c7n-policystream

v0.4.15

Cloud Custodian - Git Commits as Logical Policy Changes

PyPI

README

GitHub

Apache-2.0

Latest version published 19 days ago

    pip install c7n-policystream

We couldn't find any similar packages Browse all packages

Package Health Score

75 / 100

Security
No known security issues
Popularity
Small
Maintenance
Healthy
Community
Sustainable

Keep your project healthy

Check your requirements.txt

Ensure all the packages you're using are healthy and well-maintained

Snyk Vulnerability Scanner

Get health score & security insights directly in your IDE

Secure Your Project

Find & fix vulnerable dependencies and insecure code

Popularity

Small

Total Weekly Downloads (435)

Dependents: 0
GitHub Stars: 3.79K
Forks: 1.07K
Contributors: 310

Direct Usage Popularity

The PyPI package c7n-policystream receives a total of 435 downloads a week. As such, we scored c7n-policystream popularity level to be Small.

Based on project statistics from the GitHub repository for the PyPI package c7n-policystream, we found that it has been starred 3,791 times, and that 0 other projects in the ecosystem are dependent on it.

The download numbers shown are the average weekly downloads from the last 6 weeks.

Security

No known security issues

Security and license risk for latest version

Release Date: May 10, 2022
Direct Vulnerabilities: 0
C
0
H
0
M
0
L
Indirect Vulnerabilities: 0
C
0
H
0
M
0
L
License Risk: 0
H
0
M
0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

License

Apache-2.0

Security Policy

We found a way for you to contribute to the project! Looks like c7n-policystream is missing a security policy.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Keep your project free of vulnerabilities with Snyk

Maintenance

Healthy

Commit Frequency

Open Issues: 937
Open PR: 133
Last Release: 19 days ago
Last Commit: 8 months ago

Further analysis of the maintenance status of c7n-policystream based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Healthy.

We found that c7n-policystream demonstrates a positive version release cadence with at least one new version released in the past 3 months.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Sustainable

Readme: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 310
Funding: No

A good and healthy external contribution signal for c7n-policystream project, which invites more than one hundred open source maintainers to collaborate on the repository.

We found a way for you to contribute to the project! Looks like c7n-policystream is missing a Code of Conduct.

Embed Package Health Score Badge

Package

Python Versions Compatibility: >=3.7,<4.0

Age: 4 years
Latest Release: 19 days ago
Dependencies: 40 Direct
Versions: 21
Maintainers: 3
Wheels: OS Independent

Readme

c7n-policystream: Policy Changes from Git

% [comment]: # ( !!! IMPORTANT !!! ) % [comment]: # (This file is moved during document generation.) % [comment]: # (Only edit the original document at ./tools/c7n_policystream/README.md)

Using custodian in accordance with infrastructure as code principles, we store policy assets in a versioned control repository. This provides for an audit log and facilitates code reviews. However this capability is primarily of use to humans making semantic interpretations of changes.

This script also provides logical custodian policy changes over a git repo and allows streaming those changes for machine readable/application consumption. Its typically used as a basis for CI integrations or indexes over policies.

Two example use cases:

Doing dryrun only on changed policies within a pull request
Constructing a database of policy changes.

Policystream works on individual github repositories, or per Github integration across an organization's set of repositories.

Install

policystream can be installed via pypi, provided the require pre-requisites libraries are available (libgit2 > 0.26)

pip install c7n-policystream

Docker images available soon, see build for constructing your own.

Build

Alternatively a docker image can be built as follows

# Note must be top level directory of checkout
cd cloud-custodian

docker build -t policystream:latest -f tools/c7n_policystream/Dockerfile .

docker run --mount src="$(pwd)",target=/repos,type=bind policystream:latest

Usage

Streaming use case (default stream is to stdout, also supports kinesis, rdbms and sqs)

  $ c7n-policystream stream -r foo
  2018-08-12 12:37:00,567: c7n.policystream:INFO Cloning repository: foo
  <policy-add policy:foi provider:aws resource:ec2 date:2018-08-02T15:13:28-07:00 author:Kapil commit:09cb85>
  <policy-moved policy:foi provider:aws resource:ec2 date:2018-08-02T15:14:24-07:00 author:Kapil commit:76fce7>
  <policy-remove policy:foi provider:aws resource:ec2 date:2018-08-02T15:14:46-07:00 author:Kapil commit:570ca4>
  <policy-add policy:ec2-guard-duty provider:aws resource:ec2 date:2018-08-02T15:14:46-07:00 author:Kapil commit:570ca4>
  <policy-add policy:ec2-run provider:aws resource:ec2 date:2018-08-02T15:16:00-07:00 author:Kapil commit:d3d8d4>
  <policy-remove policy:ec2-run provider:aws resource:ec2 date:2018-08-02T15:18:31-07:00 author:Kapil commit:922c1a>
  <policy-modified policy:ec2-guard-duty provider:aws resource:ec2 date:2018-08-12T09:39:43-04:00 author:Kapil commit:189ea1>
  2018-08-12 12:37:01,275: c7n.policystream:INFO Streamed 7 policy changes

Policy diff between two source and target revision specs. If source and target are not specified default revision selection is dependent on current working tree branch. The intent is for two use cases, if on a non-master branch then show the diff to master. If on master show the diff to previous commit on master. For repositories not using the master convention, please specify explicit source and target.

  $ c7n-policystream diff -r foo -v

Pull request use, output policies changes between current branch and master.

  $ c7n-policystream diff -r foo
  policies:
  - filters:
    - {type: cross-account}
    name: lambda-access-check
    resource: aws.lambda

Options

$ c7n-policystream --help
Usage: c7n-policystream [OPTIONS] COMMAND [ARGS]...

  Policy changes from git history

Options:
  --help  Show this message and exit.

Commands:
  diff          Policy diff between two arbitrary revisions.
  org-checkout  Checkout repositories from a GitHub organization.
  org-stream    Stream changes for repos in a GitHub organization.
  stream        Stream git history policy changes to destination.

FAQs

What is c7n-policystream?

Cloud Custodian - Git Commits as Logical Policy Changes. Visit Snyk Advisor to see a full health score report for c7n-policystream, including popularity, security, maintenance & community analysis.

Is c7n-policystream popular?

The python package c7n-policystream receives a total of 435 weekly downloads. As such, c7n-policystream popularity was classified as small. Visit the popularity section on Snyk Advisor to see the full health analysis.

Is c7n-policystream well maintained?

We found that c7n-policystream demonstrated a healthy version release cadence and project activity. It has a community of 310 open source contributors collaborating on the project. See the full package health analysis to learn more about the package maintenance status.

Is c7n-policystream safe to use?

The python package c7n-policystream was scanned for known vulnerabilities and missing license, and no issues were found. Thus the package was deemed as safe to use. See the full health analysis review.

Last updated on 26 May-2022, at 16:45 (UTC).

Build a secure application checklist

Select a recommended open source package

Minimize your risk by selecting secure & well maintained open source packages

DONE

Scan your app for vulnerabilities

Scan your application to find vulnerabilities in your: source code, open source dependencies, containers and configuration files

SCAN NOW

Fix identified vulnerabilities

Easily fix your code by leveraging automatically generated PRs

AUTO FIX

Monitor for new issues

New vulnerabilities are discovered every day. Get notified if your application is affected

MONITOR APP