New Release: Forseti Security v2.25.0

[Gregg Kowalski]

The Forseti Security team is excited to announce the release of Forseti Security version 2.25.0 and Forseti Terraform module version 5.2.0!

Forseti Highlights:

• Inventory
• Add Service Usage Service Resource to Inventory
• Scanner
• Add logic for checking if the policy library is setup correctly for the Config Validator Scanner. This will provide more helpful error messages.
• Moving rule validation in to a library and improving tests.
• Update Config Validator violations to use the convention CV_{constraint_name} as the violation type instead of CONFIG_VALIDATOR_VIOLATION. This makes it easier to understand what the violations are for, and will show up in Cloud Security Command Center (CSCC).
• Notifier
• Restart Forseti to release used memory so that all the fields in the violations are displayed.
• Client/Server
• Add an endpoint to run the server processes end-to-end (e.g. inventory/model/scan/notify). Use like this: forseti server run.
  
• Pinned idna==2.8 to satisfy requests[security]==2.21.0.

We encourage you to take a look at the Forseti release notes for more details. Try out the release by following this guide to install and configure a new Forseti instance or by following this guide on how to upgrade an existing deployment.

There have been many changes on the Terraform side, please see the Terraform release notes for all the details.

Questions, feedback, or comments are welcomed at slack or by email at dis...@forsetisecurity.org.