Skip to content
This repository has been archived by the owner on Dec 20, 2023. It is now read-only.

v1.0.0
Compare
Choose a tag to compare
@jplock jplock released this 02 Jul 03:28
· 1062 commits to master since this release
v1.0.0
c7a1333
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

BREAKING CHANGES

  • Renamed LambdaExecutionSecurityGroup to AppSecurityGroup
  • The AppSecurityGroup only allows HTTPS ingress and egress by default
    • If an S3 VPC Endpoint is created, AppSecurityGroup also allows HTTP egress just to S3
  • The VPC default security group's egress rule is modified to only permit outbound access to itself (see Remove Default Rule)
  • Removed the LambdaEndpointSecurityGroup security group in favor of using the AppSecurityGroup for VPC Interface Endpoints

NEW FEATURES

  • Ability to create SSM parameters by specifying createParameters: true in the custom.vpcConfig options (see example usage)
  • A DHCPOptionsSet is now created and attached to the VPC

OTHER CHANGES

  • Replaced usages of Fn::Join with Fn::Sub to make the generated CloudFormation template more readable
Assets 2
Loading