Releases: cloudposse-terraform-components/aws-account
Releases · cloudposse-terraform-components/aws-account
v2.0.0
feat!: refactor to single-resource pattern for managing individual AWS accounts @Benbentwo (#52)
## Summary- Refactor component from monolithic organization hierarchy management to single-resource pattern (one AWS account per component instance)
- Add conditional import block support (requires OpenTofu >= 1.7.0)
- Move
import_account_idvariable and import block to separateimports.tf(optional when vendoring) - Remove contacts management (moved to
aws-account-settingscomponent)
Breaking Changes
This component now manages a single AWS account instead of the entire organization hierarchy. See docs/migration.md for migration instructions.
New Component Suite
The monolithic account component is replaced by single-resource components:
| Component | Purpose |
|---|---|
aws-organization |
Creates/imports the AWS Organization |
aws-organizational-unit |
Creates/imports a single OU |
aws-account |
Creates/imports a single AWS Account (this component) |
aws-account-settings |
Configures account settings (IAM alias, S3 block, EBS encryption) |
aws-scp |
Creates/imports Service Control Policies |
Files Changed
| File | Change |
|---|---|
src/main.tf |
Simplified to single-resource pattern |
src/variables.tf |
New variables: account_email, parent_id, etc. |
src/outputs.tf |
Simplified outputs |
src/imports.tf |
New - Optional import block (exclude when vendoring if not needed) |
src/versions.tf |
Requires OpenTofu >= 1.7.0 |
docs/migration.md |
New - Migration guide |
src/contacts.tf |
Removed - Moved to aws-account-settings |
src/contacts-variables.tf |
Removed - Moved to aws-account-settings |
Summary by CodeRabbit
-
New Features
- Import existing AWS accounts into state; single-account provisioning pattern
-
Documentation
- Rewrote docs and READMEs for per-account usage; added migration guide and examples (basic, import, defaults, multi-account sample)
-
Removed Features
- Removed contacts management and prior multi-account/OU/SCP orchestration guidance
-
Refactor
- Simplified inputs/outputs and consolidated provisioning to a single-account interface
-
Chores
- Bumped Terraform requirement to >= 1.7.0
✏️ Tip: You can customize this high-level summary in your review settings.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#53)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.45.0 @[renovate[bot]](https://github.com/apps/renovate) (#50)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.44.0 → 0.45.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.45.0
What's Changed
Breaking Changes
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] in #981
- Update AWS provider/module and generated content by @github-actions[bot] in #990
- Update AWS provider/module and generated content by @github-actions[bot] in #999
- Update AWS provider/module and generated content by @github-actions[bot] in #1000
- Update AWS provider/module and generated content by @github-actions[bot] in #1004
- Update AWS provider/module and generated content by @github-actions[bot] in #1005
- Update AWS provider/module and generated content by @github-actions[bot] in #1011
- Update AWS provider/module and generated content by @github-actions[bot] in #1021
Bug Fixes
- dms_s3_endpoint: fix enum validations by @bendrucker in #991
resource_missing_tags: handle explicit refs to default provider by @bendrucker in #1003
Chores
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #980
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #982
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.67 to 2.0.0-beta.68 by @dependabot[bot] in #983
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #987
- Bump golang.org/x/net from 0.46.0 to 0.47.0 by @dependabot[bot] in #988
- Replace Ruby SDK models with official Smithy repository by @bendrucker in #901
- generator: add tests and improve error handling by @bendrucker in #992
- Bump actions/setup-go from 6.0.0 to 6.1.0 by @dependabot[bot] in #996
- Bump actions/checkout from 5.0.0 to 6.0.0 by @dependabot[bot] in #995
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #997
- Bump peter-evans/create-pull-request from 7.0.8 to 7.0.9 by @dependabot[bot] in #994
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #1001
- Bump actions/checkout from 6.0.0 to 6.0.1 by @dependabot[bot] in #1006
- Bump github.com/aws/smithy-go from 1.23.2 to 1.24.0 by @dependabot[bot] in #1009
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #1008
- Bump peter-evans/create-pull-request from 7.0.9 to 7.0.11 by @dependabot[bot] in #1007
- Bump peter-evans/create-pull-request from 7.0.11 to 8.0.0 by @dependabot[bot] in #1012
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.68 to 2.0.0-beta.69 by @dependabot[bot] in [#1014](https://redirect.github.com/terraform-linters/tflint-ruleset-aw...
