Releases: aquasecurity/tfsec
Releases · aquasecurity/tfsec
tfsec v0.32.0
Intelligently recurse directories (#462) * intelligently recurse directories * Update parser.go
tfsec v0.31.0
- Parsing time has been greatly reduced (estimated 10x faster).
- Documentation has been added for all checks.
- Documentation is now built into check code and deployed to https://tfsec.dev instead of the wiki.
- Added custom check functionality.
- Added a guide for contributing checks.
- Added a snazzy new logo.
- Checks are always run in the same order to ensure consistent behaviour.
- Terraform files are now only parsed in the given directory - files are no longer parsed recursively.
- Modules are now fully supported (a
terraform init
is required.) - Fixed various panics across multiple checks/parsing functions.
- All example code in documentation is now automatically tested.
- Fixed AWS046 issue with IAM policy wildcards when
Deny
is used. - Fixed IPv6 CIDR message in AWS006.
- Fixed issue with severity sometimes showing as blank in all output formats.
tfsec v0.30.1
- Fixed output error
tfsec v0.30.0
- add check for wildcard policy actions
- add check for hard coded creds in aws provider
- add check for WAF when using Cloud front
tfsec v0.29.0
- More AWS IAM password policy checks
tfsec v0.28.1
- Fix image publishing
tfsec v0.28.0
- Check for AWS IAM password reuse prevention
tfsec v0.27.0
- Check CloudFront security policy version >= TLSv1.2_2019
- Add check for encryption at rest for Elasticsearch domains
- Add checks for encryption at rest and in transit for Elasticache
- Add GCP IAM user grant check
tfsec v0.26.0
- Add plain text output
tfsec v0.25.0
- Option to output to file (
--out
) - New check: API Gateway domain name uses outdated SSL/TLS protocols.