Releases: aws-cloudformation/rain
v1.19.0
What's Changed
- Fix Import should be ImportValue by @ericzbeard in #574
- Allow overriding the expected bucket owner by @ericzbeard in #576
- Add s3 bucket params to stackset command by @ericzbeard in #578
- Fix bugs in Constants and Sub processing by @ericzbeard in #577
- Version bump to v1.19.0 by @ericzbeard in #579
Full Changelog: v1.18.0...v1.19.0
Contributors
Assets 18
- 9.22 MB
2024-10-31T18:23:14Z - 9.22 MB
2024-10-31T18:23:14Z - 8.78 MB
2024-10-31T18:23:14Z - 8.78 MB
2024-10-31T18:23:14Z - 9.08 MB
2024-10-31T18:23:14Z - 9.08 MB
2024-10-31T18:23:15Z - 8.34 MB
2024-10-31T18:23:15Z - 8.34 MB
2024-10-31T18:23:15Z - 8.36 MB
2024-10-31T18:23:15Z - 8.36 MB
2024-10-31T18:23:15Z -
2024-10-31T18:10:33Z -
2024-10-31T18:10:33Z - Loading
v1.18.0
This release addresses a security issue that would allow an attacker to predict the name of the rain asset bucket and create it before a user issues a rain pkg command, which uploads assets such as Lambda function code to the bucket. This would give the attacker full access to the contents uploaded by Rain, since they own the bucket. This release adds the ExpectedBucketOwner argument to S3 calls, which causes an Access Denied error if the bucket does not belong to the same account. Additionally, this release adds the s3-bucket argument to the rain bootstrap command, which allows users to create an asset bucket with a user-supplied name, which will be stored in SSM Parameter Store with the key rain-bucket for reference by future Rain commands. We recommend that users upgrade to v1.18.0, and verify that the expected rain asset bucket exists within their own account. Users who do not use the pkg or deploy commands are not affected by this issue. Users who supply the optional s3-bucket argument to those commands are not affected if the bucket they specify is in their account.
What's Changed
- When merging templates with Outputs, replace Imports that reference Exported Names by @ericzbeard in #565
- Add expected bucket owner checks to s3 operations by @ericzbeard in #566
Full Changelog: v1.17.0...v1.18.0
Contributors
Assets 18
v1.17.0
What's Changed
- Make including nested stacks in a change set optional by @ericzbeard in #550
- Add constant values to a CloudFormation template by @ericzbeard in #557
- Convert web app sample to Pkl by @ericzbeard in #556
- Release 1.17.0 by @ericzbeard in #563
Full Changelog: v1.16.1...v1.17.0
Contributors
Assets 18
v1.16.1
This release features a set of new S3 Bucket Metadata commands that can be used to run scripts, upload content, and invalidate CloudFront distributions. The S3 directive also gets a new Run property that allows you to run build scripts for your lambda functions before uploading them. There is a fully functional serverless web application sample in test/webapp that demonstrates these new features.
What's Changed
- Adds Cross Compilation support for Linux ARM 64 by @georgealton in #516
- Asset deployment and a sample web application by @ericzbeard in #511
- Use regional endpoints for large template uploads to S3 by @davidsuehring in #539
- Add Outputs to Pkl serialization, and fix formatting Pkl to Yaml with Pkl modules by @ericzbeard in #540
- Fix skipping read only props by full path by @ericzbeard in #541
- Version 1.16.0 by @ericzbeard in #542
- Fixed release action
Dependabot
- Bump actions/download-artifact from 2 to 4.1.7 in /.github/workflows by @dependabot in #514
New Contributors
- @georgealton made their first contribution in #516
- @davidsuehring made their first contribution in #539
Full Changelog: v1.15.0...v1.16.0
Contributors
Assets 18
v1.16.0
This release features a set of new S3 Bucket Metadata commands that can be used to run scripts, upload content, and invalidate CloudFront distributions. The S3 directive also gets a new Run property that allows you to run build scripts for your lambda functions before uploading them. There is a fully functional serverless web application sample in test/webapp that demonstrates these new features.
What's Changed
- Adds Cross Compilation support for Linux ARM 64 by @georgealton in #516
- Asset deployment and a sample web application by @ericzbeard in #511
- Use regional endpoints for large template uploads to S3 by @davidsuehring in #539
- Add Outputs to Pkl serialization, and fix formatting Pkl to Yaml with Pkl modules by @ericzbeard in #540
- Fix skipping read only props by full path by @ericzbeard in #541
- Version 1.16.0 by @ericzbeard in #542
Dependabot
- Bump actions/download-artifact from 2 to 4.1.7 in /.github/workflows by @dependabot in #514
New Contributors
- @georgealton made their first contribution in #516
- @davidsuehring made their first contribution in #539
Full Changelog: v1.15.0...v1.16.0
Contributors
Assets 2
v1.15.0
What's Changed
- Forecast plugins by @ericzbeard in #500
- Fixing line numbers for forecast by @ericzbeard in #503
- Add node-style to merge by @ericzbeard in #504
- Version bump by @ericzbeard in #505
Full Changelog: v1.14.0...v1.15.0
Contributors
Assets 16
v1.14.0
What's Changed
- Add support for Claude3.5-Sonnet by @watany-dev in #482
- Make forecast functions public by @ericzbeard in #489
- Version bump by @ericzbeard in #490
Full Changelog: v1.13.1...v1.14.0
Contributors
Assets 16
v1.13.1
What's Changed
- Add forecast check for SageMaker limits by @ericzbeard in #469
- Forecast issues with lambda functions by @ericzbeard in #476
- Version bump to 1.13.1 by @ericzbeard in #478
Full Changelog: v1.12.1...v1.13.1
Contributors
Assets 16
v1.12.1
What's Changed
- Added recommended template for event bridge by @ericzbeard in #454
- Fixed bug with named stack and change set by @ericzbeard in #457
Full Changelog: v1.12.0...v1.12.1
Contributors
Assets 16
v1.12.0
What's Changed
- Fixed Pkl generation for maps with special characters in the name by @ericzbeard in #451
- Add option to name a change set on creation by @ericzbeard in #452
- Version bump v1.12.0 by @ericzbeard in #453
Full Changelog: v1.11.0...v1.12.0