Check out the repo for more, feel free to open an issue if you have issues: github.com/mbarneyjr/aw...
If you use vscode you can get the extension here: marketplace.visualstudio.com/items?itemNa...
It also supports policies defined in any YAML, JSON, or Terraform/OpenTofu file, at any nested level, so your policies defined within a CloudFormation resource will be picked up
It can emit diagnostics for invalid actions, messed up regions/account ids, duplicate sids, etc. It also gives you completion for actions, arns, condition operators, context keys, etc
Sharing something I've been working on lately: an @awscloud.bsky.social IAM Language Server (and VSCode extension). Use it with any editor that supports LSP
Excellent piece on Amazon Aurora DSQL from @ryan-sb.bsky.social. A take that is nuanced and introspective on DSQL’s place in the AWS ecosystem. rsb.io/posts/re-exp...
Finally checked out the new managed S3 file browser, "Transfer Family Web Apps". It seems neat, a more end-user friendly way to manage files in your app! Look into pricing:
> Time a web app is enabled: $0.50 per hour per unit
So $360/mo
This looks pretty slick. A little short week mini project.
#awssecurity
https://awseye.com
CloudFront now logs to CloudWatch, I try to enable it, get hit with "Supplied Policy document is breaching Cloudwatch Logs policy length limit"
This weird account-level resource policy has got to go. #awswishlist Log Group resource policy associated with the log group itself
Okay, after a fair bit of wailing / gnashing of teeth, @aws-skeetbot.lastweekinaws.com is (apparently) behaving. Ignore the pile of empty skeets, the duplicates, and etc. I did warn you it'd be noisy!
Latest terrible code lives at github.com/QuinnyPig/aw...
I've been wanting Resource Control Policies in AWS for a while now, pre:Invent has been fantastic so far!aws.amazon.com/blogs/aws/introducing-re...
