Usage: [OPTIONS] [TEMPLATES]…
Analyse AWS Cloudformation templates passed by parameter. Exit codes: –
0 = all templates valid and scanned successfully – 1 = error / issue in
scanning at least one template – 2 = at least one template is not valid
according to CFRipper (template scanned successfully) – 3 = unknown /
unhandled exception in scanning the templates
Options:
—version Show the version and exit.
—resolve / —no–resolve Resolves cloudformation variables and
intrinsic functions [default: False]
—resolve–parameters FILENAME JSON/YML file containing key–value pairs
used for resolving CloudFormation files with
templated parameters. For example, {“abc”:
“ABC”} will change all occurrences of
{“Ref”: “abc”} in the CloudFormation file to
“ABC”.
—format [json|txt] Output format [default: txt]
—output–folder DIRECTORY If not present, result will be sent to
stdout
—logging [ERROR|WARNING|INFO|DEBUG]
Logging level [default: INFO]
—rules–config–file FILENAME Loads rules configuration file (type: [.py,
.pyc])
—rules–filters–folder DIRECTORY
All files in the folder must be of type:
[.py, .pyc]
—aws–account–id TEXT A 12–digit AWS account number eg.
123456789012
—aws–principals TEXT A comma–separated list of AWS principals eg.
arn:aws:iam::123456789012:root,234567890123,
arn:aws:iam::111222333444:user/user–name
—help Show this message and exit.
