Turbot Guardrails Hub 
Hub
  • Mods
  • Policy Packs
  • Docs
  • Home
ModsPolicy PacksDocsHome
Mods
AWS
  • AWS/Owner
  • AWS/Admin
  • AWS/Metadata
  • AWS/ACM/Admin
  • AWS/ACM/Operator
  • AWS/ACM/ReadOnly
  • AWS/ACM/Metadata
  • AWS/Amplify/Admin
  • AWS/Amplify/Operator
  • AWS/Amplify/Metadata
  • AWS/API Gateway/Admin
  • AWS/API Gateway/Operator
  • AWS/API Gateway/Metadata
  • AWS/AppConfig/Admin
  • AWS/AppConfig/Operator
  • AWS/AppConfig/Metadata
  • AWS/AppFabric/Admin
  • AWS/AppFabric/Operator
  • AWS/AppFabric/Metadata
  • AWS/AppFlow/Admin
  • AWS/AppFlow/Operator
  • AWS/AppFlow/Metadata
  • AWS/App Mesh/Admin
  • AWS/App Mesh/Operator
  • AWS/App Mesh/Metadata
  • AWS/AppStream/Admin
  • AWS/AppStream/Operator
  • AWS/AppStream/Metadata
  • AWS/AppSync/Admin
  • AWS/AppSync/Metadata
  • AWS/Artifact/Admin
  • AWS/Athena/Admin
  • AWS/Athena/Operator
  • AWS/Athena/Metadata
  • AWS/Audit Manager/Admin
  • AWS/Audit Manager/Operator
  • AWS/Audit Manager/Metadata
  • AWS/Backup/Admin
  • AWS/Backup/Operator
  • AWS/Backup/Metadata
  • AWS/Batch/Admin
  • AWS/Batch/Operator
  • AWS/Batch/Metadata
  • AWS/Bedrock/Admin
  • AWS/Bedrock/Operator
  • AWS/Bedrock/Metadata
  • AWS/Billing/Owner
  • AWS/Billing/Admin
  • AWS/Billing/Operator
  • AWS/Billing/Metadata
  • AWS/Braket/Admin
  • AWS/Braket/Operator
  • AWS/Braket/Metadata
  • AWS/Chatbot/Admin
  • AWS/Chatbot/Metadata
  • AWS/Chime/Owner
  • AWS/Chime/Admin
  • AWS/Chime/Metadata
  • AWS/CleanRooms/Admin
  • AWS/CleanRooms/Operator
  • AWS/CleanRooms/Metadata
  • AWS/Cloud9/Admin
  • AWS/Cloud9/Metadata
  • AWS/Cloud Directory/Admin
  • AWS/Cloud Directory/Operator
  • AWS/Cloud Directory/ReadOnly
  • AWS/Cloud Directory/Metadata
  • AWS/CloudFormation/Admin
  • AWS/CloudFormation/Operator
  • AWS/CloudFormation/Metadata
  • AWS/CloudFront/Admin
  • AWS/CloudFront/Operator
  • AWS/CloudFront/Metadata
  • AWS/CloudHSM/Admin
  • AWS/CloudHSM/Operator
  • AWS/CloudHSM/Metadata
  • AWS/Cloud Map/Admin
  • AWS/Cloud Map/Operator
  • AWS/Cloud Map/Metadata
  • AWS/CloudSearch/Admin
  • AWS/CloudSearch/Operator
  • AWS/CloudSearch/ReadOnly
  • AWS/CloudSearch/Metadata
  • AWS/CloudShell/Admin
  • AWS/CloudShell/Metadata
  • AWS/CloudTrail/Admin
  • AWS/CloudTrail/Operator
  • AWS/CloudTrail/Metadata
  • AWS/CloudWatch/Operator
  • AWS/CloudWatch/Metadata
  • AWS/CodeArtifact/Admin
  • AWS/CodeArtifact/Operator
  • AWS/CodeArtifact/Metadata
  • AWS/CodeBuild/Admin
  • AWS/CodeBuild/Operator
  • AWS/CodeBuild/ReadOnly
  • AWS/CodeBuild/Metadata
  • AWS/CodeCommit/Admin
  • AWS/CodeCommit/Operator
  • AWS/CodeCommit/ReadOnly
  • AWS/CodeCommit/Metadata
  • AWS/CodeDeploy/Admin
  • AWS/CodeDeploy/Operator
  • AWS/CodeDeploy/Metadata
