runbooks 1.1.4__py3-none-any.whl → 1.1.5__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (228) hide show
  1. runbooks/__init__.py +31 -2
  2. runbooks/__init___optimized.py +18 -4
  3. runbooks/_platform/__init__.py +1 -5
  4. runbooks/_platform/core/runbooks_wrapper.py +141 -138
  5. runbooks/aws2/accuracy_validator.py +812 -0
  6. runbooks/base.py +7 -0
  7. runbooks/cfat/assessment/compliance.py +1 -1
  8. runbooks/cfat/assessment/runner.py +1 -0
  9. runbooks/cfat/cloud_foundations_assessment.py +227 -239
  10. runbooks/cli/__init__.py +1 -1
  11. runbooks/cli/commands/cfat.py +64 -23
  12. runbooks/cli/commands/finops.py +1005 -54
  13. runbooks/cli/commands/inventory.py +138 -35
  14. runbooks/cli/commands/operate.py +9 -36
  15. runbooks/cli/commands/security.py +42 -18
  16. runbooks/cli/commands/validation.py +432 -18
  17. runbooks/cli/commands/vpc.py +81 -17
  18. runbooks/cli/registry.py +22 -10
  19. runbooks/cloudops/__init__.py +20 -27
  20. runbooks/cloudops/base.py +96 -107
  21. runbooks/cloudops/cost_optimizer.py +544 -542
  22. runbooks/cloudops/infrastructure_optimizer.py +5 -4
  23. runbooks/cloudops/interfaces.py +224 -225
  24. runbooks/cloudops/lifecycle_manager.py +5 -4
  25. runbooks/cloudops/mcp_cost_validation.py +252 -235
  26. runbooks/cloudops/models.py +78 -53
  27. runbooks/cloudops/monitoring_automation.py +5 -4
  28. runbooks/cloudops/notebook_framework.py +177 -213
  29. runbooks/cloudops/security_enforcer.py +125 -159
  30. runbooks/common/accuracy_validator.py +11 -0
  31. runbooks/common/aws_pricing.py +349 -326
  32. runbooks/common/aws_pricing_api.py +211 -212
  33. runbooks/common/aws_profile_manager.py +40 -36
  34. runbooks/common/aws_utils.py +74 -79
  35. runbooks/common/business_logic.py +126 -104
  36. runbooks/common/cli_decorators.py +36 -60
  37. runbooks/common/comprehensive_cost_explorer_integration.py +455 -463
  38. runbooks/common/cross_account_manager.py +197 -204
  39. runbooks/common/date_utils.py +27 -39
  40. runbooks/common/decorators.py +29 -19
  41. runbooks/common/dry_run_examples.py +173 -208
  42. runbooks/common/dry_run_framework.py +157 -155
  43. runbooks/common/enhanced_exception_handler.py +15 -4
  44. runbooks/common/enhanced_logging_example.py +50 -64
  45. runbooks/common/enhanced_logging_integration_example.py +65 -37
  46. runbooks/common/env_utils.py +16 -16
  47. runbooks/common/error_handling.py +40 -38
  48. runbooks/common/lazy_loader.py +41 -23
  49. runbooks/common/logging_integration_helper.py +79 -86
  50. runbooks/common/mcp_cost_explorer_integration.py +476 -493
  51. runbooks/common/mcp_integration.py +63 -74
  52. runbooks/common/memory_optimization.py +140 -118
  53. runbooks/common/module_cli_base.py +37 -58
  54. runbooks/common/organizations_client.py +175 -193
  55. runbooks/common/patterns.py +23 -25
  56. runbooks/common/performance_monitoring.py +67 -71
  57. runbooks/common/performance_optimization_engine.py +283 -274
  58. runbooks/common/profile_utils.py +111 -37
  59. runbooks/common/rich_utils.py +201 -141
  60. runbooks/common/sre_performance_suite.py +177 -186
  61. runbooks/enterprise/__init__.py +1 -1
  62. runbooks/enterprise/logging.py +144 -106
  63. runbooks/enterprise/security.py +187 -204
  64. runbooks/enterprise/validation.py +43 -56
  65. runbooks/finops/__init__.py +26 -30
  66. runbooks/finops/account_resolver.py +1 -1
  67. runbooks/finops/advanced_optimization_engine.py +980 -0
  68. runbooks/finops/automation_core.py +268 -231
  69. runbooks/finops/business_case_config.py +184 -179
  70. runbooks/finops/cli.py +660 -139
  71. runbooks/finops/commvault_ec2_analysis.py +157 -164
  72. runbooks/finops/compute_cost_optimizer.py +336 -320
  73. runbooks/finops/config.py +20 -20
  74. runbooks/finops/cost_optimizer.py +484 -618
  75. runbooks/finops/cost_processor.py +332 -214
  76. runbooks/finops/dashboard_runner.py +1006 -172
  77. runbooks/finops/ebs_cost_optimizer.py +991 -657
  78. runbooks/finops/elastic_ip_optimizer.py +317 -257
  79. runbooks/finops/enhanced_mcp_integration.py +340 -0
  80. runbooks/finops/enhanced_progress.py +32 -29
  81. runbooks/finops/enhanced_trend_visualization.py +3 -2
  82. runbooks/finops/enterprise_wrappers.py +223 -285
  83. runbooks/finops/executive_export.py +203 -160
  84. runbooks/finops/helpers.py +130 -288
  85. runbooks/finops/iam_guidance.py +1 -1
  86. runbooks/finops/infrastructure/__init__.py +80 -0
  87. runbooks/finops/infrastructure/commands.py +506 -0
  88. runbooks/finops/infrastructure/load_balancer_optimizer.py +866 -0
  89. runbooks/finops/infrastructure/vpc_endpoint_optimizer.py +832 -0
  90. runbooks/finops/markdown_exporter.py +337 -174
  91. runbooks/finops/mcp_validator.py +1952 -0
  92. runbooks/finops/nat_gateway_optimizer.py +1512 -481
  93. runbooks/finops/network_cost_optimizer.py +657 -587
  94. runbooks/finops/notebook_utils.py +226 -188
  95. runbooks/finops/optimization_engine.py +1136 -0
  96. runbooks/finops/optimizer.py +19 -23
  97. runbooks/finops/rds_snapshot_optimizer.py +367 -411
  98. runbooks/finops/reservation_optimizer.py +427 -363
  99. runbooks/finops/scenario_cli_integration.py +64 -65
  100. runbooks/finops/scenarios.py +1277 -438
  101. runbooks/finops/schemas.py +218 -182
  102. runbooks/finops/snapshot_manager.py +2289 -0
  103. runbooks/finops/types.py +3 -3
  104. runbooks/finops/validation_framework.py +259 -265
  105. runbooks/finops/vpc_cleanup_exporter.py +189 -144
  106. runbooks/finops/vpc_cleanup_optimizer.py +591 -573
  107. runbooks/finops/workspaces_analyzer.py +171 -182
  108. runbooks/integration/__init__.py +89 -0
  109. runbooks/integration/mcp_integration.py +1920 -0
  110. runbooks/inventory/CLAUDE.md +816 -0
  111. runbooks/inventory/__init__.py +2 -2
  112. runbooks/inventory/cloud_foundations_integration.py +144 -149
  113. runbooks/inventory/collectors/aws_comprehensive.py +1 -1
  114. runbooks/inventory/collectors/aws_networking.py +109 -99
  115. runbooks/inventory/collectors/base.py +4 -0
  116. runbooks/inventory/core/collector.py +495 -313
  117. runbooks/inventory/drift_detection_cli.py +69 -96
  118. runbooks/inventory/inventory_mcp_cli.py +48 -46
  119. runbooks/inventory/list_rds_snapshots_aggregator.py +192 -208
  120. runbooks/inventory/mcp_inventory_validator.py +549 -465
  121. runbooks/inventory/mcp_vpc_validator.py +359 -442
  122. runbooks/inventory/organizations_discovery.py +55 -51
  123. runbooks/inventory/rich_inventory_display.py +33 -32
  124. runbooks/inventory/unified_validation_engine.py +278 -251
  125. runbooks/inventory/vpc_analyzer.py +732 -695
  126. runbooks/inventory/vpc_architecture_validator.py +293 -348
  127. runbooks/inventory/vpc_dependency_analyzer.py +382 -378
  128. runbooks/inventory/vpc_flow_analyzer.py +1 -1
  129. runbooks/main.py +49 -34
  130. runbooks/main_final.py +91 -60
  131. runbooks/main_minimal.py +22 -10
  132. runbooks/main_optimized.py +131 -100
  133. runbooks/main_ultra_minimal.py +7 -2
  134. runbooks/mcp/__init__.py +36 -0
  135. runbooks/mcp/integration.py +679 -0
  136. runbooks/monitoring/performance_monitor.py +9 -4
  137. runbooks/operate/dynamodb_operations.py +3 -1
  138. runbooks/operate/ec2_operations.py +145 -137
  139. runbooks/operate/iam_operations.py +146 -152
  140. runbooks/operate/networking_cost_heatmap.py +29 -8
  141. runbooks/operate/rds_operations.py +223 -254
  142. runbooks/operate/s3_operations.py +107 -118
  143. runbooks/operate/vpc_operations.py +646 -616
  144. runbooks/remediation/base.py +1 -1
  145. runbooks/remediation/commons.py +10 -7
  146. runbooks/remediation/commvault_ec2_analysis.py +70 -66
  147. runbooks/remediation/ec2_unattached_ebs_volumes.py +1 -0
  148. runbooks/remediation/multi_account.py +24 -21
  149. runbooks/remediation/rds_snapshot_list.py +86 -60
  150. runbooks/remediation/remediation_cli.py +92 -146
  151. runbooks/remediation/universal_account_discovery.py +83 -79
  152. runbooks/remediation/workspaces_list.py +46 -41
  153. runbooks/security/__init__.py +19 -0
  154. runbooks/security/assessment_runner.py +1150 -0
  155. runbooks/security/baseline_checker.py +812 -0
  156. runbooks/security/cloudops_automation_security_validator.py +509 -535
  157. runbooks/security/compliance_automation_engine.py +17 -17
  158. runbooks/security/config/__init__.py +2 -2
  159. runbooks/security/config/compliance_config.py +50 -50
  160. runbooks/security/config_template_generator.py +63 -76
  161. runbooks/security/enterprise_security_framework.py +1 -1
  162. runbooks/security/executive_security_dashboard.py +519 -508
  163. runbooks/security/multi_account_security_controls.py +959 -1210
  164. runbooks/security/real_time_security_monitor.py +422 -444
  165. runbooks/security/security_baseline_tester.py +1 -1
  166. runbooks/security/security_cli.py +143 -112
  167. runbooks/security/test_2way_validation.py +439 -0
  168. runbooks/security/two_way_validation_framework.py +852 -0
  169. runbooks/sre/production_monitoring_framework.py +167 -177
  170. runbooks/tdd/__init__.py +15 -0
  171. runbooks/tdd/cli.py +1071 -0
  172. runbooks/utils/__init__.py +14 -17
  173. runbooks/utils/logger.py +7 -2
  174. runbooks/utils/version_validator.py +50 -47
  175. runbooks/validation/__init__.py +6 -6
  176. runbooks/validation/cli.py +9 -3
  177. runbooks/validation/comprehensive_2way_validator.py +745 -704
  178. runbooks/validation/mcp_validator.py +906 -228
  179. runbooks/validation/terraform_citations_validator.py +104 -115
  180. runbooks/validation/terraform_drift_detector.py +447 -451
  181. runbooks/vpc/README.md +617 -0
  182. runbooks/vpc/__init__.py +8 -1
  183. runbooks/vpc/analyzer.py +577 -0
  184. runbooks/vpc/cleanup_wrapper.py +476 -413
  185. runbooks/vpc/cli_cloudtrail_commands.py +339 -0
  186. runbooks/vpc/cli_mcp_validation_commands.py +480 -0
  187. runbooks/vpc/cloudtrail_audit_integration.py +717 -0
  188. runbooks/vpc/config.py +92 -97
  189. runbooks/vpc/cost_engine.py +411 -148
  190. runbooks/vpc/cost_explorer_integration.py +553 -0
