0.90.0 • Published 6 months ago

@cloudgraph/cg-provider-aws v0.90.0

Weekly downloads
-
License
MPL-2.0
Repository
github
Last release
6 months ago

CloudGraph AWS Provider

Use the CloudGraph AWS Provider to scan and normalize cloud infrastructure using the AWS SDK

Docs

CloudGraph Readme

💻 Full CloudGraph Documentation Including AWS Examples

Install

Install the aws provider in CloudGraph

cg init aws

Authentication

Authenticate the CloudGraph AWS Provider any of the following ways:

  • Credentials from env variables: AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_SESSION_TOKEN
  • Credentials found in the credentials under ~/.aws (any profile, defaults to default)

CloudGraph needs read permissions in order to ingest your data. To keep things easy you can use the same permissions that we use internally when we run CloudGraph to power AutoCloud. Here are the AWS Docs for generating the correct Role (feel free to leave out AutoCloud specific configuration).

Multi Account

CloudGraph is able to scan multiple AWS accounts at once. This is done by setting up multiple profiles in your ~/.aws/credentials file and then selecting all the profiles you want to crawl when running cg init. All resources will be tagged with an accountId so you can query resources specific to an account or query resources across accounts!

Configuration

CloudGraph creates a configuration file at:

  • UNIX: ~/.config/cloudgraph/.cloud-graphrc.json
  • Windows: %LOCALAPPDATA%\cloudgraph/.cloud-graphrc.json

NOTE: CloudGraph will output where it stores the configuration file and provider data as part of the cg init command

CloudGraph will generate this configuration file when you run cg init aws. You may update it manually or by running cg init aws again.

"aws": {
  "profileApprovedList": [
      "default",
      "master",
      "sandbox"
    ], // Optional, defaults to the default profile
    "regions": "us-east-1,us-east-2,us-west-2",
    "resources": "alb,apiGatewayResource,apiGatewayRestApi,apiGatewayStage,appSync,asg,billing,cognitoIdentityPool,cognitoUserPool,cloudFormationStack,cloudFormationStackSet,cloudfront,cloudwatch,ebs,ec2Instance,eip,elb,igw,kinesisFirehose,kinesisStream,kms,lambda,nat,networkInterface,route53HostedZone,route53Record,routeTable,sg,vpc,sqs,s3"
  }
}

CloudGraph AWS Provider will ask you what regions you would like to crawl and will by default crawl for all supported resources in selected regions in the default account. You can update the regions, resources, or profile fields in the cloud-graphrc.json file to change this behavior. You can also select which resources to crawl in the cg init aws command by passing the the -r flag: cg init aws -r

