Breaking changes

• Removed the iam_root_user_virtual_mfa control since it is not recommended as good practice. (#743)
• Replaced iam_account_password_policy_strong with iam_account_password_policy_strong_min_reuse_24 in the GDPR, FFIEC and CISA Cyber Essentials benchmarks to align more accurately with the requirements specified in the AWS Config rules. (#739)

Bug fixes

• Updated the dashboard image to correctly list all the 25 benchmarks. (#748)