airflowscan v0.1.3.1: Checklist and tools for increasing security of Apache Airflow
Checklist and tools for increasing security of Apache Airflow.
The static analysis tool can check an Airflow configuration file for settings related to security. The tool converts the config file to JSON and then uses a JSON Schema to do the validation.
The purpose of this project is to provide tools to increase the security of Apache Airflow. installations. This project provides the following tools:
- Configuration file with hardened settings – see hardened_airflow.cfg.
- Security checklist for hardening default installations – see CHECKLIST.MD.
- Static analysis tool to check Airflow configuration files for insecure settings.
- JSON schema document used for validation by the static analysis tool – see airflow_cfg.schema
- Packaging fixes
pip install airflowscan
Copyright (C) 2019 nightwatchcyber