You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This commit was created on GitHub.com and signed with GitHub’s verified signature.
The key has expired.
Changed
Bug fixes for AFSBP EC2.1, CIS 3.x
Separated Member roles from the remediations so that roles can be deployed once per account
Roles are now global
Cross-region remediation is now supported
Deployment using stacksets is documented in the IG and supported by the templates
Member account roles for remediation runbooks are now retained when the stack is deleted so that remediations that use these roles continue to function if the solution is removed
Added
Added a get_approval_requirement lambda that customers can use to implement custom business logic
Added the ability for customers to route findings to an alterate runbook when the finding meets criteria. For example, potentially destructive remediations can be sent to a runbook that sends the finding data to Incident Manager.
