Watchmaker

**Summary**:

* ash-linux-formula
* (el7) Fixes typos in the firewalld "safety" scripts that resulted in a
failure when firewalld was reloaded
* mcafee-agent-formula
* (el7) Adds required inbound ports to all firewalld zones, to support
the event where the default zone is modified from "public"
* splunkforwarder-formula
* (el7) Adds required outbound ports to the OUTPUT chain; previously,
they were mistakenly being added as inbound rules

**Summary**:

* [[PR 391][391]] Updates CloudFormation templates with a parameter that
exposes the option to use the S3 API and the instance role to retrieve the
Watchmaker content archive
* ash-linux-formula
* (el7) Updates firewalld "safety" state so that firewalld remains in the
active state; the prior approach left firewalld dead/inactive, until
the service was restarted or the system was rebooted

[391]: https://github.com/plus3it/watchmaker/pull/391

**Summary**:

* [[PR 381][381]] Restricts `wheel` version on Python 2.6 to be less than or
equal to 0.29.0, as `wheel` 0.30.0 removed support for py26.

[381]: https://github.com/plus3it/watchmaker/pull/381

**Summary**:

* ash-linux-formula
* (el7) Includes a "safety" state for firewalld that ensures SSH inbound
access will remain available, in the event the default zone is set to
"drop"

**Summary**:

* ash-linux-formula
* (el6) Improve the method of disabling the sysctl option `ip_forward`,
to account for the behavior of the `aws-vpc-nat` rpm
* scap-formula
* (elX) Updates openscap security guide content to version 0.1.34-1

**Summary**:

* ash-linux-formula
* Modified the FIPS custom execution module to discover the boot
partition and add the `boot=` line to the grub configuration