Skip to content

runbooks inventory vpc-investigateΒΆ

Auto-generated from runbooks inventory vpc-investigate --help on 2026-05-21. Source of truth: runbooks PyPI package v1.3.22

Usage: runbooks inventory vpc-investigate [OPTIONS]

  6-phase VPC/TGW investigation: discovery, topology, security, connectivity,
  compliance, summary.

  Phase 1: ec2:DescribeVpcs -- CIDR, tags, tenancy, default VPC detection
  Phase 2: Subnets (public/private), route tables, IGW, NAT gateways Phase 3:
  Default SG rules, NACLs, SecurityHub findings Phase 4: VPC peering, TGW
  attachments, VPN connections, VPC endpoints Phase 5: Flow logs enabled, DNS
  resolution, DNS hostnames Phase 6: Resource count, NAT GW cost estimate,
  topology summary

  READONLY -- no mutations.

  Examples:     runbooks inventory vpc-investigate --vpc-id vpc-0abc123
  --profile ops-profile     runbooks inventory vpc-investigate --vpc-id
  vpc-0abc123 --profile ops --output json

Options:
  -p, --profile TEXT     AWS profile name (default: from AWS_PROFILE env var)
  --vpc-id VPC_ID        VPC ID to investigate (e.g. vpc-0abc123def456)
                         [required]
  --region TEXT          AWS region (default: ap-southeast-2)
  --output [table|json]  Output format (default: table)
  --help                 Show this message and exit.

ExamplesΒΆ