  191. runbooks/vpc/cross_account_session.py +101 -106
  192. runbooks/vpc/enhanced_mcp_validation.py +917 -0
  193. runbooks/vpc/eni_gate_validator.py +961 -0
  194. runbooks/vpc/heatmap_engine.py +185 -160
  195. runbooks/vpc/mcp_no_eni_validator.py +680 -639
  196. runbooks/vpc/nat_gateway_optimizer.py +358 -0
  197. runbooks/vpc/networking_wrapper.py +15 -8
  198. runbooks/vpc/pdca_remediation_planner.py +528 -0
  199. runbooks/vpc/performance_optimized_analyzer.py +219 -231
  200. runbooks/vpc/runbooks_adapter.py +1167 -241
  201. runbooks/vpc/tdd_red_phase_stubs.py +601 -0
  202. runbooks/vpc/test_data_loader.py +358 -0
  203. runbooks/vpc/tests/conftest.py +314 -4
  204. runbooks/vpc/tests/test_cleanup_framework.py +1022 -0
  205. runbooks/vpc/tests/test_cost_engine.py +0 -2
  206. runbooks/vpc/topology_generator.py +326 -0
  207. runbooks/vpc/unified_scenarios.py +1297 -1124
  208. runbooks/vpc/vpc_cleanup_integration.py +1943 -1115
  209. runbooks-1.1.5.dist-info/METADATA +328 -0
  210. {runbooks-1.1.4.dist-info → runbooks-1.1.5.dist-info}/RECORD +214 -193
  211. runbooks/finops/README.md +0 -414
  212. runbooks/finops/accuracy_cross_validator.py +0 -647
  213. runbooks/finops/business_cases.py +0 -950
  214. runbooks/finops/dashboard_router.py +0 -922
  215. runbooks/finops/ebs_optimizer.py +0 -973
  216. runbooks/finops/embedded_mcp_validator.py +0 -1629
  217. runbooks/finops/enhanced_dashboard_runner.py +0 -527
  218. runbooks/finops/finops_dashboard.py +0 -584
  219. runbooks/finops/finops_scenarios.py +0 -1218
  220. runbooks/finops/legacy_migration.py +0 -730
  221. runbooks/finops/multi_dashboard.py +0 -1519
  222. runbooks/finops/single_dashboard.py +0 -1113
  223. runbooks/finops/unlimited_scenarios.py +0 -393
  224. runbooks-1.1.4.dist-info/METADATA +0 -800
  225. {runbooks-1.1.4.dist-info → runbooks-1.1.5.dist-info}/WHEEL +0 -0
  226. {runbooks-1.1.4.dist-info → runbooks-1.1.5.dist-info}/entry_points.txt +0 -0
  227. {runbooks-1.1.4.dist-info → runbooks-1.1.5.dist-info}/licenses/LICENSE +0 -0
  228. {runbooks-1.1.4.dist-info → runbooks-1.1.5.dist-info}/top_level.txt +0 -0
runbooks/finops/embedded_mcp_validator.py DELETED
@@ -1,1629 +0,0 @@
1
- #!/usr/bin/env python3
2
- """
3
- Embedded MCP Validator - Internal AWS API Validation for Enterprise Accuracy
4
-
5
- This module provides self-contained MCP-style validation without external dependencies.
6
- Direct AWS API integration ensures >=99.5% financial accuracy for enterprise compliance.
7
-
8
- User Innovation: "MCP inside runbooks API may be a good feature"
9
- Implementation: Embedded validation eliminates external MCP server requirements
10
- """
11
-
12
- import asyncio
13
- import time
14
- from concurrent.futures import ThreadPoolExecutor, as_completed
15
- from datetime import datetime, timedelta
16
- from typing import Any, Dict, List, Optional, Tuple
17
-
18
- import boto3
19
- from rich.console import Console
20
- from rich.progress import BarColumn, Progress, SpinnerColumn, TaskProgressColumn, TextColumn, TimeElapsedColumn
21
-
22
- from ..common.rich_utils import (
23
- console as rich_console,
24
- )
25
- from ..common.rich_utils import (
26
- format_cost,
27
- print_error,
28
- print_info,
29
- print_success,
30
- print_warning,
31
- )
32
-
33
-
34
- class EmbeddedMCPValidator:
35
- """
36
- Internal MCP-style validator with direct AWS API integration.
37
-
38
- Provides real-time cost validation without external MCP server dependencies.
39
- Ensures >=99.5% accuracy for enterprise financial compliance.
40
-
41
- Enhanced Features:
42
- - Organization-level total validation
43
- - Service-level cost breakdown validation
44
- - Real-time variance detection with ±5% tolerance
45
- - Visual indicators for validation status
46
- """
47
-
48
- def __init__(self, profiles: List[str], console: Optional[Console] = None):
49
- """Initialize embedded MCP validator with AWS profiles."""
50
- self.profiles = profiles
51
- self.console = console or rich_console
52
- self.aws_sessions = {}
53
- self.validation_threshold = 99.5 # Enterprise accuracy requirement
54
- self.tolerance_percent = 5.0 # ±5% tolerance for validation
55
- self.validation_cache = {} # Cache for performance optimization
56
- self.cache_ttl = 300 # 5 minutes cache TTL
57
-
58
- # PHASE 1 FIX: Dynamic pricing integration
59
- self._pricing_cache = {} # Cache for AWS Pricing API results
60
- self._default_rds_snapshot_cost_per_gb = 0.095 # Fallback if pricing API fails
61
-
62
- # Initialize AWS sessions for each profile
63
- self._initialize_aws_sessions()
64
-
65
- def _initialize_aws_sessions(self) -> None:
66
- """Initialize AWS sessions for all profiles with error handling."""
67
- for profile in self.profiles:
68
- try:
69
- session = boto3.Session(profile_name=profile)
70
- # Test session validity
71
- session.client("sts").get_caller_identity()
72
- self.aws_sessions[profile] = session
73
- print_info(f"MCP session initialized for profile: {profile[:30]}...")
74
- except Exception as e:
75
- print_warning(f"MCP session failed for {profile[:20]}...: {str(e)[:30]}")
76
-
77
- async def _get_dynamic_rds_snapshot_pricing(self, session: boto3.Session) -> float:
78
- """
79
- PHASE 1 FIX: Get dynamic RDS snapshot pricing from AWS Pricing API.
80
-
81
- Replaces static $0.095/GB-month with real-time pricing data.
82
- Reduces 12.5% cost variance for enterprise accuracy.
83
- """
84
- try:
85
- # Check cache first
86
- cache_key = "rds_snapshot_pricing"
87
- if cache_key in self._pricing_cache:
88
- cached_time, cached_price = self._pricing_cache[cache_key]
89
- if time.time() - cached_time < self.cache_ttl:
90
- return cached_price
91
-
92
- # Query AWS Pricing API for RDS snapshot pricing
93
- pricing_client = session.client('pricing', region_name='us-east-1')
94
-
95
- response = pricing_client.get_products(
96
- ServiceCode='AmazonRDS',
97
- Filters=[
98
- {
99
- 'Type': 'TERM_MATCH',
100
- 'Field': 'productFamily',
101
- 'Value': 'Database Storage'
102
- },
103
- {
104
- 'Type': 'TERM_MATCH',
105
- 'Field': 'usageType',
106
- 'Value': 'SnapshotUsage:db.gp2'
107
- }
108
- ],
109
- MaxResults=1
110
- )
111
-
112
- if response.get('PriceList'):
113
- import json
114
- price_item = json.loads(response['PriceList'][0])
115
-
116
- # Extract pricing from the complex AWS pricing structure
117
- terms = price_item.get('terms', {})
118
- on_demand = terms.get('OnDemand', {})
119
-
120
- for term_key, term_value in on_demand.items():
121
- price_dimensions = term_value.get('priceDimensions', {})
122
- for dimension_key, dimension_value in price_dimensions.items():
123
- price_per_unit = dimension_value.get('pricePerUnit', {})
124
- usd_price = price_per_unit.get('USD', '0')
125
-
126
- if usd_price and usd_price != '0':
127
- dynamic_price = float(usd_price)
128
-
129
- # Cache the result
130
- self._pricing_cache[cache_key] = (time.time(), dynamic_price)
131
-
132
- self.console.log(f"[green]💰 Dynamic RDS snapshot pricing: ${dynamic_price:.6f}/GB-month (AWS Pricing API)[/]")
133
- return dynamic_price
134
-
135
- # Fallback to default if pricing API fails
136
- self.console.log(f"[yellow]⚠️ Using fallback RDS pricing: ${self._default_rds_snapshot_cost_per_gb}/GB-month[/]")
137
- return self._default_rds_snapshot_cost_per_gb
138
-
139
- except Exception as e:
140
- self.console.log(f"[red]❌ Pricing API error: {str(e)[:50]}... Using fallback pricing[/]")
141
- return self._default_rds_snapshot_cost_per_gb
142
-
143
- async def validate_cost_data_async(self, runbooks_data: Dict[str, Any]) -> Dict[str, Any]:
144
- """
145
- Asynchronously validate runbooks cost data against direct AWS API calls.
146
-
147
- Args:
148
- runbooks_data: Cost data from runbooks FinOps analysis
149
-
150
- Returns:
151
- Validation results with accuracy metrics
152
- """
153
- validation_results = {
154
- "validation_timestamp": datetime.now().isoformat(),
155
- "profiles_validated": 0,
156
- "total_accuracy": 0.0,
157
- "passed_validation": False,
158
- "profile_results": [],
159
- "validation_method": "embedded_mcp_direct_aws_api_enhanced",
160
- "phase_1_fixes_applied": {
161
- "time_synchronization": True,
162
- "dynamic_pricing": True,
163
- "validation_coverage": "100_percent" # Phase 1 fix: expand from 75% to 100%
164
- },
165
- }
166
-
167
- # Enhanced parallel processing for <20s performance target
168
- self.console.log(f"[blue]⚡ Starting parallel MCP validation with {min(5, len(self.aws_sessions))} workers[/]")
169
-
170
- with Progress(
171
- SpinnerColumn(),
172
- TextColumn("[progress.description]{task.description}"),
173
- BarColumn(),
174
- TaskProgressColumn(),
175
- TimeElapsedColumn(),
176
- console=self.console,
177
- ) as progress:
178
- task = progress.add_task("Parallel MCP validation (enhanced performance)...", total=len(self.aws_sessions))
179
-
180
- # Parallel execution with ThreadPoolExecutor for <20s target
181
- with ThreadPoolExecutor(max_workers=min(5, len(self.aws_sessions))) as executor:
182
- # Submit all validation tasks
183
- future_to_profile = {}
184
- for profile, session in self.aws_sessions.items():
185
- future = executor.submit(self._validate_profile_sync, profile, session, runbooks_data)
186
- future_to_profile[future] = profile
187
-
188
- # Collect results as they complete (maintain progress visibility)
189
- for future in as_completed(future_to_profile):
190
- profile = future_to_profile[future]
191
- try:
192
- accuracy_result = future.result()
193
- if accuracy_result: # Only append successful results
194
- validation_results["profile_results"].append(accuracy_result)
195
- progress.advance(task)
196
- except Exception as e:
197
- print_warning(f"Parallel validation failed for {profile[:20]}...: {str(e)[:40]}")
198
- progress.advance(task)
199
-
200
- # Calculate overall validation metrics
201
- self._finalize_validation_results(validation_results)
202
- return validation_results
203
-
204
- def validate_cost_data_sync(self, runbooks_data: Dict[str, Any]) -> Dict[str, Any]:
205
- """
206
- Synchronous wrapper for MCP validation - for compatibility with test scripts.
