Modular DevOps Toolkit with IAM policy validation

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for devolv from gravatar.com devolv

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: Devolv OSS
  • Requires: Python >=3.8
  • Provides-Extra: dev
Report project as malware

Project description

devolv-validator

PyPI - Version Tests License: MIT

devolv-validator is a subtool of the Devolv OSS DevOps Toolkit.
It statically validates AWS IAM policies (JSON or YAML) for risky patterns such as wildcards, privilege escalation, and misconfigurations.

🚀 Features

  • 🚩 Detects wildcards in Action and Resource
  • 🔐 Flags iam:PassRole with wildcard Resource
  • 📂 Supports both JSON and YAML input
  • ⚙️ Simple CLI using Typer
  • ✅ CI-ready with GitHub Actions

📦 Installation

Install the full Devolv toolkit:

pip install devolv

🛠 Usage

devolv validate file path/to/policy.json

📁 Example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "*",
      "Resource": "*"
    }
  ]
}

This will be flagged as high-risk due to overly permissive wildcards.

🧪 Run Tests

pytest

🧰 About

This tool is part of the Devolv OSS Toolkit, a growing collection of DevOps-first security and automation tools.

Follow the repo for upcoming modules like:

  • devolv scan: analyze AWS infrastructure
  • devolv generate: produce IAM policies safely
  • devolv etl: secure CI/CD for policy transformation

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for devolv from gravatar.com devolv

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT
  • Author: Devolv OSS
  • Requires: Python >=3.8
  • Provides-Extra: dev

Release history Release notifications | RSS feed

0.2.40

0.2.39

0.2.38

0.2.37

0.2.36

0.2.33

0.2.32

0.2.31

0.2.30

0.2.29

0.2.28

0.2.27

0.2.26

0.2.25

0.2.24

0.2.23

0.2.22

0.2.21

0.2.20

0.2.19

0.2.18

0.2.17

0.2.16

0.2.15

0.2.14

0.2.13

0.2.12

0.2.11

0.2.10

0.2.9

0.2.8

0.2.7

0.2.6

0.2.5

0.2.4

0.2.3

0.2.2

0.2.1

0.2.0

0.1.23

0.1.22

0.1.21

0.1.20

0.1.19

0.1.18

0.1.17

0.1.16

0.1.15

0.1.14

0.1.13

0.1.12

0.1.11

0.1.10

0.1.9

0.1.8

0.1.7

0.1.6

0.1.5

0.1.4

0.1.3

0.1.2

This version

0.1.1

0.1.0

0.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

devolv-0.1.1.tar.gz (3.9 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

devolv-0.1.1-py3-none-any.whl (4.6 kB view details)

Uploaded Python 3

File details

Details for the file devolv-0.1.1.tar.gz.

File metadata

  • Download URL: devolv-0.1.1.tar.gz
  • Upload date:
  • Size: 3.9 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.11.9

File hashes

Hashes for devolv-0.1.1.tar.gz
Algorithm Hash digest
SHA256 49b503625389a76df91494ebe047d8590ce08bbff035eefd7c775f88009f9f8a
MD5 fec9bd29ff21a99ee81e0ab6611383ba
BLAKE2b-256 bc90ea237fa5806d9986a0dddcedf4a96025ed3d9f2f27f118a233148c4f97ab

See more details on using hashes here.

File details

Details for the file devolv-0.1.1-py3-none-any.whl.

File metadata

  • Download URL: devolv-0.1.1-py3-none-any.whl
  • Upload date:
  • Size: 4.6 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.11.9

File hashes

Hashes for devolv-0.1.1-py3-none-any.whl
Algorithm Hash digest
SHA256 4f2317b137cb106ef290c440c60771c7a016bce81a454309ac9c6563c82628c7
MD5 78fc230cd084c20671d427c7812044a9
BLAKE2b-256 436da0eca29de24a111991ea6ba8b0c2599c49ce084977e7749475428a972c0a

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page