PyPI - runbooks - Versions diffs - 0.6.1__py3-none-any.whl → 0.7.5__py3-none-any.whl - Mend

runbooks 0.6.1py3-none-any.whl → 0.7.5py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (142) hide show

jupyter-agent/.env +2 -0
jupyter-agent/.gradio/certificate.pem +31 -0
jupyter-agent/__main__.log +8 -0
jupyter-agent/tmp/4ojbs8a02ir/jupyter-agent.ipynb +68 -0
jupyter-agent/tmp/cm5iasgpm3p/jupyter-agent.ipynb +91 -0
jupyter-agent/tmp/crqbsseag5/jupyter-agent.ipynb +91 -0
jupyter-agent/tmp/hohanq1u097/jupyter-agent.ipynb +57 -0
jupyter-agent/tmp/jns1sam29wm/jupyter-agent.ipynb +53 -0
jupyter-agent/tmp/jupyter-agent.ipynb +27 -0
runbooks/__init__.py +87 -37
runbooks/cfat/README.md +300 -49
runbooks/cfat/__init__.py +2 -2
runbooks/finops/README.md +337 -0
runbooks/finops/__init__.py +2 -4
runbooks/finops/cli.py +1 -1
runbooks/inventory/aws_organization.png +0 -0
runbooks/inventory/collectors/__init__.py +8 -0
runbooks/inventory/collectors/aws_management.py +791 -0
runbooks/inventory/collectors/aws_networking.py +3 -3
runbooks/main.py +3416 -590
runbooks/operate/__init__.py +207 -0
runbooks/operate/base.py +311 -0
runbooks/operate/cloudformation_operations.py +619 -0
runbooks/operate/cloudwatch_operations.py +496 -0
runbooks/operate/dynamodb_operations.py +812 -0
runbooks/operate/ec2_operations.py +926 -0
runbooks/operate/iam_operations.py +569 -0
runbooks/operate/s3_operations.py +1211 -0
runbooks/operate/tagging_operations.py +655 -0
runbooks/remediation/CLAUDE.md +100 -0
runbooks/remediation/DOME9.md +218 -0
runbooks/remediation/README.md +26 -0
runbooks/remediation/Tests/update_policy.py +74 -0
runbooks/remediation/__init__.py +95 -0
runbooks/remediation/acm_cert_expired_unused.py +98 -0
runbooks/remediation/acm_remediation.py +875 -0
runbooks/remediation/api_gateway_list.py +167 -0
runbooks/remediation/base.py +643 -0
runbooks/remediation/cloudtrail_remediation.py +908 -0
runbooks/remediation/cloudtrail_s3_modifications.py +296 -0
runbooks/remediation/cognito_active_users.py +78 -0
runbooks/remediation/cognito_remediation.py +856 -0
runbooks/remediation/cognito_user_password_reset.py +163 -0
runbooks/remediation/commons.py +455 -0
runbooks/remediation/dynamodb_optimize.py +155 -0
runbooks/remediation/dynamodb_remediation.py +744 -0
runbooks/remediation/dynamodb_server_side_encryption.py +108 -0
runbooks/remediation/ec2_public_ips.py +134 -0
runbooks/remediation/ec2_remediation.py +892 -0
runbooks/remediation/ec2_subnet_disable_auto_ip_assignment.py +72 -0
runbooks/remediation/ec2_unattached_ebs_volumes.py +448 -0
runbooks/remediation/ec2_unused_security_groups.py +202 -0
runbooks/remediation/kms_enable_key_rotation.py +651 -0
runbooks/remediation/kms_remediation.py +717 -0
runbooks/remediation/lambda_list.py +243 -0
runbooks/remediation/lambda_remediation.py +971 -0
runbooks/remediation/multi_account.py +569 -0
runbooks/remediation/rds_instance_list.py +199 -0
runbooks/remediation/rds_remediation.py +873 -0
runbooks/remediation/rds_snapshot_list.py +192 -0
runbooks/remediation/requirements.txt +118 -0
runbooks/remediation/s3_block_public_access.py +159 -0
runbooks/remediation/s3_bucket_public_access.py +143 -0
runbooks/remediation/s3_disable_static_website_hosting.py +74 -0
runbooks/remediation/s3_downloader.py +215 -0
runbooks/remediation/s3_enable_access_logging.py +562 -0
runbooks/remediation/s3_encryption.py +526 -0
runbooks/remediation/s3_force_ssl_secure_policy.py +143 -0
runbooks/remediation/s3_list.py +141 -0
runbooks/remediation/s3_object_search.py +201 -0
runbooks/remediation/s3_remediation.py +816 -0
runbooks/remediation/scan_for_phrase.py +425 -0
runbooks/remediation/workspaces_list.py +220 -0
runbooks/{security_baseline → security}/README.md +191 -68
runbooks/security/__init__.py +70 -0