Supported Services

ServiceRelations
albec2, route53Record, securityGroup, subnet, vpc
apiGatewayRestApiapiGatewayResource, apiGatewayStage, route53Record
apiGatewayStageapiGatewayRestApi
apiGatewayResourceapiGatewayRestApi
appSynccognitoUserPool, dynamodb, lambda, rdsCluster
asgebs, ec2, securityGroup, subnet
athenaDataCatalog
clientVpnEndpointsecurityGroup
cloud9
cloudformationStackcloudformationStack, iamRole, sns
cloudformationStackSet
cloudfrontelb, s3
cloudtrailcloudwatch, cloudwatchLog, kms, s3, sns
cloudwatchcloudtrail, cloudwatchLog, sns
cloudwatchLogcloudtrail, cloudwatch, kms
codebuildiamRole, kms, vpc, securityGroup, subnet
cognitoIdentityPool
cognitoUserPoolappSync, lambda
configurationRecorderiamRole
customerGatewayvpnConnection
dynamodbappSync
dmsReplicationInstancesecurityGroup, subnet, vpc, kms
ebsasg, ec2, emrInstance
ec2alb, asg, ebs, eip, emrInstance, networkInterface, securityGroup, subnet, systemsManagerInstance, vpc, ecsContainer
ecr
ecsClusterecsService, ecsTask, ecsTaskSet
ecsContainerecsTask, ec2
ecsServiceecsCluster, ecsTaskDefinition, ecsTaskSet, elb, iamRole, securityGroup, subnet, vpc
ecsTaskecsContainer, ecsCluster, ecsTaskDefinition
ecsTaskDefinitionecsService, ecsTask, ecsTaskSet
ecsTaskSetecsCluster, ecsService, ecsTaskDefinition
efskms
efsMountTargetnetworkInterface, subnet, vpc
eipec2, networkInterface, vpc
eksClusteriamRole, kms, securityGroup, subnet, vpc
elastiCacheClustersecurityGroup, subnet, vpc
elastiCacheReplicationGroupkms
elasticBeanstalkAppelasticBeanstalkEnv
elasticBeanstalkEnvelasticBeanstalkApp
elasticSearchDomainkms, securityGroup, subnet, vpc
elbcloudfront, ecsService, securityGroup, subnet, vpc
emrClusterkms, subnet
emrInstanceebs, ec2
emrStep
flowLogvpc, iamRole, subnet, networkInterface
glueJobiamRole
glueRegistry
guardDutyDetectoriamRole
iamInstanceProfileiamRole
iamPasswordPolicy
iamSamlProvider
iamOpenIdConnectProvider
iamServerCertificate
iamUseriamGroup
iamPolicyiamRole, iamGroup
iamRolecodebuild, configurationRecorder, iamInstanceProfile, iamPolicy, eksCluster, ecsService, flowLog, glueJob, managedAirflow, sageMakerNotebookInstance, systemsManagerInstance guardDutyDetector
iamGroupiamUser, iamPolicy
igwvpc
iot
kinesisFirehosekinesisStream, s3
kinesisStreamkinesisFirehose
kmscloudtrail, cloudwatchLog, codebuild, efs, eksCluster, elastiCacheReplicationGroup, elasticSearchDomain, emrCluster, lambda, rdsClusterSnapshot, sns, sageMakerNotebookInstance, dmsReplicationInstance, redshiftCluster
lambdaappSync, cognitoUserPool, kms, securityGroup, subnet, vpc
managedAirflowiamRole, securityGroups, subnet, s3
naclvpc
natGatewaynetworkInterface, subnet, vpc
networkInterfaceec2, eip, efsMountTarget, natGateway, sageMakerNotebookInstance, subnet, vpc, flowLog
organization
rdsClusterappSync, rdsClusterSnapshot, rdsDbInstance, securityGroup
rdsClusterSnapshotkms, rdsCluster, vpc
rdsDbInstancerdsCluster, securityGroup, vpc, subnet
redshiftClusterkms, vpc
route53Recordalb, apiGatewayRestApi, elb, route53HostedZone
route53HostedZoneroute53Record, vpc
routeTablesubnet, transitGateway, transitGatewayAttachment,vpc
sageMakerExperiment
sageMakerNotebookInstanceiamRole, kms, networkInterface, subnet, securityGroup
sageMakerProject
s3cloudfront, cloudtrail, kinesisFirehose, managedAirflow
secretsManager
securityGroupalb, asg, clientVpnEndpoint, codebuild, dmsReplicationInstance, ecsService, lambda, ec2, elasticSearchDomain, elb, rdsCluster, rdsDbInstance, eksCluster, elastiCacheCluster, managedAirflow, sageMakerNotebookInstance
ses
snskms, cloudtrail, cloudwatch
sqs
subnetalb, asg, codebuild, dmsReplicationInstance, ec2, ecsService, efsMountTarget, elastiCacheCluster, elasticSearchDomain, elb, lambda, managedAirflow, natGateway, networkInterface, sageMakerNotebookInstance, routeTable, vpc, eksCluster, emrCluster, flowLog
systemsManagerInstanceec2, iamRole
systemsManagerDocument
transitGatewayrouteTable, transitGatewayAttachment, vpnConnection
transitGatewayAttachmentrouteTable, transitGateway, vpc, vpnConnection
vpcalb, codebuild, dmsReplicationInstance, ec2, eip, elb, ecsService, efsMountTarget, eksCluster igw, elastiCacheCluster, elasticSearchDomain, lambda, nacl, natGateway, networkInterface, rdsClusterSnapshot, rdsDbInstance, redshiftCluster, route53HostedZone, routeTable, subnet, flowLog, vpnGateway, transitGatewayAttachment
vpnConnectioncustomerGateway, transitGateway, transitGatewayAttachment, vpnGateway
vpnGatewayvpc, vpnConnection
wafV2WebAcl
@aws-sdk/client-codecommit@aws-sdk/client-codepipeline@aws-sdk/client-elastic-beanstalk@aws-sdk/client-glue@aws-sdk/client-ssm@aws-sdk/credential-providers@aws-sdk/shared-ini-file-loader@cloudgraph/sdk@fast-csv/parse@graphql-tools/load-files@graphql-tools/mergeaws-sdkchalkcuiddotenvgraphqllodashtypescript
@infinitebrahmanuniverse/nolb-_cloudg@everything-registry/sub-chunk-179
0.89.1-alpha.2

