Ecosyste.ms: Issues
An open API service for providing issue and pull request metadata for open source projects.
GitHub / schubergphilis/terraform-aws-mcaf-landing-zone issues and pull requests
#213 - fix: add the option to control the SecurityHub auto enabling behaviour for newly created AWS accounts
Pull Request -
State: closed - Opened by kapas2004 4 months ago
- 1 comment
Labels: bug
#212 - fix: Remove unused SES forwarder alias
Pull Request -
State: closed - Opened by shoekstra 4 months ago
- 1 comment
Labels: bug
#211 - fix: bump Datadog module to one with fixed dependencies
Pull Request -
State: closed - Opened by stefanwb 5 months ago
- 1 comment
Labels: bug
#210 - breaking: update GuardDuty to support runtime monitoring
Pull Request -
State: closed - Opened by marwinbaumannsbp 5 months ago
- 1 comment
Labels: documentation, breaking
#209 - feature: update dependencies for security findings
Pull Request -
State: closed - Opened by Plork 5 months ago
- 1 comment
Labels: feature
#208 - bug: encrypt the audit manager reports bucket using KMS
Pull Request -
State: closed - Opened by marwinbaumannsbp 6 months ago
- 1 comment
Labels: bug, enhancement
#207 - feature: upgrade the datadog integration module, exposing the latest settings
Pull Request -
State: closed - Opened by marwinbaumannsbp 7 months ago
- 1 comment
Labels: feature
#206 - fix: add create timeout config for aws_inspector2_enabler resource
Pull Request -
State: closed - Opened by skesarkar-schubergphilis 7 months ago
- 1 comment
Labels: fix
#205 - fix: for passing Control.1 Security Hub control on the core-mgmt account
Pull Request -
State: closed - Opened by marceldevroed 8 months ago
- 1 comment
Labels: bug
#204 - bug: add servicequotas to allowed regions deny since global quotas need to be managed from us-east-1
Pull Request -
State: closed - Opened by marwinbaumannsbp 9 months ago
- 1 comment
Labels: bug
#203 - feat: support disabling individual securityhub controls
Pull Request -
State: open - Opened by sbkg0002 9 months ago
- 1 comment
Labels: feature
#202 - fix: global allowed region permissions for quicksight
Pull Request -
State: closed - Opened by svashisht03 10 months ago
- 1 comment
Labels: fix
#201 - fix: add logs:* to the allowed regions exclusion since this is needed for global services
Pull Request -
State: closed - Opened by angautam 11 months ago
Labels: fix
#200 - feature: Add Amazon Inspector support
Pull Request -
State: closed - Opened by wvanheerde about 1 year ago
- 4 comments
Labels: feature
#199 - fix: add default principal to region deny SCP
Pull Request -
State: closed - Opened by marwinbaumannsbp about 1 year ago
- 1 comment
Labels: bug
#198 - fix: global allowed region permissions for s3 logging & quicksight
Pull Request -
State: closed - Opened by Plork about 1 year ago
- 1 comment
Labels: bug, fix
#197 - enhancement: Enable AWS Audit Manager
Pull Request -
State: closed - Opened by stefanwb about 1 year ago
- 1 comment
Labels: feature
#196 - breaking: Control Tower 3.0 support
Pull Request -
State: closed - Opened by stefanwb about 1 year ago
- 1 comment
Labels: breaking
#195 - fix: add provider to guardduty features
Pull Request -
State: closed - Opened by marcoschreurs about 1 year ago
- 1 comment
Labels: bug
#194 - breaking: Add AWS Guardduty detector features & bump AWS provider to next major v5
Pull Request -
State: closed - Opened by marcoschreurs about 1 year ago
- 2 comments
Labels: breaking
#193 - feat: Add option to provide event_selector for CloudTrail
Pull Request -
State: closed - Opened by sbkg0002 over 1 year ago
- 1 comment
Labels: feature
#192 - fix: allow more flexibility in configuring security hub for core accounts
Pull Request -
State: closed - Opened by carlovoSBP over 1 year ago
- 1 comment
Labels: bug
#191 - enhancement: Update mcaf datadog to v0.3.12
Pull Request -
State: closed - Opened by marcoschreurs over 1 year ago
- 1 comment
Labels: enhancement
#190 - feat: update allowed_regions SCP to include latest services
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: feature
#189 - test checkov update
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 3 comments
#188 - bug: tag policy documentation is not in line with actual enforcement options enforced by the tag policies service
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: bug
#187 - feat: update the tag policy services and resource types list that support enforcement
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: feature, fix, security
#186 - bug: aws security hub in management settings need to be removed to prevent overriding of values
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: bug
#185 - feature: Refactor AWS Security Hub configuration
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: breaking, feature
#184 - bug: cis metrics filters get removed when upgrading to v0.26.0 or higher but not upgrading to security hub cis 1.4
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: bug
#183 - fix: Remove unused `files/okta/app_settings.json.tpl` file
Pull Request -
State: closed - Opened by shoekstra over 1 year ago
- 1 comment
Labels: fix
#182 - enhancement: Adds log collection option for DD integration
Pull Request -
State: closed - Opened by stefanwb over 1 year ago
- 1 comment
Labels: feature
#181 - Adds log collection option for DD integration
Pull Request -
State: closed - Opened by stefanwb over 1 year ago
- 3 comments
#180 - bug: ses-root-accounts-mail-forward s3 bucket solve ACL error