runbooks/{security_baseline → security}/security_baseline_tester.py +5 -3
runbooks-0.7.5.dist-info/METADATA +606 -0
{runbooks-0.6.1.dist-info → runbooks-0.7.5.dist-info}/RECORD +115 -75
{runbooks-0.6.1.dist-info → runbooks-0.7.5.dist-info}/entry_points.txt +0 -1
runbooks/aws/__init__.py +0 -58
runbooks/aws/dynamodb_operations.py +0 -231
runbooks/aws/ec2_copy_image_cross-region.py +0 -195
runbooks/aws/ec2_describe_instances.py +0 -202
runbooks/aws/ec2_ebs_snapshots_delete.py +0 -186
runbooks/aws/ec2_run_instances.py +0 -213
runbooks/aws/ec2_start_stop_instances.py +0 -212
runbooks/aws/ec2_terminate_instances.py +0 -143
runbooks/aws/ec2_unused_eips.py +0 -196
runbooks/aws/ec2_unused_volumes.py +0 -188
runbooks/aws/s3_create_bucket.py +0 -142
runbooks/aws/s3_list_buckets.py +0 -152
runbooks/aws/s3_list_objects.py +0 -156
runbooks/aws/s3_object_operations.py +0 -183
runbooks/aws/tagging_lambda_handler.py +0 -183
runbooks/inventory/cfn_move_stack_instances.py +0 -1526
runbooks/inventory/delete_s3_buckets_objects.py +0 -169
runbooks/inventory/lockdown_cfn_stackset_role.py +0 -224
runbooks/inventory/update_aws_actions.py +0 -173
runbooks/inventory/update_cfn_stacksets.py +0 -1215
runbooks/inventory/update_cloudwatch_logs_retention_policy.py +0 -294
runbooks/inventory/update_iam_roles_cross_accounts.py +0 -478
runbooks/inventory/update_s3_public_access_block.py +0 -539
runbooks/organizations/__init__.py +0 -12
runbooks/organizations/manager.py +0 -374
runbooks/security_baseline/requirements.txt +0 -7
runbooks-0.6.1.dist-info/METADATA +0 -373
/runbooks/{aws → operate}/tags.json +0 -0
/runbooks/{security_baseline → remediation/Tests}/__init__.py +0 -0
/runbooks/{security_baseline → security}/checklist/__init__.py +0 -0
/runbooks/{security_baseline → security}/checklist/account_level_bucket_public_access.py +0 -0
/runbooks/{security_baseline → security}/checklist/alternate_contacts.py +0 -0
/runbooks/{security_baseline → security}/checklist/bucket_public_access.py +0 -0
/runbooks/{security_baseline → security}/checklist/cloudwatch_alarm_configuration.py +0 -0
/runbooks/{security_baseline → security}/checklist/direct_attached_policy.py +0 -0
/runbooks/{security_baseline → security}/checklist/guardduty_enabled.py +0 -0
/runbooks/{security_baseline → security}/checklist/iam_password_policy.py +0 -0
/runbooks/{security_baseline → security}/checklist/iam_user_mfa.py +0 -0
/runbooks/{security_baseline → security}/checklist/multi_region_instance_usage.py +0 -0
/runbooks/{security_baseline → security}/checklist/multi_region_trail.py +0 -0
/runbooks/{security_baseline → security}/checklist/root_access_key.py +0 -0
/runbooks/{security_baseline → security}/checklist/root_mfa.py +0 -0
/runbooks/{security_baseline → security}/checklist/root_usage.py +0 -0
/runbooks/{security_baseline → security}/checklist/trail_enabled.py +0 -0
/runbooks/{security_baseline → security}/checklist/trusted_advisor.py +0 -0
/runbooks/{security_baseline → security}/config-origin.json +0 -0
/runbooks/{security_baseline → security}/config.json +0 -0
/runbooks/{security_baseline → security}/permission.json +0 -0
/runbooks/{security_baseline → security}/report_generator.py +0 -0
/runbooks/{security_baseline → security}/report_template_en.html +0 -0
/runbooks/{security_baseline → security}/report_template_jp.html +0 -0
/runbooks/{security_baseline → security}/report_template_kr.html +0 -0
/runbooks/{security_baseline → security}/report_template_vn.html +0 -0
/runbooks/{security_baseline → security}/run_script.py +0 -0
/runbooks/{security_baseline → security}/utils/__init__.py +0 -0
/runbooks/{security_baseline → security}/utils/common.py +0 -0
/runbooks/{security_baseline → security}/utils/enums.py +0 -0
/runbooks/{security_baseline → security}/utils/language.py +0 -0
