sudiviz 0.4.0

Sufficient visibility into cloud infrastructure failures — live AWS topology + Terraform drift in one CLI.

🔬 sudiviz

X-ray vision for your cloud infrastructure

sudiviz visualizes your live AWS infrastructure as an interactive graph. Auto-detects misconfigurations, unhealthy targets, and orphan resources — then fixes them with one command.

🚀 Zero AI tokens | 💸 Zero cost | 🐍 Pure Python

---

📦 Quick Start

pip install 'sudiviz[all]'

# Diagnose your infrastructure
sudiviz diagnose

# Interactive web visualization
sudiviz graph --output web --open

# Auto-fix issues
sudiviz fix --apply

Auth: Uses standard boto3 credentials (~/.aws/credentials, env vars, SSO, or instance profile)

---

✨ Features

Feature	Description
Live Topology	Real-time graph of ALB → Target Groups → EC2 → Security Groups
Health Detection	Unhealthy targets, failing health checks, orphan resources
Auto-Fix	One-click remediation with sudiviz fix --apply
Traffic Animation	Visualize request flow with animated pulses
Health Heatmaps	Color-code infrastructure by health status
Dark/Light Mode	Toggle theme in web UI
Terraform Drift	Compare live AWS vs Terraform state
Multi-Service	ALB, EC2, ECS, EKS, RDS, Lambda, S3, Security Groups

---

🎨 Visualization Modes

Terminal

sudiviz diagnose --region us-east-1

TUI (Interactive Terminal)

sudiviz tui

Web (Cytoscape.js)

sudiviz graph --output web --port 8000 --open

PNG Export

sudiviz graph --output png --file topology.png

---

🔧 Auto-Fix

sudiviz fix                    # Preview fixes (dry-run)
sudiviz fix --apply            # Apply all fixes
sudiviz fix 1 --apply          # Apply specific fix
sudiviz fix --apply --force    # Include destructive operations

Supported fixes:

• Security group missing ingress rules
• S3 public access / encryption
• RDS public accessibility
• Orphan target groups (with --force)
• Unused security groups (with --force)

---

🔄 Terraform Drift

terraform show -json > tfstate.json
sudiviz drift --tfstate tfstate.json

---

📊 CI Integration

# Fail CI on critical issues
sudiviz diagnose --json | jq '.diagnosis.fixes[] | select(.severity=="critical")'

# Drift detection gate
sudiviz drift --tfstate tfstate.json --json

Exit Code	Meaning
0	No issues
1	Drift detected
2	Critical issues found

---

📸 More Screenshots

Click to expand

Terminal TUI

Diagnose Output

Auto-Fix Preview

Traffic Flow Animation

Health Heatmap

---

🆚 Comparison

Feature	sudiviz	Hava.io	Cloudcraft
Live data	✅	❌	❌
Auto-fix	✅	❌	❌
Traffic animation	✅	❌	❌
Health heatmaps	✅	❌	❌
Terraform drift	✅	❌	❌
Orphan detection	✅	❌	❌
Free & open source	✅ MIT	$29/mo	$49/mo

---

🔐 IAM Permissions

Read-only (sudiviz diagnose):

• ReadOnlyAccess AWS managed policy

Write (sudiviz fix --apply):

• AmazonEC2FullAccess
• ElasticLoadBalancingFullAccess
• AmazonS3FullAccess
• AmazonRDSFullAccess

---

📖 Documentation

AWS Services Discovered

Service	What's collected
ALB / NLB	Load balancers, listeners, rules
Target Groups	Health status per target
EC2	State, IPs, security groups
Security Groups	Ingress/egress rules
ECS	Clusters, services, task counts
EKS	Clusters, node groups
RDS	Instances, encryption, public access
Lambda	Functions, VPC config
S3	Buckets, encryption, public access

Diagnostic Rules

Check	Severity
Unhealthy targets	critical
SG missing port from ALB	critical
S3 public access open	critical
RDS publicly accessible	warning
Storage not encrypted	warning
Orphan target group	warning
Unused security group	info

Architecture

sudiviz/
├── cli.py           # Typer commands
├── tui.py           # Textual TUI
├── web.py           # FastAPI + WebSocket
├── discovery/       # AWS discovery (boto3)
├── graph/           # NetworkX + analyzers
├── remediation/     # Auto-fix engine
└── web_templates/   # Cytoscape.js UI

---

📝 License

MIT — see LICENSE

---

Built by @pydevsg