Make help text honestly AWS-only; add a cloud parity matrix#23
Merged
Conversation
cloudgov is AWS-native today; its provider seams are multi-cloud-shaped but
no GCP/Azure provider is implemented. A few command help strings overstated
that, and the README had no statement of which clouds each command covers.
──────────────────────── help text ────────────────────────
Rewrote the command help that used generic "cloud"/"across providers"
phrasing to name AWS:
- inventory: "List all cloud resources across providers" -> "List all AWS
resources" (Short + Long).
- quota: "...across cloud providers" -> "Check AWS service quota
utilization vs limits".
- secrets / secrets scan: dropped the false GCP "Cloud Functions" and
Azure "App Service settings" scan targets; the scanner only reads AWS
surfaces (Lambda env, ECS task defs, EC2 user data, SSM params,
CloudFormation outputs), now listed accurately. (It still DETECTS leaked
GCP/Azure credentials embedded in those AWS surfaces — a finding type,
not a scan target.)
- cost / orphans / drift: "cloud" -> "AWS" for consistency.
──────────────────────── parity matrix ────────────────────────
README gains a "Cloud support" section: a short statement that the tool is
AWS-native with a pluggable provider seam (capability interfaces + registry)
that makes GCP/Azure additive, plus a command x cloud matrix marking each
domain implemented (AWS), seam-ready (GCP/Azure), or n/a (k8s for RBAC).
Offline commands and the mcp server are noted as cloud-agnostic.
Found via an audit workflow (the headline was already honest — the overclaims
were subtle) and verified by an adversarial review workflow (no overclaim
survived; every matrix row checked against the code).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
What
cloudgov is AWS-native today; its provider seams are multi-cloud-shaped but no GCP/Azure provider is implemented. A few command help strings overstated that, and the README had no statement of which clouds each command covers.
Help text
Rewrote command help that used generic
cloud/across providersto name AWS:Parity matrix
README gains a
## Cloud supportsection: a short statement that the tool is AWS-native with a pluggable provider seam (capability interfaces + registry) making GCP/Azure additive, plus a command × cloud matrix (✅ implemented · ⬡ seam-ready · — n/a) — AWS full across all domains, GCP/Azure seam-ready, k8s for RBAC; offline commands +mcpnoted as cloud-agnostic. The pluggable-seam framing (the intentional design) is kept; only present-tense multi-cloud claims were removed.How it was found / verified
mcpadded to the matrix note).Docs-only + help strings;
task build/go test ./.../go vetgreen. Completes backlog T8.