From 9ce4be3049ce5d7cb1a270a8589d131989f64a6a Mon Sep 17 00:00:00 2001 From: Hayk Kocharyan Date: Tue, 5 Jul 2022 17:35:24 +0200 Subject: [PATCH] feat: Allow deploying all resources in management account (#112) * feat: allow deploy all reosurces in managment account * chore: update min tf version * chore: run precommit * chore: remove aliased provider and fix precommit * fix: precommit version * chore: fix variable name * chore: remove unned resource group * fix: docs --- .../README.md | 2 +- .../versions.tf | 2 +- examples/organizational/README.md | 9 +++++---- examples/organizational/data.tf | 1 + examples/organizational/main.tf | 4 ++++ examples/organizational/versions.tf | 2 +- examples/single-account-apprunner/README.md | 4 ++-- examples/single-account-apprunner/versions.tf | 2 +- examples/single-account-ecs/README.md | 4 ++-- examples/single-account-ecs/versions.tf | 2 +- examples/single-account-k8s/README.md | 8 ++++---- examples/single-account-k8s/versions.tf | 2 +- examples/trigger-events/README.md | 4 ++-- examples/trigger-events/versions.tf | 2 +- modules/infrastructure/cloudtrail/README.md | 4 ++-- modules/infrastructure/cloudtrail/main.tf | 5 ++++- modules/infrastructure/cloudtrail/sns_permissions.tf | 6 ++++-- modules/infrastructure/cloudtrail/versions.tf | 2 +- modules/infrastructure/cloudtrail_s3-sns-sqs/README.md | 4 ++-- modules/infrastructure/cloudtrail_s3-sns-sqs/versions.tf | 2 +- modules/infrastructure/codebuild/README.md | 4 ++-- modules/infrastructure/codebuild/versions.tf | 2 +- modules/infrastructure/ecs-vpc/README.md | 4 ++-- modules/infrastructure/ecs-vpc/versions.tf | 2 +- modules/infrastructure/eks/versions.tf | 2 +- .../infrastructure/permissions/cloud-connector/README.md | 4 ++-- .../permissions/cloud-connector/versions.tf | 2 +- .../infrastructure/permissions/cloud-scanning/README.md | 4 ++-- .../permissions/cloud-scanning/versions.tf | 2 +- modules/infrastructure/permissions/general/README.md | 4 ++-- modules/infrastructure/permissions/general/versions.tf | 2 +- modules/infrastructure/permissions/iam-user/README.md | 4 ++-- modules/infrastructure/permissions/iam-user/versions.tf | 2 +- .../infrastructure/permissions/org-role-ecs/README.md | 6 +++--- .../infrastructure/permissions/org-role-ecs/versions.tf | 2 +- .../infrastructure/permissions/org-role-eks/README.md | 4 ++-- .../infrastructure/permissions/org-role-eks/versions.tf | 2 +- modules/infrastructure/resource-group/README.md | 4 ++-- modules/infrastructure/resource-group/versions.tf | 2 +- modules/infrastructure/sqs-sns-subscription/README.md | 4 ++-- modules/infrastructure/sqs-sns-subscription/versions.tf | 2 +- modules/infrastructure/ssm/README.md | 4 ++-- modules/infrastructure/ssm/versions.tf | 2 +- modules/services/cloud-bench/README.md | 8 ++++---- modules/services/cloud-bench/versions.tf | 2 +- modules/services/cloud-connector-apprunner/versions.tf | 2 +- modules/services/cloud-connector-ecs/README.md | 6 +++--- modules/services/cloud-connector-ecs/versions.tf | 2 +- 48 files changed, 86 insertions(+), 75 deletions(-) diff --git a/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/README.md b/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/README.md index 7b4d21ac..c3527639 100644 --- a/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/README.md +++ b/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/README.md @@ -87,7 +87,7 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | | [helm](#requirement\_helm) | >=2.3.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | diff --git a/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/versions.tf b/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/versions.tf index d49476ee..ea22f9c1 100644 --- a/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/versions.tf +++ b/examples-internal/organizational-k8s-threat-reuse_cloudtrail_s3/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/examples/organizational/README.md b/examples/organizational/README.md index 37c40c8e..1c4b9902 100644 --- a/examples/organizational/README.md +++ b/examples/organizational/README.md @@ -137,7 +137,7 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 4.0.