Releases: aquasecurity/defsec
Releases · aquasecurity/defsec
v0.70.0
What's Changed
- feat: root user usage alarm by @owenrumney in #783
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticsearchservice from 1.15.9 to 1.16.0 by @dependabot in #779
- chore(deps): bump github.com/sirupsen/logrus from 1.8.1 to 1.9.0 by @dependabot in #784
- feat: add check for IAM policy change alarm by @owenrumney in #786
- feat: Add remaining aws cis 1.2 cloudtrail checks by @liamg in #787
- feat: Adding remaining metric alarms by @owenrumney in #788
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/athena from 1.17.0 to 1.18.0 by @dependabot in #785
- chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.15.13 to 1.15.14 by @dependabot in #775
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/rds from 1.21.5 to 1.23.2 by @dependabot in #789
- chore(deps): bump github.com/hashicorp/hcl/v2 from 2.12.0 to 2.13.0 by @dependabot in #710
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/dynamodb from 1.15.9 to 1.15.10 by @dependabot in #790
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticsearchservice from 1.16.0 to 1.16.1 by @dependabot in #793
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/kafka from 1.17.9 to 1.17.10 by @dependabot in #791
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/redshift from 1.26.0 to 1.26.1 by @dependabot in #792
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudfront from 1.18.4 to 1.18.5 by @dependabot in #794
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/sts from 1.16.9 to 1.16.10 by @dependabot in #795
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticloadbalancingv2 from 1.18.8 to 1.18.9 by @dependabot in #796
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudtrail from 1.16.4 to 1.16.5 by @dependabot in #797
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/mq from 1.13.4 to 1.13.5 by @dependabot in #798
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/lambda from 1.23.4 to 1.23.5 by @dependabot in #799
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatchlogs from 1.15.10 to 1.15.11 by @dependabot in #800
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudwatch from 1.19.0 to 1.19.1 by @dependabot in #802
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/codebuild from 1.19.8 to 1.19.9 by @dependabot in #801
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ecs from 1.18.11 to 1.18.12 by @dependabot in #803
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/elasticache from 1.22.0 to 1.22.1 by @dependabot in #804
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/secretsmanager from 1.15.13 to 1.15.14 by @dependabot in #807
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/athena from 1.18.0 to 1.18.1 by @dependabot in #806
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/iam from 1.18.9 to 1.18.10 by @dependabot in #808
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.47.0 to 1.51.1 by @dependabot in #810
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/apigatewayv2 from 1.12.8 to 1.12.9 by @dependabot in #809
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/emr from 1.20.1 to 1.20.2 by @dependabot in #811
- chore(deps): bump github.com/aws/aws-sdk-go-v2/credentials from 1.12.9 to 1.12.10 by @dependabot in #812
- chore(deps): bump github.com/aws/aws-sdk-go-v2/service/workspaces from 1.20.0 to 1.22.0 by @dependabot in #813
- chore: add make target for updating aws deps by @owenrumney in #816
- feat: support helm value overrides by @owenrumney in #822
Full Changelog: v0.69.2...v0.70.0
Contributors
liamg, owenrumney, and dependabot
Assets 2
v0.69.2
What's Changed
- fix: Add the aliases into the ignores to support moved rules by @owenrumney in #782
- feat: Add CloudTrail CIS AWS 2.6 Rule by @liamg in #781
Full Changelog: v0.69.1...v0.69.2
Contributors
liamg and owenrumney
Assets 2
v0.69.1
What's Changed
- chore(deps): bump github.com/aws/aws-sdk-go-v2/credentials from 1.12.8 to 1.12.9 by @dependabot in #776
- fix(rego): Allow quotes in working directories for Dockerfiles by @liamg in #780
Full Changelog: v0.69.0...v0.69.1
Contributors
liamg and dependabot
Assets 2
v0.69.0
What's Changed
- test: add tests for google iam tf adapters by @vanesasejdiu in #714
- test: add tests for aws iam tf adapters by @vanesasejdiu in #726
- test: add tests for aws apigateway tf adapters metadata by @vanesasejdiu in #728
- chore(deps): bump github.com/owenrumney/go-sarif/v2 from 2.1.1 to 2.1.2 by @dependabot in #709
- feat: Add framework classification capability for rules by @liamg in #734
- fix(Terraform): Fix GKE node pool metadata parsing by @liamg in #738
- test: add tests for aws s3 tf adapters by @vanesasejdiu in #716
- chore(deps): bump github.com/stretchr/testify from 1.7.2 to 1.8.0 by @dependabot in #718
- chore(deps): bump github.com/BurntSushi/toml from 1.1.0 to 1.2.0 by @dependabot in #736
- feat: add cisbenchmark checks for session 1.2 API Server by @josedonizetti in #720
- feat: add cisbenchmark checks for session 1.3, 1.4, and 2 by @josedonizetti in #721
- feat: Add framework references specification option for all rules by @liamg in #764
- fix: add configmap support to k8s scanner by @josedonizetti in #762
- feat: AWS cloud scanning by @liamg in #765
- feat: Add exclude-ignores flag and --config-file attribute by @alexandrupopafc in #767
- build: Speed up tests by @liamg in #766
- feat: Check for unauthorized api call alarm by @owenrumney in #768
- feat: check for non-MFA login alarm by @owenrumney in #772
- fix: Correct Framework IDs by @owenrumney in #773
- feat: Add AWS CIS 1.2 IAM checks by @liamg in #771
New Contributors
- @alexandrupopafc made their first contribution in #767
Full Changelog: v0.68.10...v0.69.0
Contributors
josedonizetti, liamg, and 4 other contributors
Assets 2
v0.68.10
What's Changed
- Fix: handle integers for Chart name in Helm parsing by @owenrumney in #730
Full Changelog: v0.68.9...v0.68.10
Contributors
owenrumney
Assets 2
v0.68.9
v0.68.8
What's Changed
- fix: Switch to using asIntegerOrDefault with AsNumber by @owenrumney in #724
Full Changelog: v0.68.7...v0.68.8
Contributors
owenrumney
Assets 2
v0.68.7
What's Changed
- refactor: remove duplicate check by @josedonizetti in #713
- feat: Add json and markdown format to --run-statistics by @amandahla in #706
- fix: Handle numbers that are in strings by @owenrumney in #723
New Contributors
- @josedonizetti made their first contribution in #713
- @amandahla made their first contribution in #706
Full Changelog: v0.68.6...v0.68.7
Contributors
josedonizetti, owenrumney, and amandahla