Bug fixes
- Renamed
steampipe.spvars.examplefiles topowerpipe.ppvars.exampleand updated documentation. (#180)
This mod now requires Powerpipe. Steampipe users should check the migration guide.
What's new?
- New control added:
rds_mysql_postresql_db_no_unsupported_version(#174)
Powerpipe
Powerpipe is now the preferred way to run this mod! Migrating from Steampipe →
All v0.x versions of this mod will work in both Steampipe and Powerpipe, but v1.0.0 onwards will be in Powerpipe format only.
Enhancements
- Focus documentation on Powerpipe commands.
- Show how to combine Powerpipe mods with Steampipe plugins.
Bug fixes
- Fixed the
low_iops_ebs_volumescontrol to now suggest convertingio1andio2volumes toGP3volumes, when the baseIOPSis less than16,000instead of3000. (#167)
Breaking changes
- Updated the plugin dependency section of the mod to use
min_versioninstead ofversion. (#161) - Renamed the control
lambda_function_with_graviton2tolambda_function_with_gravitonin order to maintain consistency. (#158) (Thanks @bluedoors for the contribution!)
What's new?
- Added the following controls to check which resources are using non-graviton processors: (#144)
ec2_instance_with_gravitonecs_cluster_container_instance_with_gravitoneks_node_group_with_gravitonrds_db_instance_with_graviton
Bug fixes
- Fixed the inline query of the
vpc_nat_gateway_unusedcontrol to correctly list out the unused NAT gateways that should be deleted. (#150)
Bug fixes
- Fixed the inline query of the
multiple_global_trailscontrol to remove redundant global trails when organization trails are in use. (#141) - Fixed the inline query of the
ebs_snapshot_max_agecontrol to correctly list out the old EBS snapshots that should be deleted if not required. (#147)
Bug fixes
- Fixed the inline query of the
secretsmanager_secret_unusedcontrol to correctly verify if a secret has remained unused for a specified duration. (#138)
Bug fixes
- Fixed the inline query of
ebs_snapshot_max_agecontrol to correctly queryaws_ebs_snapshottable instead ofaws_secretsmanager_secrettable. (#129)
Enhancements
- Added the column alias to
connection_namecommon dimension to avoid having any?column?column names due to unaliased columns.
Bug fixes
- Fixed the formatting of
vpc_nat_gateway_unusedcontrol's query on hub.steampipe.io. (#126)
What's new?
- Added
tagsas dimensions to group and filter findings. (see var.tag_dimensions) (#112) - Added
connection_namein the common dimensions to group and filter findings. (see var.common_dimensions) (#112)
Bug fixes
- Fixed typo in the Usage section of
docs/index.mdto usesteampipe check control.instances_with_low_utilizationinstead ofsteampipe check control.control.instances_with_low_utilization. (#115) (Thanks @PranavPeshwe for the contribution!)
Enhancements
- Updated
ec2_gateway_lb_unusedandec2_network_lb_unusedqueries to correctly handle empty column data. (#109)
Dependencies
- AWS plugin
v0.81.0or higher is now required.
Bug fixes
- Fixed the
ec2_classic_lb_unusedquery to handle theinstancescolumn correctly when empty in theaws_ec2_classic_load_balancertable. (#106) (Thanks @JoshRosen for the fix!)
What's new?
- New benchmarks added:
- New controls added:
Enhancements
- Updated the
unattached_ebs_volumesquery to handle theattachmentscolumn correctly when empty in theaws_ebs_volumetable. (#102)
Bug fixes
- Fixed the
low_utilization_ec2_instancequery to check for max(average) instead of avg(max) utilization. (#78)
Dependencies
- AWS plugin
v0.80.0or higher is now required. (#104)
Enhancements
- Updated docs/index.md and README with new dashboard screenshots and latest format. (#75)
Enhancements
- Added
category,service, andtypetags to benchmarks and controls. (#72)
Bug fixes
- Fixed the
old_ebs_snapshotsquery to correctly evaluate the age of the snapshots (#69)
What's new?
- Added default values to all variables (set to the same values in
steampipe.spvars.example) - Added
*.spvarsand*.auto.spvarsfiles to.gitignore - Renamed
steampipe.spvarstosteampipe.spvars.example, so the variable default values will be used initially. To use this example file instead, copysteampipe.spvars.exampleas a new filesteampipe.spvars, and then modify the variable values in it. For more information on how to set variable values, please see Input Variable Configuration.
Enhancements
docs/index.mdfile now includes the console output image
What's new?
- Added: Input variables have been added to CloudWatch, Cost Explorer, DynamoDB, EBS, EC2, ECS, ElastiCache, RDS, and Redshift controls to allow different thresholds to be passed in. To get started, please see AWS Thrifty Configuration. For a list of variables and their default values, please see steampipe.spvars.
Enhancements
- Lambda benchmark control and query names have been updated to maintain consistency
Bug fixes
- The broken reference links in the Lambda benchmark document have been removed
What's new?
-
Added initial Lambda benchmark and controls
-
New controls added:
- lambda_excessive_timeout
- lambda_high_error_rate
What's new?
-
Added initial CloudFront, ECS and EMR benchmarks and controls along with new controls for the Redshift and the EC2 benchmarks
-
New controls added:
- cloudfront_distribution_pricing_class
- ec2_reserved_instance_lease_expiration_30_days
- ecs_cluster_low_utilization
- ecs_service_without_autoscaling
- emr_cluster_instance_prev_gen
- emr_cluster_is_idle_30_minutes
- redshift_cluster_low_utilization
- redshift_cluster_schedule_pause_resume_enabled
What's new?
- New controls added:
- ec2_application_lb_unused
- ec2_classic_lb_unused
- ec2_gateway_lb_unused
- ec2_network_lb_unused
- elasticache_cluster_age_90_days
- redshift_cluster_age_90_days
- vpc_nat_gateway_unused
Enhancements
- Updated: Service benchmark docs now link to query pages instead of the GitHub repository code for default thresholds for more reliable linking
Bug fixes
- Minor fixes in the docs