/runbooks/{security_baseline → security}/utils/level_const.py +0 -0
/runbooks/{security_baseline → security}/utils/permission_list.py +0 -0
{runbooks-0.6.1.dist-info → runbooks-0.7.5.dist-info}/WHEEL +0 -0
{runbooks-0.6.1.dist-info → runbooks-0.7.5.dist-info}/licenses/LICENSE +0 -0
{runbooks-0.6.1.dist-info → runbooks-0.7.5.dist-info}/top_level.txt +0 -0

runbooks/remediation/api_gateway_list.py ADDED Viewed

@@ -0,0 +1,167 @@
+"""
+API Gateway Inventory - List and analyze API Gateway configurations.
+"""
+import logging
+import re
+import click
+from botocore.exceptions import ClientError
+from .commons import (
+    get_api_gateway_calls,
+    get_api_gateways,
+    get_client,
+    get_lambda_invocations,
+    get_log_group_from_lambda,
+    get_method_details,
+    get_resources,
+    get_stages,
+    write_to_csv,
+)
+logger = logging.getLogger(__name__)
+@click.command()
+@click.option("--output-file", default="api_gateway_inventory.csv", help="Output CSV file path")
+def list_api_gateways(output_file):
+    """List all API Gateways and their configuration details."""
+    logger.info("Collecting API Gateway inventory")
+    try:
+        # Create API Gateway and Lambda clients
+        client_apigateway = get_client("apigateway")
+        client_lambda = get_client("lambda")
+        # Get all REST APIs
+        rest_apis = get_api_gateways(client_apigateway)
+        if not rest_apis:
+            logger.info("No API Gateways found")
+            return
+        logger.info(f"Found {len(rest_apis)} API Gateways to analyze")
+        data = []
+        for rest_api in rest_apis:
+            rest_api_id = rest_api["id"]
+        # logger.info(f"API Gateway: {rest_api['name']} ({rest_api_id})")
+        stages = get_stages(client_apigateway, rest_api_id)
+        for stage in stages:
+            stage_name = stage["stageName"]
+            # logger.info(f"  Stage: {stage_name}")
+            # Retrieve stage-level logging configuration
+            log_group_arn = None
+            if stage.get("accessLogSettings"):
+                log_group_arn = stage["accessLogSettings"].get("destinationArn")
+            resources = get_resources(client_apigateway, rest_api_id)
+            for resource in resources:
+                resource_id = resource["id"]
+                integration_type = None
+                uri = None
+                integration_line = "    - No Integration Found"
+                function_name = None
+                log_group = None
+                for http_method in [
+                    "GET",
+                    "POST",
+                    "PUT",
+                    "DELETE",
+                    "OPTIONS",  # Add more as needed
+                    "HEAD",
+                    "PATCH",
+                    "ANY",
+                ]:
+                    try:
+                        response = client_apigateway.get_integration(
+                            restApiId=rest_api_id, resourceId=resource_id, httpMethod=http_method
+                        )
+                        integration_type = response["type"]  # Possible values: HTTP, AWS, MOCK, AWS_PROXY
+                        if integration_type == "AWS":
+                            # Lambda integration
+                            uri = response["uri"]
+                            if uri.startswith("arn:aws:apigateway:"):
+                                match = re.search(r"function:(\w+-\w+)", uri)
+                                function_name = match.group(1) if match else None
+                                integration_line = f"    - Lambda Integration: {function_name}"
+                        elif integration_type == "HTTP" or integration_type == "AWS_PROXY":
+                            # HTTP Endpoint or HTTP Proxy (could be S3, etc.)