Contributors
Benbentwo
Assets 2
v1.538.0
feat(contacts): add support for account contacts @johncblandii (#48)
## what- Support account contacts
why
- Allows contact support for accounts
references
Summary by CodeRabbit
-
New Features
- Manage AWS account contacts: primary and alternate contacts for master and sub-accounts via new public resources.
- Add a structured "contacts" input to configure enabled flag, primary address/contact details, and named alternates (billing, operations, security).
-
Documentation
- README and examples updated to show the new contacts input structure and usage.
-
Validation
- Input validates alternate types and enforces 2-letter country codes for primary.
✏️ Tip: You can customize this high-level summary in your review settings.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#49)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Contributors
johncblandii
Assets 2
v1.537.1
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#47)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update terraform cloudposse/service-control-policies/aws to v0.15.2 @[renovate[bot]](https://github.com/apps/renovate) (#46)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| cloudposse/service-control-policies/aws (source) | module | patch | 0.15.1 -> 0.15.2 |
Release Notes
cloudposse/terraform-aws-service-control-policies (cloudposse/service-control-policies/aws)
v0.15.2
Enhance SCP to Cover Additional BlockPublicAccess Cases @petabook (#69)
This update extends the Service Control Policy (SCP) to address more scenarios involving S3 `BlockPublicAccess`. * There are two types of `BlockPublicAccess` APIs: - Bucket-level - Account-levelBy using a wildcard * the SCP now denies both (and future) types.
- Additionally, deletion of these policies is protected to prevent accidental or unauthorized removal.
Impact
- Strengthens security posture by ensuring consistent enforcement of S3 BlockPublicAccess at both the bucket and account levels.
- Prevents tampering or removal of critical access control policies.
🤖 Automatic Updates
Fix go version in tests @osterman (#68)
what
- Update go
1.24
why
- Error loading shared library libresolv.so.2 in Go 1.20
References
Replace Makefile with atmos.yaml @osterman (#67)
what
- Remove
Makefile - Add
atmos.yaml
why
- Replace
build-harnesswithatmosfor readme genration
References
- DEV-3229 Migrate from build-harness to atmos
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.44.0 @[renovate[bot]](https://github.com/apps/renovate) (#45)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.43.0 -> 0.44.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.44.0
What's Changed
Support for Cosign signatures has been removed from this release. The checksums.txt.keyless.sig and checksums.txt.pem will not be included in the release.
These files are not used in normal use cases, so in most cases this will not affect you, but if you are affected, you can use Artifact Attestations instead.
Breaking Changes
- Bump github.com/terraform-linters/tflint-plugin-sdk from 0.22.0 to 0.23.1 by @dependabot[bot] in #966
- Requires TFLint v0.46+
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] in #954
- Update AWS provider/module and generated content by @github-actions[bot] in #959
- Update Lambda runtime deprecation dates by @Copilot in #969
- Add missing ElastiCache node type: cache.r6gd.large by @Copilot in #971
- Fix typos in AWS RDS DB instance types by @Copilot in #972
- Add missing AWS S3 bucket naming restrictions by @Copilot in #976
Chores
- Bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.251.2 to 1.253.0 in the aws-sdk group by @dependabot[bot] in #952
- Bump github.com/hashicorp/terraform-json from 0.26.0 to 0.27.2 by @dependabot[bot] in #953
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #956
- Bump the aws-sdk group with 2 updates by @dependabot[bot] in #957
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.66 to 2.0.0-beta.67 by @dependabot[bot] in #958
- Bump github.com/aws/aws-sdk-go-v2/service/rds from 1.108.0 to 1.108.2 in the aws-sdk group by @dependabot[bot] in #960
- Bump golang.org/x/net from 0.44.0 to 0.46.0 by @dependabot[bot] in #961
- Bump sigstore/cosign-installer from 3.10.0 to 4.0.0 by @dependabot[bot] in #962
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #963
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #965
- Drop support for Cosign signatures by @wata727 in #968
- Add documentation to AWS MQ engine type validation rules by @Copilot in #974
- Reorder S3 bucket ACL enum values for consistency by @Copilot in #975
New Contributors
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.43.0...v0.44.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR w...
