Product logo
DocsBlogPricing

@turbot/aws-ecs

The aws-ecs mod contains resource, control and policy definitions for AWS ECS service.

Version
5.6.0
Released On
Oct 09, 2023
Depends On

Resource Types

Control Types

Policy Types

Release Notes

5.6.0 (2023-10-09)

What's new?

  • We've updated the runtime of the lambda functions to Node 18. You wouldn't notice any difference and things will continue to work smoothly and consistently as before.

  • Resource's metadata will now also include createdBy details in Turbot CMDB.

Action Types

  • AWS > ECS > Cluster > Delete from AWS
  • AWS > ECS > Cluster > Set Tags
  • AWS > ECS > Cluster > Skip alarm for Active control
  • AWS > ECS > Cluster > Skip alarm for Active control [90 days]
  • AWS > ECS > Cluster > Skip alarm for Approved control
  • AWS > ECS > Cluster > Skip alarm for Approved control [90 days]
  • AWS > ECS > Cluster > Skip alarm for Tags control
  • AWS > ECS > Cluster > Skip alarm for Tags control [90 days]
  • AWS > ECS > Container Instance > Delete from AWS
  • AWS > ECS > Container Instance > Skip alarm for Active control
  • AWS > ECS > Container Instance > Skip alarm for Active control [90 days]
  • AWS > ECS > Container Instance > Skip alarm for Approved control
  • AWS > ECS > Container Instance > Skip alarm for Approved control [90 days]
  • AWS > ECS > Service > Delete from AWS
  • AWS > ECS > Service > Set Tags
  • AWS > ECS > Service > Skip alarm for Active control
  • AWS > ECS > Service > Skip alarm for Active control [90 days]
  • AWS > ECS > Service > Skip alarm for Approved control
  • AWS > ECS > Service > Skip alarm for Approved control [90 days]
  • AWS > ECS > Service > Skip alarm for Tags control
  • AWS > ECS > Service > Skip alarm for Tags control [90 days]
  • AWS > ECS > Task Definition > Delete from AWS
  • AWS > ECS > Task Definition > Set Tags
  • AWS > ECS > Task Definition > Skip alarm for Active control
  • AWS > ECS > Task Definition > Skip alarm for Active control [90 days]
  • AWS > ECS > Task Definition > Skip alarm for Approved control
  • AWS > ECS > Task Definition > Skip alarm for Approved control [90 days]
  • AWS > ECS > Task Definition > Skip alarm for Tags control
  • AWS > ECS > Task Definition > Skip alarm for Tags control [90 days]

5.5.0 (2022-06-02)

What's new?

  • Users can now create their own custom checks against resource attributes in the Approved control using the Approved > Custom policy. These custom checks would be a part of the evaluation of the Approved control. Custom messages can also be added which are then displayed in the control details table. See Custom Checks for more information.

Bug fixes

  • The AWS > ECS > Cluster > CMDB control would sometimes fetch the tagging information on a cluster incorrectly. This is now fixed.

Policy Types

  • AWS > ECS > Cluster > Approved > Custom
  • AWS > ECS > Container Instance > Approved > Custom
  • AWS > ECS > Service > Approved > Custom
  • AWS > ECS > Task Definition > Approved > Custom

5.4.0 (2021-08-30)

What's new?

  • We've improved the details tables in the Tags controls to be more helpful, especially when a resource's tags are not set correctly as expected. Previously, to understand why the Tags controls were in an Alarm state, you would need to find and read the control's process logs. This felt like too much work for a simple task, so now these details are visible directly from the control page.

5.3.0 (2021-06-24)

What's new?

  • AWS/ECS/Admin now includes ecs:ExecuteCommand.

5.2.1 (2021-06-11)

Bug fixes

  • Container Instances terminated via Auto Scaling were not cleaned up automatically in Guardrails. This is now fixed.

