Skip to content

Releases: cloudposse-terraform-components/aws-bastion

v1.536.7

08 Dec 17:33
@cloudposse-releaser cloudposse-releaser
v1.536.7
824c887
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.7 Latest
Latest

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#50) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

chore(deps): update terraform cloudposse/ec2-autoscale-group/aws to v0.43.1 @[renovate[bot]](https://github.com/apps/renovate) (#49) This PR contains the following updates:
Package Type Update Change
cloudposse/ec2-autoscale-group/aws (source) module patch 0.43.0 -> 0.43.1

Release Notes

cloudposse/terraform-aws-ec2-autoscale-group (cloudposse/ec2-autoscale-group/aws)

v0.43.1

Compare Source

🚀 Enhancements

fix cpu_options condition @​arnoldasbrazys (#​162)

what

Should fix:

  • Error: Attempt to get attribute from null value
  • This value is null, so it does not have any attributes

why

  • Not providing Optional cpu_options should not break the module

references

  • Closes #​161

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.44.0 @[renovate[bot]](https://github.com/apps/renovate) (#48) This PR contains the following updates:
Package Type Update Change
terraform-linters/tflint-ruleset-aws plugin minor 0.43.0 -> 0.44.0

Release Notes

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.44.0

Compare Source

What's Changed

Support for Cosign signatures has been removed from this release. The checksums.txt.keyless.sig and checksums.txt.pem will not be included in the release.
These files are not used in normal use cases, so in most cases this will not affect you, but if you are affected, you can use Artifact Attestations instead.

Breaking Changes
  • Bump github.com/terraform-linters/tflint-plugin-sdk from 0.22.0 to 0.23.1 by @​dependabot[bot] in #​966
    • Requires TFLint v0.46+
Enhancements
Chores

New Contributors

Full Changelog: terraform-linters/tflint-ruleset-aws@v0.43.0...v0.44.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Assets 2
Loading

v1.536.6

22 Oct 02:04
@cloudposse-releaser cloudposse-releaser
v1.536.6
e50ab68
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.6

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#47) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

chore(deps): update terraform cloudposse/ec2-autoscale-group/aws to v0.43.0 @[renovate[bot]](https://github.com/apps/renovate) (#46) This PR contains the following updates:
Package Type Update Change
cloudposse/ec2-autoscale-group/aws (source) module minor 0.42.0 -> 0.43.0

Release Notes

cloudposse/terraform-aws-ec2-autoscale-group (cloudposse/ec2-autoscale-group/aws)

v0.43.0

Compare Source

add cpu_options to launch template @​y3ti (#​159)

what

Add new variable cpu_options to specify CPU options for an Amazon EC2 instance

why

I need to disable Intel Hyper-Threading for instances created by AutoScaling Group. EC2 and Launch Template provides a CPU Options configuration that allows for:

  • disable Intel Hyper-Threading Technology by setting threads_per_core to 1 (default is 2 which means that hyper threading is enabled)
  • define cpu cores per instance (you might do this to potentially optimize the licensing costs of your software with an instance that has sufficient amounts of RAM for memory-intensive workloads but fewer CPU cores)
  • enable AMD Secure Encrypted Virtualization-Secure Nested Paging (AMD SEV-SNP) - a CPU feature that provides the following properties like attestation and memory encryption

references

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/launch_template#cpu-options
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instance-optimize-cpu.html
https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/sev-snp.html

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Loading

v1.536.5

26 Sep 21:18
@cloudposse-releaser cloudposse-releaser
v1.536.5
59dd697
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.5

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#45) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

chore(deps): update terraform cloudposse/ec2-autoscale-group/aws to v0.42.0 @[renovate[bot]](https://github.com/apps/renovate) (#44) Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more [here](https://redirect.github.com/renovatebot/renovate/discussions/37842).

