Regula v2.8.0

v2.8.0 (2022-06-14)

Added

• Support for tfvars files and a corresponding --var-file option. See the usage section of our docs site for a description of this feature. (#343)

Docker images

• docker pull fugue/regula:v2.8.0
• docker pull fugue/regula:v2
• docker pull fugue/regula:v2.8

Regula v2.7.0

v2.7.0 (2022-06-10)

Added

• Tests for FG_R00211 (#281 authored by @dkoder20)
• Support for advanced_event_selector in FG_R00237 (#336)
• Support for account level blocks to FG_R00299 (#336)
• Support for new Terraform AWS provider v4 resource in FG_R00099 (#336)
• Support for new Terraform AWS provider v4 resources in: FG_R00028, FG_R00031, FG_R00044, FG_R00101, FG_R00252, FG_R00274, FG_R00275, FG_R00277, FG_R00279 (#341)

Fixed

• NACL rule handling in nacl_library.rego (#336)
• False negatives from FG_R00484 (#336)
• False positives from FG_R00036 for asymmetric keys (#341)

Updated

• Go version to 1.18 (#326 authored by @chenrui333)
• OPA to version 0.40.0 along with other dependency upgrades (#338)

Docker images

• docker pull fugue/regula:v2.7.0
• docker pull fugue/regula:v2
• docker pull fugue/regula:v2.7

Regula v2.6.1

v2.6.1 (2022-03-22)

Fixed

• regula version output

Docker images

• docker pull fugue/regula:v2.6.1

Regula v2.6.0

v2.6.0 (2022-03-17)

Added

• New TF rules: FG_R00354, FG_R00355, FG_R00357, FG_R00359, FG_R00375, FG_R00451, FG_R00452, FG_R00468
• SARIF output format (#284)
• Resource tags to JSON report (#317)
• Support for valueless tags (#319)
• input_resource_types set to fugue library (#322)
• Support for waivers defined in Fugue SaaS when using --sync (#316)

Removed

• Commented-out defaults from generated config file (#320)

Fixed

• Package name to match Go mod conventions for package versioning (#296) (#312)
• Nil panic in Cloudformation detector (#313)
• Bug in FG_R00068 when KMS key resource not defined in same module (#299)

Security

• Upgrade OPA from 0.34.1 to 0.37.0 (#308)
• Upgrade Alpine version in docker image (#323)

Improved

• Support for count attribute in HCL (#321)

Docker images

• docker pull fugue/regula:v2.6.0

Regula v2.5.0

v2.5.0 (2022-02-11)

Changed

• Rule package names to match what's in the Fugue platform offering (#300)

Fixed

• Empty opa.runtime() result (#301)
• Null terraform.workspace value (#305)
• Panic from null count in some Terraform configurations (#307)

Improved

• Table output by making the result and severity columns more visible (#298 authored by @fafg)

Docker images

• docker pull fugue/regula:v2.5.0

Regula v2.4.0

v2.4.0 (2022-01-25)

Added

• Added support for retrieving rule bundles from Fugue
• Add families to JSON output

Changed

• Change ARM provider from "arm" to "azurerm"
• On --sync, apply only rules from synced environment

Fixed

• Fix issue around module detection
• Better error for missing environment ID on --upload

Docker images

• docker pull fugue/regula:v2.4.0

Regula v2.3.0

v2.3.0 (2021-12-17)

Added

• Rule FG_R00500 that enforces AWS WAF configuration that mitigates the recently-publicized Log4J vulnerabilities

Docker images

• docker pull fugue/regula:v2.3.0

Regula v2.2.1

v2.2.1 (2021-12-13)

Fixed

• Panic in Terraform loader (#279)

Docker images

• docker pull fugue/regula:v2.2.1

Regula v2.2.0

v2.2.0 (2021-12-09)

Added

• Azure Resource Manager (ARM) template support with 38 rules. This feature is currently in preview.

Docker images

• docker pull fugue/regula:v2.2.0

Regula v2.1.0

v2.1.0 (2021-11-18)

Added

• Ability to specify remediation doc URL for custom rules (#247 authored by @darrendao)
• Support for aws_alb resource type in Terraform rules (#252)
• Remediation doc links for some newer rules

Fixed

• Panic from HCL loader for variables without defaults (#245)
• Bucket policies not correctly associated with buckets in some Terraform rules (#251)
• Lambda permissions not associated with functions when values besides function name are used (#200)
• False positives from FG_R00073 for WAFv2 with Terraform HCL inputs (#249)

Docker images

• docker pull fugue/regula:v2.1.0