Security●●Solid
Bypassing the AWS Lambda 4KB limit to run polyglot AI agents
CI-enforced regex equivalence checks across TypeScript and Python runtimes is a clever safety pattern.
Big BrainNiche Gem
tomc267
1125d ago
Back to browse
AWSight: flat-rate AWS security checks mapped to CIS/NIST
by kevincloudsec·Mar 18, 2026·1 point·3 comments
AI Analysis
●●SolidSolve My ProblemSlick
Managed Prowler alternative with flat-rate pricing instead of AWS Security Hub's per-resource fees.
Strengths
- •Flat-rate pricing model avoids the exploding costs of AWS Security Hub as resources scale.
- •Grafana dashboards use existing engineer familiarity rather than forcing a new UI.
Weaknesses
- •Read-only IAM role setup still requires security trust that some enterprises hesitate to grant.
- •Competing against native AWS tools which integrate deeper into remediation workflows.
Category
Target Audience
SMBs, CTOs, DevOps engineers managing AWS
Similar To
Prowler · AWS Security Hub
Post Description
I spent 15 years in cybersecurity and kept seeing small teams struggle with the cost and maintenance of AWS security tooling. If you turn on AWS Security Hub and AWS Config to track CIS benchmarks or SOC 2 controls, the per-rule and per-resource pricing adds up quickly as accounts grow.
I built AWSight as a simpler option. It runs a few hundred security checks against your AWS accounts daily and maps findings to CIS, NIST, and PCI DSS controls. It connects through a read-only cross-account IAM role and never writes to your environment.
Results show up in Grafana dashboards with remediation steps for each finding. I chose Grafana because most engineers already know how to use it.
If you already run Prowler yourself, AWSight is basically that idea but managed: scheduled scans, historical tracking, and compliance mapping without running the infrastructure.
Pricing is flat-rate starting at $249/month per account, regardless of resource count.
Demo dashboards with sample data (no signup): https://awsight.com/demo.html
(Grafana panels can take a few moments to load on first visit.)
I'm a solo founder building this. Happy to talk architecture, specific checks, or why AWS Config billing is so difficult to predict.
Similar Projects
Security●●Solid
A simple CLI to check CI/CD compliance and project governance in GitLab
Open-source policy enforcement for GitLab CI where Enterprise features usually cost extra.
Niche GemSolve My ProblemShip It
coconux
403mo ago
Security●●Solid
Fix MCP OAuth Gaps (CLI and CI Check)
The project maps the entire OAuth/MCP discovery-to-DCR funnel and gives actionable failure points — e.g., missing WWW-Authenticate headers, malformed PRM or issuer metadata, or broken token endpoints. It’s a focused, practical CLI that also fits into CI (GitHub Actions badge, quickscan command), so teams can catch auth regressions before rollout. Niche but very useful if you run or validate MCP/OAuth endpoints; wider adoption will depend on more examples and integration templates.
Niche GemSolve My Problem
chintant
214mo ago
Security●Mid
Credctl – Replace AWS access keys with Secure Enclave-bound credentials
Secure Enclave-bound AWS credentials could replace access keys if it works.
Ship It
matzhouse
202mo ago
Security●●Solid
Monitor AWS activity and security events using CloudTrail
One-click CloudTrail monitoring, but AWS Security Hub and GuardDuty already cover this.
Solve My Problem
henriklipp
102mo ago
SaaS●Mid
Noxa – Customer feedback tool with flat pricing (no per-user billing)
Yet another feedback tool competing with Canny, but flat pricing beats per-user fees.
SlickShip It
yubelgg
201mo ago