IAMTrail

AWS Managed Policy Changes Archive

Previously known as MAMIP (Monitor AWS Managed IAM Policies).

Track every change to AWS Managed IAM Policies with full version history and validation.

Website | Browse Policies | About

Website

Explore AWS Managed IAM Policies through a searchable web interface at iamtrail.com:

Search and filter across 1,465+ managed policies
Full version history with git diffs for every policy
Syntax-highlighted JSON policy viewer
New (v1) policy tracking to spot new AWS services
Policy validation findings from AWS Access Analyzer
Known AWS Account lookup - identify who owns an AWS account ID, powered by the fwdcloudsec/known_aws_accounts community dataset

Get Notified

Subscribe to policy changes:

Email Digest (recommended): Subscribe on iamtrail.com - daily or weekly emails with inline diffs, per-policy filtering, no account required
Bluesky (unified feed - IAM policies, endpoints, GuardDuty): @iamtrail.bsky.social
RSS Feeds (all feeds):
- All Changes - everything in one feed
- IAM Policy Changes - policy updates, new policies, deprecations
- Endpoint Changes - new regions, services, and expansions from botocore
- GuardDuty Announcements - new findings, features, and region launches

See docs/notifications-and-social.md for SSM parameters, Bluesky queue, GitHub Actions IAM, and why X posting is off.

Browse the Data

All policies are stored as JSON in this repository and updated automatically every hour on weekdays.

Path	Description
`policies/`	1,465+ current AWS Managed IAM Policies
`findings/`	Access Analyzer validation results
`DEPRECATED.json`	Historical record of 73+ deprecated policies

How It Works

An automated workflow runs every hour (Mon-Fri):

Fetch all AWS Managed IAM Policies via the AWS API
Detect new, updated, or deprecated policies
Validate each policy with AWS Access Analyzer
Commit changes to git (one commit per policy)
Notify via Bluesky, RSS, email digests, and an invite-only Discord webhook (SSM only, not linked on the site; X/Twitter posting is disabled - see automation/scripts/x_poster.py)

Credits

Inspired by Scott Piper's original aws_managed_policies repository. Thank you, Scott, for pioneering this.

License

GNU General Public License v3.0 - see LICENSE for details.

Website | RSS Feeds | Bluesky

Made by zoph.io - AWS Cloud Advisory Boutique

Unofficial archive, not affiliated with AWS.

Name		Name	Last commit message	Last commit date
Latest commit History 7,362 Commits
.github		.github
assets		assets
automation		automation
data		data
docs		docs
findings		findings
policies		policies
website		website
.gitignore		.gitignore
DEPRECATED.json		DEPRECATED.json
LICENSE		LICENSE
Makefile		Makefile
NOTICE		NOTICE
README.md		README.md
policies-list.json		policies-list.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

IAMTrail

AWS Managed Policy Changes Archive

Website

Get Notified

Browse the Data

How It Works

Credits

License

About

Uh oh!

Releases 2,256

Sponsor this project

Uh oh!

Uh oh!

Contributors

Languages

Uh oh!

Folders and files

Latest commit

History

Repository files navigation

IAMTrail

AWS Managed Policy Changes Archive

Website

Get Notified

Browse the Data

How It Works

Credits

License

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases 2,256

Sponsor this project

Uh oh!

Uh oh!

Contributors 0

Languages

Contributors