localstack-iam-policy-analyzer
Analyze LocalStack logs to generate missing IAM policies and configure IAM enforcement modes for AWS development environments.
Instructions
Configures LocalStack's IAM enforcement and analyzes logs to automatically generate missing IAM policies.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| action | Yes | The action to perform: 'set-mode' to configure enforcement, 'analyze-policies' to generate a policy from logs, or 'get-status' to check the current mode. | |
| mode | No | The enforcement mode to set. This is required only when the action is 'set-mode'. |
Input Schema (JSON Schema)
{
"$schema": "http://json-schema.org/draft-07/schema#",
"additionalProperties": false,
"properties": {
"action": {
"description": "The action to perform: 'set-mode' to configure enforcement, 'analyze-policies' to generate a policy from logs, or 'get-status' to check the current mode.",
"enum": [
"set-mode",
"analyze-policies",
"get-status"
],
"type": "string"
},
"mode": {
"description": "The enforcement mode to set. This is required only when the action is 'set-mode'.",
"enum": [
"ENFORCED",
"SOFT_MODE",
"DISABLED"
],
"type": "string"
}
},
"required": [
"action"
],
"type": "object"
}