PyPI - runbooks - Versions diffs - 1.1.9__py3-none-any.whl → 1.1.10__py3-none-any.whl - Mend

runbooks 1.1.9py3-none-any.whl → 1.1.10py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (107) hide show

runbooks/__init__.py +1 -1
runbooks/__init___optimized.py +2 -1
runbooks/_platform/__init__.py +1 -1
runbooks/cfat/cli.py +4 -3
runbooks/cfat/cloud_foundations_assessment.py +1 -2
runbooks/cfat/tests/test_cli.py +4 -1
runbooks/cli/commands/finops.py +68 -19
runbooks/cli/commands/inventory.py +796 -7
runbooks/cli/commands/operate.py +65 -4
runbooks/cloudops/cost_optimizer.py +1 -3
runbooks/common/cli_decorators.py +6 -4
runbooks/common/config_loader.py +787 -0
runbooks/common/config_schema.py +280 -0
runbooks/common/dry_run_framework.py +14 -2
runbooks/common/mcp_integration.py +238 -0
runbooks/finops/ebs_cost_optimizer.py +7 -4
runbooks/finops/elastic_ip_optimizer.py +7 -4
runbooks/finops/infrastructure/__init__.py +3 -2
runbooks/finops/infrastructure/commands.py +7 -4
runbooks/finops/infrastructure/load_balancer_optimizer.py +7 -4
runbooks/finops/infrastructure/vpc_endpoint_optimizer.py +7 -4
runbooks/finops/nat_gateway_optimizer.py +7 -4
runbooks/finops/tests/run_tests.py +1 -1
runbooks/inventory/ArgumentsClass.py +2 -1
runbooks/inventory/README.md +111 -12
runbooks/inventory/Tests/test_Inventory_Modules.py +27 -10
runbooks/inventory/Tests/test_cfn_describe_stacks.py +18 -7
runbooks/inventory/Tests/test_ec2_describe_instances.py +30 -15
runbooks/inventory/Tests/test_lambda_list_functions.py +17 -3
runbooks/inventory/Tests/test_org_list_accounts.py +17 -4
runbooks/inventory/account_class.py +0 -1
runbooks/inventory/all_my_instances_wrapper.py +4 -8
runbooks/inventory/aws_organization.png +0 -0
runbooks/inventory/check_cloudtrail_compliance.py +4 -4
runbooks/inventory/check_controltower_readiness.py +50 -47
runbooks/inventory/check_landingzone_readiness.py +35 -31
runbooks/inventory/cloud_foundations_integration.py +8 -3
runbooks/inventory/core/collector.py +201 -1
runbooks/inventory/discovery.md +2 -1
runbooks/inventory/{draw_org_structure.py → draw_org.py} +55 -9
runbooks/inventory/drift_detection_cli.py +8 -68
runbooks/inventory/find_cfn_drift_detection.py +14 -4
runbooks/inventory/find_cfn_orphaned_stacks.py +7 -5
runbooks/inventory/find_cfn_stackset_drift.py +5 -5
runbooks/inventory/find_ec2_security_groups.py +6 -3
runbooks/inventory/find_landingzone_versions.py +5 -5
runbooks/inventory/find_vpc_flow_logs.py +5 -5
runbooks/inventory/inventory.sh +20 -7
runbooks/inventory/inventory_mcp_cli.py +4 -0
runbooks/inventory/inventory_modules.py +9 -7
runbooks/inventory/list_cfn_stacks.py +18 -8
runbooks/inventory/list_cfn_stackset_operation_results.py +2 -2
runbooks/inventory/list_cfn_stackset_operations.py +32 -20
runbooks/inventory/list_cfn_stacksets.py +7 -4
runbooks/inventory/list_config_recorders_delivery_channels.py +4 -4
runbooks/inventory/list_ds_directories.py +3 -3
runbooks/inventory/list_ec2_availability_zones.py +7 -3
runbooks/inventory/list_ec2_ebs_volumes.py +3 -3
runbooks/inventory/list_ec2_instances.py +1 -1
runbooks/inventory/list_ecs_clusters_and_tasks.py +8 -4
runbooks/inventory/list_elbs_load_balancers.py +7 -3
runbooks/inventory/list_enis_network_interfaces.py +3 -3
runbooks/inventory/list_guardduty_detectors.py +9 -5
runbooks/inventory/list_iam_policies.py +7 -3
runbooks/inventory/list_iam_roles.py +3 -3
runbooks/inventory/list_iam_saml_providers.py +8 -4
runbooks/inventory/list_lambda_functions.py +8 -4
runbooks/inventory/list_org_accounts.py +306 -276
runbooks/inventory/list_org_accounts_users.py +45 -9
runbooks/inventory/list_rds_db_instances.py +4 -4
runbooks/inventory/list_route53_hosted_zones.py +3 -3
runbooks/inventory/list_servicecatalog_provisioned_products.py +5 -5
runbooks/inventory/list_sns_topics.py +4 -4
runbooks/inventory/list_ssm_parameters.py +6 -3
runbooks/inventory/list_vpc_subnets.py +8 -4
runbooks/inventory/list_vpcs.py +15 -4
runbooks/inventory/mcp_vpc_validator.py +6 -0
runbooks/inventory/organizations_discovery.py +17 -3
runbooks/inventory/organizations_utils.py +553 -0
runbooks/inventory/output_formatters.py +422 -0
runbooks/inventory/recover_cfn_stack_ids.py +5 -5
runbooks/inventory/run_on_multi_accounts.py +3 -3
runbooks/inventory/tag_coverage.py +481 -0
runbooks/inventory/validation_utils.py +358 -0
runbooks/inventory/verify_ec2_security_groups.py +18 -5
runbooks/inventory/vpc_architecture_validator.py +7 -1
runbooks/inventory/vpc_dependency_analyzer.py +6 -0
runbooks/main_final.py +2 -2
runbooks/main_ultra_minimal.py +2 -2
runbooks/mcp/integration.py +6 -4
runbooks/remediation/acm_remediation.py +2 -2
runbooks/remediation/cloudtrail_remediation.py +2 -2
runbooks/remediation/cognito_remediation.py +2 -2
runbooks/remediation/dynamodb_remediation.py +2 -2
runbooks/remediation/ec2_remediation.py +2 -2
runbooks/remediation/kms_remediation.py +2 -2
runbooks/remediation/lambda_remediation.py +2 -2
runbooks/remediation/rds_remediation.py +2 -2
runbooks/remediation/s3_remediation.py +1 -1
runbooks/vpc/cloudtrail_audit_integration.py +1 -1
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/METADATA +74 -4
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/RECORD +106 -100
runbooks/__init__.py.backup +0 -134
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/WHEEL +0 -0
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/entry_points.txt +0 -0
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/licenses/LICENSE +0 -0
{runbooks-1.1.9.dist-info → runbooks-1.1.10.dist-info}/top_level.txt +0 -0