v1.537.0
feat: `aws_iam_organizations_features` @milldr (#43)
## what - Added optional resource, `aws_iam_organizations_features`why
- We can use this to enable
RootCredentialsManagementandRootSessions. By doing so, we can centralized root access and remove the requirement for root creds in each child account
For example
components:
terraform:
account:
vars:
...
organization_enabled_features:
- RootCredentialsManagement
- RootSessionsreferences
Manages centralized root access features across AWS member accounts managed using AWS Organizations. More information about managing root access in IAM can be found in the Centralize root access for member accounts.
Summary by CodeRabbit
- New Features
- Enable and manage AWS Organizations features at the Organization Root level.
- Feature activation is conditional and tied to organization state.
- Configure multiple features at once using a simple list-based setting with sensible defaults.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#44)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#42)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.43.0 @[renovate[bot]](https://github.com/apps/renovate) (#41)
Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more [here](https://redirect.github.com/renovatebot/renovate/discussions/37842).This PR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.42.0 -> 0.43.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.43.0
What's Changed
Breaking Changes
Enhancements
- Update AWS provider/module and generated content by @github-actions[bot] in #921
- Update AWS provider/module and generated content by @github-actions[bot] in #948
Chores
- Bump golang.org/x/net from 0.42.0 to 0.43.0 by @dependabot[bot] in #927
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #928
- Bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 by @dependabot[bot] in #931
- Bump github.com/hashicorp/terraform-json from 0.25.0 to 0.26.0 by @dependabot[bot] in #930
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #929
- Bump actions/checkout from 4.2.2 to 5.0.0 by @dependabot[bot] in #932
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #933
- Bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by @dependabot[bot] in #934
- Bump github.com/zclconf/go-cty from 1.16.3 to 1.16.4 by @dependabot[bot] in #935
- dependabot: allow actions writes by @wata727 in #936
- Fix E2E tests to take into account the newly added JSON fields by @wata727 in #944
- Bump actions/attest-build-provenance from 2.4.0 to 3.0.0 by @dependabot[bot] in #937
- Bump github.com/aws/smithy-go from 1.22.5 to 1.23.0 by @dependabot[bot] in #938
- Bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by @dependabot[bot] in #940
- Bump github.com/zclconf/go-cty from 1.16.4 to 1.17.0 by @dependabot[bot] in #942
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.65 to 2.0.0-beta.66 by @dependabot[bot] in #943
- Bump the aws-sdk group with 7 updates by @dependabot[bot] in #939
- Bump actions/setup-go from 5.5.0 to 6.0.0 by @dependabot[bot] in #941
- Bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by @dependabot[bot] in #945
- Bump golang.org/x/net from 0.43.0 to 0.44.0 by @dependabot[bot] in #946
- deps: Bump Go version to 1.25 by @wata727 in #950
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.42.0...v0.43.0
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR was generated by Mend Renovate. View the repository job log.
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#40)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#38)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Contributors
goruha and milldr
Assets 2
v1.536.2
chore(deps): restrict aws provider version to < 6.0.0 @Benbentwo (#29)
This pull request includes a version constraint update for the AWS provider in the Terraform configuration file `src/versions.tf`. The change ensures compatibility with versions up to but not including 6.0.0.src/versions.tf: Updated the version constraint for theawsprovider to>= 4.9.0, < 6.0.0to ensure compatibility with future versions while avoiding potential breaking changes in version 6.0.0.