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | @@ -145,9 +145,9 @@ $ terraform apply | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | -| [aws.member](#provider\_aws.member) | 4.20.1 | -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [aws](#provider\_aws) | >= 4.0.0 | +| [aws.member](#provider\_aws.member) | >= 4.0.0 | +| [sysdig](#provider\_sysdig) | >= 0.5.33 | ## Modules @@ -168,6 +168,7 @@ $ terraform apply | Name | Type | |------|------| | [aws_iam_role.connector_ecs_task](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role) | resource | +| [aws_caller_identity.me](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/caller_identity) | data source | | [aws_iam_policy_document.task_assume_role](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source | | [aws_region.current](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/region) | data source | | [sysdig_secure_connection.current](https://registry.terraform.io/providers/sysdiglabs/sysdig/latest/docs/data-sources/secure_connection) | data source | diff --git a/examples/organizational/data.tf b/examples/organizational/data.tf index 2f88c4e0..c5d0d394 100644 --- a/examples/organizational/data.tf +++ b/examples/organizational/data.tf @@ -1,2 +1,3 @@ data "aws_region" "current" {} data "sysdig_secure_connection" "current" {} +data "aws_caller_identity" "me" {} diff --git a/examples/organizational/main.tf b/examples/organizational/main.tf index bcd65784..a16cce01 100644 --- a/examples/organizational/main.tf +++ b/examples/organizational/main.tf @@ -2,6 +2,9 @@ # resources deployed always in management account # with default provider #------------------------------------- +locals { + deploy_same_account = data.aws_caller_identity.me.account_id == var.sysdig_secure_for_cloud_member_account_id +} module "resource_group" { source = "../../modules/infrastructure/resource-group" @@ -10,6 +13,7 @@ module "resource_group" { } module "resource_group_secure_for_cloud_member" { + count = local.deploy_same_account ? 0 : 1 providers = { aws = aws.member } diff --git a/examples/organizational/versions.tf b/examples/organizational/versions.tf index 038985fc..548911d9 100644 --- a/examples/organizational/versions.tf +++ b/examples/organizational/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 4.0.0" diff --git a/examples/single-account-apprunner/README.md b/examples/single-account-apprunner/README.md index 316117fa..fd40cbba 100644 --- a/examples/single-account-apprunner/README.md +++ b/examples/single-account-apprunner/README.md @@ -64,14 +64,14 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | ## Providers | Name | Version | |------|---------| -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [sysdig](#provider\_sysdig) | >= 0.5.33 | ## Modules diff --git a/examples/single-account-apprunner/versions.tf b/examples/single-account-apprunner/versions.tf index 21cc88fc..b5f99cd7 100644 --- a/examples/single-account-apprunner/versions.tf +++ b/examples/single-account-apprunner/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { sysdig = { source = "sysdiglabs/sysdig" diff --git a/examples/single-account-ecs/README.md b/examples/single-account-ecs/README.md index 514af292..37d55e43 100644 --- a/examples/single-account-ecs/README.md +++ b/examples/single-account-ecs/README.md @@ -64,14 +64,14 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | ## Providers | Name | Version | |------|---------| -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [sysdig](#provider\_sysdig) | >= 0.5.33 | ## Modules diff --git a/examples/single-account-ecs/versions.tf b/examples/single-account-ecs/versions.tf index 21cc88fc..b5f99cd7 100644 --- a/examples/single-account-ecs/versions.tf +++ b/examples/single-account-ecs/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { sysdig = { source = "sysdiglabs/sysdig" diff --git a/examples/single-account-k8s/README.md b/examples/single-account-k8s/README.md index b73d0b0e..229ea692 100644 --- a/examples/single-account-k8s/README.md +++ b/examples/single-account-k8s/README.md @@ -75,7 +75,7 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | | [helm](#requirement\_helm) | >=2.3.