runbooks/inventory/list_org_accounts_users.py CHANGED Viewed

@@ -9,15 +9,23 @@ AWS Identity Center (formerly AWS SSO) user management. It's designed for enterp
 identity and access management teams who need complete visibility into user distribution,
 access patterns, and identity governance across large-scale multi-account deployments.
+**AWS API Mapping**: `iam.list_users()`, `identitystore.list_users()`, `sso-admin.list_instances()`
 Key Features:
 - Multi-account user discovery using assume role capabilities across AWS Organizations
 - Dual identity source support: IAM users and AWS Identity Center users
 - Comprehensive user metadata extraction with last access tracking
 - Cross-account user enumeration with organizational hierarchy mapping
 - Identity Center directory deduplication for efficient discovery
-- Enterprise reporting with CSV export and structured output
+- Multi-format export (JSON, CSV, Markdown, Table)
 - Profile-based authentication with support for federated access
+Architecture (v1.1.10):
+    - Group-level with --all-profiles pattern (Option B)
+    - Shared utilities integration (organizations_utils.py + output_formatters.py)
+    - Modern CLI + Legacy Python Main dual compatibility
+    - Rich CLI output with enterprise UX standards
 Enterprise Use Cases:
 - Identity governance and user access auditing across organizations
 - User lifecycle management and access certification processes
@@ -70,8 +78,8 @@ Dependencies:
 - boto3/botocore for AWS IAM and Identity Center API interactions
 - ArgumentsClass for standardized CLI argument parsing
 - Inventory_Modules for common utility functions and credential management
-- colorama for enhanced output formatting
-- tqdm for progress tracking during user discovery
+- Rich CLI for enhanced output formatting
+- Progress bars for discovery tracking
 Compliance and Audit Features:
 - Comprehensive user discovery for identity governance auditing
@@ -80,6 +88,29 @@ Compliance and Audit Features:
 - Identity lifecycle tracking for governance and compliance management
 - User attribute and metadata extraction for compliance reporting
+Example (Modern CLI):
+    Multi-account user discovery:
+    ```bash
+    runbooks inventory --all-profiles $MANAGEMENT_PROFILE list-org-users
+    ```
+    Brief listing with timing:
+    ```bash
+    runbooks inventory --profile mgmt list-org-users --short --timing
+    ```
+    Identity Center only:
+    ```bash
+    runbooks inventory --profile mgmt list-org-users --idc --export-format csv
+    ```
+Example (Legacy Python Main):
+    ```bash
+    python src/runbooks/inventory/list_org_accounts_users.py --profile my-org-profile
+    python src/runbooks/inventory/list_org_accounts_users.py --profile my-profile --idc
+    python src/runbooks/inventory/list_org_accounts_users.py --rootonly --iam
+    ```
 Future Enhancements:
 - Multi-threading for improved performance across large organizations
 - User access pattern analysis and behavioral analytics
@@ -87,28 +118,33 @@ Future Enhancements:
 - User optimization recommendations for identity governance
 Author: AWS CloudOps Team
-Version: 2024.05.09
+Version: 1.1.10 (v1.1.10 parameter patterns + shared utilities)
 """
 import logging
 import sys
 from os.path import split
 from time import time
+from typing import Dict, List, Optional
-from ArgumentsClass import CommonArguments
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
-from runbooks.common.rich_utils import console
-from Inventory_Modules import (
+from runbooks.common.rich_utils import console, print_header, print_success, print_error, print_info
+from runbooks.inventory.inventory_modules import (
     display_results,
     find_iam_users2,
     find_idc_directory_id2,
     find_idc_users2,
     get_all_credentials,
 )
+from runbooks import __version__
+logger = logging.getLogger(__name__)
+# Terminal control constants
+ERASE_LINE = '\x1b[2K'
 # Migrated to Rich.Progress - see rich_utils.py for enterprise UX standards
-# from tqdm.auto import tqdm
-__version__ = "2024.05.09"
 begin_time = time()

