Skip to main content

Gruntwork release 2024-04

Guides / Update Guides / Releases / 2024-04

This page is lists all the updates to the Gruntwork Infrastructure as Code Library that were released in 2024-04. For instructions on how to use these updates in your code, check out the updating documentation.

Here are the repos that were updated:

boilerplate

v0.5.15

Published: 4/24/2024 | Release notes

v0.5.14

Published: 4/23/2024 | Release notes

patcher-cli

v0.5.3

Published: 4/10/2024 | Release notes

This release includes the following improvements:

pipelines-cli

v0.9.3

Published: 4/23/2024 | Release notes

v0.9.2

Published: 4/23/2024 | Release notes

v0.9.1

Published: 4/23/2024 | Release notes

v0.9.0

Published: 4/23/2024 | Release notes

v0.8.0

Published: 4/19/2024 | Release notes

v0.7.0-alpha

Published: 4/9/2024 | Release notes

v0.7.0

Published: 4/16/2024 | Release notes

v0.6.3

Published: 4/4/2024 | Release notes

pipelines-workflows

v0.0.5

Published: 4/30/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/pipelines-workflows/compare/v0.0.4...v0.0.5

v0.0.4

Published: 4/26/2024 | Release notes

  • Bump versions of downstream actions

Full Changelog: https://github.com/gruntwork-io/pipelines-workflows/compare/v0.0.3...v0.0.4

v0.0.3

Published: 4/26/2024 | Release notes

  • bump version of pipelines-aws-execute

Full Changelog: https://github.com/gruntwork-io/pipelines-workflows/compare/v0.0.2...v0.0.3

v0.0.2

Published: 4/26/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/pipelines-workflows/compare/v0.0.1...v0.0.2

v0.0.1

Published: 4/26/2024 | Release notes

terraform-aws-architecture-catalog

v2.1.8

Published: 4/29/2024 | Release notes

v2.1.7

Published: 4/26/2024 | Release notes

v2.1.6

Published: 4/25/2024 | Release notes

v2.1.5

Published: 4/19/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.1.4...v2.1.5

v2.1.4

Published: 4/18/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.1.3...v2.1.4

v2.1.3

Published: 4/18/2024 | Release notes

v2.1.2

Published: 4/18/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.1.1...v2.1.2

v2.1.1

Published: 4/18/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.1.0...v2.1.1

v2.1.0

Published: 4/17/2024 | Release notes

Note that as part of this release, the github-openid-connect-provider service template has been pinned in the devops-foundations-infrastructure-live template: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/pull/1047/files#diff-396c4a4bb9c638ba47824719da3f958faecde74274c4fb98e34bb5d520b249b1

The reason this has been done is to ensure backwards compatibility for customers using the service template.

Instructions for consciously migrating to the latest version of the module github-openid-connect-provider can be found here: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/pull/1047/files#diff-cdbe3386d835e64ce6cc00c03c8584038f59784d20473653ae1bd9f3d83eeda9R2-R8

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.0.18...v2.1.0

v2.0.18

Published: 4/16/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-architecture-catalog/compare/v2.0.17...v2.0.18

v2.0.17

Published: 4/15/2024 | Release notes

v2.0.16

Published: 4/12/2024 | Release notes

v2.0.15

Published: 4/10/2024 | Release notes

v2.0.14

Published: 4/10/2024 | Release notes

v2.0.13

Published: 4/5/2024 | Release notes

terraform-aws-asg

v0.21.14

Published: 4/2/2024 | Modules affected: server-group | Release notes

v0.21.15

Published: 4/5/2024 | Modules affected: asg-rolling-deploy | Release notes

  • asg-rolling-deploy: support autoscaling lifecycle hook

terraform-aws-cache

v0.22.5

Published: 4/24/2024 | Modules affected: elastic-cache, redis | Release notes

  • enable logs and minor upgrade toggle
  • [skip-ci] Update CODEOWNERS
  • add parameter group to Redis module
  • LIB-93: Replace tfenv and tgswitch with mise

v0.22.4

Published: 4/8/2024 | Modules affected: elastic-cache, memcached | Release notes

  • elastic-cache
  • memcached

Full Changelog: https://github.com/gruntwork-io/terraform-aws-cache/compare/v0.22.3...v0.22.4

v0.22.3

Published: 4/4/2024 | Modules affected: elastic-cache, memcached | Release notes

  • elastic-cache

  • memcached

  • Support encryption in transit for memcache clusters

Special thanks to the following users for their contribution!

