v13.23.1

• [Bug Fix] security/cloudtrail - Fix DisableRootUserActivityAlarm default value

Docs: https://templates.cloudonaut.io/en/v13.23.1/

v13.23.0

• [New Template] security/securityhub-controls - Manage Security Hub controls
• [Improvement] security/cloudtrail - Configurable CIS alarms

Docs: https://templates.cloudonaut.io/en/v13.23.0/

v13.22.1

• [Security] * - Updating to Amazon Linux 2.0.20220426.0 (#628)
• [Security] ecs/cluster* - Update Amazon Linux 2 ECS-optimized to 20220421
• [Security] vpc/vpc-nat-instance - Update Amazon Linux 1 NAT-optimized to 20220419.0
• [Security] wordpress/* - Update WordPress to 5.9.3 (#625)
• [Improvement] vpc/vpc-endpoint - Update supported service names (#618)
• [Improvement] state/rds-postgres - Updating PostgreSQL engine version (#620)
• [Improvement] state/dynamodb - Configurable index name and projection type (#621)
• [Improvement] state/dynamodb - Support for Local Secondary Indexes (#622)
• [Improvement] jenkins/* - Update Jenkins to 2.332.3 (#624)
• [Bug Fix] jenkins/* - Fix cfn-init template issue (fixes #619)
• [Bug Fix] ecs/service-dedicated-alb - invalid source for ECS events (#623) Thanks to @pgarbe
• [Bug Fix] ecs/service-cluster-alb - invalid source for ECS events
• [Bug Fix] fargate/service-* - invalid source for ECS events

Docs: https://templates.cloudonaut.io/en/v13.22.1/

v13.21.0

• [Security] * - Updating to Amazon Linux 2.0 20220218.3 (#616)
• [Improvement] state/rds-postgres* - Update available engine versions (#615)
• [Security] wordpress/* - Updating to Wordpress 5.9.1 (#614)
• [Improvement] wordpress/*: CloudFront prefix list to control traffic (#612)
• [Security] jenkins/*- Updating to Jenkins 2.319.2 (#609)
• [Security] security/auth-proxy-ha-github-orga - Update OAuth2 Proxy to 7.2.1 (#607)

Docs: https://templates.cloudonaut.io/en/v13.21.0/

v13.20.0

• [Security] * - Update Amazon Linux 2 to 20211201.0 (#604)
• [Security] ecs/cluster* - Update Amazon Linux 2 ECS-optimized to 20211120
• [Security] vpc/vpc-nat-instance - Update Amazon Linux NAT-optimized to 20211201.1
• [New Template] vpc/vpc-no-bastion - This template can be used to disable SSH access by deploying an "empty" / non existant bastion host (e.g., when using SSM Session Manager). (#601)
• [Improvement] jenkins/* - Update Jenkins to 2.319.1 (#603)
• [Bug Fix] state/s3 - Access := CloudFrontAccessLogWrite used the wrong ACL (#602)

Docs: https://templates.cloudonaut.io/en/v13.20.0/

v13.19.0

• [Security] * - Update Amazon Linux 2 to 20211103.0 (#599)
• [Security] ecs/cluster* - Update Amazon Linux 2 ECS-optimized to 20211115 (#599)
• [Security] vpc/vpc-nat-instance - Update Amazon Linux NAT-optimized to 20211015.1 (#599)
• [Security] wordpress/* - Update WordPress to 5.8.2 (#597)
• [Improvement] * - Enable public access block on private S3 buckets (#600)
• [Improvement] state/rds-aurora - Update available RDS versions (#598)

Docs: https://templates.cloudonaut.io/en/v13.19.0/

v13.18.0

• [Security] jenkins/* - Update Jenkins to 2.303.3 (#596)
• [Improvement] state/s3 - Support access logs (#595)
• [Bug Fix] jenkins/jenkins-ha-agents - Workaround AWS Ruby SDK breaking change part 3 (#594)

Docs: https://templates.cloudonaut.io/en/v13.18.0/

v13.17.1

• [Bug Fix] ec2/* - Re-add version 20210721.2

Docs: https://templates.cloudonaut.io/en/v13.17.1/

v13.17.0

• [Security] * - Update Amazon Linux 2 to 20211005.0 (#593)
• [Security] ecs/cluster* - Update Amazon Linux 2 ECS-optimized to 20211013
• [Improvement] security/auth-proxy-ha-github-orga - Update OAuth2 Proxy to 7.2.0 (#592)
• [Improvement] ec2/* - Optional MaintenanceWindow (#591)

Docs: https://templates.cloudonaut.io/en/v13.17.0/

v13.16.0

• [Security] * - Update Amazon Linux 2 to 20211001.1 (#590)
• [Security] ecs/cluster* - Update Amazon Linux 2 ECS-optimized to 20210929
• [Security] vpc/vpc-nat-instance - Update Amazon Linux NAT-optimized to 20211001.0
• [Bug Fix ] state/secretsmanager-secret - SecretName parameter was ignored if no KMS key was specified (#589) thanks to @israelg99

Docs: https://templates.cloudonaut.io/en/v13.16.0/