workload-discovery-on-aws
sso-wall-of-shame
workload-discovery-on-aws | sso-wall-of-shame | |
---|---|---|
6 | 212 | |
731 | 690 | |
0.7% | - | |
6.2 | 7.8 | |
11 days ago | about 1 month ago | |
JavaScript | JavaScript | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
workload-discovery-on-aws
-
Diagram Aws account
Workload Discovery on AWS has recently released a new version - would that work for you?
- Ask HN: How to quickly animate sketches and 2D diagrams?
-
How would you identify your company’s AWS infrastructure, so you can map it for documentation purposes?
AWS has a solution called AWS Perspective that will do exactly this. The solution itself is free and open source, you only pay for the resources it creates. You can also export the diagrams to draw.io if you want to edit them manually. Also, it will show you how much your solution(s) and each of its components is costing you.
- GitHub - awslabs/aws-perspective: AWS Perspective is a solution to visualize AWS Cloud workloads. Using Perspective you can build, customize, and share detailed architecture diagrams of your workloads based on live data from AWS.
-
Is there a tool to map a AWS/vpc environment?
Check out - https://aws.amazon.com/solutions/implementations/aws-perspective/
- AWS Perspective is a solution to visualize AWS Cloud workloads. Using Perspective you can build, customize, and share detailed architecture diagrams of your workloads based on live data from AWS.
sso-wall-of-shame
- Charging for SSO when it is a basic security feature
-
Show HN: Assertly – scriptable monitoring for infosec, IT, compliance, DevOps
Haha, thanks. It seems we share a pet peeve. I assume you know https://sso.tax.
- Ask HN: How To: Store and share passwords in a company?
- The SSO Wall of Shame
-
Launch HN: SSOReady (YC W24) – Making SAML SSO Painless and Open Source
The SSO tax[1] already exists. It sucks: Gating security features, best practices and automation when someone is already your customer is terrible. But it's the status quo, and in that status quo people that need SAML in their company probably should pay at least half as much as they pay for this single feature in a single one of their SaaS apps.
[1]: https://sso.tax/
- Why SMBs Don't Deploy SSO
- SSO Tax Wall of Shame
- Ask HN: What happens when I click "Request for quote" on your SaaS?
-
Encryption at Rest: Whose Threat Model Is It Anyway?
SaaS vendors charging a big premium for customers locked in that have compliance requirements is nothing new; it’s basically a standard play in the rentseeking startup model:
https://sso.tax/
-
Show HN: I'm tired of S3 and all the nonsense around it
In short: SSO is a core security requirement for any company [customer] with more than five employees.
SaaS vendors appear not to have received this message, however. SSO is often only available as part of “Enterprise” pricing, which assumes either a huge number of users (minimum seat count) or is force-bundled with other “Enterprise” features which may have no value to the company using the software.
If companies claim to “take your security seriously”, then SSO should be available as a feature that is either:
- part of the core product, or
- an optional paid extra for a reasonable delta, or
- attached to a price tier, but with a reasonably small gap between the non-SSO tier and SSO tiers.
https://sso.tax/
What are some alternatives?
cloudmapper - CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
vaultwarden - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs
Grant - OAuth Proxy
unleash - Open-source feature management solution built for developers.
GoJS, a JavaScript Library for HTML Diagrams - JavaScript diagramming library for interactive flowcharts, org charts, design tools, planning tools, visual languages.
cerbos - Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.
modules.tf-lambda - Infrastructure as code generator - from visual diagrams created with Cloudcraft.co to Terraform
ToolJet - Low-code platform for building business applications. Connect to databases, cloud storages, GraphQL, API endpoints, Airtable, Google sheets, OpenAI, etc and build apps using drag and drop application builder. Built using JavaScript/TypeScript. 🚀
dependency-cruiser - Validate and visualize dependencies. Your rules. JavaScript, TypeScript, CoffeeScript. ES6, CommonJS, AMD.
infisical - ♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI
excalidraw-claymate - A tool based on Excalidraw to create stop motion animations and slides.
budibase - Budibase is an open-source low code platform that helps you build internal tools in minutes 🚀