{"id":13993674,"url":"https://github.com/mludvig/aws-ssm-tools","last_synced_at":"2026-01-12T13:23:02.489Z","repository":{"id":40625889,"uuid":"191648492","full_name":"mludvig/aws-ssm-tools","owner":"mludvig","description":"Handy tools for AWS Systems Manager - ssm-session, ecs-session, ssm-ssh and ssm-tunnel","archived":false,"fork":false,"pushed_at":"2025-07-28T00:44:29.000Z","size":275,"stargazers_count":261,"open_issues_count":16,"forks_count":44,"subscribers_count":9,"default_branch":"master","last_synced_at":"2026-01-02T15:45:16.791Z","etag":null,"topics":["aws","aws-ssm","ecs","ip","ssh","tunneling"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mludvig.png","metadata":{"files":{"readme":"README-dev.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2019-06-12T21:39:56.000Z","updated_at":"2025-12-29T22:59:57.000Z","dependencies_parsed_at":"2025-07-22T06:22:49.393Z","dependency_job_id":"9d91a94d-10f0-452c-a5e3-190834ae8070","html_url":"https://github.com/mludvig/aws-ssm-tools","commit_stats":{"total_commits":148,"total_committers":8,"mean_commits":18.5,"dds":"0.060810810810810856","last_synced_commit":"efd8bb405632fa9090b03c3dd3ef0f1cd7804cac"},"previous_names":[],"tags_count":25,"template":false,"template_full_name":null,"purl":"pkg:github/mludvig/aws-ssm-tools","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mludvig%2Faws-ssm-tools","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mludvig%2Faws-ssm-tools/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mludvig%2Faws-ssm-tools/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mludvig%2Faws-ssm-tools/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mludvig","download_url":"https://codeload.github.com/mludvig/aws-ssm-tools/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mludvig%2Faws-ssm-tools/sbom","scorecard":{"id":653682,"data":{"date":"2025-08-11","repo":{"name":"github.com/mludvig/aws-ssm-tools","commit":"6c3cea32e0ec9cdbf73a34430ffad9cc7dbb960c"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":4,"checks":[{"name":"Code-Review","score":0,"reason":"Found 1/23 approved changesets -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Maintained","score":10,"reason":"30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/ci.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:38: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/ci.yml:64: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/ci.yml:67: update your workflow using https://app.stepsecurity.io/secureworkflow/mludvig/aws-ssm-tools/ci.yml/master?enable=pin","Info:   0 out of   4 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   3 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":9,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Warn: project license file does not contain an FSF or OSI license."],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v2.0.1 not signed: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/235485086","Warn: release artifact v1.6.0 not signed: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/109992712","Warn: release artifact v1.5.1 not signed: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/93507992","Warn: release artifact v2.0.1 does not have provenance: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/235485086","Warn: release artifact v1.6.0 does not have provenance: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/109992712","Warn: release artifact v1.5.1 does not have provenance: https://api.github.com/repos/mludvig/aws-ssm-tools/releases/93507992"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":0,"reason":"branch protection not enabled on development/release branches","details":["Warn: branch protection not enabled for branch 'master'"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 8 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-21T14:09:22.879Z","repository_id":40625889,"created_at":"2025-08-21T14:09:22.880Z","updated_at":"2025-08-21T14:09:22.880Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28338996,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-12T12:22:26.515Z","status":"ssl_error","status_checked_at":"2026-01-12T12:22:10.856Z","response_time":98,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.6:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","aws-ssm","ecs","ip","ssh","tunneling"],"created_at":"2024-08-09T14:02:29.979Z","updated_at":"2026-01-12T13:23:02.480Z","avatar_url":"https://github.com/mludvig.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# Development Guide\n\nThis project uses [uv](https://docs.astral.sh/uv/) for dependency management and development tasks, with a unified `dev.sh` script for all development operations.