9 months ago

0.89.1-alpha.1

9 months ago

0.90.1-alpha.1

6 months ago

0.90.1-alpha.2

6 months ago

0.89.0-beta.1

10 months ago

0.89.0

10 months ago

0.90.0-beta.1

6 months ago

0.90.0-alpha.1

7 months ago

0.90.0-alpha.2

6 months ago

0.90.0

6 months ago

0.89.0-alpha.22

10 months ago

0.89.0-alpha.19

11 months ago

0.89.0-alpha.18

11 months ago

0.89.0-alpha.21

11 months ago

0.89.0-alpha.20

11 months ago

0.88.0

12 months ago

0.88.0-beta.1

12 months ago

0.89.0-alpha.12

11 months ago

0.89.0-alpha.11

11 months ago

0.89.0-alpha.14

11 months ago

0.89.0-alpha.13

11 months ago

0.89.0-alpha.10

11 months ago

0.89.0-alpha.4

11 months ago

0.89.0-alpha.5

11 months ago

0.89.0-alpha.6

11 months ago

0.89.0-alpha.7

11 months ago

0.89.0-alpha.8

11 months ago

0.89.0-alpha.9

11 months ago

0.89.0-alpha.1

11 months ago

0.89.0-alpha.2

11 months ago

0.89.0-alpha.3

11 months ago

0.88.0-alpha.1

12 months ago

0.88.0-alpha.2

12 months ago

0.89.0-alpha.16

11 months ago

0.89.0-alpha.15

11 months ago

0.89.0-alpha.17

11 months ago

0.87.0

1 year ago

0.87.0-beta.1

1 year ago

0.87.0-alpha.1

1 year ago

0.86.0-beta.1

1 year ago

0.86.0-alpha.1

1 year ago

0.86.1-alpha.1

1 year ago

0.86.1-beta.1

1 year ago

0.86.0

1 year ago

0.86.1

1 year ago

0.85.2-alpha.1

1 year ago

0.85.0-alpha.2

1 year ago

0.85.0-alpha.1

1 year ago

0.85.1-alpha.1

1 year ago

0.85.0

1 year ago

0.85.1

1 year ago

0.85.0-beta.1

1 year ago

0.85.1-beta.1

1 year ago

0.84.0-alpha.1

1 year ago

0.84.0-beta.1

1 year ago

0.84.0

1 year ago

0.83.1-alpha.1

1 year ago

0.83.1-beta.1

1 year ago

0.83.1

1 year ago

0.83.0-beta.1

2 years ago

0.83.0

2 years ago

0.82.0

2 years ago

0.82.0-beta.1

2 years ago

0.82.0-alpha.4

2 years ago

0.82.0-alpha.3

2 years ago

0.82.0-alpha.6

2 years ago

0.82.0-alpha.5

2 years ago

0.82.0-alpha.8

2 years ago

0.82.0-alpha.7

2 years ago

0.83.0-alpha.6

2 years ago

0.83.0-alpha.7

2 years ago

0.83.0-alpha.8

2 years ago

0.83.0-alpha.9

2 years ago

0.83.0-alpha.2

2 years ago

0.83.0-alpha.3

2 years ago

0.83.0-alpha.4

2 years ago

0.83.0-alpha.5

2 years ago

0.83.0-alpha.1

2 years ago

0.82.1-alpha.1

2 years ago

0.83.0-alpha.11

2 years ago

0.83.0-alpha.10

2 years ago

0.81.0

2 years ago

0.80.0-alpha.3

2 years ago

0.80.0-alpha.4

2 years ago

0.80.0-alpha.1

2 years ago

0.80.0-alpha.2

2 years ago

0.80.0-alpha.5

2 years ago

0.80.0

2 years ago

0.80.0-beta.1

2 years ago

