Skip to content

v1.504.0
Compare
Choose a tag to compare
@cloudposse-releaser cloudposse-releaser released this 01 Oct 19:14
· 54 commits to refs/heads/main since this release
1.504.0
fc5299c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
feat: allow vulnerability scanning of Argo repository and implement ignore changes for non-change drift @RoseSecurity (#1120) ## what
  • Attempted to refactor code to ensure changes don't occur on each run (did not resolve)
  • Opened an issue with GitHub but is still in the triaging state
  • This is a quick fix for addressing the following non-change
Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
  ~ update in-place

Terraform will perform the following actions:

  # github_branch_protection.default[0] will be updated in-place
  ~ resource "github_branch_protection" "default" {
        id                              = "XXXXXXX"
        # (10 unchanged attributes hidden)

      ~ restrict_pushes {
          ~ push_allowances  = [
              + "XXXXXXX",
            ]

why

  • Adds lifecycle meta-argument for ignoring changes to push_allowances
  • Enable vulnerability alerting for vulnerable dependencies by default to address tfsec findings

Testing

  • Validated with atmos validate stacks
  • Performed successful atmos terraform deploy on component
Update Changelog for `1.502.0` @github-actions (#1126) Update Changelog for [`1.502.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.502.0)

Contributors

RoseSecurity
Assets 2
Loading