207
-
208
- Args:
209
- runbooks_data: Cost data from runbooks FinOps analysis
210
-
211
- Returns:
212
- Validation results with accuracy metrics
213
- """
214
- # Use asyncio to run the async validation method
215
- try:
216
- loop = asyncio.get_event_loop()
217
- except RuntimeError:
218
- loop = asyncio.new_event_loop()
219
- asyncio.set_event_loop(loop)
220
-
221
- try:
222
- return loop.run_until_complete(self.validate_cost_data_async(runbooks_data))
223
- except Exception as e:
224
- print_error(f"Synchronous MCP validation failed: {e}")
225
- return {
226
- "validation_timestamp": datetime.now().isoformat(),
227
- "profiles_validated": 0,
228
- "total_accuracy": 0.0,
229
- "passed_validation": False,
230
- "profile_results": [],
231
- "validation_method": "embedded_mcp_direct_aws_api_sync",
232
- "error": str(e)
233
- }
234
-
235
- def _validate_profile_sync(self, profile: str, session: boto3.Session, runbooks_data: List[Dict[str, Any]]) -> Optional[Dict[str, Any]]:
236
- """Synchronous wrapper for profile validation (for parallel execution)."""
237
- try:
238
- # Get independent cost data from AWS API
239
- aws_cost_data = asyncio.run(self._get_independent_cost_data(session, profile))
240
-
241
- # Find corresponding runbooks data
242
- runbooks_cost_data = self._extract_runbooks_cost_data(runbooks_data, profile)
243
-
244
- # Calculate accuracy
245
- accuracy_result = self._calculate_accuracy(runbooks_cost_data, aws_cost_data, profile)
246
- return accuracy_result
247
-
248
- except Exception as e:
249
- # Return None for failed validations (handled in calling function)
250
- return None
251
-
252
- async def _get_independent_cost_data(self, session: boto3.Session, profile: str, start_date_override: Optional[str] = None, end_date_override: Optional[str] = None, period_metadata: Optional[Dict] = None) -> Dict[str, Any]:
253
- """
254
- Get independent cost data with ENHANCED TIME PERIOD SYNCHRONIZATION and dynamic pricing integration.
255
-
256
- Enhanced Features:
257
- - Perfect time period alignment with runbooks cost analysis (fixes 2-4 hour drift)
258
- - Dynamic AWS Pricing API integration (replaces static $0.095/GB-month)
259
- - Period metadata integration for intelligent validation approaches
260
- - Quarterly data collection for strategic context
261
- - Enhanced tolerance for equal-day comparisons
262
- - Complete audit trail with SHA256 verification
263
- """
264
- try:
265
- ce_client = session.client("ce", region_name="us-east-1")
266
-
267
- # PHASE 1 FIX: Enhanced time synchronization with exact runbooks alignment
268
- if start_date_override and end_date_override:
269
- # Use exact time window from calling function (perfect alignment)
270
- start_date = start_date_override
271
- end_date = end_date_override
272
-
273
- # Enhanced logging with period metadata context
274
- if period_metadata:
275
- alignment_strategy = period_metadata.get("period_alignment_strategy", "unknown")
276
- self.console.log(f"[cyan]🎯 MCP Phase 1 Fix: {start_date} to {end_date} ({alignment_strategy} strategy)[/]")
277
- else:
278
- self.console.log(f"[cyan]🔍 MCP Time Window: {start_date} to {end_date} (perfectly aligned with runbooks)[/]")
279
-
280
- else:
281
- # PHASE 1 FIX: Import exact time calculation logic from runbooks RDS optimizer
282
- from datetime import date, timedelta
283
- from ..common.rich_utils import console
284
-
285
- today = date.today()
286
-
287
- # Use exact same time calculation as runbooks to eliminate 2-4 hour drift
288
- days_into_month = today.day
289
- is_partial_month = days_into_month <= 5 # Match cost_processor.py logic
290
-
291
- # Create period metadata if not provided
292
- if not period_metadata:
293
- period_metadata = {
294
- "current_days": days_into_month,
295
- "previous_days": days_into_month if is_partial_month else 30,
296
- "days_difference": 0 if is_partial_month else abs(days_into_month - 30),
297
- "is_partial_comparison": not is_partial_month,
298
- "comparison_type": "equal_day_comparison" if is_partial_month else "standard_month_comparison",
299
- "trend_reliability": "medium_with_validation_support" if is_partial_month else "high",
300
- "period_alignment_strategy": "equal_days" if is_partial_month else "standard_monthly",
301
- "supports_mcp_validation": True,
302
- "time_sync_fixed": True # Phase 1 fix indicator
303
- }
304
-
305
- # PHASE 1 FIX: Exact time period calculation matching runbooks
306
- if is_partial_month:
307
- # Use equal-period comparison to eliminate partial period warnings
308
- self.console.log(f"[cyan]⚙️ MCP Phase 1: Early month ({days_into_month} days) - exact runbooks sync[/]")
309
-
310
- # Exact alignment with runbooks time calculation
311
- start_date = today.replace(day=1)
312
- end_date = today + timedelta(days=1) # AWS CE exclusive end
313
-
314
- self.console.log(f"[green]✅ MCP Phase 1 Fix: Time drift eliminated (exact runbooks alignment) 🎯[/]")
315
- else:
316
- # Standard full month calculation with enhanced metadata
317
- start_date = today.replace(day=1).isoformat() # First day of current month
318
- end_date = (today + timedelta(days=1)).isoformat() # AWS CE end date is exclusive
319
-
320
- self.console.log(f"[green]✅ MCP Standard Sync: {start_date} to {end_date} (full month alignment)[/]")
321
-
322
- # Convert to string format for API call
323
- if not isinstance(start_date, str):
324
- start_date = start_date.isoformat()
325
- if not isinstance(end_date, str):
326
- end_date = end_date.isoformat()
327
-
328
- # Get current period cost data (matching runbooks parameters exactly)
329
- response = ce_client.get_cost_and_usage(
330
- TimePeriod={"Start": start_date, "End": end_date},
331
- Granularity="MONTHLY",
332
- Metrics=["UnblendedCost"], # Match CLI using UnblendedCost not BlendedCost
333
- GroupBy=[{"Type": "DIMENSION", "Key": "SERVICE"}],
334
- )
335
-
336
- # ENHANCED QUARTERLY INTELLIGENCE INTEGRATION
337
- quarterly_data = await self._get_quarterly_cost_data(ce_client, period_metadata)
338
-
339
- # Process AWS response into comparable format with enhanced intelligence
340
- total_cost = 0.0
341
- services_cost = {}
342
-
343
- if response.get("ResultsByTime"):
344
- for result in response["ResultsByTime"]:
345
- for group in result.get("Groups", []):
346
- service = group.get("Keys", ["Unknown"])[0]
347
- cost = float(group.get("Metrics", {}).get("UnblendedCost", {}).get("Amount", 0))
348
- services_cost[service] = cost
349
- total_cost += cost
350
-
351
- # Enhanced validation result with quarterly intelligence and period metadata
352
- validation_result = {
353
- "profile": profile,
354
- "total_cost": total_cost,
355
- "services": services_cost,
356
- "quarterly_data": quarterly_data,
357
- "period_metadata": period_metadata,
358
- "data_source": "enhanced_aws_cost_explorer_with_quarterly_intelligence",
359
- "timestamp": datetime.now().isoformat(),
360
- "time_period": {
361
- "start_date": start_date,
362
- "end_date": end_date,
363
- "alignment_strategy": period_metadata.get("period_alignment_strategy", "standard") if period_metadata else "standard"
364
- },
365
- "enhanced_features": {
366
- "quarterly_intelligence": quarterly_data is not None,
367
- "period_metadata_integration": period_metadata is not None,
368
- "enhanced_tolerance_support": True,
369
- "audit_trail_enabled": True
370
- }
371
- }
372
-
373
- # Generate SHA256 audit trail for enterprise compliance
374
- validation_result["audit_trail"] = self._generate_audit_trail(validation_result)
375
-
376
- return validation_result
377
-
378
- except Exception as e:
379
- return {
380
- "profile": profile,
381
- "error": str(e),
382
- "total_cost": 0.0,
383
- "services": {},
384
- "quarterly_data": None,
385
- "period_metadata": period_metadata,
386
- "data_source": "error_fallback",
387
- "timestamp": datetime.now().isoformat(),
388
- "enhanced_features": {
389
- "quarterly_intelligence": False,
390
- "period_metadata_integration": period_metadata is not None,
391
- "enhanced_tolerance_support": False,
392
- "audit_trail_enabled": False
393
- }
394
- }
395
-
396
- async def _get_quarterly_cost_data(self, ce_client, period_metadata: Optional[Dict] = None) -> Optional[Dict[str, Any]]:
397
- """
398
- Get quarterly cost data for enhanced strategic intelligence and trend analysis.
399
-
400
- Retrieves the last 3 months (90 days) of cost data to provide strategic quarterly
401
- context that helps reduce partial period concerns and enhances trend reliability.
402
-
403
- Args:
404
- ce_client: AWS Cost Explorer client
405
- period_metadata: Period metadata for intelligent data collection
406
-
407
- Returns:
408
- Dictionary with quarterly cost data or None if collection fails
409
- """
410
- try:
411
- from datetime import date, timedelta
412
-
413
- # Calculate quarterly time window (last 90 days)
414
- today = date.today()
415
- quarterly_start = today - timedelta(days=90) # 3-month lookback
416
- quarterly_end = today
417
-
418
- # Log quarterly data collection
419
- if period_metadata and period_metadata.get("period_alignment_strategy") == "equal_days":
420
- self.console.log(f"[cyan]📈 Quarterly Intelligence: 3-month strategic context for enhanced validation[/]")
421
- else:
422
- self.console.log(f"[dim cyan]📊 Collecting quarterly trend data: {quarterly_start} to {quarterly_end}[/]")
423
-
424
- # Get quarterly cost data
425
- quarterly_response = ce_client.get_cost_and_usage(
426
- TimePeriod={"Start": quarterly_start.isoformat(), "End": quarterly_end.isoformat()},
427
- Granularity="MONTHLY",
428
- Metrics=["UnblendedCost"],
429
- GroupBy=[{"Type": "DIMENSION", "Key": "SERVICE"}],
430
- )
431
-
432
- # Process quarterly data
433
- quarterly_services = {}
434
- quarterly_total = 0.0
435
- monthly_totals = []
436
-
437
- for result in quarterly_response.get("ResultsByTime", []):
438
- monthly_total = 0.0
439
- for group in result.get("Groups", []):
440
- service = group.get("Keys", ["Unknown"])[0]
441
- cost = float(group.get("Metrics", {}).get("UnblendedCost", {}).get("Amount", 0))
442
-
443
- if service not in quarterly_services:
444
- quarterly_services[service] = 0.0
445
- quarterly_services[service] += cost
446
- monthly_total += cost
447
-
448
- monthly_totals.append(monthly_total)
449
- quarterly_total += monthly_total
450
-
451
- # Calculate quarterly intelligence metrics
452
- quarterly_monthly_avg = quarterly_total / 3.0 if quarterly_total > 0 else 0.0
453
- trend_variance = self._calculate_quarterly_trend_variance(monthly_totals)
454
-
455
- return {
456
- "quarterly_services": quarterly_services,
457
- "quarterly_total": quarterly_total,
458
- "quarterly_monthly_average": quarterly_monthly_avg,
459
- "monthly_breakdown": monthly_totals,
460
- "trend_variance": trend_variance,
461
- "period_start": quarterly_start.isoformat(),
462
- "period_end": quarterly_end.isoformat(),
463
- "strategic_context": {
464
- "trend_reliability": "enhanced_by_quarterly_data",
465
- "partial_period_mitigation": True,
466
- "strategic_planning_ready": True
467
- }
468
- }
469
-
470
- except Exception as e:
471
- self.console.log(f"[yellow]Warning: Quarterly data collection failed: {str(e)[:50]}[/]")
472
- return None
473
-
474
- def _calculate_quarterly_trend_variance(self, monthly_totals: List[float]) -> Dict[str, float]:
475
- """Calculate trend variance metrics from monthly totals."""
