Releases: cloudposse/terraform-aws-components
Releases · cloudposse/terraform-aws-components
v1.507.0
feat: add support latest alb controller @sgtoj (#985)
## what- add support for
aws-loadbalancer-controller
helm chart v1.7.1 - add
resources
configuration to the snippet in readme - remove controller's dependency on the ec2 metadata
- move chart value
aws.region
to the expected location ofregion
- add chart value
vpcId
- move chart value
why
- support the latest alb controller and its helm chart
references
- n/a
v1.506.0
Add scheduled overrides feature @oleksiimorozenko (#750)
## what * This pull request adds the scheduled overrides feature supported by ARCwhy
- It could be useful for pre-scaling during work hours and downscaling respectively when a work time ends coming back to
minReplicas
references
- Scheduled overrides section in ARC Automatically scaling runners documentation
Update Changelog for `1.505.0` @github-actions (#1129)
Update Changelog for [`1.505.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.505.0)v1.505.0
fix: account-quota drift reduced @dudymas (#1102)
## what- encode values into a
for_each
on service quota resources
why
- terraform sometimes gets bad state back from the AWS API, so fetched results
ought to be ignored. Instead, input values should be respected as truth.
references
- AWS CLI
command to list service quotasaws service-quotas list-service-quotas
.
Note where it says "For some quotas, only the default values are available." - Medium article
explaining how many AWS service limits are not available.
Update Changelog for `1.504.0` @github-actions (#1128)
Update Changelog for [`1.504.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.504.0)v1.504.0
feat: allow vulnerability scanning of Argo repository and implement ignore changes for non-change drift @RoseSecurity (#1120)
## what- Attempted to refactor code to ensure changes don't occur on each run (did not resolve)
- Opened an issue with GitHub but is still in the triaging state
- This is a quick fix for addressing the following non-change
Terraform used the selected providers to generate the following execution
plan. Resource actions are indicated with the following symbols:
~ update in-place
Terraform will perform the following actions:
# github_branch_protection.default[0] will be updated in-place
~ resource "github_branch_protection" "default" {
id = "XXXXXXX"
# (10 unchanged attributes hidden)
~ restrict_pushes {
~ push_allowances = [
+ "XXXXXXX",
]
why
- Adds lifecycle meta-argument for ignoring changes to
push_allowances
- Enable vulnerability alerting for vulnerable dependencies by default to address
tfsec
findings
Testing
- Validated with
atmos validate stacks
- Performed successful
atmos terraform deploy
on component
Update Changelog for `1.502.0` @github-actions (#1126)
Update Changelog for [`1.502.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.502.0)v1.503.0
Upstream `redshift-serverless` @Benbentwo (#838)
## what- Upstream redshift-serverless
v1.502.0
upstream `tailscale` @Benbentwo (#835)
## what * Initial Tailscale deploymentwhy
- tailscale operators
references
Update Changelog for `1.501.0` @github-actions (#1125)
Update Changelog for [`1.501.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.501.0)docs: improve external-dns snippet in readme @sgtoj (#986)
## what- update the
eks/external-dns
component example in readme- set latest chart version
- set the resource configure properly
- add
txt_prefix
var to snippet
why
- help the future engineers deploying or updating external-dns
references
- n/a
Update Changelog for `1.500.0` @github-actions (#1124)
Update Changelog for [`1.500.0`](https://github.com/cloudposse/terraform-aws-components/releases/tag/1.500.0)v1.501.0
v1.500.0
add additional waf features @mcalhoun (#791)
what
- Add the ability to specify a list of ALBs to attach WAF to
- Add the ability to specify a list of tags to target ALBs to attach WAF to
why
- To provider greater flexibility in attaching WAF to ALBs
docs: fix typos using `codespell` @RoseSecurity (#1114)
what and why
[!NOTE]
Feel free to close this PR if the changes are not worth the review. I won't be offended
- For context, I wanted to clean up some of the documentation in our repository, which identified several typos in our variables and READMEs. I decided to use
codespell
to automate this process and thought it might be useful for a quick cleanup here!
usage
codespell -w
v1.499.0
v1.498.0
feat: support delete protection for dynamodb @brett-au (#1118)
what
terraform-aws-dynamodb v0.36.0 supports delete protection on the table. This Pull request exposes that upstream variable
why
Delete safe dynamodb tables in the dynamo component
references
https://github.com/cloudposse/terraform-aws-dynamodb/blob/0.36.0/variables.tf#L184-L188