Releases: cartography-cncf/cartography
Releases · cartography-cncf/cartography
0.33.0
Notes
Bigger release than normal as it took us a while to get to fixing our PyPI connection. Please report issues (things might be unstable) - help fixing is greatly appreciated!
Highlights
New data
- Add initial support for Microsoft Azure
- Add initial support for DigitalOcean
- Add support for AWS Elasticache, Elastic Map Reduce, API Gateway, Internet Gateway
Perf and reliability
- Add --aws-requested-syncs param: allow users to run subset of AWS syncs; enforce standard
syncfunction params - Add --neo4j-max-connection-lifetime param: essential for running on NLBs and k8s
- Improve GraphStatement cleanup job logic
- Typehints for all modules
- Test coverage enforcement
0.32.0
0.31.0
- Add tests for
aws.start_aws_ingestion()and_sync_multiple_accounts() - Added exit code of 1 to the two errors that can occur when initially connecting to Neo4j DB
- Fix #434 - Add EC2PrivateIp index, perf improvements to netinf sync
- Added 'ALL' firewall rules to detect additional internet exposed GCP compute instances
- Link AWSDNSRecord and LoadBalancerV2 nodes
- Fix #501: GCP DNS return [] on exception, not {}
- Handle NoSuchBucket and AllAccessDisabled in AWS S3 get_bucket_location()
- Fix #492: Handle accessdenied on get_bucket_location
- Fix #231: Use bucket region parameter is AWS S3 api calls
- Fix #484: Handle forbidden DNS
- Add MessageBird, Cloudanix as Cartography users in README (welcome! 🎉)
0.30.0
- Add GCP DNS Ingestion
- Speed up AWS ECR repo images sync with UNWIND
- Fix #447 - GCP: Only query for active projects
- Revert "Temporary fix for #460 - TravisCI issue"
- Sync GCP Forwarding Rules
- Temporarily remove ECR scan findings sync (will move to own module)
- Fix #463: Handle ECR AccessDeniedException
0.29.1
Note: This release has known issue #434, but we only have 1 confirmed report so we will release anyway. Please reply in that issue if you are affected and we will patch.
0.29.0
Note: This release has known issue #434, but we only have 1 confirmed report so we will release anyway. Please reply in that issue if you are affected and we will patch.
- Handle NoSuchBucket exception in get_bucket_policy
- Fix IAM sync node label interpretation by adding missing
: - Add AWS EC2 network interface details
- Patch #424 and #425: force Okta library version to <1.0.0
- Fix #428: Skip over AWS describe_tgw_attachment errors
- #347: add support for linking Python libraries in GitHub repos
- Add support for AWS ECR repositories, images, and vulnerability scan results
- Bump boto3 version
- Fix #439: AWS ECR sync transform, adjust log levels
- Raise required Neo4j driver from 1.7.0 to 1.7.6
- Fix #440: consume results in ECR sync
- Remove stale rels in network interface cleanup job
- Fix #448, #450: use generator to fix ECR sync memory issues
- Lower most log messages in ECR sync to debug level
0.28.0
0.27.0
0.26.0
- Fix #391 - Set pre-commit version to 3.2.0 to allow cartography unit and integration tests to work on Windows
- Fix #388 - Make drift detection filename compatible with Windows
- Fix #378 - Changed publicdnsname for publicipaddress in EC2 internet exposure analysis job
- Fix #314 - STS_ASSUME_ROLE_ALLOW relationship not created for single IAM principal
0.25.0
- Fix #356: user-specified AWS resource permissions files now work correctly
- Improve perf: implement UNWIND for AWS resourcegroupstaggingapi
- Fix #368: Add ARN field to AWS RDS instances
- Fix #371: Handle
forbiddenerror reason in GCP - Fix #373: AWS IAM: Handle NoSuchEntityException for role-managed policies
- Fix #375: Skip AWS TGW sync on boto3 ClientErrors
- Fix #379: Run GitHub cleanup only on successful sync
- Fix #377: Correctly parse GKE errors