Brendan Neutra bneutra
bneutra
/ tfc_plan_util.py
Last active
July 28, 2023 23:50
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import concurrent.futures | |
| import logging | |
| import os | |
| import sys | |
| import time | |
| from collections import deque | |
| import click | |
| from dictdiffer import diff |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # precondition vs check | |
| # precondition: | |
| # - raises | |
| # - stop you at plan | |
| # check: | |
| # - warns | |
| # - to be used with TFC "Continuous Validation" | |
| # - i.e. alert when check warnings emerge | |
| # Uses for precondition and check |
bneutra
/ scan_ecs_iam_roles.py
Created
March 21, 2024 20:17
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import sys | |
| def has_ecs_create_permissions(policy_document): | |
| """ | |
| Check if the policy document contains permissions to create ECS resources. | |
| """ | |
| for statement in policy_document.get("Statement", []): |
bneutra
/ move_blocks.py
Last active
March 28, 2024 21:00
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # move_blocks.py | |
| # This script is used to generate move blocks | |
| # as we move to the new module | |
| # usage: python move_blocks.py <workspace_file> <variable_name> <module_name> | |
| # The file name, the local variable map name and the module name that loops over | |
| # workspaces, unfortunately vary | |
| # typical example to create a moved.tf: | |
| # account_name = account_name.replace("-","_") | |
| # python move_blocks.py main.tf <account_name>_workspaces <account_name> >> moved.tf | |
| import sys |
bneutra
/ scan_iam.py
Last active
July 8, 2024 20:51
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import sys | |
| def has_ecs_create_permissions(policy_document): | |
| """ | |
| Check if the policy document contains permissions to create ECS resources. | |
| """ | |
| for statement in policy_document.get("Statement", []): |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import os | |
| import sys | |
| import json | |
| from datetime import datetime, timedelta | |
| import requests | |
| import boto3 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| from datetime import datetime | |
| import sys | |
| def get_acm_certificates(region): | |
| """ | |
| Query ACM certificates and report their domain name, in-use status, and certificate status. | |
| """ | |
| # Initialize ACM client | |
| acm_client = boto3.client('acm', region_name=region) |
OlderNewer