Improvements - Documentation updated to show the risk of rules and possible fixes where available, as well as a large set of updates to the content. The macros for parsing the documentation have also been updated.
0.12.1
Not secure
Fixes - Fix for `CrossAccountCheckingRule` was adding errors when the principal was sts when it shouldn't. Added - `get_account_id_from_sts_arn` and `get_aws_service_from_arn` in utils.
0.12.0
Not secure
Added - Adds CLI to package - `KMSKeyCrossAccountTrustRule` Changed - `GenericWildcardPrincipalRule`, `PartialWildcardPrincipalRule`, `FullWildcardPrincipalRule` no longer check for wildcards in KMSKey principals. - Improved granularity of most rules
0.11.3
Not secure
Improvements - `S3CrossAccountTrustRule` now accepts resource level exceptions - New documentation! Breaking changes - `cfripper.rules.s3_bucked_policy` renamed to `cfripper.rules.s3_bucket_policy` (typo)
0.11.2
Not secure
Fixes - Fix `get_template` when AWS doesn't return a dict.
0.11.1
Not secure
Changed - `HardcodedRDSPasswordRule` now reports two different messages when there is a missing echo or a readable password. Fixes - `HardcodedRDSPasswordRule` was wrongly adding an error when a value is provided.