This VS Code extension provides autocompletion of all AWS services that can be used as Service Principals in your IAM policies.
[!TIP]
Stop AWS bill surprises from happening.
Most infrastructure changes look harmless until you see next month's AWS bill. CloudBurn prevents this by analyzing the cost impact of your AWS CDK changes directly in GitHub pull requests, catching expensive mistakes during code review when fixes are quick, not weeks later when they're costly and risky.
💰 Set it up once, then never be surprised by AWS costs again
Whenever you open a PR with infrastructure changes, the GitHub Action comments with your CDK diff analysis. CloudBurn reads that diff and automatically adds a separate comment with a detailed cost report showing:
Monthly cost impact – Will this change increase or decrease your AWS bill? By how much?
Per-resource breakdown – See exactly which resources are driving costs (old vs. new monthly costs)
Region-aware pricing – We pick the right AWS pricing based on the region where your infrastructure is deployed
Your team can now validate cost impact alongside infrastructure changes during code review. Essentially, this shifts FinOps left where you optimize costs as you code, not weeks later when context is lost and production adjustments require more time and carry added risk.
CloudBurn will be free during beta. After launch, a free Community plan (1 repository with unlimited users) will always be available.
Features
Auto-completion for AWS Service Principals: Provides intelligent auto-completion suggestions for AWS Service Principals when defining IAM policies or roles.
Context-aware Suggestions: The extension intelligently detects when you're working with IAM policies or roles and only suggests Service Principal completions in relevant contexts.
Supports Multiple Languages: Supports auto-completion for Service Principals in JSON, YAML, Terraform, and AWS CDK (TypeScript, and Python).
Usage
Install the "AWS IAM Service Principal Snippets" extension in VS Code.
Open or create a new file (.json, .yml, .tf, .ts, or .py) where you're defining IAM policies or roles.
When you reach a point where you need to specify a Service Principal (e.g., Principal key in JSON/YAML policies, assumed_by parameter in Python roles, etc.), start typing the name of the AWS service.
The extension will provide auto-completion suggestions for matching AWS Service Principals.
Select the desired Service Principal to insert it into your code.
Example of auto-completion in action:
Note: If auto-completion doesn't trigger automatically, press Ctrl+Space (or Cmd+Space on macOS) to manually invoke IntelliSense.
Support
If you have a feature request or an issue, please let me know on Github
