Recent Releases of https://github.com/awslabs/anfw-automate

https://github.com/awslabs/anfw-automate - v2.1.0

What's Changed

Added

  • Created shared libraries and CDK constructs in shared library
  • New Feature allowing users to define tags that will applied to all supported resources created by solution.

Changed

  • Restructed the repo and created independent CDK modules for app, firewall, and vpc
  • Moved the configuration files for each module in their respective conffolders.
  • Moved the global.json configuration files to a central shared configuration folder conf
  • Removed the configuration folders for each stage and instead renamed the files to use stage name e.g. dev.json
  • Changed README section to point to dedicated module README for deployments

Fixed

  • Updated vulnerable idna libraries.

Removed

  • Removed STACKNAME requirement from deploy_vars.sh as it was redundant with independent modules.

Full Changelog: https://github.com/awslabs/anfw-automate/compare/v2.0.0...v2.1.0

- Python
Published by ajusec about 2 years ago

https://github.com/awslabs/anfw-automate - v2.0.0

What's Changed

  • Release v2.0.0 by @ajusec in https://github.com/awslabs/anfw-automate/pull/7

Added

  • Support for both STRICT and ACTION order in AWS Network Firewall
  • JSON Schema Validation for all configuration files
  • Enforced pytest execution on each build
  • Configuration to provide AWS Network Firewall ARN to attach the rule groups.
  • Decoupled firewall policy from the code

Changed

  • Swtiched from INTERNALNET varaible to HOMENET varaible to identify internal network CIDRs
  • Changed firewall policy creation to use HOME_NET override feature
  • Renamed defaultdeny.yaml to globalrules.yaml
  • Changed the configuration file structure to support new features

Fixed

  • Pytest for firewall_handler library
  • Fixed poetry dependency structure so that dev, test, and build dependencies are independent

Removed

  • Pytest tests that failed and need to be rewritten
  • INTERNAL_NET varaible as this is not being used.

Full Changelog: https://github.com/awslabs/anfw-automate/compare/v1.0.0...v2.0.0

- Python
Published by ajusec over 2 years ago

https://github.com/awslabs/anfw-automate - v1.0.0

Initial Release

An event-based serverless application that automatically performs CRUD operations on AWS Network Firewall rule-groups and rules based on distributed configuration files placed in S3 buckets

New Contributors

  • @sbidy made their first contribution in https://github.com/awslabs/anfw-automate/pull/1
  • @dependabot made their first contribution in https://github.com/awslabs/anfw-automate/pull/3
  • @ajusec made their first contribution in https://github.com/awslabs/anfw-automate/pull/6

Full Changelog: https://github.com/awslabs/anfw-automate/commits/v1.0.0

- Python
Published by ajusec over 2 years ago