Summary by CodeRabbit
- Chores
- Updated AWS provider version constraints to prevent automatic upgrades to major version 6 or above.
🤖 Automatic Updates
Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#30)
## what This is an auto-generated PR that updates the README.md and docswhy
To have most recent changes of README.md and doc from origin templates
Enable merge queue @goruha (#28)
## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners fileswhy
- Support auto merge PRs
- Create merge queue
- Implement new CodeOwners policy
Enable merge queue @goruha (#27)
## what - Added `auto-merge` workflow - Update `settings.yaml` - Fix CodeOwners fileswhy
- Support auto merge PRs
- Create merge queue
- Implement new CodeOwners policy
chore(deps): update tflint plugin terraform-linters/tflint-ruleset-aws to v0.40.0 @[renovate[bot]](https://github.com/apps/renovate) (#4)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| terraform-linters/tflint-ruleset-aws | plugin | minor | 0.23.1 -> 0.40.0 |
Release Notes
terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)
v0.40.0
What's Changed
Enhancements
- feat: warn against data sources with ephemeral alternatives by @aristosvo in https://github.com/terraform-linters/tflint-ruleset-aws/pull/861
- rules: Update Lambda deprecated runtimes by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/886
- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/870
Chores
- Bump sigstore/cosign-installer from 3.8.1 to 3.8.2 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/872
- Bump the aws-sdk group with 3 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/873
- Bump actions/attest-build-provenance from 2.2.3 to 2.3.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/874
- Bump github.com/aws/aws-sdk-go-v2/service/ec2 from 1.212.0 to 1.213.0 in the aws-sdk group by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/875
- docs: Rename aws_write_only_attributes.md -> aws_write_only_arguments.md by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/876
- Bump actions/setup-go from 5.4.0 to 5.5.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/877
- Bump golang.org/x/net from 0.39.0 to 0.40.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/879
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/878
- Bump github.com/zclconf/go-cty from 1.16.2 to 1.16.3 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/883
- Bump the aws-sdk group with 3 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/882
- Bump github.com/hashicorp/terraform-json from 0.24.0 to 0.25.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/884
Full Changelog: terraform-linters/tflint-ruleset-aws@v0.39.0...v0.40.0
v0.39.0
What's Changed
Enhancements
- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/840
- Add
aws_iam_role_deprecated_policy_attributesrule by @alexjfisher in https://github.com/terraform-linters/tflint-ruleset-aws/pull/833 aws_write_only_arguments: recommend write-only arguments where available by @aristosvo in https://github.com/terraform-linters/tflint-ruleset-aws/pull/860- Update AWS provider/module and generated content by @github-actions in https://github.com/terraform-linters/tflint-ruleset-aws/pull/855
Bug Fixes
- provider_missing_default_tags: correctly handle unknown values by @bendrucker in https://github.com/terraform-linters/tflint-ruleset-aws/pull/851
Chores
- Bump the aws-sdk group with 7 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/839
- Bump golang.org/x/net from 0.35.0 to 0.37.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/842
- Bump the aws-sdk group with 7 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/841
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/845
- Pin GitHub Action versions by @wata727 in https://github.com/terraform-linters/tflint-ruleset-aws/pull/846
- Bump actions/setup-go from 5.3.0 to 5.4.0 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/847
- Bump the aws-sdk group with 2 updates by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/848
- Bump github.com/hashicorp/aws-sdk-go-base/v2 from 2.0.0-beta.62 to 2.0.0-beta.63 by @dependabot in https://github.com/terraform-linters/tflint-ruleset-aws/pull/849
- Bu...
Contributors
goruha and Benbentwo
Assets 2
v1.536.1
Add new output `account_name_id_map` @Benbentwo (#19)
## what * another outputwhy
- Provides a map of account_name to id for all accounts including organization owner.
