awdx 0.0.16

AWS DevOps X: Gen AI-powered AWS DevSecOps CLI tool with natural language interface.

awdx

awdx (AWS DevOps X) is a next-generation, human-friendly CLI tool for AWS DevSecOps. It helps you manage, automate, and secure your AWS environment with simple, interactive commands and smart suggestions.

---

Table of Contents

• Features
• Requirements
• Installation
• Quick Start
• Modules
• Future Plans
• Project Status

---

Features

• Profile Management: Create, switch, and validate AWS profiles interactively
• Cost Intelligence: Advanced cost analysis with anomaly detection and forecasting
• IAM Management: Comprehensive IAM security audit and compliance checking
• S3 Security: Complete S3 bucket security assessment and compliance monitoring
• Secret Management: Automated secret discovery, rotation, and compliance
• Security Assessment: Comprehensive security posture and vulnerability scanning
• Task Automation: 40+ high-level DevSecOps automation commands with AI enhancement
• AI-Powered Interface: Natural language commands with Google Gemini integration
• MCP Server: Model Context Protocol integration for AI assistants
• Smart Suggestions: Receive actionable best-practice tips after every action
• Human-Friendly CLI: Simple, memorable commands and interactive prompts

---

Requirements

• Python 3.8+
• boto3
• typer

---

Installation

From Source

pip install .

From PyPI

pip install awdx

📦 Available on PyPI: awdx on PyPI

---

Quick Start

Show help and available commands:

awdx --help

---

Modules

AWDX with Gen AI + NLP based CLI execution

🤖 Revolutionary AI-powered natural language interface that understands your DevSecOps intent! Chat with your AWS infrastructure using plain English. No more memorizing complex commands - just ask AWDX what you want to accomplish.

# Ask anything in natural language
awdx ai ask "show me all my AWS profiles"
🤖 Analyzing your request...
💡 Intent: list_profiles
🎯 AWDX Command: awdx profile list
✨ Confidence: 95%

# Interactive AI chat session  
awdx ai chat
🤖 AWDX AI Assistant ready! Ask me anything about your AWS environment.
💬 You: "What are my highest cost services this month?"
🤖 I'll help you analyze your AWS costs. Running: awdx cost summary
💰 Your top 3 services: EC2 ($567.89), S3 ($234.56), RDS ($123.45)
💡 Suggestion: Consider EC2 reserved instances to save up to 30%

# Get intelligent explanations
awdx ai explain "awdx iam audit --fix"
🧠 Command Breakdown:
📋 awdx iam audit: Performs comprehensive IAM security assessment
🔧 --fix flag: Automatically remediates safe issues
⚠️  Security Note: Review changes before applying in production
🎯 Best Practice: Run without --fix first to preview changes

💡 AI Features: • Smart Intent Recognition - 25+ supported DevSecOps intents • Google Gemini Integration - Powered by advanced AI models • Security-First - Built-in security recommendations and warnings • Context Awareness - Understands your AWS environment and suggests workflows • Interactive Chat - Conversational DevSecOps automation

📖 Full Documentation: AI Features | AI Engine Architecture

MCP Server Integration

🔌 Model Context Protocol (MCP) server for AI assistant integration! Connect AWDX to Claude Desktop, ChatGPT, and other AI assistants for seamless DevSecOps automation.

# Start MCP server
awdx mcp start
🔌 MCP server is ready to accept connections!
Connect your AI assistant to: localhost:3000

# List available tools
awdx mcp tools
Profile Management
 awdx_profile_list    List all AWS profiles configured in AWDX 
 awdx_profile_switch  Switch to a different AWS profile        
 awdx_profile_add     Add a new AWS profile                    

Cost Analysis
 awdx_cost_summary   Get AWS cost summary and analysis     
 awdx_cost_trends    Analyze cost trends over time         
 awdx_cost_optimize  Get cost optimization recommendations 

# Test connection
awdx mcp test
✓ Connection successful!
Server: AWDX MCP Server v1.0.0

💡 MCP Features: • 17 MCP Tools - All AWDX capabilities exposed as standardized tools • AI Assistant Integration - Connect to Claude Desktop, ChatGPT, and custom assistants • Real-time AWS Data - Live access to AWS resources and security posture • Secure Communication - Local execution with AWS credential management • Standardized Protocol - Compatible with MCP-compliant AI assistants

📖 Full Documentation: MCP Integration

Profile Management

Manage AWS profiles with security best practices and validation.

# List all profiles
awdx profile list
👤 Found 3 profiles:
🎯 👤 default (current)
👤 devops
👤 prod

# Switch profiles
awdx profile switch devops
✅ To switch profile, run:
  export AWS_PROFILE=devops

# Validate credentials
awdx profile validate devops
✅ Profile 'devops' is valid. Account: 123456789012, ARN: arn:aws:iam::123456789012:user/devops

📖 Full Documentation: Profilyze Module README

Cost Analysis

Monitor, analyze, and optimize AWS spending with intelligent insights.

