Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revert master to v0.18.4 (current GA release) #90

Merged
merged 9 commits into from
Jul 11, 2022
Merged

Revert master to v0.18.4 (current GA release) #90

merged 9 commits into from
Jul 11, 2022

Conversation

Nuru
Copy link
Contributor

@Nuru Nuru commented Jul 11, 2022

what

  • Revert main to v0.18.4

why

  • PR feat: use security-group module instead of resource #73 converted this module to use an experimental and since abandoned version of the security group module. This was published as version 0.19.0. 0.18.4 was the last version published before that modification, and the last supported version. This PR reverts the master branch to version 0.18.4 in preparation for providing a compatible version 1.0 of this module using security group module v2.0.

Nuru added 8 commits July 11, 2022 13:58
@Nuru
Revert "Add option to use permissions boundary on the default roles (#85
212e900 
)"

This reverts commit ea1c1bc.
@Nuru
Revert "Update context.tf (#81)"
00a7ff6 
This reverts commit e2e6fd8.
@Nuru
Revert "chore(deps): update terraform cloudposse/security-group/aws t…
1e4bb0b 
…o v0.3.3 (#82)"

This reverts commit 0d1ebb7.
@Nuru
Revert "chore(deps): update terraform cloudposse/label/null to v0.25.0 (
1d336f9 
#80)"

This reverts commit f261b3d.
@Nuru
Revert "chore(deps): update terraform cloudposse/security-group/aws t…
65c71c7 
…o v0.3.2 (#79)"

This reverts commit 4cbe9f3.
@Nuru
Revert "chore(deps): update terraform cloudposse/ec2-autoscale-group/…
dd3e19e 
…aws to v0.27.0 (#77)"

This reverts commit e46ad4a.
@Nuru
Revert "chore(deps): update terraform cloudposse/ec2-autoscale-group/…
dff1d7f 
…aws to v0.26.0 (#74)"

This reverts commit d1eb5f4.
@Nuru
Revert "feat: use security-group module instead of resource (#73)"
1bcfd02 
This reverts commit 01463d2.
@Nuru Nuru added the no-release Do not create a new release (wait for additional code changes) label Jul 11, 2022
bridgecrew[bot]
bridgecrew bot reviewed Jul 11, 2022
View reviewed changes
Copy link

@bridgecrew bridgecrew bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bridgecrew has found errors in this PR ⬇️

main.tf
module "security_group" {
source = "cloudposse/security-group/aws"
version = "0.3.3"
resource "aws_security_group" "default" {
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LOW   Ensure Security Groups are attached to EC2 instances or ENIs
    Resource: aws_security_group.default | ID: BC_AWS_NETWORKING_51

How to Fix

resource "aws_network_interface" "test" {
  subnet_id       = "aws_subnet.public_a.id"
  security_groups = [aws_security_group.ok_sg.id]
}

resource "aws_instance" "test" {
  ami           = "data.aws_ami.ubuntu.id"
  instance_type = "t3.micro"
  security_groups = [aws_security_group.ok_sg.id]
}

resource "aws_security_group" "ok_sg" {
  ingress {
    description = "TLS from VPC"
    from_port   = 443
    to_port     = 443
    protocol    = "tcp"
    cidr_blocks = 0.0.0.0/0
  }
}

Description

A check to ensure that orphaned Security groups aren't created. Elastic Network Interfaces (ENIs). This checks that Security Groups are attached to provisioning resources.

@Nuru Nuru requested review from a team as code owners July 11, 2022 21:15
@Nuru Nuru requested review from jhosteny and florian0410 July 11, 2022 21:15
@Nuru Nuru merged commit e4c7e80 into master Jul 11, 2022
@Nuru Nuru deleted the revert-sg branch July 11, 2022 21:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bridgecrew bridgecrew[bot] bridgecrew[bot] left review comments

@jhosteny jhosteny Awaiting requested review from jhosteny jhosteny was automatically assigned from cloudposse/contributors

@florian0410 florian0410 Awaiting requested review from florian0410 florian0410 was automatically assigned from cloudposse/contributors

Assignees
No one assigned
Labels
no-release Do not create a new release (wait for additional code changes)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@Nuru @cloudpossebot