Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

4.6.0 #488

Merged
merged 7 commits into from
Nov 14, 2024
Merged

4.6.0 #488

merged 7 commits into from
Nov 14, 2024

Conversation

daknhh
Copy link
Contributor

@daknhh daknhh commented Nov 6, 2024

Added

  • Automated IP Set Management: The AutoUpdatedManagedIpSet feature now supports automated management of IP sets through AWS Firewall Factory.
    • Easy Configuration: Simply provide a URL pointing to a JSON file and specify the key containing the CIDRs you want to include in your IP sets.
    • Automated Scheduling: IP sets are updated based on a predefined schedule, ensuring up-to-date protection without manual intervention. The IP set will only be updated if new CIDRs are detected in the downloaded JSON file. If the file is empty or the CIDRs are unchanged, no update will occur.
    • Rollback Support: The IP addresses of IP sets are stored in SSM Parameter Store, allowing for easy rollback to previous versions as needed.
    • CloudWatch Monitoring: When an IP set is updated in the latest schedule, a metric labeled "ManagedIpSets" in the "AWS-Firewall-Factory" namespace is set to 1 for that specific IP set. This enables you to configure a CloudWatch alarm for real-time notifications.
  • Restructured Enums and Configuration Files: Improved code organization by separating and reorganizing enums and configuration settings into service- and stack-specific files. This restructuring enhances maintainability and simplifies dependency management. 🚨 Note: You will need to update the imports in your value files. 🚨

Updated

  • @aws-sdk/client-cloudfront: Updated from 3.637.0 to 3.682.0
  • @aws-sdk/client-config-service: Updated from 3.637.0 to 3.682.0
  • @aws-sdk/client-ec2: Updated from 3.641.0 to 3.682.0
  • @aws-sdk/client-s3: Updated from 3.637.0 to 3.682.0
  • @aws-sdk/client-secrets-manager: Updated from 3.637.0 to 3.682.0
  • @aws-solutions-constructs/aws-eventbridge-stepfunctions: Updated from 2.65.0 to 2.74.0
  • @babel/traverse: Updated from 7.25.6 to 7.25.9
  • @slack/types: Updated from 2.12.0 to 2.14.0
  • @types/aws-lambda: Updated from 8.10.143 to 8.10.145
  • @types/lodash: Updated from 4.17.7 to 4.17.7
  • @types/node: Updated from 22.5.0 to 22.8.4
  • @typescript-eslint/eslint-plugin: Updated from 8.3.0 to 8.12.2
  • @typescript-eslint/parser: Updated from 8.3.0 to 8.12.2
  • @typescript-eslint/typescript-estree: Updated from 8.3.0 to 8.12.2
  • adaptivecards: Updated from 3.0.4 to 3.0.4
  • axios: Updated from 1.7.5 to 1.7.7
  • cdk-sops-secrets: Updated from 1.13.1 to 1.13.4
  • eslint: Updated from 8.57.0 to 8.57.1
  • eslint-plugin-import: Updated from 2.29.1 to 2.31.0
  • npm: Updated from 10.8.2 to 10.9.0

@daknhh daknhh marked this pull request as draft November 6, 2024 21:01
@daknhh daknhh marked this pull request as ready for review November 14, 2024 08:45
@daknhh daknhh merged commit 3f538a2 into master Nov 14, 2024
9 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@daknhh