Turbot v5 Update Digest for 17 Aug to 24 Aug 2020

Current Recommended Versions

  • Turbot Enterprise (TE) 5.28.4
  • Turbot EnterpriseDatabase (TED) 1.11.0
  • Turbot Enterprise Foundation (TEF) 1.23.0
  • Turbot Terraform Provider 1.6.0
  • Turbot CLI 1.20.1

Turbot Enterprise

Highlights

  • Improved performance of stale process search for cleanup, especially under large backlog conditions.

Bug fixes

  • Pagination of resources was not working properly for full text search queries combined with sort:rank. Now it does.
  • During resource upsert Turbot calculates various fields (e.g. AKAs) from the data. We now merge any updated data with the existing data before doing those calculations.
  • Mod update now performs resource type deletion after other actions (e.g. control type deletion), preventing conflicts.
  • Mod install sets the mod title as part of the initial data, so the UI can show the actual title instead of the ID during installation or if the install fails for any reason.
  • Notifications for scheduled actions should include the resource information when appropriate.
  • GraphQL nested resolved for policyTrunk could return extra results in some cases. We now use resourceId: instead of resource: internally to fix this.

Enterprise Highlights

  • Mod install creates Lambda functions with SNS triggers for control types and similar runnables. In versions before v5.27.0 this install would sometimes result in the trigger silently failing to setup. We now detect and repair these (legacy) cases on the next mod install.
  • Policy type updates during mod install could become deadlocked. These errors have been resolved.
  • Cleanup of stale processes is often running duplicates for the same process. We now clean each process once.
  • Dead letter queue handlers should not check the version of the handler, since the priorary goal is just to cleanup the process.
  • Cleanup of stale processes was causing a large backlog of locks.
  • Repaired indexed on the types table to improve performance bottlenecks.
  • Optimized specific notification queries to improve UI performance of activit lists.

Alerts

  • None

AWS Mods

Highlights

  • 10 mods released!
  • New policies or changed policy names in: aws-ec2
  • In aws-ec2: Turbot can now apply Termination Protection and Detailed Monitoring to an instance.
  • In various Active controls, we were outputting log messages that did not properly show how many days were left until we’d delete the inactive resources (we were still deleting them after the correct number of days). These log messages have been fixed and now contain the correct number of days.
  • In aws-vpc-security: Improvements were made to the GraphQL input queries for AWS > VPC > Flow Log > Discovery to make sure that they run less frequently over time, and still upsert flow logs under the correct resource parent(VPC, subnet or ENI).
  • In aws-rds: AKAs are properly created now.

Alerts

  • None

Release Notes

Highlights

  • 1 mods released!
  • Tagging has come to Azure Log Analytics.

Alerts

  • None

Release Notes

GCP

Highlights

  • 1 mods released!
  • New policies or changed policy names in: gcp
  • Policies to select a terraform version

Alerts

  • None

Release Notes

Was this article helpful?
0 out of 0 found this helpful