This PR contains the following updates:

Package Type Update Change
cloudposse/ec2-autoscale-group/aws (source) module minor 0.41.1 -> 0.42.0

Release Notes

cloudposse/terraform-aws-ec2-autoscale-group (cloudposse/ec2-autoscale-group/aws)

v0.42.0

Compare Source

feat: cleartext user_data variable @​nitrocode (#​158)

what

  • feat: cleartext user_data variable

why

  • Saves us from needing to base64 encode this input
  • I vendored this module as a component and the YAML catalog's userdata needed to be base64 encoded. I could have done this using gomplate's base64 encoding function in the yaml but it wouldn't look as nice so I thought a new input would be handy here so we can defer the b64 encoding to terraform instead

vendor.yaml

apiVersion: atmos/v1
kind: AtmosVendorConfig
metadata:
  name: vendor-config
  description: Atmos vendoring manifest
spec:

### More upstream components can be found here github.com/cloudposse-terraform-components
  sources:
    - component: "ec2-autoscale-group"
      source: "github.com/cloudposse/terraform-aws-ec2-autoscale-group?ref=v{{.Version}}"
      version: "0.41.1"
      targets:
        - "components/terraform/{{.Component}}"
      excluded_paths:
        - "**/.git*"
        - "**/examples"
        - "**/test"
        - "**/*.yaml"
        - "**/LICENSE"
        - "**/README.md"

stack yaml

    ec2-autoscale-group/kali:
      metadata:
        component: ec2-autoscale-group
        inherits:
          - ec2-autoscale-group/defaults
      vars:
        enabled: true
        name: kali

### ...
        user_data: |
          #!/bin/bash
          set -xe

### Install updates and packages
          sudo apt-get update -y
          sudoapt-get upgrade -y

### Install AWS SSM Agent
          wget https://s3.amazonaws.com/ec2-downloads-windows/SSMAgent/latest/debian_amd64/amazon-ssm-agent.deb
          sudo dpkg -i amazon-ssm-agent.deb
          sudo systemctl status amazon-ssm-agent
          sudo systemctl enable amazon-ssm-agent
          sudo systemctl start amazon-ssm-agent

references

N/A

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#43) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.43.0 @[renovate[bot]](https://github.com/apps/renovate) (#42) Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more [here](https://redirect.github.com/renovatebot/renovate/discussions/37842).

This PR contains the following updates:

Package Type Update Change
terraform-linters/tflint-ruleset-aws plugin minor 0.42.0 -> 0.43.0

Release Notes

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.43.0

Compare Source

What's Changed

Breaking Changes
Enhancements
Chores
Read more
Loading

v1.536.4

12 Sep 23:19
@cloudposse-releaser cloudposse-releaser
v1.536.4
559f254
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.4

🚀 Enhancements

fix: Destruction @milldr (#40) ## what - Update module version and add VPC defaults

why

  • Fix destruction of the component, enabled: false

references

.

Summary by CodeRabbit

  • Refactor

    • Added sensible default values for network configuration inputs (VPC and subnets) to simplify initial setup and reduce misconfiguration risk.

  • Chores

    • Updated ignore rules to exclude the account-map directory from version control.

🤖 Automatic Updates

Migrate README generation to atmos @goruha (#39) ## what - Update README.yaml

why

  • Use atmos to generate readme
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.42.0 @[renovate[bot]](https://github.com/apps/renovate) (#37) This PR contains the following updates:
Package Type Update Change
terraform-linters/tflint-ruleset-aws plugin minor 0.41.0 -> 0.42.0

Release Notes

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.42.0

Compare Source

What's Changed

Breaking Changes
Chores

Full Changelog: terraform-linters/tflint-ruleset-aws@v0.41.0...v0.42.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.41.0 @[renovate[bot]](https://github.com/apps/renovate) (#36) This PR contains the following updates:
Package Type Update Change
terraform-linters/tflint-ruleset-aws plugin minor 0.40.0 -> 0.41.0

Release Notes

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.41.0

Compare Source

What's Changed

Breaking Changes
Enhancements
Chores
Read more

Contributors

goruha and milldr
Loading

v1.536.3

10 Jul 14:01
@cloudposse-releaser cloudposse-releaser
v1.536.3
249c07a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.3

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#35) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

Loading

v1.536.2

10 Jul 13:59
@cloudposse-releaser cloudposse-releaser
v1.536.2
4f5289d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.2
Fix readme generation @goruha (#34) ## what * Fix readme generation

