Skip to content

v4.0.0

Choose a tag to compare

View all tags
@terraform-ibm-modules-ops terraform-ibm-modules-ops released this 30 May 08:46
· 493 commits to main since this release
v4.0.0
8316cfa
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

4.0.0 (2023-05-30)

Features

  • remove rules from default VPC security group and ACL (#435) (8316cfa)

BREAKING CHANGES

  • All patterns will now utilize the clean_default_security_group and clean_default_acl variables added to terraform-ibm-landing-zone-vpc in v7.1.0, which if set to "true" will remove all rules from the default security groups and ACLs created automatically when new VPCs are deployed.

All patterns will now set both variables to "true" by default for all VPCs, and you can override these values for each VPC when using the "override.json" file. Please reference the example override.json files in each pattern for examples. The new settings will look like the following:

  "vpcs": [
      {
          "default_security_group_rules": [],
          "clean_default_security_group": true,
          "clean_default_acl": true,

Since the default security group and ACL for a VPC are created with very permissive rules, setting these values to "true" to remove those rules will increase the overall security posture of the deployment.

Assets 2
Loading