sysdiglabs
diff --git a/‎examples/organizational/diagram-org.png
2.75 KB b/‎examples/organizational/diagram-org.png
2.75 KB
diff --git a/‎examples/organizational/diagram-org.py
Lines changed: 17 additions & 10 deletions b/‎examples/organizational/diagram-org.py
Lines changed: 17 additions & 10 deletions
diff --git a/‎examples/single-account/diagram-single.png
17.1 KB b/‎examples/single-account/diagram-single.png
17.1 KB
diff --git a/‎examples/single-account/diagram-single.py
Lines changed: 9 additions & 5 deletions b/‎examples/single-account/diagram-single.py
Lines changed: 9 additions & 5 deletions
diff --git a/‎resources/diag-sysdig-icon.png
1.62 KB b/‎resources/diag-sysdig-icon.png
1.62 KB
@@ -1,5 +1,6 @@
 # diagrams as code vía https://diagrams.mingrammer.com
 from diagrams import Diagram, Cluster, Diagram, Edge, Node
+from diagrams.custom import Custom
 from diagrams.aws.general import General
 from diagrams.aws.management import Cloudtrail
 from diagrams.aws.storage import S3, SimpleStorageServiceS3Bucket
@@ -35,15 +36,16 @@
         with Cluster("master account"):
 
 
-            cloudtrail          = Cloudtrail("cloudtrail", shape="plaintext")
-            cloudtrail_legend = ("for clarity purpose events received from 'secure for cloud' member account\n\
+            cloudtrail              = Cloudtrail("cloudtrail", shape="plaintext")
+            cloudtrail_legend       = ("for clarity purpose events received from 'secure for cloud' member account\n\
                                     and master account have been removed from diagram, but will be processed too ")
+
             Node(label=cloudtrail_legend, width="5",shape="plaintext", labelloc="t", fontsize="10")
 
-            master_credentials = IAM("credentials \npermissions: cloudtrail, role creation,...", fontsize="10")
-            secure_for_cloud_role    = IAMRole("SysdigSecureForCloudRole", **role_attr)
-            cloudtrail_s3       = S3("cloudtrail-s3-events")
-            sns                 = SNS("cloudtrail-sns-events", comment="i'm a graph")
+            master_credentials      = IAM("credentials \npermissions: cloudtrail, role creation,...", fontsize="10")
+            secure_for_cloud_role   = IAMRole("SysdigSecureForCloudRole", **role_attr)
+            cloudtrail_s3           = S3("cloudtrail-s3-events")
+            sns                     = SNS("cloudtrail-sns-events", comment="i'm a graph")
 
             cloudtrail >> Edge(color=event_color, style="dashed") >> cloudtrail_s3 >> Edge(color=event_color, style="dashed") >> sns
 
@@ -56,16 +58,21 @@
             with Cluster("ecs-cluster"):
                 cloud_connector = ElasticContainerServiceService("cloud-connector")
 
-            sqs = SQS("cloudtrail-sqs")
-            s3_config = S3("cloud-connector-config")
-            cloudwatch = Cloudwatch("cloudwatch\nlogs and alarms")
+            sqs         = SQS("cloudtrail-sqs")
+            s3_config   = S3("cloud-connector-config")
+            cloudwatch  = Cloudwatch("cloudwatch\nlogs and alarms")
 
             sqs << Edge(color=event_color) << cloud_connector
             cloud_connector - s3_config
-            cloud_connector - cloudwatch
+            cloud_connector >> cloudwatch
 
 
         member_accounts >> Edge(color=event_color, style="dashed") >>  cloudtrail
         sns >> Edge(color=event_color, style="dashed") >> sqs
 #        cloudtrail_s3 << Edge(color=event_color) << cloud_connector
         (cloudtrail_s3 << Edge(color=event_color) << secure_for_cloud_role) -  Edge(xlabel="assumeRole", color=event_color) - cloud_connector
+
+    with Cluster("AWS account (sysdig)"):
+        sds = Custom("Sysdig Secure", "../../resources/diag-sysdig-icon.png")
+
+    cloud_connector >> sds
@@ -1,5 +1,6 @@
 # diagrams as code vía https://diagrams.mingrammer.com
 from diagrams import Diagram, Cluster, Diagram, Edge, Node
+from diagrams.custom import Custom
 from diagrams.aws.general import General
 from diagrams.aws.management import Cloudtrail
 from diagrams.aws.storage import S3, SimpleStorageServiceS3Bucket
@@ -57,9 +58,9 @@
             sqs << Edge(color=event_color) << cloud_connector
             sqs << Edge(color=event_color) << cloud_scanning
             cloud_connector - s3_config
-            cloud_connector - cloudwatch
-            cloud_scanning - cloudwatch
-            cloud_scanning - codebuild
+            cloud_connector >> cloudwatch
+            cloud_scanning >> cloudwatch
+            cloud_scanning >> codebuild
 
 
             # bench-role
@@ -70,7 +71,10 @@
         (cloudtrail_s3 << Edge(color=event_color)) -  cloud_connector
         (cloudtrail_s3 << Edge(color=event_color)) - cloud_scanning
 
-    with Cluster("AWS account (sysdig secure backend)"):
+    with Cluster("AWS account (sysdig)"):
         sds_account = General("cloud-bench")
+        sds = Custom("Sysdig Secure", "../../resources/diag-sysdig-icon.png")
 
-    cloud_bench_role - sds_account
+    cloud_bench_role << sds_account
+    cloud_connector >> sds
+    cloud_scanning >> sds