search

MoveoTech / terraform-aws-rest-api-architecture

REST API architecture baseline
Apache License 2.0
4 stars 1 forks source link

build(deps): bump cloudposse/waf/aws from 0.4.0 to 1.3.0 #863

Closed dependabot[bot] closed 8 months ago

dependabot[bot] commented 1 year ago

Bumps cloudposse/waf/aws from 0.4.0 to 1.3.0.

Release notes

Sourced from cloudposse/waf/aws's releases.

v1.3.0

what

We want to be able to set the default response header for the default action if this is set to block.

why

We face the problem that without a default response code some requests are not blocked. Even if AWS says that the default is 403. We solved this by setting the response code manually to 403.

references

v1.2.0

what

  • Add managed_rule_group_configs and rule_action_override
  • Update variables
  • Update examples and tests

why

  • managed_rule_group_configs is supported by Managed Rule Groups WAF rules, but was not implemented before
  • rule_action_override is supported by Managed Rule Groups and Rule Group Reference WAF rules, but was not implemented before
  • Update variables to use list(object) types instead of list(any) to reduce misconfiguration errors
  • Update examples to show how to configure managed_rule_group_configs and rule_action_override for Managed Rule Groups WAF rules

references

v1.1.0

what

  • Add ip_set variable in ip_set_reference_statement_rules to create IP Set automatically

... (truncated)

Commits
  • 2935cd6 Add default block response to the default block block (#54)
  • 9b270d2 Add managed_rule_group_configs and rule_action_override. Update variables...
  • 330f9f1 Feature/add ipset support (#50)
  • bbc4a71 Refactor. Add missing features. Terraform aws provider v5 compatibility (#45)
  • See full diff in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 8 months ago

Superseded by #906.