Skip to content

Commit

Permalink
Update SAR data
Browse files Browse the repository at this point in the history
  • Loading branch information
Ian Mckay [bot] committed Dec 27, 2024
1 parent 9337d04 commit c8b3491
Show file tree
Hide file tree
Showing 19 changed files with 17,688 additions and 17,247 deletions.
8 changes: 8 additions & 0 deletions aws/historic_counts.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6671,6 +6671,10 @@
{
"count": 16646,
"date": "2024-12-26T14:26:09"
},
{
"count": 16646,
"date": "2024-12-27T14:26:22"
}
],
"iam": [
Expand Down Expand Up @@ -11941,6 +11945,10 @@
{
"count": 18197,
"date": "2024-12-26T14:26:09"
},
{
"count": 18199,
"date": "2024-12-27T14:26:22"
}
]
}
60 changes: 58 additions & 2 deletions aws/iam_definition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -92003,6 +92003,11 @@
"description": "Filters access by the ARN of a launch template",
"type": "ARN"
},
{
"condition": "ec2:Location",
"description": "Filters access by the destination for the snapshot copy",
"type": "String"
},
{
"condition": "ec2:ManagedResourceOperator",
"description": "Filters access by the presence of an EC2 operator provisioning a managed resource",
Expand Down Expand Up @@ -92238,6 +92243,11 @@
"description": "Filters access by the initiation time of a snapshot",
"type": "String"
},
{
"condition": "ec2:SourceAvailabilityZone",
"description": "Filters access by the name of the Availability Zone from which the request originated",
"type": "String"
},
{
"condition": "ec2:SourceCapacityReservationId",
"description": "Filters access by the ID of the Capacity Reservation from which you want to move capacity",
Expand Down Expand Up @@ -96024,9 +96034,11 @@
"condition_keys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys",
"ec2:Location",
"ec2:OutpostArn",
"ec2:ParentVolume",
"ec2:SnapshotID",
"ec2:SourceAvailabilityZone",
"ec2:SourceOutpostArn",
"ec2:VolumeSize"
],
Expand Down Expand Up @@ -96086,9 +96098,11 @@
"condition_keys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys",
"ec2:Location",
"ec2:OutpostArn",
"ec2:ParentVolume",
"ec2:SnapshotID",
"ec2:SourceAvailabilityZone",
"ec2:SourceOutpostArn",
"ec2:VolumeSize"
],
Expand Down Expand Up @@ -99185,6 +99199,7 @@
{
"condition_keys": [
"aws:ResourceTag/${TagKey}",
"ec2:AvailabilityZone",
"ec2:OutpostArn",
"ec2:Owner",
"ec2:ParentVolume",
Expand Down Expand Up @@ -107828,6 +107843,7 @@
"ec2:Add/userId",
"ec2:Attribute",
"ec2:Attribute/${AttributeName}",
"ec2:AvailabilityZone",
"ec2:Owner",
"ec2:ParentVolume",
"ec2:Remove/group",
Expand Down Expand Up @@ -112085,6 +112101,7 @@
"ec2:Encrypted",
"ec2:IsLaunchTemplateResource",
"ec2:LaunchTemplate",
"ec2:Location",
"ec2:OutpostArn",
"ec2:Owner",
"ec2:ParentVolume",
Expand All @@ -112096,6 +112113,7 @@
"ec2:SnapshotID",
"ec2:SnapshotLockDuration",
"ec2:SnapshotTime",
"ec2:SourceAvailabilityZone",
"ec2:SourceOutpostArn",
"ec2:VolumeSize"
],
Expand Down Expand Up @@ -112769,6 +112787,11 @@
"description": "Filters access by the presence of mandatory tags in the request",
"type": "ArrayOfString"
},
{
"condition": "ecr:AccountSetting",
"description": "Filters access by the ECR account setting name",
"type": "String"
},
{
"condition": "ecr:ResourceTag/${TagKey}",
"description": "Filters access by tag-value associated with the resource",