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | @@ -84,9 +84,9 @@ $ terraform apply | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | -| [helm](#provider\_helm) | 2.6.0 | -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [aws](#provider\_aws) | >= 3.50.0 | +| [helm](#provider\_helm) | >=2.3.0 | +| [sysdig](#provider\_sysdig) | >= 0.5.33 | ## Modules diff --git a/examples/single-account-k8s/versions.tf b/examples/single-account-k8s/versions.tf index 27011e4b..66c4f64b 100644 --- a/examples/single-account-k8s/versions.tf +++ b/examples/single-account-k8s/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/examples/trigger-events/README.md b/examples/trigger-events/README.md index 1240d126..3a24b035 100644 --- a/examples/trigger-events/README.md +++ b/examples/trigger-events/README.md @@ -42,14 +42,14 @@ $ terraform apply | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/examples/trigger-events/versions.tf b/examples/trigger-events/versions.tf index ed2c3cdc..930568ce 100644 --- a/examples/trigger-events/versions.tf +++ b/examples/trigger-events/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/cloudtrail/README.md b/modules/infrastructure/cloudtrail/README.md index da2c8acb..d89472a4 100644 --- a/modules/infrastructure/cloudtrail/README.md +++ b/modules/infrastructure/cloudtrail/README.md @@ -5,14 +5,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 4.0.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 4.0.0 | ## Modules diff --git a/modules/infrastructure/cloudtrail/main.tf b/modules/infrastructure/cloudtrail/main.tf index d737b1d9..ee118251 100644 --- a/modules/infrastructure/cloudtrail/main.tf +++ b/modules/infrastructure/cloudtrail/main.tf @@ -18,7 +18,10 @@ resource "aws_cloudtrail" "cloudtrail" { tags = var.tags ## note: seems required to avoid racing conditions (InsufficientSnsTopicPolicyException on cloudtrail creation) /shrug - depends_on = [aws_s3_bucket_policy.cloudtrail_s3, aws_sns_topic_policy.allow_cloudtrail_publish] + depends_on = [ + aws_s3_bucket_policy.cloudtrail_s3, + aws_sns_topic_policy.allow_cloudtrail_publish + ] } data "aws_caller_identity" "me" {} diff --git a/modules/infrastructure/cloudtrail/sns_permissions.tf b/modules/infrastructure/cloudtrail/sns_permissions.tf index 721263e6..21b82632 100644 --- a/modules/infrastructure/cloudtrail/sns_permissions.tf +++ b/modules/infrastructure/cloudtrail/sns_permissions.tf @@ -25,8 +25,10 @@ data "aws_iam_policy_document" "cloudtrail_sns" { sid = "AllowSysdigSecureForCloudSubscribe" effect = "Allow" principals { - identifiers = ["arn:aws:iam::${var.organizational_config.sysdig_secure_for_cloud_member_account_id}:role/${var.organizational_config.organizational_role_per_account}"] - type = "AWS" + identifiers = [ + "arn:aws:iam::${var.organizational_config.sysdig_secure_for_cloud_member_account_id}:role/${var.organizational_config.organizational_role_per_account}" + ] + type = "AWS" # more open policy but without requiring aws provider role # identifiers = ["sqs.amazonaws.com"] # type = "Service" diff --git a/modules/infrastructure/cloudtrail/versions.tf b/modules/infrastructure/cloudtrail/versions.tf index 61dfbfd0..fb0ea931 100644 --- a/modules/infrastructure/cloudtrail/versions.tf +++ b/modules/infrastructure/cloudtrail/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 4.0.0" diff --git a/modules/infrastructure/cloudtrail_s3-sns-sqs/README.md b/modules/infrastructure/cloudtrail_s3-sns-sqs/README.md index 61848755..9aa1b71b 100644 --- a/modules/infrastructure/cloudtrail_s3-sns-sqs/README.md +++ b/modules/infrastructure/cloudtrail_s3-sns-sqs/README.md @@ -39,14 +39,14 @@ EVENT FILTER/fine-tunning, regarding what we want to send to Sysdig Cloud-Connec | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/cloudtrail_s3-sns-sqs/versions.tf b/modules/infrastructure/cloudtrail_s3-sns-sqs/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/cloudtrail_s3-sns-sqs/versions.tf +++ b/modules/infrastructure/cloudtrail_s3-sns-sqs/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/codebuild/README.md b/modules/infrastructure/codebuild/README.md index 11002591..d7784aad 100644 --- a/modules/infrastructure/codebuild/README.md +++ b/modules/infrastructure/codebuild/README.md @@ -5,14 +5,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/codebuild/versions.tf b/modules/infrastructure/codebuild/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/codebuild/versions.tf +++ b/modules/infrastructure/codebuild/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/ecs-vpc/README.md b/modules/infrastructure/ecs-vpc/README.md index 1ae15360..ac9dd89f 100644 --- a/modules/infrastructure/ecs-vpc/README.md +++ b/modules/infrastructure/ecs-vpc/README.md @@ -6,14 +6,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/ecs-vpc/versions.tf b/modules/infrastructure/ecs-vpc/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/ecs-vpc/versions.tf +++ b/modules/infrastructure/ecs-vpc/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/eks/versions.tf b/modules/infrastructure/eks/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/eks/versions.tf +++ b/modules/infrastructure/eks/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/cloud-connector/README.md b/modules/infrastructure/permissions/cloud-connector/README.md index 7feb8aa2..793590ac 100644 --- a/modules/infrastructure/permissions/cloud-connector/README.md +++ b/modules/infrastructure/permissions/cloud-connector/README.md @@ -5,14 +5,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/cloud-connector/versions.tf b/modules/infrastructure/permissions/cloud-connector/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/permissions/cloud-connector/versions.tf +++ b/modules/infrastructure/permissions/cloud-connector/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/cloud-scanning/README.md b/modules/infrastructure/permissions/cloud-scanning/README.md index b7a525c8..1f73c7b4 100644 --- a/modules/infrastructure/permissions/cloud-scanning/README.md +++ b/modules/infrastructure/permissions/cloud-scanning/README.md @@ -5,14 +5,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/cloud-scanning/versions.tf b/modules/infrastructure/permissions/cloud-scanning/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/permissions/cloud-scanning/versions.tf +++ b/modules/infrastructure/permissions/cloud-scanning/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/general/README.md b/modules/infrastructure/permissions/general/README.md index 29466b5c..6721735d 100644 --- a/modules/infrastructure/permissions/general/README.md +++ b/modules/infrastructure/permissions/general/README.md @@ -8,14 +8,14 @@ General permissions that apply to both cloud-connector and cloud-scanning module | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/general/versions.tf b/modules/infrastructure/permissions/general/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/permissions/general/versions.tf +++ b/modules/infrastructure/permissions/general/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/iam-user/README.md b/modules/infrastructure/permissions/iam-user/README.md index 0e01d5e5..c985ca90 100644 --- a/modules/infrastructure/permissions/iam-user/README.md +++ b/modules/infrastructure/permissions/iam-user/README.md @@ -38,14 +38,14 @@ Note: Contact us if this authentication system does not match your requirement. | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/iam-user/versions.tf b/modules/infrastructure/permissions/iam-user/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/permissions/iam-user/versions.tf +++ b/modules/infrastructure/permissions/iam-user/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/org-role-ecs/README.md b/modules/infrastructure/permissions/org-role-ecs/README.md index c9d190c7..fe688367 100644 --- a/modules/infrastructure/permissions/org-role-ecs/README.md +++ b/modules/infrastructure/permissions/org-role-ecs/README.md @@ -24,15 +24,15 @@ The aim of this module is to manage the organizational **managed account** requi | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | -| [aws.member](#provider\_aws.member) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | +| [aws.member](#provider\_aws.member) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/org-role-ecs/versions.tf b/modules/infrastructure/permissions/org-role-ecs/versions.tf index a395f127..d5a54e56 100644 --- a/modules/infrastructure/permissions/org-role-ecs/versions.tf +++ b/modules/infrastructure/permissions/org-role-ecs/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/permissions/org-role-eks/README.md b/modules/infrastructure/permissions/org-role-eks/README.md index 5a437260..91b30ce8 100644 --- a/modules/infrastructure/permissions/org-role-eks/README.md +++ b/modules/infrastructure/permissions/org-role-eks/README.md @@ -22,14 +22,14 @@ The aim of this module is to manage the organizational **managed account** requi | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/permissions/org-role-eks/versions.tf b/modules/infrastructure/permissions/org-role-eks/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/permissions/org-role-eks/versions.tf +++ b/modules/infrastructure/permissions/org-role-eks/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/resource-group/README.md b/modules/infrastructure/resource-group/README.md index 