😄 working package

Author: RkSinghDeo

.gitignore

@@ -15,4 +15,9 @@ __pycache__/
 .DS_Store
 Thumbs.db
 
-dist/
+# Build
+dist/
+*.egg-info/
+
+# Testing
+.pytest_cache/

README.md

@@ -1,27 +1,42 @@
 # devolv-validator
 
-**devolv-validator** is a Python CLI tool that statically validates AWS IAM policies (JSON or YAML) for risky patterns such as wildcards, privilege escalation risks, and bad practices.
+[![PyPI - Version](https://img.shields.io/pypi/v/devolv)](https://pypi.org/project/devolv/)
+[![Tests](https://github.com/devolvdev/devolv/actions/workflows/test.yml/badge.svg)](https://github.com/devolvdev/devolv/actions)
+[![License: MIT](https://img.shields.io/badge/license-MIT-blue.svg)](https://opensource.org/licenses/MIT)
+
+**devolv-validator** is a subtool of the [**Devolv** OSS DevOps Toolkit](https://github.com/devolvdev).  
+It statically validates AWS IAM policies (JSON or YAML) for risky patterns such as wildcards, privilege escalation, and misconfigurations.
+
+---
 
 ## 🚀 Features
 
 - 🚩 Detects wildcards in `Action` and `Resource`
-- 🔐 Flags `iam:PassRole` on wildcard `Resource`
-- 📂 Supports both JSON and YAML formats
-- ⚙️ Clean CLI built with Typer
-- ✅ Ready for CI with GitHub Actions
+- 🔐 Flags `iam:PassRole` with wildcard `Resource`
+- 📂 Supports both JSON and YAML input
+- ⚙️ Simple CLI using [Typer](https://typer.tiangolo.com/)
+- ✅ CI-ready with GitHub Actions
+
+---
 
 ## 📦 Installation
 
+Install the full Devolv toolkit:
+
 ```bash
-pip install devolv-validator
+pip install devolv
 ```
 
+---
+
 ## 🛠 Usage
 
 ```bash
-devolv-validator validate path/to/policy.json
+devolv validate file path/to/policy.json
 ```
 
+---
+
 ## 📁 Example
 
 ```json
@@ -37,14 +52,26 @@ devolv-validator validate path/to/policy.json
 }
 ```
 
-This policy will be flagged with high-severity warnings.
+This will be flagged as high-risk due to overly permissive wildcards.
+
+---
 
 ## 🧪 Run Tests
 
 ```bash
 pytest
 ```
 
+---
+
 ## 🧰 About
 
-This is part of the [devolv](https://github.com/devolvdev) OSS DevOps toolkit.
+This tool is part of the [Devolv OSS Toolkit](https://github.com/devolvdev), a growing collection of DevOps-first security and automation tools.
+
+Follow the repo for upcoming modules like:
+
+- `devolv scan`: analyze AWS infrastructure
+- `devolv generate`: produce IAM policies safely
+- `devolv etl`: secure CI/CD for policy transformation
+
+---

structure.txt

@@ -1,25 +1,30 @@
-from devolv.iam.validator.core import validate_policy_file
 import tempfile
 import json
+import os
+from devolv.iam.validator.core import validate_policy_file
 
 def test_policy_with_wildcard_action():
     policy = {
         "Version": "2012-10-17",
         "Statement": [{"Effect": "Allow", "Action": "*", "Resource": "*"}]
     }
-    with tempfile.NamedTemporaryFile(mode="w+", suffix=".json") as f:
+    with tempfile.NamedTemporaryFile(mode="w", suffix=".json", delete=False) as f:
         json.dump(policy, f)
-        f.flush()
-        findings = validate_policy_file(f.name)
-        assert any("Wildcard in Action" in f["message"] for f in findings)
+        temp_path = f.name
+
+    findings = validate_policy_file(temp_path)
+    assert any("wildcard" in f["message"].lower() for f in findings)
+    os.remove(temp_path)
 
 def test_safe_policy_passes():
     policy = {
         "Version": "2012-10-17",
         "Statement": [{"Effect": "Allow", "Action": "s3:ListBucket", "Resource": "arn:aws:s3:::example"}]
     }
-    with tempfile.NamedTemporaryFile(mode="w+", suffix=".json") as f:
+    with tempfile.NamedTemporaryFile(mode="w", suffix=".json", delete=False) as f:
         json.dump(policy, f)
-        f.flush()
-        findings = validate_policy_file(f.name)
-        assert findings == []
+        temp_path = f.name
+
+    findings = validate_policy_file(temp_path)
+    assert not findings
+    os.remove(temp_path)