cfn-guard-test
report2junit
cfn-guard-test | report2junit | |
---|---|---|
1 | 1 | |
4 | 3 | |
- | - | |
8.6 | 8.2 | |
9 days ago | about 7 hours ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
cfn-guard-test
-
This is how you can test your cfn-guard rules
For this reason I created a python package called cfn-guard-test. This package makes it easier to run many rule/test sets. This is especially useful in the CI/CD pipelines.
report2junit
-
How do you prove that your infrastructure is compliant
But by default cfn-guard does not generate compatible reports. And when you execute it, and has failures it will exit with an exit code of 1. I have written a conversion tool to help you with this called report2junit. It merges and coverts the JSON reports into the JUnit format used by CodeBuild Reports. By using the || true postfix the CodeBuild execution will continue. Instead, the report2junit tool will return an exit code of 1 after it generated the report. And because the report is there when it fails you can use that to see what rule failed.
What are some alternatives?
cloudformation-guard - Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
cdk-demo
checkov - Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Internet.nl - Internet standards compliance test suite
cfn_nag - Linting tool for CloudFormation templates
pywinauto - Windows GUI Automation with Python (based on text properties)
cli - a lightweight, security focused, BDD test framework against terraform.