Releases: trussworks/terraform-aws-config
Releases · trussworks/terraform-aws-config
Adds support for tf13 and AWS provider 3.0
Should be backwards compatible but is not gauranteed.
pins terraform 12
use if need terraform 12
Adds IAM role name as output
Merge pull request #67 from ricoli/iam-role-name-output add an output for the IAM role's name
Allow sending AWS Config events and notifications to an SNS topic
Merge pull request #64 from ricoli/sns-topic-support ability to define an sns topic for notifications of config changes
Make include_global_resource_types configurable
If running in multiple instances of this module across regions, you can now disable include_global_resource_types to prevent redundant rules.
Add an option to add tags also returns role for AWS config
Optionally add tags, and returns the ARN of the AWS config role.
Add rule enforcing SSL on S3 buckets
Adds a Config rule to ensure S3 buckets require SSL (defaults to true)
Fix issue with IAM role contamination
Fixes issue when running multiple instances of the module and changes from one instance can contaminate IAM roles in another instance.
See https://github.com/trussworks/terraform-aws-config#upgrading-from-230-to-24x for how to upgrade
Add rules for EBS snapshots, default security group and root access key
- ebs-snapshot-public-restorable
- vpc-default-security-group-closed
- iam-root-access-key
Add AWS Config rule to ensure CloudWatch Logs are encrypted
Merge pull request #38 from trussworks/mk-add-cloudwatch-logs-encryption Add config rule ensuring all cloudwatch logs are encrypted