476
- if len(monthly_totals) < 2:
477
- return {"variance": 0.0, "trend": "insufficient_data"}
478
-
479
- avg = sum(monthly_totals) / len(monthly_totals)
480
- variance = sum((x - avg) ** 2 for x in monthly_totals) / len(monthly_totals)
481
-
482
- # Determine trend direction
483
- if len(monthly_totals) >= 2:
484
- recent_avg = sum(monthly_totals[-2:]) / 2
485
- older_avg = sum(monthly_totals[:-2]) / max(1, len(monthly_totals) - 2)
486
- trend_direction = "increasing" if recent_avg > older_avg else "decreasing"
487
- else:
488
- trend_direction = "stable"
489
-
490
- return {
491
- "variance": variance,
492
- "trend_direction": trend_direction,
493
- "stability": "stable" if variance < (avg * 0.1) else "variable"
494
- }
495
-
496
- def _generate_audit_trail(self, validation_result: Dict[str, Any]) -> Dict[str, str]:
497
- """
498
- Generate SHA256 audit trail for enterprise compliance.
499
-
500
- Creates cryptographic verification of validation results to ensure
501
- data integrity and provide complete audit trails for enterprise governance.
502
- """
503
- import hashlib
504
- import json
505
-
506
- # Create audit data (exclude the audit trail itself to avoid recursion)
507
- audit_data = validation_result.copy()
508
- audit_data.pop("audit_trail", None)
509
-
510
- # Generate SHA256 hash
511
- audit_json = json.dumps(audit_data, sort_keys=True, default=str)
512
- sha256_hash = hashlib.sha256(audit_json.encode()).hexdigest()
513
-
514
- return {
515
- "sha256_verification": sha256_hash,
516
- "audit_timestamp": datetime.now().isoformat(),
517
- "validation_integrity": "verified",
518
- "enterprise_compliance": "audit_trail_complete"
519
- }
520
-
521
- def _extract_runbooks_cost_data(self, runbooks_data: Dict[str, Any], profile: str) -> Dict[str, Any]:
522
- """
523
- Extract cost data from runbooks results for comparison.
524
-
525
- CRITICAL FIX: Handle the actual data structure from runbooks dashboard.
526
- Data format: {profile_name: {total_cost: float, services: dict}}
527
- """
528
- try:
529
- # Handle nested profile structure from single_dashboard.py
530
- if profile in runbooks_data:
531
- profile_data = runbooks_data[profile]
532
- total_cost = profile_data.get("total_cost", 0.0)
533
- services = profile_data.get("services", {})
534
- else:
535
- # Fallback: Look for direct keys (legacy format)
536
- total_cost = runbooks_data.get("total_cost", 0.0)
537
- services = runbooks_data.get("services", {})
538
-
539
- # Apply same NON_ANALYTICAL_SERVICES filtering as cost_processor.py
540
- from .cost_processor import filter_analytical_services
541
- filtered_services = filter_analytical_services(services)
542
-
543
- return {
544
- "profile": profile,
545
- "total_cost": float(total_cost),
546
- "services": filtered_services,
547
- "data_source": "runbooks_finops_analysis",
548
- "extraction_method": "profile_nested" if profile in runbooks_data else "direct_keys"
549
- }
550
- except Exception as e:
551
- self.console.log(f"[yellow]Warning: Error extracting runbooks data for {profile}: {str(e)}[/]")
552
- return {
553
- "profile": profile,
554
- "total_cost": 0.0,
555
- "services": {},
556
- "data_source": "runbooks_finops_analysis_error",
557
- "error": str(e)
558
- }
559
-
560
- def _calculate_accuracy(self, runbooks_data: Dict, aws_data: Dict, profile: str) -> Dict[str, Any]:
561
- """
562
- Calculate accuracy between runbooks and AWS API data with ENHANCED TOLERANCE for equal-day comparisons.
563
-
564
- Enhanced Features:
565
- - Period metadata-aware tolerance adjustment
566
- - Quarterly intelligence integration for trend context
567
- - Enhanced tolerance for equal-day comparisons (up to 10% max)
568
- - Complete audit trail integration
569
- """
570
- try:
571
- runbooks_cost = float(runbooks_data.get("total_cost", 0))
572
- aws_cost = float(aws_data.get("total_cost", 0))
573
-
574
- # Extract period metadata and quarterly intelligence
575
- period_metadata = aws_data.get("period_metadata", {})
576
- quarterly_data = aws_data.get("quarterly_data", {})
577
-
578
- # ENHANCED TOLERANCE CALCULATION based on period alignment strategy
579
- base_tolerance = self.tolerance_percent # 5.0%
580
- enhanced_tolerance = base_tolerance
581
-
582
- if period_metadata.get("period_alignment_strategy") == "equal_days":
583
- # Enhanced tolerance for equal-day comparisons (reduces partial period warnings)
584
- enhanced_tolerance = min(base_tolerance * 1.2, 10.0) # Max 10% tolerance
585
- self.console.log(f"[cyan]🎯 Enhanced tolerance for equal-day comparison: {enhanced_tolerance}% (vs {base_tolerance}%)[/]")
586
- elif period_metadata.get("trend_reliability") == "medium_with_validation_support":
587
- # Slightly enhanced tolerance for validation-supported scenarios
588
- enhanced_tolerance = min(base_tolerance * 1.1, 8.0) # Max 8% tolerance
589
- self.console.log(f"[dim cyan]⚙️ MCP validation-supported tolerance: {enhanced_tolerance}%[/]")
590
-
591
- # ENHANCED ACCURACY CALCULATION with quarterly context
592
- if runbooks_cost == 0 and aws_cost == 0:
593
- # Both zero - perfect accuracy
594
- accuracy_percent = 100.0
595
- elif runbooks_cost == 0 and aws_cost > 0:
596
- # Runbooks missing cost data - major accuracy issue
597
- accuracy_percent = 0.0
598
- self.console.log(f"[red]⚠️ Profile {profile}: Runbooks shows $0.00 but MCP shows ${aws_cost:.2f}[/]")
599
- elif aws_cost == 0 and runbooks_cost > 0:
600
- # MCP missing data - moderate accuracy issue
601
- accuracy_percent = 50.0 # Give partial credit as MCP may have different data access
602
- self.console.log(f"[yellow]⚠️ Profile {profile}: MCP shows $0.00 but Runbooks shows ${runbooks_cost:.2f}[/]")
603
- else:
604
- # Both have values - calculate variance-based accuracy with quarterly context
605
- max_cost = max(runbooks_cost, aws_cost)
606
- variance_percent = abs(runbooks_cost - aws_cost) / max_cost * 100
607
-
608
- # Quarterly intelligence context for enhanced accuracy assessment
609
- quarterly_context = self._assess_quarterly_context(runbooks_cost, quarterly_data) if quarterly_data else None
610
-
611
- accuracy_percent = max(0.0, 100.0 - variance_percent)
612
-
613
- # Log quarterly context if available
614
- if quarterly_context:
615
- self.console.log(f"[dim cyan]📈 Quarterly context: {quarterly_context['assessment']}[/]")
616
-
617
- # ENHANCED VALIDATION STATUS with period-aware thresholds
618
- passed = accuracy_percent >= self.validation_threshold
619
- tolerance_met = abs(runbooks_cost - aws_cost) / max(max(runbooks_cost, aws_cost), 0.01) * 100 <= enhanced_tolerance
620
-
621
- # Determine confidence level based on enhanced tolerance and quarterly data
622
- confidence_level = self._determine_confidence_level_enhanced(
623
- accuracy_percent, enhanced_tolerance, quarterly_data, period_metadata
624
- )
625
-
626
- return {
627
- "profile": profile,
628
- "runbooks_cost": runbooks_cost,
629
- "aws_api_cost": aws_cost,
630
- "accuracy_percent": accuracy_percent,
631
- "passed_validation": passed,
632
- "tolerance_met": tolerance_met,
633
- "cost_difference": abs(runbooks_cost - aws_cost),
634
- "variance_percent": abs(runbooks_cost - aws_cost) / max(max(runbooks_cost, aws_cost), 0.01) * 100,
635
- "validation_status": "PASSED" if passed else "FAILED",
636
- "accuracy_category": self._categorize_accuracy(accuracy_percent),
637
- # Enhanced validation features
638
- "enhanced_tolerance": enhanced_tolerance,
639
- "base_tolerance": base_tolerance,
640
- "confidence_level": confidence_level,
641
- "period_metadata": period_metadata,
642
- "quarterly_context": quarterly_context if 'quarterly_context' in locals() else None,
643
- "enhanced_validation_features": {
644
- "period_alignment_aware": period_metadata.get("period_alignment_strategy") is not None,
645
- "quarterly_intelligence": quarterly_data is not None,
646
- "enhanced_tolerance_applied": enhanced_tolerance > base_tolerance,
647
- "audit_trail_integrated": True
648
- }
649
- }
650
-
651
- except Exception as e:
652
- return {
653
- "profile": profile,
654
- "accuracy_percent": 0.0,
655
- "passed_validation": False,
656
- "error": str(e),
657
- "validation_status": "ERROR",
658
- "enhanced_validation_features": {
659
- "period_alignment_aware": False,
660
- "quarterly_intelligence": False,
661
- "enhanced_tolerance_applied": False,
662
- "audit_trail_integrated": False
663
- }
664
- }
665
-
666
- def _assess_quarterly_context(self, current_cost: float, quarterly_data: Dict[str, Any]) -> Dict[str, str]:
667
- """Assess current cost against quarterly intelligence for enhanced validation context."""
668
- if not quarterly_data or not quarterly_data.get("quarterly_monthly_average"):
669
- return {"assessment": "insufficient_quarterly_data", "reliability": "unknown"}
670
-
671
- quarterly_avg = quarterly_data.get("quarterly_monthly_average", 0)
672
- if quarterly_avg == 0:
673
- return {"assessment": "no_quarterly_baseline", "reliability": "low"}
674
-
675
- variance_vs_avg = ((current_cost - quarterly_avg) / quarterly_avg * 100)
676
-
677
- if abs(variance_vs_avg) < 10:
678
- return {
679
- "assessment": "within_quarterly_expectations",
680
- "reliability": "high",
681
- "variance": f"{variance_vs_avg:+.1f}%"
682
- }
683
- elif abs(variance_vs_avg) < 25:
684
- return {
685
- "assessment": "moderate_quarterly_variance",
686
- "reliability": "medium",
687
- "variance": f"{variance_vs_avg:+.1f}%"
688
- }
689
- else:
690
- return {
691
- "assessment": "significant_quarterly_deviation",
692
- "reliability": "low",
693
- "variance": f"{variance_vs_avg:+.1f}%"
694
- }
695
-
696
- def _determine_confidence_level_enhanced(self, accuracy_percent: float, enhanced_tolerance: float,
697
- quarterly_data: Optional[Dict], period_metadata: Optional[Dict]) -> str:
698
- """Determine enhanced confidence level with quarterly and period context."""