# Get cost summary
awdx cost summary
💰 Total Cost: $1,234.56
📊 Top 10 Services by Cost:
   1. Amazon EC2                    $567.89
   2. Amazon S3                     $234.56
   3. Amazon RDS                    $123.45

# Detect anomalies
awdx cost anomaly --threshold 2.5
🔍 Detecting cost anomalies for the last 30 days...
📊 Average daily cost: $123.45
📈 Standard deviation: $45.67
✅ No significant anomalies detected!

# Forecast costs
awdx cost forecast --months 3
🔮 Forecasting costs for the next 3 months...
📈 Trend direction: Upward
📊 Monthly change: $45.67
🎯 Trend confidence: 85.2%

📖 Full Documentation: Costlyzer Module README

IAM Management

Comprehensive IAM security audit, compliance checking, and smart automation.

# Security audit
awdx iam audit
🔍 Starting comprehensive IAM security audit...
🔍 Checking root account usage...
   ✅ Using IAM user/role
🔍 Checking MFA configuration...
   ❌ HIGH: 3 users without MFA
🔍 Audit Summary:
  🔴 Critical Issues: 0
  🟠 High Issues: 1
  🟡 Medium Issues: 1

# Analyze access patterns
awdx iam access
🔑 Analyzing IAM access patterns...
👤 admin (user)
   ⚡ Total Permissions: 45
   🎯 Privileged: 12
   ❌ Wildcards: 3

# Smart recommendations
awdx iam smart --auto-fix --dry-run
🚀 Generating smart IAM recommendations...
1. 🔴 Remove unused users 🤖
2. 🟠 Rotate old access keys 👤
3. 🔴 Review wildcard permissions 👤

📖 Full Documentation: IAMply Module README

S3 Security & Compliance

Complete S3 bucket security assessment, compliance monitoring, and automated remediation.

# Comprehensive S3 audit
awdx s3 audit
🪣 Starting comprehensive S3 security audit...
🔍 Checking bucket configurations...
   ✅ Encryption: Enabled
   ❌ HIGH: Public access detected
🔍 Audit Summary:
  🔴 Critical Issues: 0
  🟠 High Issues: 2
  🟡 Medium Issues: 3

# Scan for vulnerabilities
awdx s3 scan --type public
🔍 Scanning for public S3 buckets...
🚨 Found 2 publicly accessible buckets:
   - my-public-bucket (HIGH RISK)
   - test-bucket (MEDIUM RISK)

# Compliance assessment
awdx s3 compliance --framework sox
📋 Assessing SOX compliance for S3...
✅ Encryption controls: PASS
❌ Access logging: FAIL
✅ Versioning: PASS

📖 Full Documentation: S3ntry Module README

Secret Management

Automated secret discovery, rotation, compliance monitoring, and smart remediation.

# Discover all secrets
awdx secret discover
🔐 Discovering secrets across AWS services...
🔍 Found 15 secrets:
   - 8 in Secrets Manager
   - 5 in Parameter Store
   - 2 in IAM access keys
❌ HIGH: 3 secrets expired
⚠️ MEDIUM: 5 secrets expiring soon

# Rotate secrets
awdx secret rotate my-secret-id
🔄 Rotating secret: my-secret-id
✅ Secret rotated successfully
📅 Next rotation: 2024-02-15

# Monitor secret health
awdx secret monitor --days 30
📊 Monitoring secret health for last 30 days...
✅ Successful rotations: 12
❌ Failed rotations: 1
⚠️ Expiring soon: 3

📖 Full Documentation: Secrex Module README

Task Automation

🚀 High-level DevSecOps task automation and productivity commands! Streamline your DevSecOps workflows with intelligent automation that combines multiple AWS services into single, powerful commands.

# Comprehensive security audit
awdx task security-audit --comprehensive --fix-safe
🔍 Starting comprehensive security audit across AWS services...
🔐 IAM Security: Checking users, roles, and policies
🛡️ EC2 Security: Analyzing security groups and encryption
🪣 S3 Security: Validating bucket configurations
🔐 Secrets: Auditing secret rotation and age
📊 Audit Summary: 3 high issues, 5 medium issues found
🔧 Auto-fixing safe issues: 2 issues resolved

# Cost optimization with AI insights
awdx task cost-optimize --auto-fix --dry-run
💰 Analyzing AWS costs for optimization opportunities...
🔍 EC2 Optimization: Found 3 oversized instances
🗄️ RDS Optimization: 2 instances can be downsized
📊 Potential Savings: $234.56/month (15% reduction)
🤖 AI Recommendation: Consider reserved instances for predictable workloads

# Compliance validation
awdx task compliance-check --framework sox --output pdf
📋 Validating SOX compliance across AWS services...
✅ IAM Controls: PASS
✅ Data Protection: PASS
❌ Access Logging: FAIL (2 issues)
📄 Generating compliance report: sox_compliance_report.pdf

