Turbot v5 Update Digest for 27 Oct to 2 Nov 2020

Current Recommended Versions

  • Turbot Enterprise (TE) 5.30.5
  • Turbot Enterprise Database (TED) 1.11.0
  • Turbot Enterprise Foundation (TEF) 1.26.3
  • Turbot Terraform Provider 1.6.3
  • Turbot CLI 1.24.2
  • Turbot Mod 5.27.0

Note: Turbot Customer Support recommends running the above versions as a “known good” configuration that incorporates the latest bug fixes and optimizations.

Highlights

  • Faster summary data loading for smoother browsing of resources, controls and policies.
  • Resource deletion is much faster, and scales to much larger environments.
  • Optimized performance across many GraphQL APIs and operations through careful analysis of queries and better data models introduced in v5.29.0.

Enterprise Highlights

  • Workspace upgrades can now check that they are coming from a minimum required version, smoothing the process for key release milestones when a workspace is far behind.
  • Worker lambdas now handle four tasks in parallel instead of 2, optimizing utilization.
  • Terraform stack container is much smaller, for faster startup and improved performance.

Alerts

Upgrade path to get to 5.30.5 from a TE version before 5.29.12:

  1. TEF 1.26.3
  2. TE 5.29.14
  3. Make sure that Turbot > Workspace > Migration control is in ok. Pause on this TE version till the migration control indicates “Migration Complete”, see screenshot.
  4. TE 5.30.2
  5. Make sure that Turbot > Workspace > Migration control is in ok. Pause on this TE version till the migration control indicates “Migration Complete”, see screenshot.
  6. TE 5.30.5
  7. Turbot Mod 5.27.0 (For customers already on a more recent version of the turbot mod, there is no need to downgrade. There are two new controls that depend on TE 5.31.0+. On previous TE versions, they will be in an error state but do no harm.)

AWS Mods

Highlights

  • Added AWS > DMS > Replication Instance resource type
  • Added AWS > Lambda > Function Version resource type
  • The AWS > EC2 > Instance > CMDB control will now re-trigger after 1 minute instead of 5 if the instance is in the pending, shutting-down or stopping states. This will enable all the dependent controls and policies to be updated much faster.
  • New policies: AWS > IAM > Role > Trust Relationship Statements > Approved > Trusted Accounts and AWS > S3 > Bucket > Policy Statements > Approved > Trusted Accounts policies

Alerts

  • None

Release Notes

Azure Mods

Highlights

  • In azure-sql: New policies Azure > SQL > Server > Active Directory Administrator and Azure > SQL > Server > Active Directory Administrator > Name

Release Notes

GCP Mods

Highlights

  • Added GCP > Network > Region SSL Certificate resource type
  • Added GCP > Network > Region Target HTTPS Proxy resource type
  • Added GCP > Network > SSL Certificate resource type
  • Added GCP > Network > SSL Policy resource type
  • Added GCP > Network > Target HTTPS Proxy resource type
  • We’ve updated the Discovery controls for resources to now move to skipped instead of invalid if the service API is disabled in the project and the GCP > {service} > API Enabled policy is checking if the API is disabled. This will reduce the amount of noisy controls that cannot be easily resolved without making changes to the service API.

Alerts

  • None

Release Notes

Was this article helpful?
0 out of 0 found this helpful