runbooks finops detect-orphansΒΆ
Auto-generated from
runbooks finops detect-orphans --helpon 2026-05-21. Source of truth: runbooks PyPI package v1.3.22
Usage: runbooks finops detect-orphans [OPTIONS]
Detect orphaned AWS resources across multiple types.
Implements unified orphan detection from Cost Optimization Playbook Phase 3.
Orphan Types: - EBS volumes (unattached >30 days) - Elastic IPs
(unallocated) - CloudWatch Log Groups (no recent events) - NAT Gateways (no
traffic) - Load Balancers (no targets) - Snapshots (orphaned - no AMI/volume
reference)
Decision Rubric: - MUST: Immediate action (zero risk, high cost) - SHOULD:
High priority (low risk, moderate cost) - COULD: Investigation recommended
Business Impact: Typical savings of $50K-$200K annually
Options:
--profile TEXT AWS profile for single-account operations.
π Profile Selection Guide: βββββββββββββββββ
ββββββββββββββββββββββββββββββ
Single Account β Use --profile YOUR_PROFILE
Example: --profile dev-account When:
Developer/operator working in one AWS
account
Multi-Account LZ β Use --all-profiles (see
inventory commands) Example: --all-
profiles When: Platform team discovering
across organization
π Enrichment Profiles (Automatic): β’
Organizations: MANAGEMENT_PROFILE β’ Costs:
BILLING_PROFILE Note: Separate from
discovery profile
Decision: Single account = --profile |
Multi-account = --all-profiles
--region TEXT AWS region override (default: ap-
southeast-2)
--dry-run Safe analysis mode - no resource
modifications (enterprise default)
--regions TEXT AWS regions to analyze
--resource-type [all|ebs|eip|logs|nat|lb|snapshot]
Resource type to detect (default: all)
--validate-with-config Validate orphans with AWS Config compliance
rules
--executive Executive summary format (business
narrative, <5 min review)
--help Show this message and exit.