0bdf6f50..79e641fb 100644 --- a/modules/infrastructure/resource-group/README.md +++ b/modules/infrastructure/resource-group/README.md @@ -6,14 +6,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/resource-group/versions.tf b/modules/infrastructure/resource-group/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/resource-group/versions.tf +++ b/modules/infrastructure/resource-group/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/sqs-sns-subscription/README.md b/modules/infrastructure/sqs-sns-subscription/README.md index 35bf13ff..51ce24dd 100644 --- a/modules/infrastructure/sqs-sns-subscription/README.md +++ b/modules/infrastructure/sqs-sns-subscription/README.md @@ -5,14 +5,14 @@ | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/sqs-sns-subscription/versions.tf b/modules/infrastructure/sqs-sns-subscription/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/sqs-sns-subscription/versions.tf +++ b/modules/infrastructure/sqs-sns-subscription/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/infrastructure/ssm/README.md b/modules/infrastructure/ssm/README.md index c0a20fbc..1db5c35a 100644 --- a/modules/infrastructure/ssm/README.md +++ b/modules/infrastructure/ssm/README.md @@ -9,14 +9,14 @@ and pass it, in a safe way, to all the modules that require it. | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.50.0 | ## Providers | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | +| [aws](#provider\_aws) | >= 3.50.0 | ## Modules diff --git a/modules/infrastructure/ssm/versions.tf b/modules/infrastructure/ssm/versions.tf index ed2c3cdc..930568ce 100644 --- a/modules/infrastructure/ssm/versions.tf +++ b/modules/infrastructure/ssm/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 3.50.0" diff --git a/modules/services/cloud-bench/README.md b/modules/services/cloud-bench/README.md index a7ff5f0f..ebcffa48 100644 --- a/modules/services/cloud-bench/README.md +++ b/modules/services/cloud-bench/README.md @@ -17,7 +17,7 @@ Deployed on **Sysdig Backend** | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 3.62.0 | | [random](#requirement\_random) | >= 3.1.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.29 | @@ -26,9 +26,9 @@ Deployed on **Sysdig Backend** | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | -| [random](#provider\_random) | 3.3.2 | -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [aws](#provider\_aws) | >= 3.62.0 | +| [random](#provider\_random) | >= 3.1.0 | +| [sysdig](#provider\_sysdig) | >= 0.5.29 | ## Modules diff --git a/modules/services/cloud-bench/versions.tf b/modules/services/cloud-bench/versions.tf index ad197fa9..31eb7aad 100644 --- a/modules/services/cloud-bench/versions.tf +++ b/modules/services/cloud-bench/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { random = { source = "hashicorp/random" diff --git a/modules/services/cloud-connector-apprunner/versions.tf b/modules/services/cloud-connector-apprunner/versions.tf index 7f607a8d..4b3b3abe 100644 --- a/modules/services/cloud-connector-apprunner/versions.tf +++ b/modules/services/cloud-connector-apprunner/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 4.0.0" diff --git a/modules/services/cloud-connector-ecs/README.md b/modules/services/cloud-connector-ecs/README.md index 37b856a6..c212982e 100644 --- a/modules/services/cloud-connector-ecs/README.md +++ b/modules/services/cloud-connector-ecs/README.md @@ -7,7 +7,7 @@ A task deployed on an **ECS deployment** will detect events in your infrastructu | Name | Version | |------|---------| -| [terraform](#requirement\_terraform) | >= 0.15.0 | +| [terraform](#requirement\_terraform) | >= 1.0.0 | | [aws](#requirement\_aws) | >= 4.0.0 | | [sysdig](#requirement\_sysdig) | >= 0.5.33 | @@ -15,8 +15,8 @@ A task deployed on an **ECS deployment** will detect events in your infrastructu | Name | Version | |------|---------| -| [aws](#provider\_aws) | 4.20.1 | -| [sysdig](#provider\_sysdig) | 0.5.37 | +| [aws](#provider\_aws) | >= 4.0.0 | +| [sysdig](#provider\_sysdig) | >= 0.5.33 | ## Modules diff --git a/modules/services/cloud-connector-ecs/versions.tf b/modules/services/cloud-connector-ecs/versions.tf index 7f607a8d..4b3b3abe 100644 --- a/modules/services/cloud-connector-ecs/versions.tf +++ b/modules/services/cloud-connector-ecs/versions.tf @@ -1,5 +1,5 @@ terraform { - required_version = ">= 0.15.0" + required_version = ">= 1.0.0" required_providers { aws = { version = ">= 4.0.0"