Releases: cds-snc/cds-aws-lz
Releases · cds-snc/cds-aws-lz
v1.0.1
What's Changed
- fix: change github secret keys by @CalvinRodo in #70
- feat: adds cloudtrail forwarder by @maxneuvians in #71
- fix: bucket name by @maxneuvians in #72
- fix: bucket name attaempt 2 by @maxneuvians in #73
- feat: send security hub events to sentinel by @CalvinRodo in #74
New Contributors
- @maxneuvians made their first contribution in #71
Full Changelog: v1.0.0...v1.0.1
Contributors
CalvinRodo and maxneuvians
Assets 2
v1.0.0
What's Changed
- feat: setup repo for work by @CalvinRodo in #1
- feat: remove ou and update README by @CalvinRodo in #2
- feat: add a login alarm for ops1 and ops2 by @CalvinRodo in #3
- feat: add GoC Pword policy by @CalvinRodo in #4
- feat: bootsrap aft terragrunt by @CalvinRodo in #6
- feat: add a new admin plan role by @CalvinRodo in #8
- feat: setup account factory for terraform by @CalvinRodo in #7
- fix: setup workflow for aft by @CalvinRodo in #10
- fix: matrix syntax by @CalvinRodo in #11
- feat: attach the AFTExecution role to AF by @CalvinRodo in #13
- feat: upgrade to latest version of AFT. by @CalvinRodo in #15
- feat: notify in slack on AFT notifications by @CalvinRodo in #18
- feat: add OIDC for audit account by @CalvinRodo in #25
- feat: add oidc for sentinel connectors repository by @CalvinRodo in #26
- feat: add OIDC to Log Archive Account by @CalvinRodo in #27
- fix: add environment variables to apply by @CalvinRodo in #28
- fix: Split out AFT plan from reg workflow by @CalvinRodo in #31
- feat: manage organization settings through TF by @CalvinRodo in #32
- feat: Enable Guardduty by @CalvinRodo in #33
- feat: enable guardduty in log archive by @CalvinRodo in #36
- fix: manually apply guardduty changes. by @CalvinRodo in #37
- fix: remove fail_fast on apply by @CalvinRodo in #39
- feat: invite all existing accounts to guardduty by @CalvinRodo in #41
- feat: configure in us regions by @CalvinRodo in #42
- feat: enable guardduty in org account and invite by @CalvinRodo in #43
- feat: invite in other regions by @CalvinRodo in #44
- fix: change detector in us_west_2 invites by @CalvinRodo in #45
- feat: toggle enterprise support by @CalvinRodo in #46
- feat: add a module that allows us to assume a role by @CalvinRodo in #47
- fix: use proper arn by @CalvinRodo in #48
- feat: assume roles from main account by @CalvinRodo in #49
- fix: parameterize the assume role so we can apply by @CalvinRodo in #50
- fix: attach policy to the correct role by @CalvinRodo in #52
- feat: add roles to assume into in child accounts by @CalvinRodo in #51
- feat: add a script for making ops roles by @CalvinRodo in #53
- feat: allow assuming into roles in accounts by @CalvinRodo in #54
- feat: enable security hub by @CalvinRodo in #55
- feat: invite existing centrally controlled systems by @CalvinRodo in #56
- fix: enable sh first before inviting by @CalvinRodo in #57
- fix: remove unneeded invites by @CalvinRodo in #58
- feat: invite centrally managed accounts by @CalvinRodo in #59
- refactor: security hub into a module by @CalvinRodo in #61
- feat: Migrate guardduty to main module by @CalvinRodo in #62
- feat: publish findings in all regions by @CalvinRodo in #63
- fix: Use the correct provider for us_west_2 by @CalvinRodo in #64
- fix: allow the other regions to manage the keys by @CalvinRodo in #65
- feat: enable guardduty sentinel forwarding by @CalvinRodo in #66
- fix: move module to log_archive account by @CalvinRodo in #68
- feat: upgrade to version 1.4.2 of AFT by @CalvinRodo in #69
New Contributors
- @CalvinRodo made their first contribution in #1
Full Changelog: https://github.com/cds-snc/cds-aws-lz/commits/v1.0.0
Contributors
CalvinRodo