terraform-aws-ci

v0.56.0

Published: 4/29/2024 | Modules affected: ecs-deploy-runner, infrastructure-deploy-script, monorepo-helpers | Release notes

  • Upgrade to Python 3.12

v0.55.1

Published: 4/24/2024 | Modules affected: gruntwork-module-circleci-helpers | Release notes

  • Fix: CI helper module install script

v0.55.0

Published: 4/17/2024 | Modules affected: ecs-deploy-runner, infrastructure-deploy-script | Release notes

  • Removed tfenv and tgswitch and replaced with mise in EDR

v0.53.3

Published: 4/16/2024 | Modules affected: ecs-deploy-runner | Release notes

  • Fix Go sum for entrypoint

v0.54.2

Published: 4/15/2024 | Modules affected: gruntwork-module-circleci-helpers | Release notes

  • Added architecture flag option to configure-environment-for-gruntwork-module mise install

v0.54.1

Published: 4/15/2024 | Modules affected: jenkins-server | Release notes

  • Added flag to skip rolling deployment option for Jenkins server

v0.54.0

Published: 4/8/2024 | Modules affected: gruntwork-module-circleci-helpers | Release notes

  • [BREAKING CHANGE] Replace tfenv and tgswitch with mise in gruntwork-module-circleci-helpers

v0.53.5

Published: 4/3/2024 | Modules affected: jenkins-server | Release notes

terraform-aws-cis-service-catalog

v0.51.0

Published: 4/22/2024 | Modules affected: security | Release notes

  • Add SNS verification
  • Update our multi-region code generators to use Boilerplate.

terraform-aws-control-tower

v0.7.3

Published: 4/22/2024 | Modules affected: landingzone/control-tower-account-tagger, landingzone/control-tower-account-factory, landingzone/control-tower-multi-account-factory | Release notes

  • Added control-tower-account-tagger module that allows for tagging of accounts post-vend.
  • Updated control-tower-account-factory to integrate with new control-tower-account-tagger, propagating the tags input.
  • Updated control-tower-multi-account-factory to read in optional configurations in account request files for tags, and to pass those into the new inputs in control-tower-account-factory.

terraform-aws-data-storage

v0.36.0

Published: 4/23/2024 | Modules affected: dms, rds, rds-proxy, backup-vault | Release notes

  • Implement a new module DMS
  • Add Terrascan to CI - CORE-1371
  • Add support for custom_paramter_group
  • refactor(rds): remove unused local variables
  • Add support for provisioning RDS Custom instances
  • Support aurora for RDX proxy module
  • Add support for Aurora in DMS resource
  • Add a test script to create default subnet group for testing purpose
  • Implement an example module that demonstrate using same KMS key cross-region replica
  • Fix remaining unit tests to use the test db subnet group
  • Upgrade golang version
  • Support blue/green deployment for RDS
  • Rdx proxy unit test fix
  • Update maria DB version to supported version for testing
  • Update & Improve the instruction for deployment for RDS
  • honor lock setting backup vault
  • Fixing Redshift Unit Test - Create Subnet Group for Redshift Example Module
  • Create Test Parameter Group for Testing
  • Instruction for standby deployment for RDS module
  • wait for backup vault ot be successfully created
  • Change test db parameter group name to contain gruntwork-test prefix to configure cloud-nuke from skipping
  • Implement org-level backup policy module
  • Disable us-west regions from unit testing due to quota issue
  • fixing RdsProxy unit test - retry when proses exiit 1 but unexpected error
  • Add gruntwork-test prefix to use proper db parameter group
  • Efs enhancement
  • Redshift with snapshot
  • feat: support rds proxy security group modification
  • feat: rds proxy support for db secret kms key decryption
  • Adding Unit Test for Redshift Snapshot Feature
  • Adding Unit Test for RDS Bastion Host
  • aurora: ensure existing clusters can be updated to global clusters
  • Enable replica instance type parametrization.
  • Upgrade to db.t3.small to fix a failing test
  • Rds pass in tags
  • LIB-81: Replace tfenv and tgswitch with mise

v0.35.0

Published: 4/5/2024 | Release notes

Full Changelog: https://github.com/gruntwork-io/terraform-aws-data-storage/compare/v0.34...v0.35.0

terraform-aws-ecs

v0.36.0

Published: 4/4/2024 | Modules affected: ecs-service | Release notes

  • Added cloudwatch-based deployment circuit breaker feature to ecs-service module.
  • Updated minimum version for hashicorp/aws to 5.1.0, changes are backward compatible.

