Recent Releases of https://github.com/awslabs/anfw-automate
https://github.com/awslabs/anfw-automate - v2.1.0
What's Changed
Added
- Created shared libraries and CDK constructs in shared library
- New Feature allowing users to define tags that will applied to all supported resources created by solution.
Changed
- Restructed the repo and created independent CDK modules for app, firewall, and vpc
- Moved the configuration files for each module in their respective
conffolders. - Moved the
global.jsonconfiguration files to a central shared configuration folderconf - Removed the configuration folders for each stage and instead renamed the files to use stage name e.g.
dev.json - Changed README section to point to dedicated module README for deployments
Fixed
- Updated vulnerable
idnalibraries.
Removed
- Removed
STACKNAMErequirement fromdeploy_vars.shas it was redundant with independent modules.
Full Changelog: https://github.com/awslabs/anfw-automate/compare/v2.0.0...v2.1.0
- Python
Published by ajusec about 2 years ago
https://github.com/awslabs/anfw-automate - v2.0.0
What's Changed
- Release v2.0.0 by @ajusec in https://github.com/awslabs/anfw-automate/pull/7
Added
- Support for both STRICT and ACTION order in AWS Network Firewall
- JSON Schema Validation for all configuration files
- Enforced pytest execution on each build
- Configuration to provide AWS Network Firewall ARN to attach the rule groups.
- Decoupled firewall policy from the code
Changed
- Swtiched from INTERNALNET varaible to HOMENET varaible to identify internal network CIDRs
- Changed firewall policy creation to use HOME_NET override feature
- Renamed defaultdeny.yaml to globalrules.yaml
- Changed the configuration file structure to support new features
Fixed
- Pytest for firewall_handler library
- Fixed poetry dependency structure so that dev, test, and build dependencies are independent
Removed
- Pytest tests that failed and need to be rewritten
- INTERNAL_NET varaible as this is not being used.
Full Changelog: https://github.com/awslabs/anfw-automate/compare/v1.0.0...v2.0.0
- Python
Published by ajusec over 2 years ago
https://github.com/awslabs/anfw-automate - v1.0.0
Initial Release
An event-based serverless application that automatically performs CRUD operations on AWS Network Firewall rule-groups and rules based on distributed configuration files placed in S3 buckets
New Contributors
- @sbidy made their first contribution in https://github.com/awslabs/anfw-automate/pull/1
- @dependabot made their first contribution in https://github.com/awslabs/anfw-automate/pull/3
- @ajusec made their first contribution in https://github.com/awslabs/anfw-automate/pull/6
Full Changelog: https://github.com/awslabs/anfw-automate/commits/v1.0.0
- Python
Published by ajusec over 2 years ago