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: bug
#179 - bug: when creating the AWS Config bucket the ACL is not supported
Pull Request -
State: closed - Opened by marwinbaumannsbp over 1 year ago
- 1 comment
Labels: bug
#178 - Data sources which refer to Audit- and Loggingaccount Cloudwatch log groups no longer found after Control Tower update to version 3.0
Issue -
State: closed - Opened by davealtenasbp almost 2 years ago
- 1 comment
#177 - enhancement: Update cis-aws-foundations-benchmark from v1.2.0 to v1.4.0
Pull Request -
State: closed - Opened by stimmerman almost 2 years ago
- 1 comment
Labels: enhancement
#176 - enhancement: Enable SecurityHub for management and logging account
Pull Request -
State: closed - Opened by stimmerman almost 2 years ago
- 1 comment
Labels: bug, documentation, enhancement, feature
#175 - fix: GuardDuty malware permissions
Pull Request -
State: closed - Opened by stimmerman almost 2 years ago
- 2 comments
Labels: bug
#174 - docs: set changelog to right format after changelog update failure
Pull Request -
State: closed - Opened by marwinbaumannsbp almost 2 years ago
- 1 comment
Labels: no-changelog
#173 - docs: update changelog to auto updater format
Pull Request -
State: closed - Opened by marwinbaumannsbp almost 2 years ago
- 1 comment
Labels: documentation, no-changelog
#172 - Remove workflows
Pull Request -
State: closed - Opened by shoekstra almost 2 years ago
#171 - enhancement: add kms encryption to the CloudTrail `additional_auditing_trail`
Pull Request -
State: closed - Opened by japm94 almost 2 years ago
- 3 comments
Labels: documentation, enhancement, feature
#170 - TF docs needs to write content
Pull Request -
State: closed - Opened by stimmerman about 2 years ago
#169 - Be more explicit about which files to keep in sync
Pull Request -
State: closed - Opened by stefanwb about 2 years ago
#168 - Bumps checkov in Actions
Pull Request -
State: closed - Opened by stefanwb about 2 years ago
#167 - Add KMS permissions to the KMS key to allow encryption/decryption by the cloudWatch log group of the ses-root-accounts-mail-forward lambda
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#166 - Encrypt the CloudWatch log group of the ses-root-accounts-mail-forward lambda
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#165 - Change nested provider to provider alias
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#164 - Use a seperate bucket to store AWS Config Configuration History, enable KMS on the delivery channel objects, and add the option to set a optional path for all supported IAM resources.
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#163 - Restructure module - create a file per provided functionality instead of per account
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#162 - Make GuardDuty finding publishing frequency configurable
Pull Request -
State: closed - Opened by shoekstra about 2 years ago
- 1 comment
#161 - Extend GuardDuty functionality
Pull Request -
State: closed - Opened by secbyd about 2 years ago
- 1 comment
#160 - Adding CheckOV to the workflow and solving all CheckOV findings
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
- 1 comment
#159 - Add supportplan:* to the DenyAllRegionsOutsideAllowedList SCP
Pull Request -
State: closed - Opened by stimmerman about 2 years ago
#158 - Fixes CheckOV findings related to GuardDuty
Pull Request -
State: closed - Opened by dennisbrouwer91 about 2 years ago
#157 - Update minimum AWS provider version and fix deprecation message in `aws_identitystore_group` data resource
Pull Request -
State: closed - Opened by stromp about 2 years ago
#156 - Add DMARC support for SES root accounts mail forward feature, this will make it possible to configure a RUA or RUF email adres to send DMARC reports to.
Pull Request -
State: closed - Opened by marwinbaumannsbp about 2 years ago
#155 - Remove unsupported services and use uniq policy names
Pull Request -
State: closed - Opened by sbkg0002 about 2 years ago
- 1 comment
#154 - Fix typo in readme
Pull Request -
State: closed - Opened by sbkg0002 about 2 years ago
#153 - Allow AWSControlTowerExecution role as an exception to deny_disabling_security_hub and deny_leaving_org policies. Change variable from aws_region_restrictions to aws_root_scp_exceptions
Pull Request -
State: closed - Opened by japm94 about 2 years ago
#152 - Optional tag enforcement
Pull Request -
State: closed - Opened by sbkg0002 about 2 years ago
- 10 comments
#151 - Allow tag policy without values
Pull Request -
State: closed - Opened by sbkg0002 about 2 years ago
- 2 comments
#150 - Move permission set management to it's own module
Pull Request -
State: closed - Opened by shoekstra about 2 years ago
- 1 comment
#149 - Bumps terraform-aws-mcaf-ses-forwarder
Pull Request -
State: closed - Opened by stefanwb about 2 years ago
#148 - Update allowed regions list to include latest services
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
#147 - Update AWS ConfigRole to match the updated policy name
Pull Request -
State: closed - Opened by sbkg0002 over 2 years ago
#146 - Remove child trails and alarms due to incompatibility with CT3.0
Pull Request -
State: closed - Opened by sbkg0002 over 2 years ago
#145 - Only use `aws_cloudwatch_log_group` data sources when the variable `monitor_iam_activity` is set to true
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
#144 - Fix error: Null values are not allowed for this attribute value.
