I built Pasu, a CLI tool that scans AWS IAM policies for security risks.

- 30+ detection rules (privilege escalation, public S3, dangerous actions) - Plain English explanations for non-technical people - No API key needed for local analysis - JSON/SARIF output for CI/CD - pip install pasu

GitHub: https://github.com/nkimcyber/pasu-IAM-Analyzer

Would love feedback from anyone managing AWS IAM policies.