Expand Down Expand Up @@ -113065,7 +113088,9 @@
"privilege": "GetAccountSetting",
"resource_types": [
{
"condition_keys": [],
"condition_keys": [
"ecr:AccountSetting"
],
"dependent_actions": [],
"resource_type": ""
}
Expand Down Expand Up @@ -113205,7 +113230,9 @@
"privilege": "PutAccountSetting",
"resource_types": [
{
"condition_keys": [],
"condition_keys": [
"ecr:AccountSetting"
],
"dependent_actions": [],
"resource_type": ""
}
Expand Down Expand Up @@ -115698,6 +115725,18 @@
}
]
},
{
"access_level": "Read",
"description": "Grants permission to retrieve descriptive information about Kubernetes versions that Amazon EKS clusters support",
"privilege": "DescribeClusterVersions",
"resource_types": [
{
"condition_keys": [],
"dependent_actions": [],
"resource_type": ""
}
]
},
{
"access_level": "Read",
"description": "Grants permission to describe an EKS Anywhere subscription",
Expand Down Expand Up @@ -273152,6 +273191,23 @@
}
]
},
{
"access_level": "Permissions management",
"description": "Grants permission to configure vended log delivery for Mail Manager resources",
"privilege": "AllowVendedLogDeliveryForResource",
"resource_types": [
{
"condition_keys": [],
"dependent_actions": [],
"resource_type": "mailmanager-ingress-point"
},
{
"condition_keys": [],
"dependent_actions": [],
"resource_type": "mailmanager-rule-set"
}
]
},
{
"access_level": "Write",
"description": "Grants permission to create an addon instance",
Expand Down
32 changes: 26 additions & 6 deletions aws/managed_policies.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7635,6 +7635,7 @@
"eks:DescribeAddonConfiguration",
"eks:DescribeAddonVersions",
"eks:DescribeCluster",
"eks:DescribeClusterVersions",
"eks:DescribeEksAnywhereSubscription",
"eks:DescribeFargateProfile",
"eks:DescribeIdentityProviderConfig",
Expand Down Expand Up @@ -16910,6 +16911,7 @@
"ses:TagResource",
"ses:UntagResource",
"ses:UpdateConfigurationSetEventDestination",
"ses:AllowVendedLogDeliveryForResource",
"ses:CreateAddonInstance",
"ses:CreateAddonSubscription",
"ses:CreateArchive",
Expand Down Expand Up @@ -22335,6 +22337,7 @@
"ses:TagResource",
"ses:UntagResource",
"ses:UpdateConfigurationSetEventDestination",
"ses:AllowVendedLogDeliveryForResource",
"ses:CreateAddonInstance",
"ses:CreateAddonSubscription",
"ses:CreateArchive",
Expand Down Expand Up @@ -32227,15 +32230,23 @@
},
{
"access_levels": [
"List",
"Read",
"Tagging",
"Write"
],
"arn": "arn:aws:iam::aws:policy/EC2InstanceProfileForImageBuilder",
"createdate": "2024-12-02T02:06:07Z",
"createdate": "2024-12-26T23:52:07Z",
"credentials_exposure": false,
"data_access": true,
"deprecated": false,
"effective_action_names": [
"ec2:DescribeVolumes",
"ec2:DescribeSnapshots",
"ec2:CreateSnapshot",
"ec2:CreateSnapshot",
"ec2:CreateTags",
"s3:GetObject",
"imagebuilder:GetComponent",
"imagebuilder:GetMarketplaceResource",
"kms:Decrypt",
Expand All @@ -32252,7 +32263,7 @@
"undocumented_actions": false,
"unknown_actions": false,
"updatedate": "2024-12-02T02:06:07+00:00",
"version": "v4"
"version": "v5"
},
{
"access_levels": [
Expand Down Expand Up @@ -48152,7 +48163,7 @@
"Read"
],
"arn": "arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess",
"createdate": "2015-02-06T18:40:17Z",
"createdate": "2024-12-27T10:07:06Z",
"credentials_exposure": false,
"data_access": false,
