gebalamariusz/cloud-audit

v0.1.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 3mo Vulnerability Scanning

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

audit aws aws-audit aws-security cis-benchmarks cli

+13 more

cloud-security compliance devops security iam iac infrastructure-security open-source-security python python-cli security-scanner terraform vulnerability-scanning

Summary

AI summary

Adds a health score from 0‑100 based on security findings.

Full changelog

cloud-audit v0.1.0

Fast, opinionated AWS security scanner with 17 curated checks.

Features

17 AWS checks across IAM, S3, EC2, VPC, RDS, and EIP
Health score (0-100) based on finding severity
Rich terminal UI with progress bar and color-coded findings
HTML report with dark-mode design
JSON output for CI/CD integration
Docker support
Zero configuration — uses your existing AWS credentials

Install

pip install cloud-audit
cloud-audit scan

What's Next

v0.2.0: Remediation engine (copy-paste CLI + Terraform fixes for every finding)
v0.3.0: CloudTrail, GuardDuty, Config, KMS checks

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track gebalamariusz/cloud-audit

Get notified when new releases ship.

About gebalamariusz/cloud-audit

Open-source AWS security scanner with attack chain detection, breach cost estimation, and copy-paste remediation (CLI + Terraform). 47 checks, 16 attack chain rules. First free standalone AWS security MCP server.

All releases →

Related context

Related tools

Earlier breaking changes

v2.2.0 Category enum gains THREAT value, separating active-abuse from SECURITY misconfigurations.