Releases: aws-samples/aws-secure-environment-accelerator
Releases · aws-samples/aws-secure-environment-accelerator
Release v1.2.1 (Pre-Release)
This is a pre-release and not officially supported
Features:
- Store outputs in SSM Parameter Store for customer consumption (z121) (#404) (400f2a0)
- Add VPC DNS query logging (7.70) (#414) (6a1e796)
- Add an Accelerator uninstall-script - developers ONLY - non-production (#408) (ecf724b)
- Add option to exclude alb deployment on a specific workload account (z129) (#380) (771beaa)
- Add option to exclude specific regions from delete default vpcs in a specific account (z130) (#383) (887a550)
- Add sleep before SM execution on move account to allow multiple account creation (z132) (#391) (1f5e8df)
- Moved SSM inline policy to managed policy (z128) (#378) (31c9761)
- Updated CDK version from 1.46 to 1.66
- SCP Updates (EFS Encryption, Better protect: KMS, IAM Policies, CWL) (#419)
- Automated generation of PDF format of all documentation during release (#417) (2029e9a)
- Add support for multi-region central endpoints, PHZs (z136/z137) (#410) (816a0b9)
Fixes:
- Updated to new IAM policy for AWS Config (old policy flagged for deprecation) (z138) (#407) (03d509d)
- Fix log group creation issue for Public Hosted Zone logging (z117) (#406) (5845d28)
- Fix multi-region PHZ Resolver rules (z127) (#395) (c50c0fe)
- Fix Macie stabilization issue (z133) (#394) (48de21b)
- Added check for file exists in the account bucket (firewall configs) (z135) (#392) (a04aa26)
- Improved hash for launch config properties (z112) (#388) (ff03bae)
- Fix retention on local account S3 buckets (z113) (#385) (f8625d1)
- Email IgnoreCaseCheck in store outputs and create config recorder (#376) (5769f16)
- Fixed remote region tagger for shared resources (z124) (#377) (dbfab38)
- Reduce SM input (z123) (#374) (af64545)
- upgrades break cwl to s3 functionality (z126) (#375) (0a7712d)
- security group description tweaks for new installs (z111) (#373) (f2596fc)
Documentation:
Release v1.2.0
Release v1.1.9
Features:
- 6.25 - Enable TGW inter-region peering & route table mgmt (#364) (1219237)
- 7.50 - Deploy global SNS topics (#360) (49fff99)
- 7.55 - Create Metrics and Alarms (#363) (dc2164f)
Fixes:
- Added region to resolver cleanup script (#369) (903143c)
- Check proper accountkey while creating role for SSM Document (#368) (88d03fb)
Documentation:
- Document multi-file config file and YAML config file options
- Document Firewall variables
- Cleanup config file sample snippets
- Add Table of Contents to each document
- Remove unused config file parameters
- Add optional config file values for SNS, CW Metrics and CW Alarms
Release v1.1.8
Features
- 6.30 - Regionalize CWL to S3 functionality (#346) (15e5779)
- 7.40 - Update SCPs for Standalone Version (#353) (ed0e715)
Fix
- Code base review and stabilization, ensure error handling coverage (#351) (2f965c3)
- Fix creation of LogGroup for Route53 hosted zone Logging (#356) (4ff03a8)
- Move Security Hub control settings to next phase
- Turn on "Include Global Resources" for Config in all regions (Security Hub requirement)(#355)
- Tweak AWS Config role permissions (#359) (015d122)
- Remove extra resolver rule for private hosted zones (#345) (4e23b86)
- Move master account to core OU, email address validation case insensitive (#344) (cca2f2f)
- Updating reference SCPs to exclude NetworkManager from Region Restriction (#352) (7cd51d8)