All news with #aws iam access analyzer tag

Mon, December 8, 2025

IAM Policy Autopilot: Open-source IAM Policy Generator

#AWS #IAM #AI Security #AWS IAM Access Analyzer #GitHub

🔧 IAM Policy Autopilot is an open-source static analysis tool that generates baseline AWS IAM identity-based policies by analyzing application code locally. Available as a CLI and an MCP server, it integrates with MCP-compatible AI coding assistants to produce syntactically correct, dependency-aware policies and to troubleshoot Access Denied errors. The tool favors functionality during initial deployments and recommends reviewing and tightening generated policies to meet least-privilege principles as applications mature.

read more →

Tue, July 22, 2025

AWS releases SRA Verify: Open-source SRA assessment

#AWS #AWS CloudTrail #AWS Config #AWS GuardDuty #AWS IAM Access Analyzer #AWS Inspector #AWS Macie #AWS S3 #AWS Security Hub #Product Release

🔍 SRA Verify is an open-source assessment tool from AWS that automates validation of an organization’s alignment to the AWS Security Reference Architecture (AWS SRA). It runs automated checks across multiple services to verify configurations and highlight deviations from recommended patterns. The tool links checks to remediation guidance and IaC examples to help teams implement fixes more quickly. It currently covers CloudTrail, GuardDuty, IAM Access Analyzer, Config, Security Hub, S3, Inspector, and Macie, with plans to expand.