Skip to content

v2.0.0

Latest
Latest

Choose a tag to compare

View all tags
@edersonbrilhante edersonbrilhante released this 15 Dec 18:58
· 33 commits to main since this release
Immutable release. Only release title and notes can be modified.
v2.0.0
9101647
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

🚀 Forge Release Notes

🔥 Breaking Changes

⬆️ Minimum OpenTofu Version: 1.11.0

Forge now requires OpenTofu 1.11.0 or higher.
Users must upgrade local and CI tooling to ensure compatibility.

🔐 Secrets Manager Fully Replaced with SSM Parameter Store

All secret management has been migrated from AWS Secrets Manager to AWS SSM Parameter Store, affecting:

  • Lambda environment variable sources
  • Variable declarations
  • Secret retrieval logic
  • Runtime integrations

✨ New Features

📊 Observability & Dashboards

  • Added a new SQS performance dashboard.
  • Added new Splunk O11y dashboards.
  • Added a new general-purpose dashboard for extended visibility.

🔐 Parameter Management

  • Added code to create SSM parameters to support the new secret management strategy.
  • Added more detailed logs across Lambda functions.
  • Added exception handling to Lambdas to improve resilience.

🖥️ Placement Groups

  • Added support for EC2 Placement Groups to improve workload performance and affinity.

🛠️ Refactors

🏗️ Resource & Variable Updates

  • Moved the redrive deadletter function to a more appropriate location.
  • Migrated Kubernetes resources to v1 API versions.
  • Refactored and streamlined Forge variables.

🔐 Secret Migration (SM → SSM)

  • Replaced remaining usage of Secrets Manager with SSM.
  • Core migration is in PR #243
  • Additional updates in PRs #243 and #244

🐛 Fixes

🌐 Infrastructure Stability

  • Prevented removal of public access block in AWS configurations.
  • Fixed trust validator submodule reference.
  • Upgraded kubernetes_config_map provider usage.
  • Removed Helm chart provider and replaced it with a safer null_resource implementation.
  • Added missing context when running Helm and kubectl.
  • Fixed namespace creation for Karpenter.
  • Encoded the first dummy secret to avoid parsing errors.
  • Ensured Helm and kubectl are executed using the bash interpreter.

📚 Documentation

  • Updated Terraform docs.
  • Updated documentation for new tenant setup.
  • Fixed examples across multiple documentation files.

Full Changelog: v1.10.4...v2.0.0

Assets 3
Loading