Launch Week 6 is a wrap!

Our announcements this week span the breadth of Turbot offerings:

• Guardrails

  • Enhanced ServiceNow CMDB relationship sync
  • 33 new step-by-step guides for easier operations
  • Major runtime cost reductions through optimization

• Open Source

  • v1.0 for Steampipe, Powerpipe, Flowpipe, and 116 plugins and 44 mods

• Flowpipe

  • Interactive wizard for AWS CIS v3.0 and v4.0 remediation

• Pipes

  • Run Flowpipe workflows in Turbot Pipes
  • Pipes platform strategy

Monday October 21: Making Guardrails Better

Enhanced ServiceNow CMDB Integration

We extended our ServiceNow CMDB integration with automatic relationship management for cloud resources. Now Guardrails automatically creates and maintains relationships among cloud resources in ServiceNow's CMDB, providing critical visibility into how AWS, Azure, GCP, and Kubernetes resources are interconnected. This builds on our existing ServiceNow integration, requiring no additional ServiceNow modules or cloud services.

33 New Step-by-Step Guides

We released 33 new step-by-step guides focused on simplifying the installation, configuration, and monitoring of your Guardrails environment. These guides cover everything from importing cloud accounts to troubleshooting event handlers, making it easier than ever to get started with Guardrails and maintain it over time. The guides are now publicly available on GitHub, enabling community contributions that improve and expand the documentation.

Runtime Cost Reductions

We announced a suite of technical improvements that have dramatically reduced Guardrails' runtime costs. Highlights include migration to ARM64 for AWS ECS and Lambda workloads, Redis cache optimization, new activity log retention policies, support for PostgreSQL 16, and upgraded Node.js runtime in Lambda functions. Each of these improvements delivers solid cost and/or performance benefits. Collectively they add up to a big win for Guardrails customers.

Tuesday October 22: Version 1.0 Milestones

Major Version 1.0 Releases

We announced a coordinated v1.0 release that represents a major milestone in our open source journey. Each component has been battle-tested in production environments and has evolved based on real-world feedback from our active community. Individually they enable you to query cloud resources, report on them, and act on them. They work even better together as when, for example, a Steampipe query feeds a Powerpipe dashboard or a Flowpipe pipeline.

Flipping the v1.0.0 switch is always an emotional moment. We're just getting started, but it was time to recognize the maturity of this ecosystem and celebrate with everyone who has traveled with us on this journey.

Wednesday October 23: Interactive Compliance Workflows in Flowpipe

AWS CIS Remediation

We introduced Flowpipe's interactive wizard for remediating AWS CIS benchmark findings. Along with the new AWS CIS mod, which supports both CIS v3.0 and v4.0, we released the foundational AWS Compliance mod — a suite of detect-and-correct pipelines that support AWS CIS but are available for separate use in other contexts.

With these new mods you can run Flowpipe in an interactive terminal to march through a checklist of CIS findings and fix misconfigurations with human oversight. You can also schedule individual controls to run autonomously.

Thursday October 24: Turbot Pipes Integration

Flowpipe in Pipes

We announced the integration of Flowpipe into Turbot Pipes. Now you can run your workflows in the Pipes web UI, with vastly easier configuration of connections, integrations, notifiers, and mod settings. Flowpipe is available in every new Pipes workspace, and so is a Steampipe instance ready to be used by Flowpipe. With the new Slack integration it's trivial to push approval steps into a Slack channel. And the GitHub integration you've enjoyed for installation of Powerpipe mods works just the same way for Flowpipe mods.

Pipes Assemble!

We discuss how Steampipe, Powerpipe, and Flowpipe work together in Pipes as a comprehensive platform for cloud intelligence and security. Now all three core components are first-class citizens of Pipes. As with AWS services, you choose your tool based on the job to be done. You can quickly navigate among them, and each taps into common Pipes infrastructure. When you create an AWS connection in a Pipes organization or tenant, for example, you can make it available to some or all workspaces. In those workspaces, all three Pipes components can use the connection: Steampipe for queries, Powerpipe for benchmarks and dashboards, and Flowpipe to enforce security compliance.

The B-sides

These were the Launch Week 6 hits, but plenty of other good things happened during this cycle. Check the B-sides for details!

And that's a wrap!

The announcements this week are individually exciting, but the Turbot story is bigger than the sum of its parts. Our products work together to deliver cloud security and intelligence with incomparable breadth, depth, power, speed, and versatility. And there's more to come. Enjoy the current batch of new products and features, let us know how it goes and stay tuned for our next Launch Week in a few months!

Watch the Wrap Party