Security Group Rule Deletion

[ddvdozuki]

I have a kind of unique issue I guess in that I use security groups as targets for rules in my infrastructure. It's a really easy and secure way to give access to resources based on the security group they are assigned to. Unfortunately this means that these interlaced security groups cannot be deleted one by one. They either have to be all deleted in one request or have their security rules deleted first and the groups themselves. Is there any way I can get that functionality out of awssweeper? So far it's been the best aws cleaner tool I've found, and the only one that effectively clears resources by tag so I'd love to keep using it.

FWIW when deleting a VPC with these security groups through the AWS Console it's able to clean them all up in 1 request.

[ldoktor]

@ddvdozuki I'm also struggling with this issue, at this point my workaround is to cripple (remove all rules from SG) when awsweeper dry-run contains any SG. It works well but it'd be nice if awsweeper supported this out of the box as this method is not safe in case one doesn't deletes all related SGs. It'd definitely be better to attempt to delete all SGs together so AWS can check if there are any remaining linked rules.