Skip to content

0.8.30.0
Compare
Choose a tag to compare
@kapilt kapilt released this 12 Aug 18:21
0.8.30.0
179a167
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Alot of work this release has gone into making the core work nicely with multiple cloud providers, as we work on Azure and GCP support. Many thanks to microsoft team for working on the Azure provider.

Core

  • value filter set difference operator (#2058) and unix time stamp date comparisons (#2051), unique size (#2157)
  • c7n schema multiple cloud provider support (#2266)
  • json diff filter for resource revision comparison (#1258)
  • mark-for-op action support hours/minutes (#2323)
  • python 3.7 support (#2608)

Azure

Start of azure support

resources:

  • azure.appserviceplan
  • azure.armresource
  • azure.cosmosdb
  • azure.keyvault
  • azure.loadbalancer
  • azure.networkinterface
  • azure.networksecuritygroup
  • azure.publicip
  • azure.resourcegroup
  • azure.roleassignment
  • azure.roledefinition
  • azure.sqlserver
  • azure.storage
  • azure.vm
  • azure.vnet
  • azure.webapp

AWS

  • sqs set retention period (#2017)
  • ecs container instance resource (#2031)
  • lambda set concurrency action & filter (#2021)
  • dynamodb set-stream action (#2042)
  • config rule resource (#2032)
  • route53 domain tagging (#2059)
  • ami copy with encryption support (#2072)
  • cfn tag actions (#2061)
  • cfn set-protection action (#2156)
  • cwe rule target resource and filters & actions (#2080)
  • vpc peering cross account filter (#2181)
  • ec2 instance attribute filter (#2581)
  • iam policy delete action (#2191)
  • elb - use resource/universal tag api (#2228)
  • sqs - use resource/universal tag api (#2229, #2237)
  • vpc/subnet/eni set-flow-log action (#2214)
  • cloud watch log group tag actions/filters (#2364)
  • s3 bucket encryption filter and action (#2408)
  • dms endpoint resource and delete action (#2073)
  • dynamodb dax resource w/ filters & actions (#2351) (#2381) (#2432)
  • aws secrets manager resource and filters/actions (#2395)
  • sns cross account iam filter and modify policy action (#2028, #2007, #2088)
  • cloud watch logs cross account filter on destination (#2182)
  • redshift snapshot cross account filter and revoke access action (#2180)
  • eip/network-address release action (#2290)
  • account increase-limit support for min units of increase (#2371)
  • cloud watch metrics output in utc (#2394)

GCP

Basic provider implementation with support for a handful of resources, no actions yet.

Tools

  • c7n-org support external id (#2114)
  • c7n-org gcp and azure (#2404) support
  • c7n-org run-script support for quoted scripts
  • c7n-guardian improved support for enabling and managing guard duty across across aws accounts. (#2183) (#2261)
  • c7n-mailer - datadog support (#2197)
  • c7n-mailer - slack support
  • c7n-mailer - ldap resource owner lookup fix (#2334)
  • tools/omnissm - new tool for managing hybrid mode rollout of ssm across cloud instances (#2282)

Docs

  • aws api gw examples (#2025)
Assets 2