code-dumps/aws/find-unused-sg.sh

#!/bin/bash

aws ec2 describe-security-groups | jq -cr '.SecurityGroups[].GroupId' | while read s; do
echo -n "$s: "
aws ec2 describe-network-interfaces --filters Name=group-id,Values=$s | jq -cr '[.NetworkInterfaces[].NetworkInterfaceId] | length'
done
NEW: count ENI attached to SG 2022-11-03 14:59:51 +08:00			`#!/bin/bash`

			`aws ec2 describe-security-groups \| jq -cr '.SecurityGroups[].GroupId' \| while read s; do`
			`echo -n "$s: "`
			`aws ec2 describe-network-interfaces --filters Name=group-id,Values=$s \| jq -cr '[.NetworkInterfaces[].NetworkInterfaceId] \| length'`
			`done`