terraform-aws-eks

v0.67.2

Published: 4/24/2024 | Modules affected: eks-aws-auth-merger, eks-k8s-karpenter | Release notes

  • Update dependency in aws-auth-merger
  • Test Update TestEKSClusterWithKarpenterReactionOnEC2Event
  • Fix Karpenter interruption configuration

v0.67.1

Published: 4/11/2024 | Modules affected: eks-k8s-external-dns | Release notes

  • Add option to override the image registry for external-dns

v0.67.0

Published: 4/11/2024 | Modules affected: eks-aws-auth-merger, eks-cluster-control-plane, eks-ebs-csi-driver, eks-k8s-cluster-autoscaler | Release notes

Default EKS version is 1.29 with this release! Please see the links below for full details of the EKS 1.29 release including new features and any API changes.

Official AWS EKS 1.29 Announcement Kubernetes 1.29 Announcement Kubernetes 1.29 Release Notes

v0.66.2

Published: 4/11/2024 | Modules affected: eks-k8s-cluster-autoscaler | Release notes

  • Test Updates: TestEKSClusterManagedWorkersWithAutoscaler
  • Bigfix: Fix CAS Policy Logic

v0.66.1

Published: 4/5/2024 | Modules affected: eks-aws-auth-merger, eks-k8s-cluster-autoscaler-iam-policy, eks-k8s-cluster-autoscaler | Release notes

  • Update Cluster Autoscaler policy to support managed node groups.
  • Bump google.golang.org/protobuf from 1.26.0 to 1.33.0 in /modules/eks-aws-auth-merger/aws-auth-merger

terraform-aws-lambda

v0.21.19

Published: 4/23/2024 | Modules affected: lambda-http-api-gateway | Release notes

  • Fix python 3.7 no longer supported error
  • Support $default Route in API Gateway
  • LIB-87: Replace tfenv and tgswitch with mise

terraform-aws-load-balancer

v0.29.23

Published: 4/23/2024 | Release notes

  • LIB-86: Replace tfenv and tgswitch with mise

terraform-aws-monitoring

v0.36.18

Published: 4/23/2024 | Modules affected: agents, logs | Release notes

  • Remove EOL Amazon Linux 1 References
  • Remove old unused references to Ubuntu 14.04 AMIs
  • LIB-89: Replace tfenv and tgswitch with mise

v0.36.17

Published: 4/2/2024 | Modules affected: agents | Release notes

  • AL2023 Support for cloudwatch-agent module

terraform-aws-openvpn

v0.27.5

Published: 4/23/2024 | Release notes

  • LIB-90: Replace tfenv and tgswitch with mise

terraform-aws-security

v0.73.2

Published: 4/24/2024 | Release notes

  • Replace tfenv and tgswitch with mise

v0.73.1

Published: 4/22/2024 | Modules affected: aws-config-multi-region | Release notes

  • aws-config-multi-region

  • Variable recording_mode passed through to aws-config module from aws-config-multi-region module.

Special thanks to the following users for their contribution!

v0.73.0

Published: 4/17/2024 | Modules affected: aws-config, github-actions-iam-role, github-actions-openid-connect-provider | Release notes

  • aws-config

  • github-actions-iam-role

  • github-actions-openid-connect-provider

  • Improved GitHub OIDC documentation

  • Test Bugfixes in aws-config

⚠️

This release includes a breaking change. A variable in the github-actions-openid-connect-provider module (the map allowed_sources) has been replaced with the list allowed_organizations to better reflect the purpose of the input.