"deprecated": false,
Expand Down Expand Up @@ -48320,6 +48331,7 @@
"ec2:DescribeVpcs",
"ec2:DescribeVpnConnections",
"ec2:DescribeVpnGateways",
"ec2:GetSecurityGroupsForVpc",
"elasticloadbalancing:DescribeInstanceHealth",
"elasticloadbalancing:DescribeLoadBalancerAttributes",
"elasticloadbalancing:DescribeLoadBalancerPolicies",
Expand Down Expand Up @@ -48376,7 +48388,7 @@
"undocumented_actions": false,
"unknown_actions": false,
"updatedate": "2024-02-14T18:43:53+00:00",
"version": "v1"
"version": "v3"
},
{
"access_levels": [
Expand Down Expand Up @@ -75151,6 +75163,7 @@
"eks:DescribeAddonConfiguration",
"eks:DescribeAddonVersions",
"eks:DescribeCluster",
"eks:DescribeClusterVersions",
"eks:DescribeEksAnywhereSubscription",
"eks:DescribeFargateProfile",
"eks:DescribeIdentityProviderConfig",
Expand Down Expand Up @@ -84195,6 +84208,7 @@
"ses:TagResource",
"ses:UntagResource",
"ses:UpdateConfigurationSetEventDestination",
"ses:AllowVendedLogDeliveryForResource",
"ses:CreateAddonInstance",
"ses:CreateAddonSubscription",
"ses:CreateArchive",
Expand Down Expand Up @@ -97746,6 +97760,7 @@
"eks:DescribeAddonConfiguration",
"eks:DescribeAddonVersions",
"eks:DescribeCluster",
"eks:DescribeClusterVersions",
"eks:DescribeEksAnywhereSubscription",
"eks:DescribeFargateProfile",
"eks:DescribeIdentityProviderConfig",
Expand Down Expand Up @@ -106283,11 +106298,13 @@
"Permissions management"
],
"arn": "arn:aws:iam::aws:policy/aws-service-role/AWSServiceRoleForImageBuilder",
"createdate": "2023-10-19T21:30:10Z",
"createdate": "2024-12-26T23:52:06Z",
"credentials_exposure": true,
"data_access": true,
"deprecated": false,
"effective_action_names": [
"ec2:RegisterImage",
"ec2:RegisterImage",
"ec2:RunInstances",
"ec2:RunInstances",
"iam:PassRole",
Expand Down Expand Up @@ -106372,7 +106389,7 @@
"undocumented_actions": false,
"unknown_actions": false,
"updatedate": "2023-10-19T21:30:10+00:00",
"version": "v19"
"version": "v20"
},
{
"access_levels": [
Expand Down Expand Up @@ -120276,6 +120293,7 @@
"ses:TagResource",
"ses:UntagResource",
"ses:UpdateConfigurationSetEventDestination",
"ses:AllowVendedLogDeliveryForResource",
"ses:CreateAddonInstance",
"ses:CreateAddonSubscription",
"ses:CreateArchive",
Expand Down Expand Up @@ -124934,6 +124952,7 @@
"ses:TagResource",
"ses:UntagResource",
"ses:UpdateConfigurationSetEventDestination",
"ses:AllowVendedLogDeliveryForResource",
"ses:CreateAddonInstance",
"ses:CreateAddonSubscription",
"ses:CreateArchive",
Expand Down Expand Up @@ -137515,6 +137534,7 @@
"eks:DescribeAddonConfiguration",
"eks:DescribeAddonVersions",
"eks:DescribeCluster",
"eks:DescribeClusterVersions",
"eks:DescribeEksAnywhereSubscription",
"eks:DescribeFargateProfile",
"eks:DescribeIdentityProviderConfig",
Expand Down
10 changes: 10 additions & 0 deletions aws/managedpolicies/AIOpsAssistantPolicy.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13231,6 +13231,16 @@
"privesc": false,
"resource_exposure": false
},
{
"access_level": "Read",
"action": "eks:Describe*",
"condition": null,
"credentials_exposure": false,
"data_access": false,
"effective_action": "eks:DescribeClusterVersions",
"privesc": false,
"resource_exposure": false
},
{
"access_level": "Read",
"action": "eks:Describe*",
Expand Down
Loading

0 comments on commit c8b3491

Please sign in to comment.