  • AWS/CodePipeline/Admin
  • AWS/CodePipeline/Operator
  • AWS/CodePipeline/Metadata
  • AWS/CodeStar/Admin
  • AWS/CodeStar/Operator
  • AWS/CodeStar/Metadata
  • AWS/CodeWhisperer/Admin
  • AWS/CodeWhisperer/Operator
  • AWS/CodeWhisperer/Metadata
  • AWS/Cognito/Admin
  • AWS/Cognito/Operator
  • AWS/Cognito/ReadOnly
  • AWS/Cognito/Metadata
  • AWS/Comprehend/Admin
  • AWS/Comprehend/Operator
  • AWS/Comprehend/Metadata
  • AWS/Compute Optimizer/Admin
  • AWS/Compute Optimizer/Metadata
  • AWS/Config/Admin
  • AWS/Config/Operator
  • AWS/Config/Metadata
  • AWS/Connect/Admin
  • AWS/Connect/Operator
  • AWS/Connect/Metadata
  • AWS/Control Tower/Admin
  • AWS/Control Tower/Operator
  • AWS/Control Tower/Metadata
  • AWS/Data Pipeline/Admin
  • AWS/Data Pipeline/Operator
  • AWS/Data Pipeline/Metadata
  • AWS/DataSync/Admin
  • AWS/DataSync/Operator
  • AWS/DataSync/Metadata
  • AWS/DAX/Admin
  • AWS/DAX/Operator
  • AWS/DAX/Metadata
  • AWS/Device Farm/Admin
  • AWS/Device Farm/Operator
  • AWS/Device Farm/Metadata
  • AWS/Direct Connect/Admin
  • AWS/Direct Connect/Operator
  • AWS/Direct Connect/Metadata
  • AWS/Directory Service/Admin
  • AWS/Directory Service/Operator
  • AWS/Directory Service/Metadata
  • AWS/DMS/Admin
  • AWS/DMS/Operator
  • AWS/DMS/Metadata
  • AWS/DynamoDB/Owner
  • AWS/DynamoDB/Admin
  • AWS/DynamoDB/Operator
  • AWS/DynamoDB/ReadOnly
  • AWS/DynamoDB/Metadata
  • AWS/EC2/Owner
  • AWS/EC2/Admin
  • AWS/EC2/Operator
  • AWS/EC2/Metadata
  • AWS/EC2 Image Builder/Admin
  • AWS/EC2 Image Builder/Operator
  • AWS/EC2 Image Builder/Metadata
  • AWS/ECR/Owner
  • AWS/ECR/Admin
  • AWS/ECR/Operator
  • AWS/ECR/ReadOnly
  • AWS/ECR/Metadata
  • AWS/ECS/Admin
  • AWS/ECS/Operator
  • AWS/ECS/Metadata
  • AWS/EFS/Admin
  • AWS/EFS/Operator
  • AWS/EFS/Metadata
  • AWS/EKS/Admin
  • AWS/EKS/Operator
  • AWS/EKS/Metadata
  • AWS/ElastiCache/Owner
  • AWS/ElastiCache/Admin
  • AWS/ElastiCache/Operator
  • AWS/ElastiCache/Metadata
  • AWS/Elastic Beanstalk/Admin
  • AWS/Elastic Beanstalk/Operator
  • AWS/Elastic Beanstalk/Metadata
  • AWS/Elastic Inference/Admin
  • AWS/Elastic Inference/Operator
  • AWS/Elastic Inference/Metadata
  • AWS/Elasticsearch/Owner
  • AWS/Elasticsearch/Admin
  • AWS/Elasticsearch/Operator
  • AWS/Elasticsearch/ReadOnly
  • AWS/Elasticsearch/Metadata
  • AWS/Elastic Transcoder/Admin
  • AWS/Elastic Transcoder/Operator
  • AWS/Elastic Transcoder/ReadOnly
  • AWS/Elastic Transcoder/Metadata
  • AWS/EMR/Admin
  • AWS/EMR/Operator
  • AWS/EMR/Metadata
  • AWS/EventBridge Pipes/Admin
  • AWS/EventBridge Pipes/Operator
  • AWS/EventBridge Pipes/Metadata
  • AWS/EventBridge Scheduler/Admin
  • AWS/EventBridge Scheduler/Operator
  • AWS/EventBridge Scheduler/Metadata
