greenops-scan
v0.1.13
Published
GreenOps CLI Scanner — identify carbon & cost savings in your cloud infrastructure
Maintainers
Readme
greenops-scan
Cloud Carbon & Cost Scanner — identify waste, cut carbon, save money.
Scans your AWS infrastructure using read-only APIs and generates actionable reports with cost and carbon savings estimates.
Quick Start
npx greenops-scanWhat It Scans
| Module | What it detects | |--------|----------------| | EC2 | Idle instances, old-gen Intel → Graviton upgrades, unattached EBS volumes | | S3 | Missing lifecycle policies, version accumulation, large un-tiered buckets | | ECS | Empty clusters, over-provisioned Fargate (validated via 30-day CloudWatch metrics) | | EKS | Outdated K8s versions, non-Graviton node groups, no autoscaler | | Lambda | Zombie functions, legacy runtimes, x86→ARM, over-provisioned memory | | RDS | Idle databases, Graviton upgrades, Multi-AZ on non-prod, old snapshots | | ElastiCache | Idle caches, Graviton upgrades | | CloudFront | Unused distributions, missing HTTPS redirect, outdated TLS | | EBS Snapshots | Old snapshots, unused AMIs |
Features
- Interactive TUI with arrow-key profile and region selection
- IAM permission checking per module
- Parallel scanning with live progress display
- Carbon calculations using Green Software Foundation methodology
- JSON report export
- Branded PDF report generation (7 pages)
- Modular architecture — ready for GCP/Azure providers
CLI Options
npx greenops-scan [options]
-p, --provider <name> Cloud provider: aws (skip interactive selection)
--profile <name> AWS profile name (skip interactive selection)
-r, --region <code> AWS region code, e.g. eu-west-1 (skip interactive selection)
-s, --severity <levels> Comma-separated severity filter: critical,high,medium,low
--endpoint-url <url> Custom AWS endpoint (e.g. http://localhost:4566 for LocalStack)
-h, --help Show helpExamples:
# Fully non-interactive scan
npx greenops-scan --provider aws --profile production --region eu-west-1
# Show only high-impact findings
npx greenops-scan --severity high,critical
# Combine options
npx greenops-scan --profile dev --region us-east-1 --severity medium,high,criticalSecurity
This scanner runs locally and uses read-only AWS APIs. Your cloud credentials never leave your machine.
Requirements
- Node.js 18+
- AWS credentials configured in
~/.aws/credentialsor via environment variables (or dummy creds for LocalStack)