0.82.0-alpha.2

2 years ago

0.82.0-alpha.1

2 years ago

0.81.0-alpha.9

2 years ago

0.81.0-alpha.8

2 years ago

0.81.0-alpha.5

2 years ago

0.81.0-alpha.4

2 years ago

0.81.0-alpha.7

2 years ago

0.81.0-alpha.6

2 years ago

0.81.0-alpha.1

2 years ago

0.81.0-alpha.3

2 years ago

0.81.0-alpha.2

2 years ago

0.81.1-alpha.1

2 years ago

0.81.0-beta.1

2 years ago

0.79.0-alpha.10

2 years ago

0.79.0-alpha.11

2 years ago

0.79.0-alpha.12

2 years ago

0.79.0-alpha.13

2 years ago

0.79.0-alpha.14

2 years ago

0.79.0-alpha.15

2 years ago

0.78.0

2 years ago

0.78.1

2 years ago

0.79.0

2 years ago

0.76.0

2 years ago

0.79.0-beta.1

2 years ago

0.77.0

2 years ago

0.75.3

2 years ago

0.75.2

2 years ago

0.75.5

2 years ago

0.75.4

2 years ago

0.75.1

2 years ago

0.75.0

2 years ago

0.78.2-alpha.1

2 years ago

0.79.0-alpha.4

2 years ago

0.79.0-alpha.3

2 years ago

0.79.0-alpha.6

2 years ago

0.79.0-alpha.5

2 years ago

0.79.0-alpha.8

2 years ago

0.79.0-alpha.7

2 years ago

0.79.0-alpha.9

2 years ago

0.79.0-alpha.2

2 years ago

0.79.0-alpha.1

2 years ago

0.79.0-alpha.27

2 years ago

0.79.0-alpha.28

2 years ago

0.79.0-alpha.20

2 years ago

0.79.0-alpha.21

2 years ago

0.79.0-alpha.22

2 years ago

0.79.0-alpha.23

2 years ago

0.79.0-alpha.24

2 years ago

0.79.0-alpha.25

2 years ago

0.79.0-alpha.26

2 years ago

0.79.0-alpha.16

2 years ago

0.79.0-alpha.17

2 years ago

0.79.0-alpha.18

2 years ago

0.79.0-alpha.19

2 years ago

0.74.0

2 years ago

0.70.0

2 years ago

0.71.0

2 years ago

0.72.0

2 years ago

0.73.0

2 years ago

0.62.0

2 years ago

0.59.2

2 years ago

0.59.0

2 years ago

0.59.1

2 years ago

0.55.2

2 years ago

0.51.6

2 years ago

0.51.7

2 years ago

0.55.0

2 years ago

0.51.4

2 years ago

0.55.1

2 years ago

0.51.5

2 years ago

0.51.2

2 years ago

0.51.3

2 years ago

0.51.0

2 years ago

0.51.1

2 years ago

0.48.2

2 years ago

0.48.1

2 years ago

0.67.0

2 years ago

0.63.4

2 years ago

0.63.3

2 years ago

0.63.0

2 years ago

0.63.2

2 years ago

0.63.1

2 years ago

0.56.0

2 years ago

0.52.0

2 years ago

0.68.3

2 years ago

0.68.2

2 years ago

0.68.4

2 years ago

0.49.0

2 years ago

0.64.3

2 years ago

0.64.2

2 years ago

0.68.1

2 years ago

0.64.5

2 years ago

0.68.0

2 years ago

0.64.4

2 years ago

0.64.1

2 years ago

0.64.0

2 years ago

0.60.0

2 years ago

0.57.0

2 years ago

0.57.1

2 years ago

0.53.2

2 years ago

0.53.0

2 years ago

0.53.1

2 years ago