Pull Request -
State: closed - Opened by stefanwb over 2 years ago
#143 - Update the terraform-aws-mcaf-ses module to v0.1.2
Pull Request -
State: closed - Opened by stimmerman over 2 years ago
- 1 comment
#142 - Fix SH finding SNS.2 on core-audit account -- Configuring delivery status logging
Pull Request -
State: closed - Opened by stefanwb over 2 years ago
#141 - Update the terraform-aws-mcaf-ses module to v0.1.1 to support DMARC record creation
Pull Request -
State: closed - Opened by stimmerman over 2 years ago
#140 - updated key permissions for pipeline
Pull Request -
State: closed - Opened by skesarkar-schubergphilis over 2 years ago
#139 - Modify master account KMS key policy allowing override
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
#138 - Allow sns.amazonaws.com access to the audit kms key and remove an unneeded statement in the master key
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
#137 - Add support for providing custom KMS key policy for audit KMS key and move KMS to a seperate file
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
- 1 comment
#136 - Add support for AWS Provider version 4
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
- 1 comment
#135 - Modify KMS key input of the internal module to use ARN in stead of ID
Pull Request -
State: closed - Opened by marwinbaumannsbp over 2 years ago
#134 - feature/whitelist-sustainability-service
Pull Request -
State: closed - Opened by skesarkar-schubergphilis over 2 years ago
- 1 comment
#133 - Add site URL to audit and logging datadog modules
Pull Request -
State: closed - Opened by wvanheerde almost 3 years ago
#132 - Release v0.15.3
Pull Request -
State: closed - Opened by marwinbaumannsbp almost 3 years ago
#131 - Skip `iam_activity` when monitoring var set to `false`
Pull Request -
State: closed - Opened by shoekstra almost 3 years ago
#130 - Updated KMS key policy in logging account
Pull Request -
State: closed - Opened by masafari almost 3 years ago
#129 - adds a kms key with minimum policies to logging acccount
Pull Request -
State: closed - Opened by masafari almost 3 years ago
#128 - Add an optional mail forwarder used to accept mail sent to an AWS hosted domain and forward it to an external recipient or recipients.
Pull Request -
State: closed - Opened by marwinbaumannsbp about 3 years ago
#127 - Add support for providing secure mailboxes/IT service catalog aliases for all root accounts using Amazon SES/Lambda.
Pull Request -
State: closed - Opened by marwinbaumannsbp about 3 years ago
- 4 comments
#126 - upgraded usage of datadog module to v0.3.8
Pull Request -
State: closed - Opened by masafari about 3 years ago
#125 - Add account level s3 public access block
Pull Request -
State: closed - Opened by wvanheerde about 3 years ago
- 1 comment
#124 - Add support for sso managed policies
Pull Request -
State: closed - Opened by wvanheerde over 3 years ago
- 1 comment
#123 - fix policy malfunction issue
Pull Request -
State: closed - Opened by alirizwansbp over 3 years ago
#122 - Adds license header to README
Pull Request -
State: closed - Opened by stefanwb over 3 years ago
#121 - Set the audit account as security hub administrator account for the o…
Pull Request -
State: closed - Opened by marwinbaumannsbp over 3 years ago
#120 - Conditional merge iam policy
Pull Request -
State: closed - Opened by alirizwansbp over 3 years ago
- 17 comments
#119 - Change topic policy, add additional IAM activity checks
Pull Request -
State: closed - Opened by wvanheerde over 3 years ago
- 1 comment
#118 - Upgrade mcaf datadog to v0.3.7
Pull Request -
State: closed - Opened by wvanheerde over 3 years ago
#117 - Update IAM activity filters
Pull Request -
State: closed - Opened by wvanheerde over 3 years ago
#114 - SecurityHub just receives alerts in Audit account
Issue -
State: closed - Opened by HarleyB123 over 3 years ago
- 3 comments
#103 - update datadog module
Pull Request -
State: closed - Opened by 64ne almost 4 years ago
#100 - Allows access-analyzer to be used outside region since it's a global service
Pull Request -
State: closed - Opened by stefanwb almost 4 years ago
- 2 comments