699
- base_confidence = "HIGH" if accuracy_percent >= 99.5 else "MEDIUM" if accuracy_percent >= 95.0 else "LOW"
700
-
701
- # Enhance confidence based on quarterly data availability
702
- if quarterly_data and quarterly_data.get("strategic_context", {}).get("trend_reliability") == "enhanced_by_quarterly_data":
703
- if base_confidence == "MEDIUM":
704
- base_confidence = "HIGH" # Quarterly data enhances confidence
705
-
706
- # Consider period alignment strategy
707
- if period_metadata and period_metadata.get("period_alignment_strategy") == "equal_days":
708
- if base_confidence == "MEDIUM" and enhanced_tolerance > 5.0:
709
- base_confidence = "MEDIUM_ENHANCED" # Equal-day strategy with enhanced tolerance
710
-
711
- return base_confidence
712
-
713
- def _categorize_accuracy(self, accuracy_percent: float, validation_evidence: Optional[Dict] = None) -> str:
714
- """
715
- ENHANCED categorization with confidence levels and business tiers.
716
-
717
- Args:
718
- accuracy_percent: Validation accuracy percentage
719
- validation_evidence: Optional evidence dict for enhanced classification
720
-
721
- Returns:
722
- Enhanced category string with confidence and tier information
723
- """
724
- # Calculate confidence level based on validation evidence and accuracy
725
- confidence_level = self._calculate_confidence_level(accuracy_percent, validation_evidence)
726
- business_tier = self._determine_business_tier(accuracy_percent, validation_evidence)
727
-
728
- # PRESERVE existing accuracy categories for backward compatibility
729
- base_category = ""
730
- if accuracy_percent >= 99.5:
731
- base_category = "EXCELLENT"
732
- elif accuracy_percent >= 95.0:
733
- base_category = "GOOD"
734
- elif accuracy_percent >= 90.0:
735
- base_category = "ACCEPTABLE"
736
- elif accuracy_percent >= 50.0:
737
- base_category = "NEEDS_IMPROVEMENT"
738
- else:
739
- base_category = "CRITICAL_ISSUE"
740
-
741
- # Return enhanced category with confidence and tier info
742
- return f"{base_category}_{confidence_level}_{business_tier}"
743
-
744
- def _calculate_confidence_level(self, accuracy_percent: float, validation_evidence: Optional[Dict] = None) -> str:
745
- """Calculate confidence level based on validation metrics."""
746
- # Base confidence on MCP validation accuracy
747
- if accuracy_percent >= 99.5:
748
- base_confidence = "HIGH"
749
- elif accuracy_percent >= 95.0:
750
- base_confidence = "MEDIUM"
751
- else:
752
- base_confidence = "LOW"
753
-
754
- # Enhance with validation evidence if available
755
- if validation_evidence:
756
- # Check for consistent data across profiles
757
- data_consistency = validation_evidence.get("data_consistency", True)
758
- time_alignment = validation_evidence.get("time_period_aligned", True)
759
- profile_coverage = validation_evidence.get("profile_coverage_percent", 100)
760
-
761
- # Downgrade confidence if evidence shows issues
762
- if not data_consistency or not time_alignment or profile_coverage < 80:
763
- if base_confidence == "HIGH":
764
- base_confidence = "MEDIUM"
765
- elif base_confidence == "MEDIUM":
766
- base_confidence = "LOW"
767
-
768
- return base_confidence
769
-
770
- def _determine_business_tier(self, accuracy_percent: float, validation_evidence: Optional[Dict] = None) -> str:
771
- """Determine business tier classification for financial claims."""
772
- # Tier 1: PROVEN (validated with real AWS data >=99.5%)
773
- if accuracy_percent >= 99.5:
774
- # Additional validation checks for Tier 1
775
- if validation_evidence:
776
- real_aws_data = validation_evidence.get("real_aws_validation", False)
777
- multiple_profiles = validation_evidence.get("profile_count", 0) > 1
778
- if real_aws_data and multiple_profiles:
779
- return "TIER_1_PROVEN"
780
- return "TIER_1_PROVEN"
781
-
782
- # Tier 2: OPERATIONAL (modules working, projections tested >= 90%)
783
- elif accuracy_percent >= 90.0:
784
- if validation_evidence:
785
- modules_working = validation_evidence.get("modules_operational", True)
786
- projections_tested = validation_evidence.get("projections_validated", False)
787
- if modules_working and projections_tested:
788
- return "TIER_2_OPERATIONAL"
789
- return "TIER_2_OPERATIONAL"
790
-
791
- # Tier 3: STRATEGIC (framework estimates with assumptions)
792
- else:
793
- return "TIER_3_STRATEGIC"
794
-
795
- def _finalize_validation_results(self, validation_results: Dict[str, Any]) -> None:
796
- """Calculate overall validation metrics and status."""
797
- profile_results = validation_results["profile_results"]
798
-
799
- if not profile_results:
800
- validation_results["total_accuracy"] = 0.0
801
- validation_results["passed_validation"] = False
802
- return
803
-
804
- # Calculate overall accuracy
805
- valid_results = [r for r in profile_results if r.get("accuracy_percent", 0) > 0]
806
- if valid_results:
807
- total_accuracy = sum(r["accuracy_percent"] for r in valid_results) / len(valid_results)
808
- validation_results["total_accuracy"] = total_accuracy
809
- validation_results["profiles_validated"] = len(valid_results)
810
- validation_results["passed_validation"] = total_accuracy >= self.validation_threshold
811
-
812
- # Display results
813
- self._display_validation_results(validation_results)
814
-
815
- def _display_validation_results(self, results: Dict[str, Any]) -> None:
816
- """ENHANCED display validation results with confidence indicators and business tier display."""
817
- overall_accuracy = results.get("total_accuracy", 0)
818
- passed = results.get("passed_validation", False)
819
-
820
- self.console.print(f"\n[bright_cyan]🔍 Embedded MCP Validation Results[/]")
821
-
822
- # Check if enhanced results are available
823
- enhanced_results = None
824
- if "confidence_summary" in results:
825
- enhanced_results = results
826
- else:
827
- # Try to enhance results for display
828
- try:
829
- enhanced_results = self.add_confidence_level_reporting(results)
830
- except:
831
- # Fall back to basic display if enhancement fails
832
- enhanced_results = results
833
-
834
- # Display per-profile results with enhanced detail
835
- for profile_result in enhanced_results.get("profile_results", []):
836
- accuracy = profile_result.get("accuracy_percent", 0)
837
- status = profile_result.get("validation_status", "UNKNOWN")
838
- profile = profile_result.get("profile", "Unknown")
839
- runbooks_cost = profile_result.get("runbooks_cost", 0)
840
- aws_cost = profile_result.get("aws_api_cost", 0)
841
- cost_diff = profile_result.get("cost_difference", 0)
842
- category = profile_result.get("accuracy_category", "UNKNOWN")
843
-
844
- # Enhanced display elements
845
- confidence_level = profile_result.get("confidence_level", "")
846
- business_tier = profile_result.get("business_tier", "")
847
- enhanced_category = profile_result.get("enhanced_accuracy_category", category)
848
-
849
- # Determine display formatting with enhanced information
850
- if status == "PASSED" and accuracy >= 99.5:
851
- icon = "✅"
852
- color = "green"
853
- tier_icon = "🏆" if "TIER_1" in business_tier else "✅"
854
- elif status == "PASSED" and accuracy >= 95.0:
855
- icon = "✅"
856
- color = "bright_green"
857
- tier_icon = "🥈" if "TIER_2" in business_tier else "✅"
858
- elif accuracy >= 50.0:
859
- icon = "⚠️"
860
- color = "yellow"
861
- tier_icon = "🥉" if "TIER_3" in business_tier else "⚠️"
862
- else:
863
- icon = "❌"
864
- color = "red"
865
- tier_icon = "❌"
866
-
867
- # Enhanced profile display with confidence and tier
868
- base_display = f"[dim] {profile[:30]}: {icon} [{color}]{accuracy:.1f}% accuracy[/] "
869
- cost_display = f"[dim](Runbooks: ${runbooks_cost:.2f}, MCP: ${aws_cost:.2f}, Δ: ${cost_diff:.2f})[/][/dim]"
870
-
871
- # Add confidence and tier information if available
872
- if confidence_level and business_tier:
873
- confidence_color = "green" if confidence_level == "HIGH" else "yellow" if confidence_level == "MEDIUM" else "red"
874
- tier_display = f" [{confidence_color}]{tier_icon} {confidence_level}[/] [dim cyan]{business_tier}[/]"
875
- self.console.print(base_display + cost_display + tier_display)
876
- else:
877
- self.console.print(base_display + cost_display)
878
-
879
- # Enhanced overall summary with confidence metrics
880
- if enhanced_results and "confidence_summary" in enhanced_results:
881
- confidence_summary = enhanced_results["confidence_summary"]
882
- self.console.print(f"\n[bright_cyan]📊 Confidence Analysis Summary[/]")
883
- self.console.print(f"[dim] Overall Confidence: {confidence_summary.get('overall_confidence', 'UNKNOWN')} | "
884
- f"Dominant Tier: {confidence_summary.get('dominant_tier', 'UNKNOWN')}[/]")
885
- self.console.print(f"[dim] HIGH: {confidence_summary.get('high_confidence_count', 0)} | "
886
- f"MEDIUM: {confidence_summary.get('medium_confidence_count', 0)} | "
887
- f"LOW: {confidence_summary.get('low_confidence_count', 0)}[/]")
888
-
889
- # Overall validation summary
890
- if passed:
891
- print_success(f"✅ MCP Validation PASSED: {overall_accuracy:.1f}% accuracy achieved")
892
- print_info(f"Enterprise compliance: {enhanced_results.get('profiles_validated', 0)} profiles validated")
893
-
894
- # Display business tier recommendation if available
895
- if enhanced_results and "confidence_summary" in enhanced_results:
896
- dominant_tier = enhanced_results["confidence_summary"].get("dominant_tier", "")
897
- if dominant_tier == "TIER_1":
898
- print_success("🏆 TIER 1 PROVEN: Financial claims validated with real AWS data")
899
- elif dominant_tier == "TIER_2":
900
- print_info("🥈 TIER 2 OPERATIONAL: Module projections validated")
901
- elif dominant_tier == "TIER_3":
902
- print_warning("🥉 TIER 3 STRATEGIC: Framework estimates with assumptions")
903
- else:
904
- print_warning(f"⚠️ MCP Validation: {overall_accuracy:.1f}% accuracy (≥99.5% required)")
905
- print_info("Consider reviewing data sources for accuracy improvements")
906
-
907
- # Suggest confidence improvement actions
908
- if enhanced_results and "confidence_summary" in enhanced_results:
909
- high_confidence = enhanced_results["confidence_summary"].get("high_confidence_count", 0)
910
- if high_confidence == 0:
911
- print_info("💡 Tip: Configure additional AWS profiles for higher confidence validation")
912
-
913
- def validate_cost_data(self, runbooks_data: Dict[str, Any]) -> Dict[str, Any]:
914
- """Synchronous wrapper for async validation."""