Summary by CodeRabbit
- New Features
- Added a new output that provides a map of account names to their account IDs, including the root account.
🤖 Automatic Updates
chore(deps): update terraform cloudposse/service-control-policies/aws to v0.15.1 @[renovate[bot]](https://github.com/apps/renovate) (#3)
This PR contains the following updates:| Package | Type | Update | Change |
|---|---|---|---|
| cloudposse/service-control-policies/aws (source) | module | minor | 0.9.2 -> 0.15.1 |
Release Notes
cloudposse/terraform-aws-service-control-policies (cloudposse/service-control-policies/aws)
v0.15.1
🚀 Enhancements
Update EC2 policies to include new instance types @Nuru (#64)
what
- Update
DenyEC2NonNitroInstancesandDenyEC2InstancesWithoutEncryptionInTransitto include instances made available since the last update
why
- Allow qualifying instances that would have otherwise been denied because they were too new
v0.15.0
feat: Add require ebs encryption scp @wavemoran (#60)
what
- Adds SCP to require EBS volume encryption
why
- Encrypting EBS volumes is a good default security policy
- Seems like a common enough policy to include in the provided catalog
references
- Shamelessly stolen from Latacora's recommend policies
Run tests 1 policy at a time @goruha (#62)
what
- Run tests 1 policy at a time
why
- Workaround service control policies limits
🚀 Enhancements
chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.5 in /test/src in the go_modules group @dependabot (#57)
Bumps the go_modules group in /test/src with 1 update: [github.com/hashicorp/go-getter](https://redirect.github.com/hashicorp/go-getter).Updates github.com/hashicorp/go-getter from 1.7.3 to 1.7.5
Release notes
Sourced from github.com/hashicorp/go-getter's releases.
v1.7.5
What's Changed
- Prevent Git Config Alteration on Git Update by
@dduzgun-securityin hashicorp/go-getter#497New Contributors
@dduzgun-securitymade their first contribution in hashicorp/go-getter#497Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.4...v1.7.5
v1.7.4
What's Changed
- Escape user-provided strings in
gitcommands hashicorp/go-getter#483- Fixed a bug in
.netrchandling if the file does not exist hashicorp/go-getter#433Full Changelog: https://github.com/hashicorp/go-getter/compare/v1.7.3...v1.7.4
Commits
5a63fd9Merge pull request #497 from hashicorp/fix-git-update5b7ec5ffetch tags on update and fix tests9906874recreate git config during update to prevent config alteration268c11cescape user provide string to git (#483)975961fMerge pull request #433 from adrian-bl/netrc-fix5ccb39aMake addAuthFromNetrc ignore ENOTDIR errors- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.
🤖 Automatic Updates
chore(deps): bump github.com/hashicorp/go-getter from 1.7.3 to 1.7.5 in /test/src in the go_modules group @dependabot (#57)
Bumps the go_modules group in /test/src with 1 update: [github.com/hashicorp/go-getter](https://redirect.github.com/hashicorp/go-getter).Updates github.com/hashicorp/go-getter from 1.7.3 to 1.7.5
Release notes
Sourced from github.com/hashicorp/go-getter's releases.
v1.7.5
What's Changed
- Prevent Git Config Alteration on Git Update by
@dduzg...
Contributors
Benbentwo
Assets 2
v1.536.0
fix: update legacy splat operator @RoseSecurity (#14)
## what- Replace the legacy "attribute-only" splat expressions which use the sequence
.*with the newer expression[*]
why
Earlier versions of the Terraform language had a slightly different version of splat expressions, which Terraform continues to support for backward compatibility. This older variant is less useful than the modern form described above, and so Hashicorp recommends against using it in new configurations.
references
Summary by CodeRabbit
- Refactor
- Updated Terraform output syntax for organization service control policies
- Replaced splat operator (
.*) with modern indexing syntax ([*]) - Maintained existing output functionality and descriptions
Contributors
RoseSecurity