0.65.1

2 years ago

0.69.0

2 years ago

0.65.0

2 years ago

0.61.0

2 years ago

0.58.1

2 years ago

0.58.2

2 years ago

0.58.0

2 years ago

0.54.1

2 years ago

0.54.2

2 years ago

0.54.0

2 years ago

0.50.1

2 years ago

0.50.2

2 years ago

0.50.0

2 years ago

0.66.0

2 years ago

0.43.0

2 years ago

0.48.0

2 years ago

0.44.0

2 years ago

0.45.1

2 years ago

0.45.0

2 years ago

0.41.2

2 years ago

0.46.0

2 years ago

0.42.4

2 years ago

0.46.1

2 years ago

0.42.2

2 years ago

0.42.3

2 years ago

0.42.0

2 years ago

0.42.1

2 years ago

0.47.0

2 years ago

0.43.1

2 years ago

0.43.2

2 years ago

0.41.1

2 years ago

0.41.0

2 years ago

0.38.2

3 years ago

0.40.4

2 years ago

0.40.5

2 years ago

0.40.2

2 years ago

0.40.3

2 years ago

0.40.0

3 years ago

0.40.1

3 years ago

0.39.1

3 years ago

0.39.0

3 years ago

0.39.2

3 years ago

0.38.1

3 years ago

0.38.0

3 years ago

0.37.0

3 years ago

0.36.1

3 years ago

0.36.0

3 years ago

0.34.2

3 years ago

0.34.1

3 years ago

0.34.0

3 years ago

0.32.0

3 years ago

0.30.0

3 years ago

0.29.0

3 years ago

0.27.1

3 years ago

0.27.0

3 years ago

0.29.1

3 years ago

0.35.0

3 years ago

0.33.0

3 years ago

0.31.0

3 years ago

0.28.1

3 years ago

0.28.0

3 years ago

0.28.2

3 years ago

0.26.5

3 years ago

0.26.4

3 years ago

0.26.3

3 years ago

0.26.2

3 years ago

0.26.1

3 years ago

0.26.0

3 years ago

0.25.2

3 years ago

0.25.1

3 years ago

0.25.0

3 years ago

0.24.3

3 years ago

0.24.2

3 years ago

0.24.1

3 years ago

0.24.0

3 years ago

0.22.2

3 years ago

0.23.0

3 years ago

0.22.1

3 years ago

0.22.0

3 years ago

0.21.1

3 years ago

0.21.0

3 years ago

0.20.0

3 years ago

0.19.0

3 years ago

0.18.1

3 years ago

0.17.0

3 years ago

0.18.0

3 years ago

0.16.3

3 years ago

0.16.4

3 years ago

0.16.1

3 years ago

0.16.2

3 years ago

0.16.0

3 years ago

0.15.1

3 years ago

0.15.0

3 years ago

0.14.1

3 years ago

0.14.0

3 years ago

0.13.0

3 years ago

0.12.1

3 years ago

0.12.0

3 years ago

0.11.4

3 years ago

0.10.0

3 years ago

0.11.0

3 years ago

0.10.1

3 years ago

0.11.1

3 years ago

0.11.2

3 years ago

0.9.2

3 years ago

0.11.3

3 years ago

0.9.1

3 years ago

0.9.0

3 years ago

0.8.0

3 years ago

0.5.0

3 years ago

0.4.0

3 years ago

0.7.0

3 years ago

0.6.0

3 years ago

0.3.0

3 years ago

0.2.3

3 years ago

0.2.2

3 years ago

0.2.4

3 years ago

0.2.1

3 years ago

0.2.0

3 years ago

0.1.0

3 years ago