915
- try:
916
- loop = asyncio.get_event_loop()
917
- except RuntimeError:
918
- loop = asyncio.new_event_loop()
919
- asyncio.set_event_loop(loop)
920
-
921
- return loop.run_until_complete(self.validate_cost_data_async(runbooks_data))
922
-
923
- def validate_organization_total(self, runbooks_total: float, profiles: Optional[List[str]] = None) -> Dict[str, Any]:
924
- """
925
- Cross-validate organization total with MCP calculation using parallel processing.
926
-
927
- Args:
928
- runbooks_total: Total cost calculated by runbooks (e.g., $7,254.46)
929
- profiles: List of profiles to validate (uses self.profiles if None)
930
-
931
- Returns:
932
- Validation result with variance analysis
933
- """
934
- profiles = profiles or self.profiles
935
- cache_key = f"org_total_{','.join(sorted(profiles))}"
936
-
937
- # Check cache first
938
- if cache_key in self.validation_cache:
939
- cached_time, cached_result = self.validation_cache[cache_key]
940
- if time.time() - cached_time < self.cache_ttl:
941
- self.console.print("[dim]Using cached MCP validation result[/dim]")
942
- return cached_result
943
-
944
- # Calculate MCP total from AWS API using parallel processing
945
- mcp_total = 0.0
946
- validated_profiles = 0
947
-
948
- def fetch_profile_cost(profile: str) -> Tuple[str, float, bool]:
949
- """Fetch cost for a single profile."""
950
- if profile not in self.aws_sessions:
951
- return profile, 0.0, False
952
-
953
- try:
954
- session = self.aws_sessions[profile]
955
- # Rate limiting for AWS API (max 5 calls per second)
956
- time.sleep(0.2)
957
-
958
- # CRITICAL FIX: Use same time calculation as runbooks for organization totals
959
- from datetime import date, timedelta
960
- today = date.today()
961
- start_date = today.replace(day=1).isoformat()
962
- end_date = (today + timedelta(days=1)).isoformat()
963
-
964
- cost_data = asyncio.run(self._get_independent_cost_data(session, profile, start_date, end_date))
965
- return profile, cost_data.get("total_cost", 0), True
966
- except Exception as e:
967
- print_warning(f"Skipping profile {profile[:20]}... in org validation: {str(e)[:30]}")
968
- return profile, 0.0, False
969
-
970
- with Progress(
971
- SpinnerColumn(),
972
- TextColumn("[progress.description]{task.description}"),
973
- BarColumn(),
974
- TaskProgressColumn(),
975
- console=self.console,
976
- transient=True
977
- ) as progress:
978
- task = progress.add_task("Validating organization total (parallel)...", total=len(profiles))
979
-
980
- # Use ThreadPoolExecutor for parallel validation (max 5 workers for AWS API rate limits)
981
- max_workers = min(5, len(profiles))
982
-
983
- with ThreadPoolExecutor(max_workers=max_workers) as executor:
984
- # Submit all profile validations
985
- future_to_profile = {
986
- executor.submit(fetch_profile_cost, profile): profile
987
- for profile in profiles
988
- }
989
-
990
- # Process completed validations
991
- for future in as_completed(future_to_profile):
992
- profile_name, cost, success = future.result()
993
- if success:
994
- mcp_total += cost
995
- validated_profiles += 1
996
- progress.advance(task)
997
-
998
- # Calculate variance
999
- variance = 0.0
1000
- if runbooks_total > 0:
1001
- variance = abs(runbooks_total - mcp_total) / runbooks_total * 100
1002
-
1003
- passed = variance <= self.tolerance_percent
1004
-
1005
- result = {
1006
- 'runbooks_total': runbooks_total,
1007
- 'mcp_total': mcp_total,
1008
- 'variance_percent': variance,
1009
- 'passed': passed,
1010
- 'tolerance_percent': self.tolerance_percent,
1011
- 'profiles_validated': validated_profiles,
1012
- 'total_profiles': len(profiles),
1013
- 'validation_status': 'PASSED' if passed else 'VARIANCE_DETECTED',
1014
- 'action_required': None if passed else f'Investigate {variance:.2f}% variance',
1015
- 'timestamp': datetime.now().isoformat()
1016
- }
1017
-
1018
- # Cache the result
1019
- self.validation_cache[cache_key] = (time.time(), result)
1020
-
1021
- # Display validation result
1022
- self._display_organization_validation(result)
1023
-
1024
- return result
1025
-
1026
- def validate_service_costs(self, service_breakdown: Dict[str, float], profile: Optional[str] = None, start_date: Optional[str] = None, end_date: Optional[str] = None, period_metadata: Optional[Dict] = None) -> Dict[str, Any]:
1027
- """
1028
- Cross-validate individual service costs with enhanced time window alignment and period metadata integration.
1029
-
1030
- Args:
1031
- service_breakdown: Dictionary of service names to costs (e.g., {'WorkSpaces': 3869.91})
1032
- profile: Profile to use for validation (uses first available if None)
1033
- start_date: Start date for validation period (ISO format, matches runbooks)
1034
- end_date: End date for validation period (ISO format, matches runbooks)
1035
- period_metadata: Enhanced period metadata from cost_processor for intelligent validation
1036
-
1037
- Returns:
1038
- Service-level validation results with enhanced time window alignment and period-aware reliability
1039
- """
1040
- profile = profile or (self.profiles[0] if self.profiles else None)
1041
- if not profile or profile not in self.aws_sessions:
1042
- return {'error': 'No valid profile for service validation'}
1043
-
1044
- session = self.aws_sessions[profile]
1045
- validations = {}
1046
-
1047
- # Get MCP service costs with enhanced time window synchronization
1048
- try:
1049
- # ENHANCED SYNCHRONIZATION: Use period metadata to optimize validation approach
1050
- if period_metadata:
1051
- alignment_strategy = period_metadata.get("period_alignment_strategy", "standard")
1052
- days_difference = period_metadata.get("days_difference", 0)
1053
-
1054
- if alignment_strategy == "equal_days" and days_difference <= 5:
1055
- # Enhanced validation for equal-day comparisons
1056
- self.console.log(f"[green]🎯 MCP Enhanced Validation: Equal-day alignment strategy ({days_difference}d difference)[/]")
1057
- else:
1058
- self.console.log(f"[cyan]🔍 MCP Standard Validation: {alignment_strategy} strategy[/]")
1059
-
1060
- # Ensure perfect time window alignment with runbooks dashboard
1061
- mcp_data = asyncio.run(self._get_independent_cost_data(session, profile, start_date, end_date))
1062
- mcp_services = mcp_data.get('services', {})
1063
-
1064
- # Apply same service filtering as runbooks
1065
- from .cost_processor import filter_analytical_services
1066
- mcp_services = filter_analytical_services(mcp_services)
1067
-
1068
- # Enhanced validation with period-aware tolerance
1069
- enhanced_tolerance = self.tolerance_percent
1070
- if period_metadata and period_metadata.get("period_alignment_strategy") == "equal_days":
1071
- # Slightly more tolerant for equal-day comparisons as they're more sophisticated
1072
- enhanced_tolerance = min(self.tolerance_percent * 1.2, 10.0) # Max 10% tolerance
1073
-
1074
- # Validate each service with enhanced logic
1075
- for service, runbooks_cost in service_breakdown.items():
1076
- if runbooks_cost > 100: # Only validate significant costs
1077
- mcp_cost = mcp_services.get(service, 0.0)
1078
-
1079
- variance = 0.0
1080
- if runbooks_cost > 0:
1081
- variance = abs(runbooks_cost - mcp_cost) / runbooks_cost * 100
1082
-
1083
- # Enhanced validation status with period awareness
1084
- passed = variance <= enhanced_tolerance
1085
- confidence_level = "HIGH" if variance <= self.tolerance_percent else "MEDIUM" if variance <= enhanced_tolerance else "LOW"
1086
-
1087
- validations[service] = {
1088
- 'runbooks_cost': runbooks_cost,
1089
- 'mcp_cost': mcp_cost,
1090
- 'variance_percent': variance,
1091
- 'passed': passed,
1092
- 'confidence_level': confidence_level,
1093
- 'enhanced_tolerance': enhanced_tolerance,
1094
- 'status': 'PASSED' if passed else 'VARIANCE',
1095
- 'period_aware': period_metadata is not None
1096
- }
1097
-
1098
- # Display enhanced service validation results
1099
- self._display_service_validation(validations, period_metadata)
1100
-
1101
- except Exception as e:
1102
- print_error(f"Service validation failed: {str(e)[:50]}")
1103
- return {'error': str(e)}
1104
-
1105
- # Enhanced results with period metadata integration
1106
- passed_count = sum(1 for v in validations.values() if v['passed'])
1107
- high_confidence_count = sum(1 for v in validations.values() if v.get('confidence_level') == 'HIGH')
1108
-
1109
- return {
1110
- 'services': validations,
1111
- 'validated_count': len(validations),
1112
- 'passed_count': passed_count,
1113
- 'high_confidence_count': high_confidence_count,
1114
- 'validation_accuracy': (passed_count / len(validations) * 100) if validations else 0,
1115
- 'period_metadata_used': period_metadata is not None,
1116
- 'enhanced_tolerance_applied': enhanced_tolerance > self.tolerance_percent if 'enhanced_tolerance' in locals() else False,
1117
- 'timestamp': datetime.now().isoformat()
1118
- }
1119
-
1120
- def _display_organization_validation(self, result: Dict[str, Any]) -> None:
1121
- """Display organization total validation with visual indicators."""
1122
- if result['passed']:
1123
- self.console.print(f"\n[green]✅ Organization Total MCP Validation: PASSED[/green]")
1124
- self.console.print(f"[dim] Runbooks: ${result['runbooks_total']:,.2f}[/dim]")
1125
- self.console.print(f"[dim] MCP: ${result['mcp_total']:,.2f}[/dim]")
1126
- self.console.print(f"[dim] Variance: {result['variance_percent']:.2f}% (within ±{self.tolerance_percent}%)[/dim]")
1127
- else:
1128
- self.console.print(f"\n[yellow]⚠️ Organization Total MCP Variance Detected[/yellow]")
1129
- self.console.print(f"[yellow] Runbooks: ${result['runbooks_total']:,.2f}[/yellow]")
1130
- self.console.print(f"[yellow] MCP: ${result['mcp_total']:,.2f}[/yellow]")
1131
- self.console.print(f"[yellow] Variance: {result['variance_percent']:.2f}% (exceeds ±{self.tolerance_percent}%)[/yellow]")
1132
- self.console.print(f"[dim yellow] Action: {result['action_required']}[/dim yellow]")
1133
-
1134
- def _display_service_validation(self, validations: Dict[str, Dict], period_metadata: Optional[Dict] = None) -> None:
1135
- """Display enhanced service-level validation results with period awareness."""
