Cloudsplaining

Latest version: v0.7.0

Safety actively analyzes 687918 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 5

0.2.4

* UI
* Inline Explanation of findings (115)
* Vue Router is implemented so you can have routes to reports like http://localhost:8080/#/inline-policies (116)
* Better formatting for Privilege Escalation findings (114)

0.2.3

* `scan` command now has a `--minimize` option, which you can use to reduce your report size. The example report size was reduced from 3.9MB (ouch!) to 212KB. (Fixes 125)
* UI
* Credentials Exposure as a new finding (99)
* Service Wildcard as a new finding (82)
* Backend
* Updated tests to include updated sample data

0.2.2

* Excluded actions no longer show up in results (Fixes 106)
* Fixed issue where `*:*` policy would break results due to how the Service Wildcard finding was implemented (Fixes 109)
* Credentials Exposure and Service Wildcard now show up in the data file results
* Exclusions are now applied earlier in the scan
* Backend
* Vue components are cleaned up - less HTML, more config and JS
* Unit tests are down from 3.25 minutes to 60 seconds (Fixes 117)

0.2.1

* Fixes issue where Inline Policies were showing up as findings even when they were attached to excluded IAM principals. Fixes 104

0.2.0

* Major UI uplift:
* Added Bar chart of results
* Upgraded Principals metadata page
* Standalone page for Inline Policies now
* Many bug fixes that were present with the previous UI
* Backend
* Migration to Vue.js
* Leveraging an updated data JSON file
* `scan-policy-file` command now returns Service Wildcard (82) and Credentials Exposure (99). That will not be in the HTML Report for this release though.

0.1.8

* UI: The Exclusions configuration was not showing up in the report due to a typo
* Changed `--input` flag to `--input-file` for all commands
* Fixed bug in scan-policy-file command (79)
* Backend: Improved the JSON output a bit for the new principal policy mapping data file.
* Comment out the principal policy mapping data file for now. Otherwise, if you have a bunch of IAM users, all within different IAM groups, the tool slows down a LOT and you run into loop hell.

Page 1 of 5

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.