\n\n## Prerequisites\n\nInstall uv:\n```bash\ncurl -LsSf https://astral.sh/uv/install.sh | sh\n```\n\n## Quick Start\n\n1. **Set up the development environment:**\n   ```bash\n   ./dev.sh install\n   ```\n\n2. **Run code quality checks:**\n   ```bash\n   ./dev.sh check\n   ```\n\n3. **Format code:**\n   ```bash\n   ./dev.sh format\n   ```\n\n4. **Build the package:**\n   ```bash\n   ./dev.sh build\n   ```\n\n## Development Commands\n\nThe `dev.sh` script provides all development functionality in one place:\n\n### Setup Commands\n- `./dev.sh install` - Install project and dev dependencies\n- `./dev.sh sync` - Sync dependencies (update lockfile)\n\n### Development Commands\n- `./dev.sh check [tool]` - Run linting and type checking\n  - `./dev.sh check` - Run all checks (black, ruff, mypy)\n  - `./dev.sh check ruff` - Run only ruff\n  - `./dev.sh check black` - Run only black\n  - `./dev.sh check mypy` - Run only mypy\n- `./dev.sh format` - Format code with black and ruff\n- `./dev.sh test` - Run tests (when available)\n\n### Build \u0026 Release Commands\n- `./dev.sh build` - Build the package\n- `./dev.sh upload` - Build and upload to PyPI\n- `./dev.sh clean` - Clean build artifacts\n\n### Version Commands\n- `./dev.sh bump \u003cpart\u003e` - Bump version (major, minor, patch, alpha, beta, rc)\n- `./dev.sh version` - Show project version\n- `./dev.sh version \u003cversion\u003e` - Set specific version\n\n### Utility Commands\n- `./dev.sh shell` - Enter the project's virtual environment\n- `./dev.sh run \u003ccmd\u003e` - Run a command in the project environment\n\n## Examples\n\n```bash\n# Development workflow\n./dev.sh install\n./dev.sh format\n./dev.sh check\n./dev.sh build\n\n# Run specific tools\n./dev.sh check ruff\n./dev.sh run python -c \"import ssm_tools; print(ssm_tools.__version__)\"\n\n# Version management\n./dev.sh version                    # Show current version\n./dev.sh bump patch                 # Bump patch version (e.g., 1.0.0 -\u003e 1.0.1)\n./dev.sh bump minor                 # Bump minor version (e.g., 1.0.0 -\u003e 1.1.0)\n./dev.sh bump major                 # Bump major version (e.g., 1.0.0 -\u003e 2.0.0)\n./dev.sh bump alpha                 # Bump to alpha (e.g., 1.0.0 -\u003e 1.0.1a1)\n./dev.sh version 2.1.0              # Set specific version\n\n# Release workflow\n./dev.sh check\n./dev.sh bump patch                 # Or bump minor/major as needed\n./dev.sh upload\n```\n\n## Version Management\n\nThe project uses [hatch](https://hatch.pypa.io/) for version management with convenient commands:\n\n### Version Bumping\n```bash\n./dev.sh bump patch    # 1.0.0 -\u003e 1.0.1\n./dev.sh bump minor    # 1.0.0 -\u003e 1.1.0\n./dev.sh bump major    # 1.0.0 -\u003e 2.0.0\n./dev.sh bump alpha    # 1.0.0 -\u003e 1.0.1a1\n./dev.sh bump beta     # 1.0.0 -\u003e 1.0.1b1\n./dev.sh bump rc       # 1.0.0 -\u003e 1.0.1rc1\n```\n\n### Setting Specific Versions\n```bash\n./dev.sh version 2.1.0         # Set to specific version\n./dev.sh version 2.0.0-alpha1  # Set to pre-release (becomes 2.0.0a1)\n```\n\n### Version Workflow\n1. The command shows the current version\n2. Hatch updates the version in `ssm_tools/__init__.py`\n3. Shows what version hatch actually created (may normalize format)\n4. Asks if you accept the new version\n5. If not, reverts to the original version\n6. If yes, asks whether to commit and tag\n7. Creates git commit with message \"Version v{version}\" and tags it\n\n**Note**: Hatch may normalize version strings (e.g., `2.0.0-alpha1` becomes `2.0.0a1`). The script handles this by showing you the actual version created and using that for commit messages and tags.\n\n## Using uv directly\n\nYou can still use uv commands directly if needed:\n\n- `uv sync --dev` - Install dependencies\n- `uv run ruff check .` - Run ruff linter\n- `uv run black .` - Format code with black\n- `uv run mypy .` - Run type checking\n- `uv build` - Build the package\n\n## Project Structure\n\nThe project is now configured with:\n\n- `pyproject.toml` - Project configuration, dependencies, and tool settings\n- `uv.lock` - Lock file with exact dependency versions\n- `.python-version` - Python version specification for uv\n- `dev.sh` - Unified development script (replaces build.sh, check.sh, upload.sh)\n\n## Migration Notes\n\nThis project has been modernized to use a unified development workflow:\n\n- ✅ `dev.sh` - Single script for all development tasks\n- ❌ `build.sh` - Functionality moved to `./dev.sh build`\n- ❌ `check.sh` - Functionality moved to `./dev.sh check`\n- ❌ `upload.sh` - Functionality moved to `./dev.sh upload`\n\nThe old `setup.py` and separate agent package have been unified into a single modern package with all tools included.\n\n## Virtual Environment\n\nuv automatically manages a virtual environment in `.venv/`. You can activate it manually:\n\n```bash\nsource .venv/bin/activate\n```\n\nOr use `./dev.sh shell` to enter an interactive shell with the environment activated.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmludvig%2Faws-ssm-tools","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmludvig%2Faws-ssm-tools","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmludvig%2Faws-ssm-tools/lists"}