Skip to content

CloudOps-Runbooks CLI ReferenceΒΆ

Auto-generated from Click command registry on 2026-03-16 Total: 122 commands across 8 groups

SummaryΒΆ

Group Commands API Type
cfat 5 read-only
finops 35 read-only
inventory 50 read-only/write
operate 9 write
remediation 4 write
security 5 read-only/write
validation 7 read-only
vpc 7 read-only/write

runbooks cfatΒΆ

Command Description Params API
assess 11 read-only
report 9 read-only
review 10 read-only
status Show CFAT status and configuration. 0 read-only
version Show CFAT version information. 0 read-only

runbooks finopsΒΆ

Command Description Params API
analyze-ec2 12 read-only
analyze-graviton-eligibility 7 read-only
analyze-s3-storage-lens 4 read-only
analyze-workspaces 11 read-only
appstream-decommission-analysis 6 read-only
azure (group) 0 read-only
azure anomaly 3 read-only
azure daily 4 read-only
azure monthly 6 read-only
azure validate 3 read-only
check-config-compliance 5 read-only
cost-drops 17 read-only
dashboard 28 read-only
detect-orphans 7 read-only
detect-rds-idle 8 read-only
ec2-decommission-analysis 6 read-only
ec2-snapshots 6 read-only
enrich-workspaces 5 read-only
export 5 read-only
infrastructure (group) Epic 2 Infrastructure Optimization - $210,147 annual savings target 0 read-only
infrastructure analyze 4 read-only
infrastructure elastic-ip Elastic IP optimization analysis - $21,593 Epic 2 target 0 read-only
infrastructure load-balancer Load Balancer optimization analysis - $35,280 Epic 2 target 0 read-only
infrastructure nat-gateway NAT Gateway optimization analysis - $147,420 Epic 2 target 0 read-only
infrastructure vpc-endpoint VPC Endpoint optimization analysis - $5,854 Epic 2 target 0 read-only
lambda-analysis 7 read-only
optimize 4 read-only
optimize-cloudwatch-costs 8 read-only
optimize-s3-lifecycle 5 read-only
optimize-savings-plans 7 read-only
scenario 6 read-only
sprint1 6 read-only
validate 7 read-only
validate-with-mcp 4 read-only
workspaces-decommission-analysis 5 read-only

runbooks inventoryΒΆ

Command Description Params API
check-cloudtrail-compliance CloudTrail compliance validation. 3 read-only
check-controltower 5 read-only
check-landingzone 6 read-only
clean-outputs Clean output directory. 2 write
collect 35 read-only
collect-analytics 7 read-only
collect-containers 4 read-only
collect-messaging 4 read-only
collect-ram-shares 6 read-only
discover-lambda Discover Lambda functions across organization. 3 read-only
discover-rds Discover RDS databases across organization. 3 read-only
discover-workspaces Discover WorkSpaces across organization. 3 read-only
draw-org 11 read-only
drift-detection Comprehensive drift detection CLI. 3 read-only
enrich 11 read-only
enrich-accounts 21 read-only
enrich-activity 29 read-only
enrich-costs 27 read-only
enrich-ec2 9 read-only
find-cfn-drift CloudFormation drift detection across stacks. 3 read-only
find-cfn-orphaned-stacks Discover orphaned CloudFormation stacks. 3 read-only
find-cfn-stackset-drift StackSet drift detection. 3 read-only
find-lz-versions 6 read-only
list-cfn-stacks List CloudFormation stacks across accounts. 3 read-only
list-cfn-stacksets List CloudFormation StackSets. 3 read-only
list-elbs Load balancer discovery (ELB, ALB, NLB). 3 read-only
list-enis Network interface discovery (ENI). 3 read-only
list-guardduty-detectors GuardDuty detector discovery. 3 read-only
list-org-accounts 9 read-only
list-org-users 8 read-only
list-outputs List generated output files. 1 read-only
list-sns-topics SNS topic discovery. 3 read-only
pipeline-summary 4 read-only
recover-cfn-stack-ids Recover CloudFormation stack IDs. 3 read-only
resource-explorer 28 read-only
resource-types 0 read-only
score-decommission 28 read-only
show-profiles Display configured AWS profiles. 0 read-only
tag-coverage Tag coverage analysis across resources. 3 read-only
validate-costs 6 read-only
validate-mcp 5 read-only
vpc (group) 0 read-only
vpc dependencies 3 read-only
vpc flow-logs 3 read-only
vpc nat-traffic 3 read-only
vpc security-groups 3 read-only
vpc topology 4 read-only
vpc validate 3 read-only
workflow-multi-account 6 read-only
workflow-single-account Execute 4-layer pipeline (single account). 4 read-only

runbooks operateΒΆ

Command Description Params API
cloudformation (group) CloudFormation stack operations. 0 write
cloudformation deploy Deploy CloudFormation stack with universal profile support. 7 write
ec2 (group) EC2 instance and resource operations. 0 write
ec2 start Start EC2 instances with universal profile support. 7 write
ec2 stop Stop EC2 instances with universal profile support. 7 write
s3 (group) S3 bucket and object operations. 0 write
s3 create-bucket Create S3 bucket with enterprise configurations and universal profile support. 10 write
vpc (group) VPC and networking operations. 0 write
vpc create-vpc Create VPC with enterprise configurations and universal profile support. 6 write

runbooks remediationΒΆ

Command Description Params API
config-info 0 write
generate-config 1 write
list-accounts 1 write
s3-security 6 write

runbooks securityΒΆ

Command Description Params API
assess 15 read-only
baseline 14 read-only
deploy-guardduty 6 write
remediate-findings 9 write
report 15 read-only

runbooks validationΒΆ

Command Description Params API
benchmark 7 read-only
costs 5 read-only
organizations 4 read-only
single 6 read-only
status 4 read-only
test 10 read-only
validate-all 7 read-only

runbooks vpcΒΆ

Command Description Params API
analyze 16 read-only
analyze-endpoint-activity 6 read-only
discover-firewall-bypass 6 read-only
nat-gateway 15 read-only
network-discover 5 read-only
topology 14 read-only
vpce-cleanup Analyze VPC endpoint cleanup candidates and calculate savings. 8 write