Regula v2.0.1

v2.0.1 (2021-11-12)

Fixed

• Issue where some data resources would appear empty in the resource view for Terraform HCL inputs (#244)

Docker images

• docker pull fugue/regula:v2.0.1

Regula v2.0.0

v2.0.0 (2021-11-11)

This is a major release that contains a few breaking changes described below. Users who are upgrading from previous versions should:

• Swap any uses of the --user-only flag for --no-built-ins
• Use regula run --sync --upload instead of regula scan
• Update any tooling that consumes Regula's JSON output to account for the newly-added field

Please see our docs site for the latest usage information.

Added

• --sync flag to regula run. When --sync is specified, Regula will fetch custom rules from Fugue.
• --upload flag to regula run. When --upload is specified, Regula will upload rule results to Fugue.
• --exclude flag to regula run. --exclude takes a rule ID or rule name and excludes that rule from the evaluation.
• --only flag to regula run. --only takes a rule ID or rule name and excludes all other rules from the evaluation.
• rule_raw_result field to Regula JSON report output. This boolean field indicates the unwaived rule status - true if the rule passed before waivers were applied and false otherwise.

Changed

• Renamed --user-only flag to --no-built-ins

Removed

• regula scan command. The functionality of regula scan has been combined into regula run.

Fixed

• :unneeded is deprecated warning from brew install (#239 authored by @somaritane)

Improved

• Regula's Terraform HCL loader. We've gained support for heredoc syntax, better error handling, better function support, and more.

Docker images

• docker pull fugue/regula:v2.0.0

Regula v1.6.0

v1.6.0 (2021-10-15)

Added

• Resource line numbers for Kubernetes manifests
• k8s input type in help text (#217)
• A tutorial on how to debug a rule
• A new rule to enforce lambda permission conditions (#200)

Changed

• Base docker image from scratch to alpine (#215)

Fixed

• Incompatibility with plan files from Terraform v1.0.8 (#220) (#221) (#222)

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.6.0

Regula v1.5.0

v1.5.0 (2021-09-30)

Added

• Add resource source code location for regula scan
• Kubernetes support and first batch of rules
• Add CIS AWS v1.4.0 and CIS Google v1.2.0

Changed

• Enhance ASG AZ rule by inspecting vpc_zone_identifier

Fixed

• Fix trailing commas in rego metadocs for regula scan

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.5.0

Regula v1.4.0

v1.4.0 (2021-09-16)

Added

• A new 'compact' output format. See our updated usage documentation for example output.
• Option to set the output format via the REGULA_FORMAT environment variable
• Remediation docs URLs to JSON output format. See our updated report output documentation for more info.

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.4.0

Regula v1.3.2

v1.3.2 (2021-09-09)

Added

• Rule documentation links in the text output format

Fixed

• Bug with template strings in arguments to jsonencode in Terraform

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.3.2

Regula v1.3.1

v1.3.1 (2021-09-07)

Fixed

• Bug that caused S3 buckets to be ignored by some rules if they had a bucket policy we could not parse (#186)
• Compatibility issue with regula scan and some custom Fugue SaaS rules (#185)

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.3.1

Regula v1.3.0

v1.3.0 (2021-09-02)

Added

• Integration with Fugue's SaaS product via regula scan. This is a purely optional feature and regula run continues to operate entirely standalone. Let us know if you'd like access to the closed beta by emailing [email protected]!

Removed

• Out-of-date NIST mappings (#175)

Fixed

• Errors from some Terraform configurations that use variables with nested complex types (#176)
• Bug where .terraform directory can get loaded when --no-ignore option is used (#181)
• Use consistent evaluation order for local variables in Terraform (#184)

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.3.0

Regula v1.2.0

v1.2.0 (2021-08-19)

Added

• A configuration file for 'regula run'. See 'regula init' in our usage and configuration pages for more details (#172)

Fixed

• Inconsistent filepaths when inputs are specified with a leading ./. Now all filepaths will be normalized to remove any leading ./ (#169)
• Confusing warning messages when terraform init is needed (#170)

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.2.0

Regula v1.1.0

v1.1.0 (2021-08-05)

Added

• Default WORKDIR to /workspace in Docker image (#158)
• Resource line and column numbers in rule results 😎

Changed

• Rule metadata updates (#148) (#153) (#166)

Fixed

• Issue with missing_resource() rule results excluded from report output (#157)
• Values for undefined Terraform variables without defaults (#156)

Docker images

• docker pull fugue/regula:latest
• docker pull fugue/regula:v1.1.0