runbooks/inventory/list_rds_db_instances.py CHANGED Viewed

@@ -62,15 +62,15 @@ from queue import Queue
 from threading import Thread
 from time import time
-import Inventory_Modules
-from ArgumentsClass import CommonArguments
+from runbooks.inventory import inventory_modules as Inventory_Modules
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results, find_account_rds_instances2, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, find_account_rds_instances2, get_all_credentials
 from runbooks.common.rich_utils import create_progress_bar
+from runbooks import __version__
-__version__ = "2025.04.09"
 ##################

runbooks/inventory/list_route53_hosted_zones.py CHANGED Viewed

@@ -55,12 +55,12 @@ from queue import Queue
 from threading import Thread
 from time import time
-from ArgumentsClass import CommonArguments
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results, find_private_hosted_zones2, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, find_private_hosted_zones2, get_all_credentials
+from runbooks import __version__
-__version__ = "2023.11.08"
 ########################

runbooks/inventory/list_servicecatalog_provisioned_products.py CHANGED Viewed

@@ -93,15 +93,15 @@ from queue import Queue
 from threading import Thread
 from time import time
-import Inventory_Modules
-from account_class import aws_acct_access
-from ArgumentsClass import CommonArguments
+from runbooks.inventory import inventory_modules as Inventory_Modules
+from runbooks.inventory.account_class import aws_acct_access
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError, ProfileNotFound, UnknownCredentialError, UnknownRegionError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results
+from runbooks.inventory.inventory_modules import display_results
 from runbooks.common.rich_utils import create_progress_bar
+from runbooks import __version__
-__version__ = "2023.08.09"
 parser = CommonArguments()
 parser.singleprofile()

runbooks/inventory/list_sns_topics.py CHANGED Viewed

@@ -66,13 +66,13 @@ from queue import Queue
 from threading import Thread
 from time import time
-import Inventory_Modules
-from ArgumentsClass import CommonArguments
+from runbooks.inventory import inventory_modules as Inventory_Modules
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, get_all_credentials
+from runbooks import __version__
-__version__ = "2023.11.08"
 begin_time = time()

runbooks/inventory/list_ssm_parameters.py CHANGED Viewed

@@ -62,14 +62,17 @@ from datetime import datetime, timedelta, timezone
 from os.path import split
 from time import time
-from ArgumentsClass import CommonArguments
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results, find_ssm_parameters2, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, find_ssm_parameters2, get_all_credentials
+from runbooks import __version__
-__version__ = "2024.05.07"
 begin_time = time()
+# ANSI escape sequence for terminal line clearing in progress display
+ERASE_LINE = "\x1b[2K"
 ##################
 # Functions

runbooks/inventory/list_vpc_subnets.py CHANGED Viewed

@@ -73,13 +73,17 @@ from queue import Queue
 from threading import Thread
 from time import time
-import Inventory_Modules
-from ArgumentsClass import CommonArguments
+from runbooks.inventory import inventory_modules as Inventory_Modules
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import console
-from Inventory_Modules import display_results, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, get_all_credentials
+from runbooks import __version__
-__version__ = "2024.10.24"
+# Terminal control constants
+ERASE_LINE = '\x1b[2K'
 # TODO: Add Elastic IPs to this script as well.