Summary by CodeRabbit

  • Documentation
    • Improved indentation for input parameters in the documentation for better readability.
chore(deps): restrict aws provider version to < 6.0.0 @Benbentwo (#31) This pull request includes a version constraint update for the AWS provider in the Terraform configuration file `src/versions.tf`. The change ensures compatibility with versions up to but not including 6.0.0.
  • src/versions.tf: Updated the version constraint for the aws provider to >= 4.9.0, < 6.0.0 to ensure compatibility with future versions while avoiding potential breaking changes in version 6.0.0.
Add configurable VPC component @Benbentwo (#29) ## Summary - allow customizing which VPC component to query via remote state

Testing

  • make test
  • make readme (fails: No rule to make target)

https://chatgpt.com/codex/tasks/task_b_68598513e794832b81a57328c4de0fa3

Summary by CodeRabbit

  • New Features
    • Added a new configurable input for specifying the name of the VPC component to look up via remote state, with a default value provided.
  • Documentation
    • Updated documentation to reflect the new input variable and its details.

🤖 Automatic Updates

chore(deps): update terraform cloudposse/ec2-autoscale-group/aws to v0.41.1 @[renovate[bot]](https://github.com/apps/renovate) (#30) This PR contains the following updates:
Package Type Update Change
cloudposse/ec2-autoscale-group/aws (source) module patch 0.41.0 -> 0.41.1

Release Notes

cloudposse/terraform-aws-ec2-autoscale-group (cloudposse/ec2-autoscale-group/aws)

v0.41.1

Compare Source

fix: remove deprecated `elastic_gpu_specifications` @​RoseSecurity (#​154)

what

Amazon Elastic Graphics died on 8 Jan 2024, and the AWS provider yanked the knob in v6.0.0. Use GPU-class instance types (G4*/G5, etc.) or other modern accelerators instead.

What

  • Resolves the following error in pipeline:
│ Error: Unsupported block type

│   on .terraform/infra/modules/autoscale_group/main.tf line 39, in resource "aws_launch_template" "default":
│   39:   dynamic "elastic_gpu_specifications" {

│ Blocks of type "elastic_gpu_specifications" are not expected here.
  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • This change requires a documentation update

Testing

  • Validated with atmos validate stacks
  • Performed successful atmos terraform plan on component using this module

References

🤖 Automatic Updates

Fix go version in tests @​osterman (#​152)

what

  • Update go 1.24

why

  • Error loading shared library libresolv.so.2 in Go 1.20

References

Replace Makefile with atmos.yaml @​osterman (#​151)

what

  • Remove Makefile
  • Add atmos.yaml

why

  • Replace build-harness with atmos for readme genration

References

  • DEV-3229 Migrate from build-harness to atmos

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Enable merge queue @goruha (#28) ## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners files

why

  • Support auto merge PRs
  • Create merge queue
  • Implement new CodeOwners policy
Enable merge queue @goruha (#27) ## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners files

why

  • Support auto merge PRs
  • Create merge queue
  • Implement new CodeOwners policy
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.40.0 @[renovate[bot]](https://github.com/apps/renovate) (#6) This PR contains the following updates:
Package Type Update Change
terraform-linters/tflint-ruleset-aws plugin minor 0.23.1 -> 0.40.0

Release Notes

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.40.0

Compare Source

What's Changed

Enhancements
Chores
Read more

Contributors

goruha and Benbentwo
Loading

v1.536.1

31 May 16:20
@cloudposse-releaser cloudposse-releaser
v1.536.1
dfb1451
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.1

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#25) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

chore(deps): update terraform cloudposse/stack-config/yaml to v1.8.0 @[renovate[bot]](https://github.com/apps/renovate) (#4) This PR contains the following updates:
Package Type Update Change
cloudposse/stack-config/yaml (source) module minor 1.5.0 -> 1.8.0

Release Notes

cloudposse/terraform-yaml-stack-config (cloudposse/stack-config/yaml)

v1.8.0: [remote-state] Improve backend compatibility

Compare Source

Among other things detailed below, this release enables users to fix deprecation warnings like:

│ Warning: Deprecated Parameters
│ 
│   with module.account_map.data.terraform_remote_state.data_source[0],
│   on .terraform/modules/account_map/modules/remote-state/data-source.tf line 88, in data "terraform_remote_state" "data_source":
│   88: data "terraform_remote_state" "data_source" {
│ 
│ The following parameters have been deprecated. Replace them as follows:
│   * role_arn -> assume_role.role_arn

(cf. #​93 and #​96)

