Release v2.0.0

This release makes Guard a general-purpose policy-as-code evaluation tool. With Guard 2.0, developers can write policy rules for any JSON- and YAML-formatted file such as Kubernetes configurations and Terraform JSON configurations, in addition to already supported CloudFormation templates. This release also enhances Guard’s DSL, making your rule writing experience simple and unambiguous. It also enables you to create advanced rules as your use cases and cloud environments get more complex. For example, named rules feature enables you to define a set of rules that you can reference in another set of rules.

Release v1.0.0

GA release of guard complete with binaries for each operating system. Also installable via homebrew and chocolatey.

Release v0.7.0

Interface Changes

• rulegen has been moved from a separate binary to a verb on cfn-guard. Similarly, regular cfn-guard behavior is now behind the verb check. See the updated README for more details. The lambdas have not moved

Improvements

• Automatic descent into json-string formatted objects (#11)
• Use serde::rename to fix strict_check and exit_status casing in cfn-guard-lambda (#25). They now match camelCase (as in strictCheck and exitStatus)
• Added a Troubleshooting FAQ that includes a discussion of using --strict-checks to spot typos that tend to cause confusion in users when they don't match the properties as expected.
• Added JNI bindings to the basic binary for use with java libraries (#54)

Bug fixes

• More strict comment parsing to prevent silent failure of illegal inline comments (#53)
• Fix license conflicts with license header (#47)

Release v0.6.0

• New conditional when-check form
• Ability to check the resource's CFn attributes using a new . address that resolves to the level above properties (eg .DeletionPolicy) (See Checking Resource Properties and Attributes)
• Make the rulegen output order deterministic (#44)
• Stability and logging improvements

Release v0.5.2

Release 0.5.2 adds the following:

• Numeric Comparisons (eg, x < 100) (Feature request #14)
• Wildcards now work on items and maps as well as lists
• Json-List types for variables
• Cfn-guard-rulegen-lambda
• Replacement of panics for invalid rule structures with clean exits to make for a more readable/less alarming output
• Cleanup of output formatting to remove excessive and unnecessary string escapes (eg \”)
• Updated cfn-guard README with new sections for Troubleshooting and deeper discussions of rule writing
• Improvements in log readability
• More tests
• Various bug fixes

Release v0.5.1

• Apply lazy_static to improve regex performance
• Add new # Comment form (issue #4 )
• Move wildcards processing to HashSet to prevent duplicate rules from being created
• Replace runtime unwraps() with proper matching to more gracefully handle template payloads
• Add travis.yml test hooks (thanks @gliptak!)
• Reduce cfn-guard-lambda to INFO by default
• Deduplicate cfn-guard-lambda Makefile with targets for FAIL, PASS and ERR tests
• Add a test target to to the top-level Makefile to allow for easily testing all three cargo projects
• Reorganize the README's to move the run-time parameters more clear (issue #16 )
• Add issue and feature github templates

Initial Preview Release

v0.5.0-beta

Initial commit