This repository has been archived by the owner on Jun 5, 2023. It is now read-only.
Forseti Security 1.1.0
Global
- Moved many flags into a central yaml configuration file.
- Tuned permissions needed by Forseti.
Inventory
- Configurable Inventory pipelines.
- Increased resource coverage.
- Backend services
- BigQuery datasets
- CloudSQL
- Firewall rules
- Folders
- Folder IAM policies
- GAE applications
- GCE instances
- GCE instance groups
- GCE instance group managers
- GCE instance templates
- GCS buckets
- GCS bucket ACLs
- Load balancer forwarding rules
Scanner
- Added batch mode.
- Configurable scanners.
- Increased resource coverage.
- BigQuery dataset scanner
- CloudSQL scanner
- GCS bucket ACL scanner
- Folder IAM policy scanner
- Groups scanner
- IAP scanner
- Load balancer forwarding rules scanner
- Violations saved to CloudSQL.
IAM Explain
- Initial launch
Notifier
- Notify on violations.
- Tied in inventory/scanner summaries.
Deployment
- Added IAM Explain.
- Added Setup Wizard.
- Deployment template improvements.
Testing
- Modernized our Travis CI environment, use docker containers.
- Migrated to standard python unittest runner.
- Pylint improvements and coverage.
- Added pre-commit hook for local pylint checks.
Documentation
- Moved to github pages and redesigned the site layout.
- Reorganization of samples, scripts, and configs.
- Explain the permissions needed by Forseti.
- Added a roadmap page for resource coverage.
Lots of other bug fixes & improvements.
Thanks to Our Contributors!
This release contains contributions from many people:
- Carly Schneider (Spotify)
- Denzel Morris
- Felix Matenaar (Google)
- Gianluca Brindisi (Spotify)
- Liang Zhang (Google)
- Matthew Sachs (Google)
- Nenad Stojanovski (Spotify)
- Rajendra Umadas (Spotify)
- Tabitha Smith (Google)