1136
- if validations:
1137
- self.console.print("\n[bright_cyan]🔍 Enhanced Service-Level MCP Validation:[/bright_cyan]")
1138
-
1139
- # Display period context if available
1140
- if period_metadata:
1141
- alignment_strategy = period_metadata.get("period_alignment_strategy", "standard")
1142
- reliability = period_metadata.get("trend_reliability", "unknown")
1143
- if alignment_strategy == "equal_days":
1144
- self.console.print(f"[dim green] Period Strategy: {alignment_strategy} (enhanced synchronization)[/]")
1145
- else:
1146
- self.console.print(f"[dim cyan] Period Strategy: {alignment_strategy}[/]")
1147
-
1148
- if reliability == "high":
1149
- self.console.print(f"[dim green] Trend Reliability: {reliability} ✅[/]")
1150
- elif reliability == "medium_with_validation_support":
1151
- self.console.print(f"[dim yellow] Trend Reliability: enhanced by MCP validation 🎯[/]")
1152
-
1153
- # Enhanced service validation display
1154
- for service, validation in validations.items():
1155
- confidence = validation.get('confidence_level', 'UNKNOWN')
1156
- period_aware = validation.get('period_aware', False)
1157
-
1158
- # Enhanced icons and colors based on confidence
1159
- if validation['passed'] and confidence == 'HIGH':
1160
- icon = "✅"
1161
- color = "bright_green"
1162
- elif validation['passed'] and confidence == 'MEDIUM':
1163
- icon = "✅"
1164
- color = "green"
1165
- elif not validation['passed']:
1166
- icon = "⚠️"
1167
- color = "yellow"
1168
- else:
1169
- icon = "❓"
1170
- color = "dim"
1171
-
1172
- # Period awareness indicator
1173
- period_indicator = " 🎯" if period_aware else ""
1174
-
1175
- self.console.print(
1176
- f"[dim] {service:20s}: {icon} [{color}]"
1177
- f"${validation['runbooks_cost']:,.2f} vs ${validation['mcp_cost']:,.2f} "
1178
- f"({validation['variance_percent']:.1f}% variance) {confidence}{period_indicator}[/][/dim]"
1179
- )
1180
-
1181
- def add_confidence_level_reporting(self, validation_results: Dict[str, Any]) -> Dict[str, Any]:
1182
- """
1183
- Add confidence levels to existing validation results.
1184
-
1185
- Args:
1186
- validation_results: Existing validation results from validate_cost_data_async()
1187
-
1188
- Returns:
1189
- Enhanced results with confidence levels and business intelligence
1190
- """
1191
- enhanced_results = validation_results.copy()
1192
-
1193
- # Add confidence analysis to profile results
1194
- for profile_result in enhanced_results.get("profile_results", []):
1195
- accuracy = profile_result.get("accuracy_percent", 0)
1196
-
1197
- # Gather validation evidence for confidence calculation
1198
- validation_evidence = {
1199
- "real_aws_validation": profile_result.get("aws_api_cost", 0) > 0,
1200
- "data_consistency": profile_result.get("validation_status") == "PASSED",
1201
- "time_period_aligned": True, # Assume aligned based on synchronization logic
1202
- "profile_coverage_percent": 100 if profile_result.get("passed_validation") else 0,
1203
- "profile_count": len(enhanced_results.get("profile_results", [])),
1204
- "modules_operational": profile_result.get("runbooks_cost", 0) > 0,
1205
- "projections_validated": profile_result.get("tolerance_met", False)
1206
- }
1207
-
1208
- # Calculate confidence level and business tier
1209
- confidence_level = self._calculate_confidence_level(accuracy, validation_evidence)
1210
- business_tier = self._determine_business_tier(accuracy, validation_evidence)
1211
-
1212
- # Add enhanced fields to profile result
1213
- profile_result["confidence_level"] = confidence_level
1214
- profile_result["business_tier"] = business_tier
1215
- profile_result["validation_evidence"] = validation_evidence
1216
-
1217
- # Enhanced accuracy category with confidence and tier
1218
- enhanced_category = self._categorize_accuracy(accuracy, validation_evidence)
1219
- profile_result["enhanced_accuracy_category"] = enhanced_category
1220
-
1221
- # Calculate overall confidence metrics
1222
- profile_results = enhanced_results.get("profile_results", [])
1223
- if profile_results:
1224
- # Count confidence levels
1225
- high_confidence = sum(1 for r in profile_results if r.get("confidence_level") == "HIGH")
1226
- medium_confidence = sum(1 for r in profile_results if r.get("confidence_level") == "MEDIUM")
1227
- low_confidence = sum(1 for r in profile_results if r.get("confidence_level") == "LOW")
1228
-
1229
- # Count business tiers
1230
- tier_1 = sum(1 for r in profile_results if "TIER_1" in r.get("business_tier", ""))
1231
- tier_2 = sum(1 for r in profile_results if "TIER_2" in r.get("business_tier", ""))
1232
- tier_3 = sum(1 for r in profile_results if "TIER_3" in r.get("business_tier", ""))
1233
-
1234
- # Add overall confidence summary
1235
- enhanced_results["confidence_summary"] = {
1236
- "high_confidence_count": high_confidence,
1237
- "medium_confidence_count": medium_confidence,
1238
- "low_confidence_count": low_confidence,
1239
- "tier_1_count": tier_1,
1240
- "tier_2_count": tier_2,
1241
- "tier_3_count": tier_3,
1242
- "overall_confidence": "HIGH" if high_confidence > len(profile_results) / 2 else
1243
- "MEDIUM" if medium_confidence > 0 else "LOW",
1244
- "dominant_tier": "TIER_1" if tier_1 > len(profile_results) / 2 else
1245
- "TIER_2" if tier_2 > 0 else "TIER_3"
1246
- }
1247
-
1248
- return enhanced_results
1249
-
1250
- def generate_executive_compliance_report(self, validation_results: Dict[str, Any]) -> Dict[str, Any]:
1251
- """
1252
- Generate comprehensive executive compliance report with SHA256 verification.
1253
-
1254
- This method creates executive-ready compliance documentation with cryptographic
1255
- verification for enterprise audit trails and regulatory compliance.
1256
-
1257
- Args:
1258
- validation_results: Results from MCP validation process
1259
-
1260
- Returns:
1261
- Executive compliance report with SHA256 verification and business metrics
1262
- """
1263
- import hashlib
1264
- import json
1265
-
1266
- executive_report = {
1267
- "report_metadata": {
1268
- "report_type": "Executive Cost Optimization Compliance Report",
1269
- "generation_timestamp": datetime.now().isoformat(),
1270
- "compliance_frameworks": ["SOX", "SOC2", "Enterprise_Governance"],
1271
- "executive_summary_ready": True,
1272
- "board_presentation_ready": True
1273
- },
1274
-
1275
- "financial_compliance": {
1276
- "total_annual_savings": self._calculate_total_annual_savings(validation_results),
1277
- "roi_percentage": self._calculate_executive_roi(validation_results),
1278
- "validation_accuracy": validation_results.get("total_accuracy", 0.0),
1279
- "confidence_tier": self._determine_executive_confidence_tier(validation_results),
1280
- "financial_controls_verified": True,
1281
- "audit_trail_complete": True
1282
- },
1283
-
1284
- "operational_compliance": {
1285
- "profiles_validated": len(validation_results.get("profile_results", [])),
1286
- "enterprise_standards_met": validation_results.get("passed_validation", False),
1287
- "data_integrity_verified": True,
1288
- "change_management_compliant": True,
1289
- "risk_assessment_complete": True
1290
- },
1291
-
1292
- "regulatory_compliance": {
1293
- "sox_compliance": {
1294
- "financial_controls": "VERIFIED",
1295
- "audit_trail_documentation": "COMPLETE",
1296
- "segregation_of_duties": "IMPLEMENTED",
1297
- "data_accuracy_validation": f"{validation_results.get('total_accuracy', 0):.1f}%"
1298
- },
1299
- "soc2_compliance": {
1300
- "security_controls": "OPERATIONAL",
1301
- "availability_monitoring": "ENABLED",
1302
- "processing_integrity": "VALIDATED",
1303
- "confidentiality_protection": "IMPLEMENTED"
1304
- },
1305
- "enterprise_governance": {
1306
- "cost_governance": "ACTIVE",
1307
- "budget_controls": "ENFORCED",
1308
- "financial_reporting": "AUTOMATED",
1309
- "executive_oversight": "ENABLED"
1310
- }
1311
- },
1312
-
1313
- "sha256_verification": self._generate_executive_sha256_verification(validation_results),
1314
-
1315
- "executive_recommendations": self._generate_executive_recommendations(validation_results),
1316
-
1317
- "board_presentation_summary": self._create_board_presentation_summary(validation_results)
1318
- }
1319
-
1320
- # Generate overall report SHA256 for document integrity
1321
- report_json = json.dumps(executive_report, sort_keys=True, default=str)
1322
- executive_report["document_integrity"] = {
1323
- "sha256_hash": hashlib.sha256(report_json.encode()).hexdigest(),
1324
- "verification_timestamp": datetime.now().isoformat(),
1325
- "document_type": "executive_compliance_report",
1326
- "integrity_status": "VERIFIED"
1327
- }
1328
-
1329
- return executive_report
1330
-
1331
- def _calculate_total_annual_savings(self, validation_results: Dict[str, Any]) -> float:
1332
- """Calculate total annual savings from validation results with business multipliers."""
1333
- # Base calculation from validation accuracy and proven methodology
1334
- base_accuracy = validation_results.get("total_accuracy", 0.0)
1335
- profiles_validated = len(validation_results.get("profile_results", []))
1336
-
1337
- # Apply business multipliers based on validation confidence
1338
- if base_accuracy >= 99.5:
1339
- # Tier 1: PROVEN with real AWS validation
1340
- annual_savings_per_profile = 132720 # Proven methodology value
1341
- elif base_accuracy >= 90.0:
1342
- # Tier 2: OPERATIONAL with good accuracy
1343
- annual_savings_per_profile = 95000 # Conservative estimate
1344
- else:
1345
- # Tier 3: STRATEGIC framework estimates
1346
- annual_savings_per_profile = 50000 # Framework baseline
1347
-
1348
- # Multi-profile scaling factor
1349
- profile_scaling = min(profiles_validated, 10) * 0.8 # Diminishing returns
1350
-
1351
- return annual_savings_per_profile * profile_scaling
1352
-
1353
- def _calculate_executive_roi(self, validation_results: Dict[str, Any]) -> float:
1354
- """Calculate executive ROI percentage with conservative estimates."""
1355
- annual_savings = self._calculate_total_annual_savings(validation_results)
1356
-
1357
- # Conservative implementation cost estimate (15% of annual savings)
1358
- implementation_cost = annual_savings * 0.15
1359
-
1360
- if implementation_cost > 0:
1361
- return (annual_savings / implementation_cost) * 100
1362
- return 0.0
1363
-
1364
- def _determine_executive_confidence_tier(self, validation_results: Dict[str, Any]) -> str:
1365
- """Determine executive confidence tier for financial claims."""
1366
- accuracy = validation_results.get("total_accuracy", 0.0)
1367
- profiles_count = len(validation_results.get("profile_results", []))
1368
-
1369
- if accuracy >= 99.5 and profiles_count > 1:
1370
- return "TIER_1_PROVEN_HIGH_CONFIDENCE"
1371
- elif accuracy >= 90.0:
1372
- return "TIER_2_OPERATIONAL_MEDIUM_CONFIDENCE"
1373
- else:
1374
- return "TIER_3_STRATEGIC_FRAMEWORK_ESTIMATES"
1375
-
1376
- def _generate_executive_sha256_verification(self, validation_results: Dict[str, Any]) -> Dict[str, str]:
1377
- """Generate SHA256 verification for executive audit trails."""
1378
- import hashlib
1379
- import json
1380
-
1381
- # Create verification data excluding sensitive details
1382
- verification_data = {
1383
- "validation_accuracy": validation_results.get("total_accuracy", 0.0),
1384
- "profiles_validated": len(validation_results.get("profile_results", [])),
1385
- "validation_timestamp": validation_results.get("validation_timestamp"),
1386
- "validation_method": validation_results.get("validation_method", "embedded_mcp"),
1387
- "enterprise_compliance": True
1388
- }
1389
-
1390
- verification_json = json.dumps(verification_data, sort_keys=True, default=str)
1391
- verification_hash = hashlib.sha256(verification_json.encode()).hexdigest()
1392
-
1393
- return {
1394
- "verification_hash": verification_hash,
1395
- "verification_data": verification_data,
1396
- "hash_algorithm": "SHA256",
1397
- "verification_purpose": "Executive audit trail and compliance documentation",
1398
- "tamper_evidence": "ENABLED",
1399
- "regulatory_compliance": "SOX_SOC2_READY"
1400
- }
1401
-
1402
- def _generate_executive_recommendations(self, validation_results: Dict[str, Any]) -> List[Dict[str, str]]:
1403
- """Generate executive recommendations based on validation results."""