+                            uri = response["uri"]
+                            match = re.search(r"function:(.+?)/", uri)
+                            function_name = match.group(1) if match else None
+                            integration_line = f"    - HTTP/Proxy Integration: {uri}"
+                        elif integration_type == "MOCK":
+                            integration_line = f"    - Mock Integration"
+                    except client_apigateway.exceptions.NotFoundException:
+                        pass
+                    response = get_method_details(client_apigateway, rest_api_id, resource_id, http_method)
+                    # Check caching status
+                    if response and "methodResponses" in response and "200" in response["methodResponses"]:
+                        caching_enabled = response["methodResponses"]["200"].get("cachingEnabled", False)
+                        logger.info(f"API Gateway: {rest_api['name']} ({rest_api_id})")
+                        logger.info(f"  Stage: {stage_name}")
+                        logger.info(
+                            f"    {http_method} Method (Resource: {resource['path']}) - Cache Enabled: {caching_enabled}"
+                        )
+                        logger.info(f"{integration_line}")
+                        log_group_name = None
+                        if log_group_arn:
+                            log_group_name = log_group_arn.split(":")[-1]  # Extract from ARN
+                            logger.info(f"    Access Log Group: {log_group_name}")
+                        if function_name:
+                            log_group = get_log_group_from_lambda(client_lambda, function_name)
+                            if log_group:
+                                logger.info(f"      Log Group: {log_group}")
+                            else:
+                                logger.info(f"      Log Group could not be determined from configuration.")
+                        data.append(
+                            {
+                                "API Gateway": rest_api["name"],
+                                "Rest API ID": rest_api_id,  # Added rest api id to the output
+                                "Resource": resource["path"],  # Added resource path to the output
+                                "Stage": stage_name,
+                                "Method": http_method,
+                                "Access Log Group": log_group_name,
+                                "Cache Enabled": caching_enabled,
+                                "Integration Type": integration_type,
+                                "Integration details": integration_line.strip(),  # Added integration details to the output
+                                "URI": uri,
+                                "Function Name": function_name,
+                                "Log Group of Function": log_group,
+                                "API gateway (includes all http methods) calls in last 360 days": get_api_gateway_calls(
+                                    rest_api["name"], 360
+                                ),
+                                "Lambda function invocations in last 360 days": get_lambda_invocations(
+                                    function_name, 360
+                                )
+                                if function_name
+                                else None,
+                            }
+                        )
+        # Export results to CSV
+        write_to_csv(data, output_file)
+        logger.info(f"API Gateway inventory exported to: {output_file}")
+        logger.info(f"Processed {len(data)} API Gateway configurations")
+    except ClientError as e:
+        logger.error(f"Failed to collect API Gateway inventory: {e}")
+        raise
+    except Exception as e:
+        logger.error(f"Unexpected error: {e}")
+        raise

runbooks 0.6.1__py3-none-any.whl → 0.7.5__py3-none-any.whl

runbooks 0.6.1py3-none-any.whl → 0.7.5py3-none-any.whl