runbooks/inventory/list_vpcs.py CHANGED Viewed

@@ -8,6 +8,13 @@ filtering for default VPCs to identify potential security risks.
 **AWS API Mapping**: `boto3.client('ec2').describe_vpcs()`
+.. TODO v1.1.11: Performance optimization for large-scale VPC discovery
+   - Current: Timeouts at 540s for AWS Organizations with 100+ accounts
+   - Root Cause: Threading pool size (max 25) insufficient for large-scale discovery
+   - Improvement: Dynamic ThreadPoolExecutor sizing + concurrent pagination
+   - Target: Complete VPC discovery in <120s for 100+ accounts across 16 regions
+   - Reference: FinOps proven pattern (optimal_workers = min(accounts * regions, 50))
 Features:
     - Multi-account VPC discovery via AWS Organizations
     - Default VPC identification for security auditing
@@ -59,13 +66,17 @@ from queue import Queue
 from threading import Thread
 from time import time
-import Inventory_Modules
-from ArgumentsClass import CommonArguments
+from runbooks.inventory import inventory_modules as Inventory_Modules
+from runbooks.inventory.ArgumentsClass import CommonArguments
 from botocore.exceptions import ClientError
-from Inventory_Modules import display_results, get_all_credentials
+from runbooks.inventory.inventory_modules import display_results, get_all_credentials
 from runbooks.common.rich_utils import console
+from runbooks import __version__
-__version__ = "2024.01.26"
+# Terminal control constants
+ERASE_LINE = '\x1b[2K'
 ##########################

runbooks/inventory/mcp_vpc_validator.py CHANGED Viewed

@@ -40,6 +40,9 @@ import boto3
 from botocore.exceptions import ClientError
 from runbooks.common.rich_utils import (
+# Terminal control constants
     console,
     print_header,
     print_success,
@@ -50,6 +53,9 @@ from runbooks.common.rich_utils import (
     STATUS_INDICATORS,
 )
+# Terminal control constants
+ERASE_LINE = '\x1b[2K'
 logger = logging.getLogger(__name__)

runbooks/inventory/organizations_discovery.py CHANGED Viewed

@@ -40,6 +40,9 @@ from ..utils.logger import configure_logger
 from ..common.performance_optimization_engine import get_optimization_engine
 from ..common.rich_utils import console, Progress
+# Terminal control constants
+ERASE_LINE = '\x1b[2K'
 logger = configure_logger(__name__)
 # Global Organizations cache to prevent duplicate API calls across all instances
@@ -71,6 +74,7 @@ def _set_global_organizations_cache(data):
 # Universal AWS Environment Profile Support (Compatible with ANY AWS Setup)
 import os
 ENTERPRISE_PROFILES = {
     "BILLING_PROFILE": os.getenv("BILLING_PROFILE", "default"),  # Universal compatibility
     "MANAGEMENT_PROFILE": os.getenv("MANAGEMENT_PROFILE", "default"),  # Works with any profile
@@ -1414,7 +1418,13 @@ if __name__ == "__main__":
         description="Enhanced Organizations Discovery Engine with 4-Profile AWS SSO Architecture"
     )
     parser.add_argument(
+        "--profile",
+        help=f"AWS profile for single account operations (default: {ENTERPRISE_PROFILES['SINGLE_ACCOUNT_PROFILE']})",
+    )
+    parser.add_argument(
+        "--all-profile",
         "--management-profile",
+        dest="management_profile",
         help=f"AWS profile with Organizations access (default: {ENTERPRISE_PROFILES['MANAGEMENT_PROFILE']})",
     )
     parser.add_argument(
@@ -1441,19 +1451,23 @@ if __name__ == "__main__":
     args = parser.parse_args()
     async def main():
+        # Use --profile as fallback for single-account mode
+        single_account = args.single_account_profile or args.profile
+        management = args.management_profile or args.profile
         if args.legacy:
             console.print("[yellow]⚠️  Using legacy compatibility mode[/yellow]")
             results = await run_organizations_discovery(
-                management_profile=args.management_profile or ENTERPRISE_PROFILES["MANAGEMENT_PROFILE"],
+                management_profile=management or ENTERPRISE_PROFILES["MANAGEMENT_PROFILE"],
                 billing_profile=args.billing_profile or ENTERPRISE_PROFILES["BILLING_PROFILE"],
             )
         else:
             console.print("[cyan]🚀 Using enhanced 4-profile discovery engine[/cyan]")
             results = await run_enhanced_organizations_discovery(
-                management_profile=args.management_profile,
+                management_profile=management,
                 billing_profile=args.billing_profile,
                 operational_profile=args.operational_profile,
-                single_account_profile=args.single_account_profile,
+                single_account_profile=single_account,
                 performance_target_seconds=args.performance_target,
             )

runbooks 1.1.9__py3-none-any.whl → 1.1.10__py3-none-any.whl

runbooks 1.1.9py3-none-any.whl → 1.1.10py3-none-any.whl