npm

policy_sentry

Generate locked-down AWS IAM policies based on actions and resources

brewmacoslinux

Try with needOr install directly

Source

About

Generate locked-down AWS IAM Policies

Commands

policy_sentry

Examples

Generate an IAM policy for S3 read access to a specific bucket$ policy_sentry write-policy --actions s3:GetObject s3:ListBucket --resources arn:aws:s3:::my-bucket/*

Create a policy from an interactive menu selecting actions and resources$ policy_sentry create-policy --service s3 --actions GetObject PutObject

Analyze an existing policy file for overly permissive statements$ policy_sentry analyze --file policy.json