  • AWS/Events/Admin
  • AWS/Events/Operator
  • AWS/Events/Metadata
  • AWS/FMS/Admin
  • AWS/FMS/Operator
  • AWS/FMS/Metadata
  • AWS/FSx/Admin
  • AWS/FSx/Metadata
  • AWS/GameLift/Admin
  • AWS/GameLift/Operator
  • AWS/GameLift/ReadOnly
  • AWS/GameLift/Metadata
  • AWS/Glacier/Admin
  • AWS/Glacier/Operator
  • AWS/Glacier/Metadata
  • AWS/Global Accelerator/Admin
  • AWS/Global Accelerator/Operator
  • AWS/Global Accelerator/Metadata
  • AWS/Glue/Admin
  • AWS/Glue/Operator
  • AWS/Glue/Metadata
  • AWS/Glue DataBrew/Admin
  • AWS/Glue DataBrew/Operator
  • AWS/Glue DataBrew/Metadata
  • AWS/Greengrass/Admin
  • AWS/Greengrass/Metadata
  • AWS/GuardDuty/Admin
  • AWS/GuardDuty/ReadOnly
  • AWS/GuardDuty/Metadata
  • AWS/Health/Metadata
  • AWS/IAM/Owner
  • AWS/IAM/Operator
  • AWS/IAM/Metadata
  • AWS/Inspector/Admin
  • AWS/Inspector/Operator
  • AWS/Inspector/Metadata
  • AWS/IoT/Admin
  • AWS/IoT/Operator
  • AWS/IoT/Metadata
  • AWS/IoT 1-Click/Admin
  • AWS/IoT 1-Click/Operator
  • AWS/IoT 1-Click/Metadata
  • AWS/IoT Analytics/Admin
  • AWS/IoT Analytics/Operator
  • AWS/IoT Analytics/Metadata
  • AWS/IoT Events/Admin
  • AWS/IoT Events/Operator
  • AWS/IoT Events/Metadata
  • AWS/IoT SiteWise/Admin
  • AWS/IoT SiteWise/Operator
  • AWS/IoT SiteWise/Metadata
  • AWS/IoT Things Graph/Admin
  • AWS/IoT Things Graph/Operator
  • AWS/IoT Things Graph/Metadata
  • AWS/Kendra/Admin
  • AWS/Kendra/Operator
  • AWS/Kendra/Metadata
  • AWS/Kinesis/Admin
  • AWS/Kinesis/Operator
  • AWS/Kinesis/ReadOnly
  • AWS/Kinesis/Metadata
  • AWS/KMS/Admin
  • AWS/KMS/Operator
  • AWS/KMS/Metadata
  • AWS/Lake Formation/Admin
  • AWS/Lake Formation/Operator
  • AWS/Lake Formation/Metadata
  • AWS/Lambda/Admin
  • AWS/Lambda/Operator
  • AWS/Lambda/ReadOnly
  • AWS/Lambda/Metadata
  • AWS/Lex/Admin
  • AWS/Lex/Operator
  • AWS/Lex/ReadOnly
  • AWS/Lex/Metadata
  • AWS/Lightsail/Admin
  • AWS/Lightsail/Operator
  • AWS/Lightsail/ReadOnly
  • AWS/Lightsail/Metadata
  • AWS/Location/Admin
  • AWS/Location/Operator
  • AWS/Location/Metadata
  • AWS/Logs/Admin
  • AWS/Logs/Operator
  • AWS/Logs/ReadOnly
  • AWS/Logs/Metadata
  • AWS/Machine Learning/Admin
  • AWS/Machine Learning/Operator
  • AWS/Machine Learning/ReadOnly
  • AWS/Machine Learning/Metadata
  • AWS/Macie/Admin
  • AWS/Macie/Operator
  • AWS/Macie/Metadata
  • AWS/MediaConnect/Admin
  • AWS/MediaConnect/Operator
  • AWS/MediaConnect/Metadata
  • AWS/MediaConvert/Admin
  • AWS/MediaConvert/Operator
  • AWS/MediaConvert/Metadata
  • AWS/MediaLive/Admin
  • AWS/MediaLive/Operator
  • AWS/MediaLive/Metadata
  • AWS/MediaPackage/Admin
  • AWS/MediaPackage/Metadata
  • AWS/MediaStore/Admin
  • AWS/MediaStore/Metadata
  • AWS/MediaTailor/Admin
