_validator/core/condition_validators.py,sha256=7zBjlcf2xGFKGbcFrXSLvWT5tFhWxoqwzhsJqS2E8uY,21524
-iam_validator/core/constants.py,sha256=oblMWsjoroIhwjYgZdcyLxaATsGeR99zQwRg6h59Nlo,3145
-iam_validator/core/models.py,sha256=59yqvHoX3nCSJyQDmWCuEsQzNz9PNiF7um7A1wti-2w,12176
-iam_validator/core/policy_checks.py,sha256=Uz2yCsqRaoIja31F4ZM-39a1pHv51yZqKyWWkGUZKNY,26489
-iam_validator/core/policy_loader.py,sha256=TR7SpzlRG3TwH4HBGEFUuhNOmxIR8Cud2SQ-AmHWBpM,14040
-iam_validator/core/pr_commenter.py,sha256=MU-t7SfdHUpSc6BDbh8_dNAbxDiG-bZBCry-jUXivAc,15066
-iam_validator/core/report.py,sha256=j6uWlFL6Xavl4BnpaQtQoxFOEgKEiuY0IYBq8I9DH5Q,34134
-iam_validator/core/config/__init__.py,sha256=CWSyIA7kEyzrskEenjYbs9Iih10BXRpiY9H2dHg61rU,2671
-iam_validator/core/config/aws_api.py,sha256=HLIzOItQ0A37wxHcgWck6ZFO0wmNY8JNTiWMMK6JKYU,1248
-iam_validator/core/config/aws_global_conditions.py,sha256=gdmMxXGBy95B3uYUG-J7rnM6Ixgc6L7Y9Pcd2XAMb60,7170
-iam_validator/core/config/category_suggestions.py,sha256=QlrYi4BTkxDSTlL7NZGE9BWN-atWetZ6XjkI9F_7YzI,4370
-iam_validator/core/config/condition_requirements.py,sha256=1PuADTB9pLqh-kNUGC7kSU6LMLtXMSc003tvI7qKeAY,5170
-iam_validator/core/config/config_loader.py,sha256=7YkuPnroR-Up5CUTQOXIyS_b732WrzNn8o1EH9O6lyI,17730
-iam_validator/core/config/defaults.py,sha256=w5ievxkqki3zYr7NaREoWtVx5rTfxBpZlgoNdovcILs,27112
-iam_validator/core/config/principal_requirements.py,sha256=VCX7fBDgeDTJQyoz7_x7GI7Kf9O1Eu-sbihoHOrKv6o,15105
-iam_validator/core/config/sensitive_actions.py,sha256=uATDIp_TD3OQQlsYTZp79qd1mSK2Bf9hJ0JwcqLBr84,25344
-iam_validator/core/config/service_principals.py,sha256=gQSROsxUWBD6P2F9qP320UZV4lHGlsyvHSkMyy0njrU,2685
-iam_validator/core/config/wildcards.py,sha256=H_v6hb-rZ0UUz4cul9lxkVI39e6knaK4Y-MbWz2Ebpw,3228
-iam_validator/core/formatters/__init__.py,sha256=fnCKAEBXItnOf2m4rhVs7zwMaTxbG6ESh3CF8V5j5ec,868
-iam_validator/core/formatters/base.py,sha256=SShDeDiy5mYQnS6BpA8xYg91N-KX1EObkOtlrVHqx1Q,4451
-iam_validator/core/formatters/console.py,sha256=lX4Yp4bTW61fxe0fCiHuO6bCZtC_6cjCwqDNQ55nT_8,1937
-iam_validator/core/formatters/csv.py,sha256=2FaN6Y_0TPMFOb3A3tNtj0-9bkEc5P-6eZ7eLROIqFE,5899
-iam_validator/core/formatters/enhanced.py,sha256=S0UgYKFOgILfOqwnBC8-WFab3F1CiEko33g0nbaswtk,17085
-iam_validator/core/formatters/html.py,sha256=j4sQi-wXiD9kCHldW5JCzbJe0frhiP5uQI9KlH3Sj_g,22994
-iam_validator/core/formatters/json.py,sha256=A7gZ8P32GEdbDvrSn6v56yQ4fOP_kyMaoFVXG2bgnew,939
-iam_validator/core/formatters/markdown.py,sha256=aPAY6FpZBHsVBDag3FAsB_X9CZzznFjX9dQr0ysDrTE,2251
-iam_validator/core/formatters/sarif.py,sha256=O3pn7whqFq5xxk-tuoqSb2k4Fk5ai_A2SKX_ph8GLV4,10469
-iam_validator/integrations/__init__.py,sha256=7Hlor_X9j0NZaEjFuSvoXAAuSKQ-zgY19Rk-Dz3JpKo,616
-iam_validator/integrations/github_integration.py,sha256=QoPkaxdRDQTzmHN4cKEXoGcn8BRv37JW4IvD2W5jEtc,26474
-iam_validator/integrations/ms_teams.py,sha256=t2PlWuTDb6GGH-eDU1jnOKd8D1w4FCB68bahGA7MJcE,14475
-iam_validator/sdk/__init__.py,sha256=fRDSXAclGmCU3KDft4StL8JUcpAsdzwIRf8mVj461q0,5306
-iam_validator/sdk/arn_matching.py,sha256=HSDpLltOYISq-SoPebAlM89mKOaUaghq_04urchEFDA,12778
-iam_validator/sdk/context.py,sha256=SBFeedu8rhCzFA-zC2cH4wLZxEJT6XOW30hIZAyXPVU,6826
-iam_validator/sdk/exceptions.py,sha256=tm91TxIwU157U_UHN7w5qICf_OhU11agj6pV5W_YP-4,1023
-iam_validator/sdk/helpers.py,sha256=OVBg4xrW95LT74wXCg1LQkba9kw5RfFqeCLuTqhgL-A,5697
-iam_validator/sdk/policy_utils.py,sha256=CZS1OGSdiWsd2lsCwg0BDcUNWa61tUwgvn-P5rKqeN8,12987
-iam_validator/sdk/shortcuts.py,sha256=EVNSYV7rv4TFH03ulsZ3mS1UVmTSp2jKpc2AXs4j1q4,8531
-iam_validator/utils/__init__.py,sha256=V8u-SSdnL4a7NwF-yg9x0JRl5epKAXEs2f5RiwK2qPo,856
-iam_validator/utils/cache.py,sha256=wOQKOBeoG6QqC5f0oXcHz63Cjtu_-SsSS-0pTSwyAiM,3254
-iam_validator/utils/regex.py,sha256=xHoMECttb7qaMhts-c9b0GIxdhHNZTt-UBr7wNhWfzg,6219
-iam_policy_validator-1.7.1.dist-info/METADATA,sha256=WCjnDcJ38j-LRUz2EwdT2b2lX2IOTkW3xT1SLtCxiWY,15343
-iam_policy_validator-1.7.1.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-iam_policy_validator-1.7.1.dist-info/entry_points.txt,sha256=8HtWd8O7mvPiPdZR5YbzY8or_qcqLM4-pKaFdhtFT8M,62
-iam_policy_validator-1.7.1.dist-info/licenses/LICENSE,sha256=AMnbFTBDcK4_MITe2wiQBkj0vg-jjBBhsc43ydC7tt4,1098
-iam_policy_validator-1.7.1.dist-info/RECORD,,