github-actions
released this
01 Nov 18:49
·
29 commits
to refs/heads/master
since this release
🚀 Features
- Feature | DataLake Reference Architecture v0.1 @exequielrafaela (#646)
- Feature | Genai PoC reference layer with AWS Bedrock added @martingaleano (#612) & (#630)
- Feature | Example for Step Functions workflow that integrates with API Gateway, Lambda, DynamoDB, and showcases a callback @diego-ojeda-binbash (#604)
- Feature | Securely manage ArgoCD secrets with AWS Secrets Manager integration for secrets handling. @lgallard (#581)
- Feature | A new reference architecture to support ECS deployments with DemoApps, providing a modular, production-ready setup. @angelofenoglio (#577)
- Feature | Adds a robust Kubernetes reference layer utilizing Kops, simplifying management and deployment on AWS. @juanmatias (#600)
- Feature | Enable centralized security monitoring and compliance tracking with AWS Security Hub. @rodriguez-matias (#573)
- Feature | Automate dependency management with Renovate, now configurable for this architecture to ensure up-to-date, secure dependencies. (https://www.mend.io/renovate/) (#582), (#595)
✨ Enhancements
- Enhancement | Refactor CloudTrail layer to: @diego-ojeda-binbash (#647)
- Configured to operate as a delegated administrator in the Security account, enabling a centralized security model.
- Set up as a multi-region, organization-wide trail for comprehensive activity monitoring and logging.
- Enhancement | Increase billing and budget alert threshold to accommodate to the expected budget @diego-ojeda-binbash (#601)
- Enhancement | improved shared/us-east-1/tools-costs-notifications/README.md doc @juanmatias (#572)
- Enhancement | Enable AWS Config in management account @martingaleano (#575)
- Enhancement | Remove null resource to delegate config to Security Account @martingaleano (#574)
- Enhancement | Create baseline layers for the DataScience account @diego-ojeda-binbash (#571)
🐛 Bug Fixes
- Fix | gatus helm-charts repo @lgallard (#596)
- Fix | ECS service and add small documentation @diego-ojeda-binbash (#592)
- Fix | Unpin patches version restriction @Franr (#578)
- Fix | Remove unnecessary tfvars in DemoApps network layer @diego-ojeda-binbash (#579)
- Fix | SSO updates and typos @rodriguez-matias (#634)
- Fix | Policy issue | Update terraform-aws-cloudtrail-s3-bucket module version @rodriguez-matias (#632)
Version Updates
- Update | chore(deps): update helm release argo-cd to v2.17.5 @renovate (#613)
- Update | chore(deps): update helm release ingress-monitor-controller-endpoint to v0.1.1 @renovate (#614)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-cost-billing-alarm to v1.0.17 @renovate (#616)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-cost-budget to v1.0.15 @renovate (#617)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-domain-redirect to v1.0.1 @renovate (#618)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-ec2-basic-layout to v0.3.34 @renovate (#619)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-ecs to v5.11.4 @renovate (#620)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-rds-export-to-s3 to v0.4.3 @renovate (#636)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-guardduty-monitor to v1.2.1 @renovate (#621)
- Update | chore(deps): update terraform github.com/binbashar/terraform-aws-guardduty-multiaccount to v0.2.1 @renovate (#622)
- Update | Helm release gatus to v1.1.4 @renovate-bot (#597)
🔒 Security
- Security | Updating users, build.env and sso policy @exequielrafaela (#629)
- Security | Add new SSO users Dario Villavicencio and Nicolas Ferreira @rodriguez-matias (#627), (#625), (#624), (#608), (#606), (#602)
- Security | Grant full support permissions to Marketplace Sellers @diego-ojeda-binbash (#609)
- Security | Add us-west-2 to the allowed regions @diego-ojeda-binbash (#610)
- Security | Create IAM role for Drata on Production @diego-ojeda-binbash (#626)