BpCyberSec/cloud-security-posture-assessment — reverse-engineered prompt

Build me a simple Python tool that checks an AWS environment for common security posture issues and turns the results into a polished PDF report I could hand to a manager or auditor.

I want it to cover IAM, S3, EC2, CloudTrail, and AWS Config, and compare what it finds against the CIS AWS Foundations Benchmark version 1.4. It should also map each finding to the NIST Cybersecurity Framework so the report feels more useful than just a raw checklist.

Please include a demo mode that works with sample findings and does not need AWS credentials, plus a live mode that can assess a real AWS account if credentials are available. The output should score risk levels like critical, high, medium, and low, calculate an overall posture score, and generate a professional multi page PDF with an executive summary, charts or summaries, detailed findings, remediation commands, and a practical 30, 60, and 90 day remediation roadmap.

Keep it easy to run from the command line, and look up current AWS and CIS details online if you need to.