v1.1.1

What's Changed

• release: infrastructure version v1.1.0 by @patheard in #215
• release: new API and s3-scan-object Docker images by @patheard in #216
• fix: increase api CloudFront read timeout by @patheard in #217

Full Changelog: v1.1.0...v1.1.1

v1.1.0

What's Changed

• fix: ERROR logs from ClamAV daemon startup by @patheard in #185
• fix: treat non-zero pidof command as info by @patheard in #186
• feat: Terraform infrastructure version manifest by @patheard in #184
• feat: staging lambda deploy and test workflows by @patheard in #187
• fix: correct object being used to log by @mohamed-cds in #189
• feat: CloudWatch alarms for ERROR logs by @patheard in #190
• refactor: move custom logging setup into middleware by @mohamed-cds in #191
• fix: full terraform apply in Staging by @patheard in #192
• feat: add suspicious scan verdicts alarms by @patheard in #193
• fix: scan verdict CloudWatch log filter by @patheard in #194
• fix: use the alarm >= comparison operator by @patheard in #195
• refactor: use lambda powertools for logging by @mohamed-cds in #196
• fix: use log to retrieve scanning id when needed by @mohamed-cds in #197
• feat: fallback to on-demand scanner if daemon ignores file by @mohamed-cds in #200
• fix: match against lowercase by @mohamed-cds in #201
• fix: use correlation_id in the S3 scan object logs by @patheard in #202
• chore(deps): update actions/setup-python action to v4 by @renovate in #206
• feat: report csp failures to report service by @mohamed-cds in #210
• feat: add SBOM for s3-scan-object module by @patheard in #211
• chore(deps): update all patch dependencies by @renovate in #203
• chore(deps): lock file maintenance by @renovate in #207
• fix: swagger docs csp violations by @mohamed-cds in #213
• fix: integration test and async event timeout by @patheard in #214