5.2.0 (2021-05-24)

Resource Types

  • AWS > ECS > Service

Control Types

  • AWS > ECS > Service > Active
  • AWS > ECS > Service > Approved
  • AWS > ECS > Service > CMDB
  • AWS > ECS > Service > Discovery
  • AWS > ECS > Service > Tags

Policy Types

  • AWS > ECS > Service > Active
  • AWS > ECS > Service > Active > Age
  • AWS > ECS > Service > Active > Last Modified
  • AWS > ECS > Service > Approved
  • AWS > ECS > Service > Approved > Regions
  • AWS > ECS > Service > Approved > Usage
  • AWS > ECS > Service > CMDB
  • AWS > ECS > Service > Regions
  • AWS > ECS > Service > Tags
  • AWS > ECS > Service > Tags > Template

Action Types

  • AWS > ECS > Service > Delete
  • AWS > ECS > Service > Router
  • AWS > ECS > Service > Update Tags

5.1.4 (2021-03-01)

Bug fixes

  • Whenever container instances were created, we failed to upsert them automatically in our CMDB. This issue has now been fixed.

5.1.3 (2020-12-24)

Bug fixes

  • Controls run faster now when in the tbd and skipped states thanks to the new Guardrails Precheck feature (not to be confused with TSA PreCheck). With Guardrails Precheck, controls avoid running GraphQL input queries when in tbd and skipped, resulting in faster and lighter control runs.

5.1.2 (2020-09-21)

Bug fixes

  • We've made some improvements to our real-time event handling that reduces the risk of creating resources in CMDB with malformed AKAs. There's no noticeable difference, but things should run more reliably now.

5.1.1 (2020-08-11)

Bug fixes

  • In various Active controls, we were outputting log messages that did not properly show how many days were left until we'd delete the inactive resources (we were still deleting them after the correct number of days). These log messages have been fixed and now contain the correct number of days.

5.1.0 (2020-08-05)

Resource Types

  • AWS > ECS > Task Definition

Control Types

  • AWS > ECS > Task Definition > Active
  • AWS > ECS > Task Definition > Approved
  • AWS > ECS > Task Definition > CMDB
  • AWS > ECS > Task Definition > Configured
  • AWS > ECS > Task Definition > Discovery
  • AWS > ECS > Task Definition > Tags
  • AWS > ECS > Task Definition > Usage

Policy Types

  • AWS > ECS > Task Definition > Active
  • AWS > ECS > Task Definition > Active > Age
  • AWS > ECS > Task Definition > Active > Last Modified
  • AWS > ECS > Task Definition > Approved
  • AWS > ECS > Task Definition > Approved > Regions
  • AWS > ECS > Task Definition > Approved > Usage
  • AWS > ECS > Task Definition > CMDB
  • AWS > ECS > Task Definition > Configured
  • AWS > ECS > Task Definition > Configured > Claim Precedence
  • AWS > ECS > Task Definition > Configured > Source
  • AWS > ECS > Task Definition > Regions
  • AWS > ECS > Task Definition > Tags
  • AWS > ECS > Task Definition > Tags > Template
  • AWS > ECS > Task Definition > Usage
  • AWS > ECS > Task Definition > Usage > Limit
  • AWS > Turbot > Event Handlers > Events > Rules > Custom Event Patterns > @turbot/aws-ecs

Renamed

  • AWS > ECS > Regions [Default] to AWS > ECS > Regions

Removed

  • AWS > Turbot > Event Handlers > Events > Rules > Event Sources > @turbot/aws-ecs

Action Types

  • AWS > ECS > Task Definition > Delete
  • AWS > ECS > Task Definition > Router
  • AWS > ECS > Task Definition > Update Tags

5.0.4 (2020-07-01)

Bug fixes

  • Sometimes when updating CMDB for resources with tags that have empty string values, e.g., [{Key: "Empty", Value: ""}, {Key: "Guardrails is great", Value: "true"}], we would not store all of the tags correctly. This has been fixed and now all tags are accounted for.

5.0.3 (2020-06-12)

What's new?

  • All resource Router actions now run even if Guardrails is outside of its allowed change window. This allows Guardrails to maintain an up-to-date CMDB by handling resource updates at all times. Note that this only affects Guardrails' ability to process resources changes that were made in the cloud provider - enforcement actions are still disabled outside of the change window.

Bug fixes

  • Links to documentation in the descriptions for several controls and policies were broken. These links have now been fixed.

Policy Types

Renamed

  • AWS > ECS > Cluster > Configured > Precedence to AWS > ECS > Cluster > Configured > Claim Precedence