# Continuous security monitoring
awdx task security-monitor --continuous --alert
🛡️ Starting continuous security monitoring...
📊 Monitoring: IAM changes, S3 access, EC2 security
🚨 Alerts: Configured for critical security events
⏰ Interval: 5 minutes
📱 Notifications: Slack, email, SMS

💡 Task Module Features: • 40+ Automation Commands - From basic security audits to complex infrastructure automation • AI-Enhanced Workflows - Intelligent insights and recommendations when AI is configured • Multi-Service Integration - Combines IAM, EC2, S3, RDS, Lambda, and more • Compliance Frameworks - SOX, HIPAA, PCI-DSS, SOC2, ISO27001, NIST support • Rich Output Formats - Table, JSON, CSV, and PDF reports • Graceful AI Fallback - Works perfectly without AI configuration

📖 Full Documentation: Task Module Summary

Security Assessment

Comprehensive security posture assessment, vulnerability scanning, and incident response.

# Security posture assessment
awdx security posture
🛡️ Starting comprehensive security posture assessment...
🔍 Network Security: 85/100
🔍 IAM Security: 92/100
🔍 Data Protection: 78/100
📊 Overall Security Score: 85/100

# Vulnerability scanning
awdx security vulnerabilities --service ec2
🚨 Scanning EC2 instances for vulnerabilities...
🔍 Found 5 security issues:
   - 2 open security groups (HIGH)
   - 1 unencrypted EBS volume (MEDIUM)
   - 2 outdated AMIs (LOW)

# Incident response
awdx security incident --type breach
🚨 Initiating incident response for security breach...
📋 Investigation checklist:
   - CloudTrail logs analysis
   - IAM access review
   - Resource access audit
   - Threat detection alerts

📖 Full Documentation: SecuTide Module README

---

Future Plans

Upcoming Features

• Multi-Cloud Support: Extend beyond AWS to Azure and GCP
• Integration Hub: Connect with popular DevOps tools and CI/CD pipelines
• Real-time Monitoring: Live cost and security monitoring with alerts
• Advanced AI: Multi-modal processing and workflow automation

Enterprise Features

• Team Collaboration: Multi-user support with role-based access
• Audit Trails: Comprehensive logging and compliance reporting
• Custom Policies: Define organization-specific security and cost policies
• API Access: RESTful API for integration with existing tools

---

Project Status

Active development with comprehensive module coverage. The project follows a modular architecture allowing for easy extension and customization.

Current Status

• ✅ Profilyze Module: Complete with full feature set
• ✅ Costlyzer Module: Complete with smart analytics
• ✅ IAMply Module: Complete with security audit and compliance
• ✅ S3ntry Module: Complete with security assessment and compliance
• ✅ Secrex Module: Complete with secret management and rotation
• ✅ SecuTide Module: Complete with security posture and incident response
• ✅ Task Module: Complete with 40+ high-level automation commands
• ✅ AI Engine: Complete with Google Gemini integration and natural language processing
• ✅ MCP Server: Complete with Model Context Protocol integration
• ✅ Core Infrastructure: Stable and production-ready
• ✅ Documentation: Comprehensive guides and examples

Contributing

We welcome contributions! See our Contributing Guide for details on how to get started.

Community

• 📖 Documentation: GitHub Wiki
• 🐛 Issues: GitHub Issues
• 💬 Discussions: GitHub Discussions
• 📄 License: MIT License

---

👨‍💻 Author & Attribution

AWDX is created and maintained by Partha Sarathi Kundu (@pxkundu).

Independence Notice: AWDX is developed independently and is not affiliated with, endorsed by, or sponsored by any organization, university, or company.

Copyright & License

• Copyright: © 2024 Partha Sarathi Kundu. All rights reserved.
• License: MIT License - see LICENSE for details
• Trademark: "AWDX" and "AWS DevOps X" are trademarks of Partha Sarathi Kundu

Citation

If you use AWDX in academic research or commercial projects, please cite:

Kundu, P. S. (2024). AWDX: AWS DevOps X - Gen AI-powered AWS DevSecOps CLI tool. 
GitHub. https://github.com/pxkundu/awdx

For academic papers (BibTeX):

@software{awdx2024,
  author = {Kundu, Partha Sarathi},
  title = {AWDX: AWS DevOps X - Gen AI-powered AWS DevSecOps CLI tool},
  year = {2024},
  url = {https://github.com/pxkundu/awdx},
  note = {MIT License}
}

Contact

• Email: inboxkundu@gmail.com
• GitHub: @pxkundu
• Project: https://github.com/pxkundu/awdx

Support & Troubleshooting

• 📖 Troubleshooting Guide: TROUBLESHOOTING.md - Common issues and solutions
• 🐛 Issues: GitHub Issues
• 💬 Discussions: GitHub Discussions

Contributors

See AUTHORS.md for a complete list of contributors and their contributions.