Skip to content

Release v1.3.1
Compare
Choose a tag to compare
@github-actions github-actions released this 29 Mar 18:55
v1.3.1
dbf0d12
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

STOP

  • This release is no longer supported for new installations or upgrades, use v1.3.2 or above
  • Existing installations continue to function

Enhancements

  • Enable deletion protection on all SEA deployed ELB's
  • Enable central logging for rsyslog NLB
  • Add bucket policies on all SEA buckets to enforce https access
  • Enable guardrail deployment in new ap-northeast-3 region in sample config files
  • Enhance SCPs to block making snapshots public/sharing

Fixes

  • Add pagination to SSM document sharing API call
    • deploying new documents to orgs with more than 20 accounts causes failure
  • CloudWatch log groups created in Phase5 missing subscription and retention settings
  • Improve API error handling (back-off, retry improvements)
  • Add pnpm lock file to pin all nested dependencies
    • this issue breaks all previous releases

Documentation

  • Update installation document for v1.3.1 release

Config file changes UPDATE (missed in original release notes)

  • Added new parameters to allow enable/disable of security hub to allow guardrail deployment in eu-norteast-3 region
    • customers must add global-options\central-security-services\security-hub: true, or existing security hub deployments will be removed (MANDATORY)
Assets 4
Loading