Skip to content

v1.537.2

Choose a tag to compare

View all tags
@cloudposse-releaser cloudposse-releaser released this 14 Nov 16:16
· 3 commits to main since this release
v1.537.2
2df14c1
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
feat: add KMS encryption support for CloudTrail logs @johncblandii (#89) ## what

Add KMS encryption support to the datadog-logs-archive component to address Drata compliance requirements. CloudTrail logs are now encrypted with SSE-KMS by default, with flexible configuration options to use an existing key or disable encryption if needed.

why

  • Created new kms.tf file with KMS key, policy, and alias resources
  • Added 5 new input variables for KMS configuration
  • Added 3 new outputs exposing KMS key information
  • Updated README with KMS encryption documentation

Summary by CodeRabbit

  • New Features

    • Added KMS encryption support for CloudTrail with flexible configuration options.
    • Option to use an existing KMS key or create a new one automatically.
    • Configurable KMS key deletion window and automatic key rotation.

  • Documentation

    • Updated documentation with CloudTrail KMS encryption configuration details and defaults.

🤖 Automatic Updates

Update README.md and docs @[cloudposse-releaser[bot]](https://github.com/apps/cloudposse-releaser) (#90) ## what This is an auto-generated PR that updates the README.md and docs

why

To have most recent changes of README.md and doc from origin templates

Contributors

johncblandii
Assets 2
Loading