  • AWS/MediaTailor/Metadata
  • AWS/Amazon MQ/Admin
  • AWS/Amazon MQ/Operator
  • AWS/Amazon MQ/Metadata
  • AWS/MSK/Admin
  • AWS/MSK/Operator
  • AWS/MSK/Metadata
  • AWS/MSK Connect/Admin
  • AWS/MSK Connect/Operator
  • AWS/MSK Connect/Metadata
  • AWS/MWAA/Admin
  • AWS/MWAA/Operator
  • AWS/MWAA/Metadata
  • AWS/Omics/Admin
  • AWS/Omics/Operator
  • AWS/Omics/Metadata
  • AWS/OpenSearch/Admin
  • AWS/OpenSearch/Operator
  • AWS/OpenSearch/Metadata
  • AWS/Organizations/Metadata
  • AWS/Outposts/Admin
  • AWS/Outposts/Metadata
  • AWS/Polly/Admin
  • AWS/Polly/Operator
  • AWS/Polly/ReadOnly
  • AWS/Polly/Metadata
  • AWS/QLDB/Admin
  • AWS/QLDB/Operator
  • AWS/QLDB/Metadata
  • AWS/QuickSight/Admin
  • AWS/QuickSight/Operator
  • AWS/QuickSight/Metadata
  • AWS/Resource Access Manager/Admin
  • AWS/Resource Access Manager/Operator
  • AWS/Resource Access Manager/Metadata
  • AWS/RDS/Owner
  • AWS/RDS/Admin
  • AWS/RDS/Operator
  • AWS/RDS/ReadOnly
  • AWS/RDS/Metadata
  • AWS/Redshift/Owner
  • AWS/Redshift/Admin
  • AWS/Redshift/Operator
  • AWS/Redshift/Metadata
  • AWS/Redshift Serverless/Admin
  • AWS/Redshift Serverless/Operator
  • AWS/Redshift Serverless/Metadata
  • AWS/Rekognition/Operator
  • AWS/Rekognition/Metadata
  • AWS/Resource Groups/Admin
  • AWS/Resource Groups/Operator
  • AWS/Resource Groups/Metadata
  • AWS/RoboMaker/Admin
  • AWS/RoboMaker/Operator
  • AWS/RoboMaker/Metadata
  • AWS/Route 53/Admin
  • AWS/Route 53/Metadata
  • AWS/Route 53 Domains/Admin
  • AWS/Route 53 Domains/Metadata
  • AWS/Route 53 Recovery Control Config/Admin
  • AWS/Route 53 Recovery Control Config/Metadata
  • AWS/Route 53 Recovery Readiness/Admin
  • AWS/Route 53 Recovery Readiness/Metadata
  • AWS/Route 53 Resolver/Admin
  • AWS/Route 53 Resolver/Operator
  • AWS/Route 53 Resolver/Metadata
  • AWS/S3/Admin
  • AWS/S3/Operator
  • AWS/S3/ReadOnly
  • AWS/S3/Metadata
  • AWS/S3 Table/Admin
  • AWS/S3 Table/Metadata
  • AWS/SageMaker/Admin
  • AWS/SageMaker/Operator
  • AWS/SageMaker/Metadata
  • AWS/Savings Plans/Admin
  • AWS/Savings Plans/Operator
  • AWS/Savings Plans/Metadata
  • AWS/Scheduler/Admin
  • AWS/Scheduler/Operator
  • AWS/Scheduler/Metadata
  • AWS/Secrets Manager/Admin
  • AWS/Secrets Manager/Operator
  • AWS/Secrets Manager/Metadata
  • AWS/Security Hub/Admin
  • AWS/Security Hub/Operator
  • AWS/Security Hub/Metadata
  • AWS/Serverless Application Repository/Admin
  • AWS/Serverless Application Repository/Operator
  • AWS/Serverless Application Repository/Metadata
  • AWS/Server Migration Service/Admin
  • AWS/Server Migration Service/Operator
  • AWS/Server Migration Service/Metadata
  • AWS/Service Catalog/Admin
  • AWS/Service Catalog/Operator
  • AWS/Service Catalog/Metadata
