-
Notifications
You must be signed in to change notification settings - Fork 11
/
TODO
52 lines (42 loc) · 1.7 KB
/
TODO
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
Todo:
☐ trap interrupts and exit cleanly
☐ enumerate functions should return an array of valid permissions
☐ refactor goroutine runners as DRY
☐ firebase with config
☐ figure out a way to have tab complete for multiple known values
☐ when using tokens, validate the expiration of the token (done: azure)
☐ ability to test a specific permission for any cloud provider. will help with automation
☐ session-json for aws is not the right format
☐ gcp set parent as project if one is not set. get project from json file
☐ aws all regions flag
☐ aws : helper : cognito : get unauth creds
☐ gcp : helper : iam : get service accounts and their roles
☐ optionally pass known values as a json file
☐ flag that will show all possible valid keys for known values
☐ 🐛 bug with debug message which says azure although it is aws
☐ 💚 🐛 build for arm mac doesnt work on zsh
☐ ✨ sas-token enumeration for azure
☐ 💡 local database?
☐ azure util list public blob storage
Helpers:
Bug:
AWS:
GCP:
☐ curl builder for requests
Firebase:
☐ authencated scan
☐ curl builder for requests
Azure:
Helpers:
Cli:
☐ if access key starts with ASIA, then token is required maybe?
☐ spinner with backwards count of remaining calls?
☐ move more verbose logging to the -v flag in the cli
Resources:
- https://docs.aws.amazon.com/index.html
- git clone https://github.com/aws/aws-sdk-js.git
- https://docs.oracle.com/en-us/iaas/api/#/
Archive:
✔ 🚀 set envar as default value for flags
✔ 🐛 cli args passed for aws is still prompting for creds
✔ 🐛 looks like secret for aws when passed as a flag is wrong for static credentials