If you are receiving deprecation warnings from remote-state, they can now be resolved by updating your backend/remote_state_backend configuration to match the version of Terraform or Tofu you are using. For example, change

terraform:
  backend:
    s3:
      bucket: my-tfstate-bucket
      dynamodb_table: my-tfstate-lock-table
      role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-role
  remote_state_backend:
    s3:
      role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-read-only-role

to

terraform:
  backend:
    s3:
      bucket: my-tfstate-bucket
      dynamodb_table: my-tfstate-lock-table
      assume_role:
        role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-role
  remote_state_backend:
    s3:
      assume_role:
        role_arn: arn:aws:iam::123456789012:role/my-tfstate-access-read-only-role

🚀 Enhancements

[remote-state] Improve backend compatibility @​Nuru (#​105)

what

  • Improve remote-state backend compatibility

Rather than trying to parse the backend configuration, as a general rule we now just pass it through to the data source. This provides future-proof compatibility with all backends supported by Terraform and OpenTofu.

why

  • This prevents the need for updates like #​99 to provide configuration for future S3 backends, while eliminating compatibility issues like #​102.
  • This also eliminates deprecation warnings caused by forcing configuration to look a certain way.
  • Now, users can manage their own remote state configuration to match their toolset.

references

v1.7.0: (not recommended)

Compare Source

feat: support for gcs backends @​burnzy (#​95)

what

Simple change to add support for GCS backends

why

Allows GCP users (users with gcs backends) to make use of this remote-state module for sharing data between components.

references

🚀 Enhancements

Support local backend @​Nuru (#​104)

what

  • Support retrieving remote state from local backends
    • NOTE: Using relative paths in local backends is tricky, because the path needs to resolve to the same directory from the source root module directory as from the client root module directory.
  • Fix Terratests
    • The spacelift test suite is broken, and we never previously required it to work, so it is now skipped
  • Update test suite to use go v1.21 and update dependencies

why

  • When running demos and tests, it is more convenient to use local backends
  • Maintain some degree of testing
  • Closes multiple dependabot PRs:

🤖 Automatic Updates

Bump the go_modules group in /test/src with 5 updates @​dependabot (#​94) Bumps the go_modules group in /test/src with 5 updates:
Package From To
github.com/hashicorp/go-getter 1.7.1 1.7.5
golang.org/x/crypto 0.1.0 0.17.0
golang.org/x/net 0.8.0 0.10.0
google.golang.org/grpc 1.51.0 1.56.3
google.golang.org/protobuf 1.28.1 1.30.0

Updates github.com/hashicorp/go-getter from 1.7.1 to 1.7.5

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.7.5

What's Changed

New Contributors

Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.4...v1.7.5

v1.7.4

What's Changed

Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.3...v1.7.4

v1.7.3

What's Changed

New Contributors

Read more

Contributors

goruha
Loading

v1.536.0

04 Apr 19:46
@cloudposse-releaser cloudposse-releaser
v1.536.0
bec0070
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.536.0
fix: adjust functions to allow for a clean deletion @RoseSecurity (#17) ## what
  • When the following command is ran on the component, the deletion fails:
# Destroy resources
atmos terraform destroy bastion -s <stack>

Error:


│ Error: Invalid index

│   on main.tf line 132, in module "bastion_autoscale_group":
│  132:   user_data_base64            = join("", data.cloudinit_config.config[0][*].rendered)
│     ├────────────────
│     │ data.cloudinit_config.config is empty tuple

│ The given key does not identify an element in this collection value: the collection has no elements.

Releasing state lock. This may take a few moments...

why

  • data.cloudinit_config.config is a list with count = 0 or 1
  • We're accessing the first (and only) element when it exists
  • We want a safe fallback when it’s disabled
  • Clean up outputs when disabled

Summary by CodeRabbit

  • Bug Fixes
    • Improved error handling during initialization to gracefully handle missing configuration details.
    • Updated output derivation for profile information, ensuring more consistent and reliable data presentation.

Contributors

RoseSecurity
Loading

v1.535.0

04 Jan 11:18
@goruha goruha
v1.535.0
187709e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.535.0

Migrate component from cloudposse/terraform-aws-components

Loading

v1.534.0

04 Jan 11:01
@goruha goruha
v1.534.0
187709e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.534.0

Migrate component from cloudposse/terraform-aws-components

Loading