If you had the following configuration:

allowed_sources = {
    "acme/repo": ["main"]
}

Rewrite your configurations to look like the following:

allowed_organizations = ["acme"]

Note that this does not result in any loss in security, as the only component of the allowed_sources map that was being read was the organizations. This just better documents what is being used.

v0.72.1

Published: 4/15/2024 | Modules affected: auto-update, fail2ban, ntp, ssh-grunt | Release notes

  • Remove EOL Amazon Linux 1 References
  • Add support for recording_mode_override feature to aws_config

v0.72.0

Published: 4/9/2024 | Modules affected: aws-config-multi-region, ebs-encryption-multi-region, guardduty-multi-region, iam-access-analyzer-multi-region | Release notes

This release updates our multi-region code generators to use Boilerplate.

v0.71.6

Published: 4/3/2024 | Release notes

  • Add AL2023 NTP Example
  • AL2023 Support for ssh-grunt module

terraform-aws-server

v0.15.16

Published: 4/24/2024 | Release notes

  • LIB-92: Replace tfenv and tgswitch with mise

v0.15.15

Published: 4/19/2024 | Modules affected: single-server | Release notes

  • update example ebs size to fix tests

v0.15.14

Published: 4/18/2024 | Modules affected: single-server | Release notes

  • Remove Amazon Linux 1 examples and tests
  • Support AL2023 in attach-eni example
  • Add support for root_volume_iops in single-server module
  • Making the security group creation conditional for single-server module
  • Add custom egress rules with CIDR blocks to single-server module

terraform-aws-service-catalog

v0.112.2

Published: 4/22/2024 | Modules affected: data-stores | Release notes

  • Add description variable for RDS parameter group

v0.112.1

Published: 4/22/2024 | Modules affected: landingzone/account-baseline-security | Release notes

  • Propagated recording_mode up from aws-config-multi-region.

v0.112.0

Published: 4/21/2024 | Modules affected: mgmt, networking, services | Release notes

Default EKS version is 1.29 with this release! Please see the links below for full details of the EKS 1.29 release including new features and any API changes.

Official AWS EKS 1.29 Announcement Kubernetes 1.29 Announcement Kubernetes 1.29 Release Notes terraform-aws-eks Release v0.67.0

v0.111.8

Published: 4/13/2024 | Modules affected: services | Release notes

  • Add option to override the image registry for external-dns

v0.111.7

Published: 4/12/2024 | Modules affected: data-stores | Release notes

  • Updated modules/data-stores/rds to expose ca_cert_identifier variable

v0.111.6

Published: 4/10/2024 | Modules affected: data-stores | Release notes

  • Update redis module to enable logs and minor upgrade toggle

v0.111.5

Published: 4/6/2024 | Modules affected: data-stores, networking, services | Release notes

  • aurora: expose global_cluster_identifier
  • aurora: expose replication_source_identifier
  • Bump terraform-aws-eks to v0.66.1
  • Bugfix: Update Cluster Autoscaler policy to support managed node groups.

v0.111.4

Published: 4/3/2024 | Modules affected: mgmt/jenkins | Release notes

  • Expose Jenkins vended IAM role self assume and max session duration

terraform-aws-static-assets

v0.18.3

Published: 4/23/2024 | Release notes

  • LIB-85: Replace tfenv and tgswitch with mise

terraform-aws-utilities

v0.10.1

Published: 4/24/2024 | Release notes

  • Remove infraredgirl from CODEOWNERS
  • LIB-79: Replace tfenv/tgswitch with mise

terraform-aws-vpc

v0.26.24

Published: 4/24/2024 | Release notes

  • LIB-95: Replace tfenv and tgswitch with mise

v0.26.23

Published: 4/10/2024 | Modules affected: vpc-interface-endpoint | Release notes

  • feat(interface-endpoint): add vpc-lattice support

terrapatch-cli

v0.1.4

Published: 4/22/2024 | Release notes

  • Bump golang.org/x/net from 0.7.0 to 0.17.0
  • Bump google.golang.org/grpc from 1.53.0 to 1.56.3
  • Bump dependencies and Go to 1.21
  • Refactor docs
  • Bump golang.org/x/crypto from 0.14.0 to 0.17.0
  • Bump google.golang.org/protobuf from 1.30.0 to 1.33.0
  • Bump golang.org/x/net from 0.17.0 to 0.23.0
  • Use new Apple signing tool