c7n-policystream

v0.4.9

Cloud Custodian - Git Commits as Logical Policy Changes

PyPI

README

GitHub

Website

Apache-2.0

Latest version published 1 month ago

    pip install c7n-policystream

We couldn't find any similar packages Browse all packages

Package Health Score

75 / 100

Popularity
Small
Maintenance
Healthy
Security
Security review needed
Community
Active

Make sure the open source you're using is safe to use

Secure my Project

Popularity

Small

Total Weekly Downloads (317)

Dependents: 0
GitHub Stars: 3.37K
Forks: 960
Contributors: 290

The PyPI package c7n-policystream receives a total of 317 downloads a week. As such, we scored c7n-policystream popularity level to be Small.

Based on project statistics from the GitHub repository for the PyPI package c7n-policystream, we found that it has been starred 3,370 times, and that 0 other projects in the ecosystem are dependent on it.

The download numbers shown are the average weekly downloads from the last 6 weeks.

Security

Security review needed

Security and license risk for latest version

Version: 0.4.9 See all versions
Release Date: 01/2021
Direct Vulnerabilities: 0
H

0
M

0
L
Indirect Vulnerabilities: 4
H

0
M

0
L
License Risk: 1
H

4
M

0
L

All security vulnerabilities belong to production dependencies of direct and indirect packages.

Indirect License Risks

c7n-policystream@0.4.9
- certifi@2020.12.5 M

c7n-policystream@0.4.9
- requests@2.25.1
  - certifi@2020.12.5 M

c7n-policystream@0.4.9
- chardet@4.0.0 M

c7n-policystream@0.4.9
- requests@2.25.1
  - chardet@4.0.0 M

c7n-policystream@0.4.9
- pygit2@1.0.3 H

License

Apache-2.0

Security Policy

We found a way for you to contribute to the project! Looks like c7n-policystream is missing a security policy.

A security vulnerability was detected in an indirect dependency that is added to your project when the latest version of c7n-policystream is installed.

We highly advise you to review these security issues.

You can connect your project's repository to Snyk to stay up to date on security alerts and receive automatic fix pull requests.

Fix it in your project with Snyk!

Maintenance

Healthy

Commit Frequency

Open Issues: 898
Merged PR: 2.85K
Open PR: 126
Last Commit: 1 month ago

Further analysis of the maintenance status of c7n-policystream based on released PyPI versions cadence, the repository activity, and other data points determined that its maintenance is Healthy.

We found that c7n-policystream demonstrates a positive version release cadence with at least one new version released in the past 3 months.

In the past month we didn't find any pull request activity or change in issues status has been detected for the GitHub repository.

Community

Active

Readme: Yes
Contributing.md: No
Code of Conduct: No
Contributors: 290
Funding: No

A good and healthy external contribution signal for c7n-policystream project, which invites more than one hundred open source maintainers to collaborate on the repository.

We found a way for you to contribute to the project! Looks like c7n-policystream is missing a Code of Conduct.

Embed Package Health Score Badge

Package

Python Versions Compatibility: >=3.6,<4.0

Age: 2 years
Latest Release: 1 month ago
Dependencies: 31 Direct / 27 Total
Versions: 15
Maintainers: 3
Wheels: OS Independent

c7n-policystream: Policy Changes from Git

Using custodian in accordance with infrastructure as code principles, we store policy assets in a versioned control repository. This provides for an audit log and facilitates code reviews. However this capability is primarily of use to humans making semantic interpretations of changes.

This script also provides logical custodian policy changes over a git repo and allows streaming those changes for machine readable/application consumption. Its typically used as a basis for CI integrations or indexes over policies.

Two example use cases:

Doing dryrun only on changed policies within a pull request
Constructing a database of policy changes.

Policystream works on individual github repositories, or per Github integration across an organization's set of repositories.

Install

policystream can be installed via pypi, provided the require pre-requisites libraries are available (libgit2 > 0.26)

pip install c7n-policystream

Docker images available soon, see build for constructing your own.

Build

Alternatively a docker image can be built as follows

# Note must be top level directory of checkout
cd cloud-custodian

docker build -t policystream:latest -f tools/c7n_policystream/Dockerfile .

docker run --mount src="$(pwd)",target=/repos,type=bind policystream:latest

Usage

Streaming use case (default stream is to stdout, also supports kinesis, rdbms and sqs)

  $ c7n-policystream stream -r foo
  2018-08-12 12:37:00,567: c7n.policystream:INFO Cloning repository: foo
  <policy-add policy:foi provider:aws resource:ec2 date:2018-08-02T15:13:28-07:00 author:Kapil commit:09cb85>
  <policy-moved policy:foi provider:aws resource:ec2 date:2018-08-02T15:14:24-07:00 author:Kapil commit:76fce7>
  <policy-remove policy:foi provider:aws resource:ec2 date:2018-08-02T15:14:46-07:00 author:Kapil commit:570ca4>
  <policy-add policy:ec2-guard-duty provider:aws resource:ec2 date:2018-08-02T15:14:46-07:00 author:Kapil commit:570ca4>
  <policy-add policy:ec2-run provider:aws resource:ec2 date:2018-08-02T15:16:00-07:00 author:Kapil commit:d3d8d4>
  <policy-remove policy:ec2-run provider:aws resource:ec2 date:2018-08-02T15:18:31-07:00 author:Kapil commit:922c1a>
  <policy-modified policy:ec2-guard-duty provider:aws resource:ec2 date:2018-08-12T09:39:43-04:00 author:Kapil commit:189ea1>
  2018-08-12 12:37:01,275: c7n.policystream:INFO Streamed 7 policy changes

Policy diff between two source and target revision specs. If source and target are not specified default revision selection is dependent on current working tree branch. The intent is for two use cases, if on a non-master branch then show the diff to master. If on master show the diff to previous commit on master. For repositories not using the master convention, please specify explicit source and target.

  $ c7n-policystream diff -r foo -v

Pull request use, output policies changes between current branch and master.

  $ c7n-policystream diff -r foo
  policies:
  - filters:
    - {type: cross-account}
    name: lambda-access-check
    resource: aws.lambda

Options

$ c7n-policystream --help
Usage: c7n-policystream [OPTIONS] COMMAND [ARGS]...

  Policy changes from git history

Options:
  --help  Show this message and exit.

Commands:
  diff          Policy diff between two arbitrary revisions.
  org-checkout  Checkout repositories from a GitHub organization.
  org-stream    Stream changes for repos in a GitHub organization.
  stream        Stream git history policy changes to destination.

Last updated on 25 January-2021, at 17:22 (UTC).