  • AWS/Service Quotas/Admin
  • AWS/Service Quotas/Operator
  • AWS/Service Quotas/Metadata
  • AWS/SES/Admin
  • AWS/SES/Operator
  • AWS/SES/Metadata
  • AWS/Shield/Admin
  • AWS/Shield/Metadata
  • AWS/Signer/Admin
  • AWS/Signer/Operator
  • AWS/Signer/Metadata
  • AWS/Simple DB/Admin
  • AWS/Simple DB/Operator
  • AWS/Simple DB/ReadOnly
  • AWS/Simple DB/Metadata
  • AWS/Snowball/Admin
  • AWS/Snowball/ReadOnly
  • AWS/Snowball/Metadata
  • AWS/SNS/Admin
  • AWS/SNS/Operator
  • AWS/SNS/Metadata
  • AWS/SQS/Admin
  • AWS/SQS/Operator
  • AWS/SQS/ReadOnly
  • AWS/SQS/Metadata
  • AWS/SSM/Admin
  • AWS/SSM/Operator
  • AWS/SSM/ReadOnly
  • AWS/SSM/Metadata
  • AWS/Step Functions/Admin
  • AWS/Step Functions/Operator
  • AWS/Step Functions/ReadOnly
  • AWS/Step Functions/Metadata
  • AWS/Storage Gateway/Admin
  • AWS/Storage Gateway/Operator
  • AWS/Storage Gateway/Metadata
  • AWS/Support/Admin
  • AWS/Support/Operator
  • AWS/Support/Metadata
  • AWS/SWF/Admin
  • AWS/SWF/Operator
  • AWS/SWF/Metadata
  • AWS/Tagging/Admin
  • AWS/Tagging/Operator
  • AWS/Tagging/Metadata
  • AWS/Textract/Admin
  • AWS/Textract/ReadOnly
  • AWS/Textract/Metadata
  • AWS/Transcribe/Admin
  • AWS/Transcribe/ReadOnly
  • AWS/Transcribe/Metadata
  • AWS/Transfer for SFTP/Admin
  • AWS/Transfer for SFTP/Operator
  • AWS/Transfer for SFTP/Metadata
  • AWS/Translate/Admin
  • AWS/Translate/Metadata
  • AWS/Trusted Advisor/Admin
  • AWS/Trusted Advisor/Metadata
  • AWS/VPC/Admin
  • AWS/VPC/Operator
  • AWS/VPC/Metadata
  • AWS/VPC Lattice/Admin
  • AWS/VPC Lattice/Operator
  • AWS/VPC Lattice/Metadata
  • AWS/WAF/Admin
  • AWS/WAF/Operator
  • AWS/WAF/ReadOnly
  • AWS/WAF/Metadata
  • AWS/WAF Regional/Admin
  • AWS/WAF Regional/Operator
  • AWS/WAF Regional/ReadOnly
  • AWS/WAF Regional/Metadata
  • AWS/Well-Architected Tool/Admin
  • AWS/Well-Architected Tool/Operator
  • AWS/Well-Architected Tool/Metadata
  • AWS/WorkDocs/Admin
  • AWS/WorkDocs/Operator
  • AWS/WorkDocs/Metadata
  • AWS/WorkSpaces/Admin
  • AWS/WorkSpaces/Operator
  • AWS/WorkSpaces/Metadata
  • AWS/X-Ray/Admin
  • AWS/X-Ray/Metadata

IAM Role: AWS/Simple DB/Metadata

PermissionGrant
sdb:DomainMetadataMetadata
sdb:ListDomainsMetadata
Guardrails
Guardrails Hub
  • Hub
  • Docs
  • Blog
  • Changelog
Products
  • GuardrailsGuardrails
  • PipesPipes
  • SteampipeSteampipe
  • PowerpipePowerpipe
  • FlowpipeFlowpipe
  • TailpipeTailpipe
Turbot
  • Home
  • About us
  • We're hiring!
  • Contact us
Community

Our community of practitioners love to discuss cloud governance & security.

Slack logoJoin us on Slack →

System StatusLegalSecurity
Terms of UseSecurityPrivacy
180
Mods
497
Resource Types
8,691
Policies
3,362
Controls
1,833
Quick Actions
540
IAM