Full Changelog: v1.0.0...v1.1.0

v1.0.0

What's Changed

• update: added README by @asharahmed in #2
• feat: initial infrastructure by @mohamed-cds in #1
• feat: base api for file scanning by @mohamed-cds in #3
• feat: api lambda by @mohamed-cds in #4
• feat: apigateway lambda integration by @mohamed-cds in #5
• feat: apigateway for websocket connections by @mohamed-cds in #6
• refactor: remove websockets due to not meeting needs by @mohamed-cds in #7
• feat: assemblyline file upload and scan status retrieval by @mohamed-cds in #8
• fix: commit scan id before using as metadata by @mohamed-cds in #10
• fix: scan verdict nows matches assemblyline by @mohamed-cds in #12
• feat: file queue and quarantine buckets by @mohamed-cds in #15
• feat: save file to s3 for async processing by @mohamed-cds in #16
• feat: output api lambda variables for future component by @mohamed-cds in #17
• feat: stepfunction scan queue with semaphore by @mohamed-cds in #18
• fix: fixed state machine and download file from s3 by @mohamed-cds in #21
• feat: increase wait times and lambda timeout by @mohamed-cds in #23
• feat: scan-files hosted zone by @mohamed-cds in #26
• feat: API stage custom domain and certificate by @mohamed-cds in #27
• feat: add missing iam policy by @mohamed-cds in #29
• feat: cleanup lock table when a state machine execution fails by @mohamed-cds in #31
• Feat/load testing by @mohamed-cds in #32
• feat: allow eventbridge to assume the scanqueue role by @mohamed-cds in #34
• feat: retry scans that haven't completed in 24 hours by @mohamed-cds in #35
• docs: architecture diagram and api docs by @mohamed-cds in #36
• fix: select empty verdict instead of in_progress by @mohamed-cds in #39
• feat: send files to high priority rate limited submit queue by @mohamed-cds in #41
• fix: flag scans with missing file as an error by @mohamed-cds in #43
• update gitignore by @dinophile in #44
• feat: pin terraform to version 3 by @mohamed-cds in #45
• fix: send AWS lambda function update to /dev/null by @maxneuvians in #46
• fix: dont clear lock if no results by @mohamed-cds in #47
• feat: generate and upload SBOM by @patheard in #48
• Configure Renovate by @renovate in #49
• chore(deps): update dorny/paths-filter digest to 1ec7035 by @renovate in #50
• feat: add IAM role for OIDC by @dinophile in #62
• fix: switch to generate SBOM composite action by @patheard in #63
• feat: generate SBOM for api Docker image by @patheard in #64
• fix: create the OIDC provider by @patheard in #66
• chore: add OIDC auth to the Docker image workflow by @patheard in #67
• Add OIDC AWS login in TFapply and TFplan actions by @dinophile in #65
• feat: group major and patch dependency bumps by @mohamed-cds in #68
• feat: exclude python from being grouped by @mohamed-cds in #72
• chore(deps): update all patch dependencies by @renovate in #70
• feat: perform ci healthchecks when a new lambda is deployed by @mohamed-cds in #75
• chore(deps): update all minor dependencies by @renovate in #71
• chore(deps): update aws-actions/configure-aws-credentials digest to 8a84b07 by @renovate in #77
• chore(deps): update cds-snc/security-tools digest to 665d1d1 by @renovate in #69
• chore(deps): update actions/checkout digest to 2541b12 by @renovate in #76
• chore(deps): update actions/checkout action to v3 by @renovate in #73
• chore(deps): update hashicorp/setup-terraform action to v2 by @renovate in #81
• chore(deps): update actions/setup-python action to v3 by @renovate in #78
• chore(deps): update actions/setup-node action to v3 by @renovate in #74
• chore(deps): update cds-snc/security-tools digest to b09c1ae by @renovate in #82
• feat: pin github actions to shas by @mohamed-cds in #84
• fix: use correct renovate comment tag by @mohamed-cds in #85
• chore(deps): update dependency boto3 to v1.23.7 by @renovate in #83
• chore: update to latest generate-sbom action by @patheard in #86
• chore(deps): update cds-snc/security-tools digest to 4c6b386 by @renovate in #88
• chore(deps): pin dependencies by @renovate in #89
• feat: test out new default config setup by @mohamed-cds in #92
• chore(deps): update cds-snc/terraform-plan digest to dce0ba2 by @renovate in #90
• chore(deps): update all minor dependencies by @renovate in #93
• chore(deps): update all patch dependencies by @renovate in #91
• feat: retrieve env from ssm by @mohamed-cds in #94
• feat: lambda envs no longer required by @mohamed-cds in #95
• fix: write ssm env to /tmp by @mohamed-cds in #96
• refactor: load envs in entrypoint by @mohamed-cds in #97
• feat: clamav install and virus def to s3 by @mohamed-cds in #98
• fix: schedule expression syntax by @mohamed-cds in #99
• fix: update config to move writeable items to /tmp by @mohamed-cds in #100
• feat: increase memory to account for clamav by @mohamed-cds in #101
• feat: clam file scanning api by @mohamed-cds in #102
• fix: ensure required dir exists by @mohamed-cds in #103
• feat: scan files from s3 bucket by @mohamed-cds in #104
• feat: store the api key in ssm to be shared by @mohamed-cds in #105
• fix: populate env file with key value by @mohamed-cds in #106
• feat: isolate production account in terragrunt by @mohamed-cds in #107
• refactor: move env specific vars into hcl file by @mohamed-cds in #108
• feat: allow API to cross-account assume role by @patheard in #109
• chore: remove unused scan-files-api IAM role by @patheard in #110
• fix: cause API gateway redeploy and update workflow by @patheard in #111
• feat: assume role to download scan file by @mohamed-cds in #112
• feat: assume role before publishing to sns by @mohamed-cds in #113
• fix: retrieve object ref instead of file by @mohamed-cds in #114
• fix: create new thread by @mohamed-cds in #115
• Revert "fix: create new thread" by @mohamed-cds in #116
• feat: utility to run tasks in background using asynio by @mohamed-cds in #117
• refactor: invoke a new lambda for clamav scanning by @mohamed-cds in #118
• feat: S3 scan object ECR for Lambda container image by @patheard in #119
• fix: ECR policy to allow cross-account pulls by @patheard in #120
• fix: ECR Lambda service IAM policy statement by @patheard in https://github.com/cds...