Cartography

- Add GCP firewalls, firewall allow and deny rules, network tags, connect firewall rules to IP ranges, GCP VPCs, subnets, network interfaces, NIC access configs
- Use partial_uri as unique identifier on GCP instances
- Add AWSPrincipal nodes to represent the root identity of each AWS account being synced
- Fix IAM statement parsing bug which would cause single-statement policies to crash sync
- Use policyuniverse to parse IAM statements and find role assumption permissions
- Ingest Global Secondary Indexes and more DynamoDB properties
- Change relationship between AWSPrincipal and AWSRole nodes to clarify the distinction between trust and permission relationships
- Add AWSPrincipal label to AWSRole nodes
- Integration tests are now configurable

- Ingest Google Cloud Platform organizations, projects, folders, and compute instance objects.

- Added `(:AWSRole)-[:STS_ASSUMEROLE_ALLOW]->(:AWSRole)` relationship ingestion.
- Fixed 60

- Added VPC peering to the graph
- Fix 31, 34, 41, 55, 51
- Added docs on manual testing

Including Sacha's fix for 55.

- Add VPC peering
- Fix bug in STS_ASSUMEROLE_ALLOW (see 51)