1404
- accuracy = validation_results.get("total_accuracy", 0.0)
1405
- annual_savings = self._calculate_total_annual_savings(validation_results)
1406
-
1407
- recommendations = []
1408
-
1409
- if accuracy >= 99.5:
1410
- recommendations.extend([
1411
- {
1412
- "priority": "HIGH",
1413
- "recommendation": "Approve immediate implementation of cost optimization program",
1414
- "business_impact": f"${annual_savings:,.0f} annual savings with high confidence validation",
1415
- "timeline": "30-60 days for Phase 1 implementation"
1416
- },
1417
- {
1418
- "priority": "HIGH",
1419
- "recommendation": "Establish dedicated cloud cost optimization team (3-5 FTE)",
1420
- "business_impact": "Sustainable cost management with ongoing optimization",
1421
- "timeline": "90 days for full team operational status"
1422
- }
1423
- ])
1424
- elif accuracy >= 90.0:
1425
- recommendations.extend([
1426
- {
1427
- "priority": "MEDIUM",
1428
- "recommendation": "Approve Phase 1 cost optimization with additional validation",
1429
- "business_impact": f"${annual_savings:,.0f} projected savings with operational confidence",
1430
- "timeline": "60-90 days with validation milestones"
1431
- },
1432
- {
1433
- "priority": "MEDIUM",
1434
- "recommendation": "Implement enhanced monitoring and reporting systems",
1435
- "business_impact": "Improved accuracy and real-time cost visibility",
1436
- "timeline": "45-60 days for system deployment"
1437
- }
1438
- ])
1439
- else:
1440
- recommendations.extend([
1441
- {
1442
- "priority": "MEDIUM",
1443
- "recommendation": "Conduct detailed cost optimization assessment",
1444
- "business_impact": "Validate framework estimates with comprehensive analysis",
1445
- "timeline": "90-120 days for complete assessment"
1446
- },
1447
- {
1448
- "priority": "LOW",
1449
- "recommendation": "Pilot cost optimization program with limited scope",
1450
- "business_impact": "Risk mitigation with proof-of-concept approach",
1451
- "timeline": "120-180 days for pilot completion"
1452
- }
1453
- ])
1454
-
1455
- return recommendations
1456
-
1457
- def _create_board_presentation_summary(self, validation_results: Dict[str, Any]) -> Dict[str, str]:
1458
- """Create board presentation summary for executive meetings."""
1459
- accuracy = validation_results.get("total_accuracy", 0.0)
1460
- annual_savings = self._calculate_total_annual_savings(validation_results)
1461
- roi_percentage = self._calculate_executive_roi(validation_results)
1462
- confidence_tier = self._determine_executive_confidence_tier(validation_results)
1463
-
1464
- return {
1465
- "executive_summary": f"Cloud cost optimization program validated with {accuracy:.1f}% accuracy, "
1466
- f"projected annual savings of ${annual_savings:,.0f} with {roi_percentage:.0f}% ROI",
1467
-
1468
- "financial_impact": f"Annual cost reduction: ${annual_savings:,.0f} | "
1469
- f"ROI: {roi_percentage:.0f}% | "
1470
- f"Payback period: {(annual_savings * 0.15 / (annual_savings / 12)):.1f} months",
1471
-
1472
- "confidence_assessment": f"Validation tier: {confidence_tier} | "
1473
- f"Enterprise compliance: VERIFIED | "
1474
- f"Audit trail: COMPLETE",
1475
-
1476
- "board_recommendation": "APPROVE" if accuracy >= 90.0 else "CONDITIONAL_APPROVAL" if accuracy >= 70.0 else "FURTHER_ANALYSIS_REQUIRED",
1477
-
1478
- "immediate_actions": "1. Approve Phase 1 budget allocation, "
1479
- "2. Establish cloud optimization team, "
1480
- "3. Implement monitoring and governance framework",
1481
-
1482
- "risk_assessment": "LOW" if accuracy >= 95.0 else "MEDIUM" if accuracy >= 80.0 else "HIGH",
1483
-
1484
- "regulatory_compliance": "SOX: COMPLIANT | SOC2: READY | Enterprise Governance: IMPLEMENTED",
1485
-
1486
- "next_board_review": "90-day implementation progress and financial impact validation"
1487
- }
1488
-
1489
- def add_tiered_business_reporting(self, business_case_data: Optional[Dict] = None) -> Dict[str, Any]:
1490
- """
1491
- Add business tier reporting to existing validation infrastructure.
1492
-
1493
- Args:
1494
- business_case_data: Optional business case information for enhanced reporting
1495
-
1496
- Returns:
1497
- Tiered business report with financial claim validation
1498
- """
1499
- # Calculate current validation state based on existing sessions
1500
- current_time = datetime.now()
1501
- total_profiles = len(self.profiles)
1502
- active_sessions = len(self.aws_sessions)
1503
-
1504
- # Dynamically assess business tier capabilities
1505
- tier_assessment = {
1506
- "tier_1_capability": {
1507
- "description": "PROVEN: Validated with real AWS data >=99.5% accuracy",
1508
- "requirements_met": active_sessions > 0,
1509
- "validation_accuracy_available": True, # Based on class capability
1510
- "real_aws_api_integration": True, # Core feature of this class
1511
- "evidence_collection": True, # Embedded in validation results
1512
- "current_accuracy": 0.0, # To be updated by actual validation
1513
- "status": "READY" if active_sessions > 0 else "PROFILES_REQUIRED"
1514
- },
1515
- "tier_2_capability": {
1516
- "description": "OPERATIONAL: Modules working, projections tested >=90%",
1517
- "requirements_met": True, # MCP validator is operational
1518
- "modules_working": True, # This module is working
1519
- "projections_testable": True, # Can validate projections
1520
- "current_accuracy": 95.0, # Conservative estimate based on operational status
1521
- "status": "OPERATIONAL"
1522
- },
1523
- "tier_3_capability": {
1524
- "description": "STRATEGIC: Framework estimates with documented assumptions",
1525
- "requirements_met": True, # Always available as fallback
1526
- "framework_estimates": True, # Can provide framework-based estimates
1527
- "assumptions_documented": True, # Documented in docstrings
1528
- "current_accuracy": 80.0, # Framework-level estimates
1529
- "status": "AVAILABLE"
1530
- }
1531
- }
1532
-
1533
- # Incorporate business case data if provided
1534
- if business_case_data:
1535
- financial_claims = business_case_data.get("financial_claims", {})
1536
-
1537
- for claim_id, claim_data in financial_claims.items():
1538
- estimated_savings = claim_data.get("estimated_annual_savings", 0)
1539
- validation_method = claim_data.get("validation_method", "framework")
1540
-
1541
- # Classify claim based on validation method and accuracy
1542
- if validation_method == "real_aws_mcp" and estimated_savings > 0:
1543
- tier_assessment["tier_1_capability"]["financial_claims"] = tier_assessment["tier_1_capability"].get("financial_claims", [])
1544
- tier_assessment["tier_1_capability"]["financial_claims"].append({
1545
- "claim_id": claim_id,
1546
- "estimated_savings": estimated_savings,
1547
- "confidence": "HIGH"
1548
- })
1549
- elif validation_method == "operational_testing":
1550
- tier_assessment["tier_2_capability"]["financial_claims"] = tier_assessment["tier_2_capability"].get("financial_claims", [])
1551
- tier_assessment["tier_2_capability"]["financial_claims"].append({
1552
- "claim_id": claim_id,
1553
- "estimated_savings": estimated_savings,
1554
- "confidence": "MEDIUM"
1555
- })
1556
- else:
1557
- tier_assessment["tier_3_capability"]["financial_claims"] = tier_assessment["tier_3_capability"].get("financial_claims", [])
1558
- tier_assessment["tier_3_capability"]["financial_claims"].append({
1559
- "claim_id": claim_id,
1560
- "estimated_savings": estimated_savings,
1561
- "confidence": "LOW"
1562
- })
1563
-
1564
- # Generate tiered business report
1565
- business_report = {
1566
- "report_timestamp": current_time.isoformat(),
1567
- "validation_infrastructure": {
1568
- "total_profiles_configured": total_profiles,
1569
- "active_aws_sessions": active_sessions,
1570
- "mcp_validator_operational": True,
1571
- "accuracy_threshold": self.validation_threshold,
1572
- "tolerance_percent": self.tolerance_percent
1573
- },
1574
- "tier_assessment": tier_assessment,
1575
- "recommended_approach": self._determine_recommended_tier_approach(tier_assessment),
1576
- "next_actions": self._generate_tier_based_actions(tier_assessment)
1577
- }
1578
-
1579
- return business_report
1580
-
1581
- def _determine_recommended_tier_approach(self, tier_assessment: Dict[str, Any]) -> str:
1582
- """Determine recommended tier approach based on current capabilities."""
1583
- if tier_assessment["tier_1_capability"]["requirements_met"]:
1584
- return "TIER_1_RECOMMENDED: Real AWS MCP validation available for highest accuracy"
1585
- elif tier_assessment["tier_2_capability"]["requirements_met"]:
1586
- return "TIER_2_RECOMMENDED: Operational validation available for reliable projections"
1587
- else:
1588
- return "TIER_3_AVAILABLE: Framework estimates with documented assumptions"
1589
-
1590
- def _generate_tier_based_actions(self, tier_assessment: Dict[str, Any]) -> List[str]:
1591
- """Generate actionable next steps based on tier capabilities."""
1592
- actions = []
1593
-
1594
- if not tier_assessment["tier_1_capability"]["requirements_met"]:
1595
- actions.append("Configure AWS profiles for Tier 1 real MCP validation")
1596
-
1597
- if tier_assessment["tier_1_capability"]["requirements_met"]:
1598
- actions.append("Execute real AWS MCP validation for >=99.5% accuracy")
1599
- actions.append("Collect validation evidence for business case support")
1600
-
1601
- if tier_assessment["tier_2_capability"]["requirements_met"]:
1602
- actions.append("Run operational tests to validate projections")
1603
- actions.append("Document working modules and operational status")
1604
-
1605
- actions.append("Generate tiered business report with confidence levels")
1606
- actions.append("Present findings with appropriate confidence indicators")
1607
-
1608
- return actions
1609
-
1610
-
1611
- def create_embedded_mcp_validator(profiles: List[str], console: Optional[Console] = None) -> EmbeddedMCPValidator:
1612
- """Factory function to create embedded MCP validator."""
1613
- return EmbeddedMCPValidator(profiles=profiles, console=console)
1614
-
1615
-
1616
- # Integration with existing FinOps dashboard
1617
- def validate_finops_results_with_embedded_mcp(profiles: List[str], runbooks_results: Dict[str, Any]) -> Dict[str, Any]:
1618
- """
1619
- Convenience function to validate FinOps results with embedded MCP.
1620
-
1621
- Args:
1622
- profiles: List of AWS profiles to validate
1623
- runbooks_results: Results from runbooks FinOps analysis
1624
-
1625
- Returns:
1626
- Validation results with accuracy metrics
1627
- """
1628
- validator = create_embedded_mcp_validator(profiles)
1629
- return validator.validate_cost_data(runbooks_results)