macOS
brew install yataslocal Homebrew formula metadata
brew
Tool to audit AWS/GCP infrastructure for misconfiguration or security issues. Version 1.6.1 via Homebrew; verified from local package data.
install
brew install yataslocal Homebrew formula metadata
nix profile install nixpkgs#yatasnixpkgs package indexes · pkgs/by-name/ya/yatas/package.nix · source: api.github.com
overview
Tool to audit AWS/GCP infrastructure for misconfiguration or security issues
history
YATAS, Yet Another Testing & Auditing Solution, is a Padok Team CLI for checking AWS and GCP infrastructure for misconfiguration and security issues. The public history is mostly repository-level, but enough is documented to place it in the 2022 wave of lightweight DevSecOps audit tools.
The GitHub repository was created in August 2022. Its README frames the tool as a practical auditor rather than a complete benchmark suite: it checks the practices Padok considered important from experience, then lets users install plugins and configure checks through .yatas.yml.
The changelog shows rapid early iteration through 2022, including dynamic plugin calling, plugin result interfaces, category initialization, and a 1.0.0 release in September 2022. A larger 2023 refactor removed AWS-only assumptions, added documentation and config validation, and updated the project for broader cloud-audit use.
YATAS appears to have remained a focused DevSecOps tool rather than a broad industry standard. Its GitHub topics, README, and plugin repositories position it for AWS/GCP hardening, account assessment, CI use, and infrastructure review by teams that want a small CLI rather than a hosted posture-management product.
The normal flow is to initialize a .yatas.yml file, edit it for the desired checks, install selected plugins, and run the yatas command locally or in CI. The README documents flags for showing details, comparing with a previous run, returning a CI failure code when issues are found, summarizing results, and timing checks.
YATAS is a useful package-index entry because it packages cloud security review as a single developer CLI with plugins. Its significance is not raw popularity; it is the shape of the tool: cloud posture checks that can live beside infrastructure code, run in pipelines, and be installed with ordinary package managers.
security posture
infrastructure mutation or orchestration signal.
orange risk · medium confidence · infrastructure
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
local files
These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.
Config paths the tool may read or write during local use.
.yatas.ymlexecutables
| Command | Kind | Exposure | Note |
|---|---|---|---|
yatas | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/padok-team/yatas
install metadata
| Package key | brew:yatas |
|---|---|
| Version | 1.6.1 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/yatas |
| Homepage | https://github.com/padok-team/yatas |
| Repository | https://github.com/padok-team/yatas |
| Upstream docs | https://github.com/padok-team/yatas#readme |
| License | Apache-2.0 |
| Source archive | https://github.com/padok-team/yatas/archive/refs/tags/v1.6.1.tar.gz |
| Build dependencies | go |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | yatas |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
yatas
nix profile install nixpkgs#yatassource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.