kmcquade · January 17, 2020 16:06 · kmcquade · Jan 17, 2020
diff --git a/sqlite3-diff.sh b/sqlite3-diff.sh
 #!/usr/bin/env bash

 cp policy_sentry/shared/data/aws.sqlite3 ~/.policy_sentry/db-old.sqlite3
 policy_sentry initialize --fetch
 cp ~/.policy_sentry/aws.sqlite3 ~/.policy_sentry/db-new.sqlite3

 sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select service, name, description, access_level, resource_type_name, resource_type_name_append_wildcard, resource_arn_format, condition_keys, dependent_actions from actiontable;" > actiontable-old.csv
 sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select resource_type_name, raw_arn, arn, partition, service, region, account, resource, resource_path, condition_keys from arntable;" > arntable-old.csv
 sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select service, condition_key_name, condition_key_service, description, condition_value_type from conditiontable;" > conditiontable-old.csv

 sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select service, name, description, access_level, resource_type_name, resource_type_name_append_wildcard, resource_arn_format, condition_keys, dependent_actions from actiontable;" > actiontable-new.csv
 sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select resource_type_name, raw_arn, arn, partition, service, region, account, resource, resource_path, condition_keys from arntable;" > arntable-new.csv
 sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select service, condition_key_name, condition_key_service, description, condition_value_type from conditiontable;" > conditiontable-new.csv

 mkdir -p ./tmp/
 diff -u actiontable-old.csv actiontable-new.csv > ./tmp/actiontable-diff.txt
 diff -u arntable-old.csv arntable-new.csv > ./tmp/arntable-diff.txt
 diff -u conditiontable-old.csv conditiontable-new.csv > ./tmp/conditiontable-diff.txt

 cat ./tmp/actiontable-diff.txt
 cat ./tmp/arntable-diff.txt
 cat ./tmp/conditiontable-diff.txt
	#!/usr/bin/env bash

	cp policy_sentry/shared/data/aws.sqlite3 ~/.policy_sentry/db-old.sqlite3
	policy_sentry initialize --fetch
	cp ~/.policy_sentry/aws.sqlite3 ~/.policy_sentry/db-new.sqlite3

	sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select service, name, description, access_level, resource_type_name, resource_type_name_append_wildcard, resource_arn_format, condition_keys, dependent_actions from actiontable;" > actiontable-old.csv
	sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select resource_type_name, raw_arn, arn, partition, service, region, account, resource, resource_path, condition_keys from arntable;" > arntable-old.csv
	sqlite3 -header -csv ~/.policy_sentry/db-old.sqlite3 "select service, condition_key_name, condition_key_service, description, condition_value_type from conditiontable;" > conditiontable-old.csv

	sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select service, name, description, access_level, resource_type_name, resource_type_name_append_wildcard, resource_arn_format, condition_keys, dependent_actions from actiontable;" > actiontable-new.csv
	sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select resource_type_name, raw_arn, arn, partition, service, region, account, resource, resource_path, condition_keys from arntable;" > arntable-new.csv
	sqlite3 -header -csv ~/.policy_sentry/db-new.sqlite3 "select service, condition_key_name, condition_key_service, description, condition_value_type from conditiontable;" > conditiontable-new.csv

	mkdir -p ./tmp/
	diff -u actiontable-old.csv actiontable-new.csv > ./tmp/actiontable-diff.txt
	diff -u arntable-old.csv arntable-new.csv > ./tmp/arntable-diff.txt
	diff -u conditiontable-old.csv conditiontable-new.csv > ./tmp/conditiontable-diff.txt

	cat ./tmp/actiontable-diff.txt
	cat ./tmp/arntable-diff.txt
	cat ./tmp/conditiontable-diff.txt