v1.0.1

• fix: ExcludeOrganizationalUnit throws a validation error.
• fix: No targetId when attaching scp to root
• chore: update runtime deps

v1.0.0

version 1.0.0 🎉

• feat: AWS GovCloud (US) support (using --partition flags). AWS organizations from the commercial partition will be mirrored to a non-commercial partition e.g. AWS GovCloud (US).
• fix: invalid CRC checksum on zipfile when running init-pipeline
• feat: support for up to 4000 AWS Accounts within an organization
• fix: caching of exported values, therefore improving performance and avoiding rate limiting errors
• fix: template support for --print-tasks

BREAKING CHANGES:

• v1.0.0: execution role under which org-formation is ran requires the ec2:describeRegions permission

v0.9.18

• feat: support ExcludeOrganizationalUnit in binding
• feat: support ServerSideEncryption in copy-to-s3 task
• fix: ensure password policy and alias don't get cleared on init/build
• fix: ensure concurrency settings are re-used when deleting tasks
• fix: add retry and backoff when reading the organization (e.g. using init)
• fix: strip dashes from account names when generating the logical names during init

v0.9.17

• fix: allow templates without version attribute
• feat: support !Ref AWS::Partition in tasks file
• feat: allow yaml anchors to be declared in top level Definitions attribute
• feat: reduce 'not in update create completed' failures when creating new account (due to rate limiting)
• feat: TextTemplating support for organization.yml and task files
• feat: possibility to mix TextTemplating and bindings/expressions
• feat: stack tags
• fix: org-formation init to honor --cross-account-role-name

v0.9.16

version 0.9.16

• fix: missing role in build account when running init-pipeline

v0.9.15

• BREAKING CHANGE: when using OrgFormationBuild role, this role will be used and must be present in all accounts (also in the build account), more info here
• feat: support for << (merge operator) in the organization.yml file. this allows for large organization.yml files to be split out (using <<: Include ./dev-accounts.yml)
• feat: better profile support added support for credential process and SSO
• feat: perform tasks will create a state bucket if bucket doesn't exist
• feat: added !Cmd function to execute and capture the output of any shell command
• feat: ofn alias to binary
• feat: support for nunjucks templating on cloudformation templates
• feat: init & init-pipeline commands use default region from profiles file.
• fix: allow !Ref CurrentAccount and !FindInMap to be used together in a tasks file.
• fix: have init-pipeline create a pipeline that works with the main branch (as opposed to master)
• fix: allow for SAM templates with a globals section to deploy
• fix: set the default buildAccessRoleName for cdk and sls tasks
• fix: race condition deploying/validating/printing templates if update-organization task is placed in an include

v0.9.14

version 0.9.14

• Support for moving the org-formation build process out of the master/management account in AWS
• Support for splitting up the CI/CD process (perform-tasks) into multiple
• Organization.yml file gets published to S3 and EventBridge after change (and successful perform-tasks).
• Support for centrally stored parameters using !Include.
• Optimized buildtime on organization.yml file changes.
• Added CAPABILITY_AUTO_EXPAND to support deploying SAM.
• Templates with CloudFormation resolve expressions will get redeployed (as the outcome will be evaluated by Cfn).
• Numerous bugfixes and small improvements.

v0.9.13

• Added a new command: print-tasks, which will generate all cloudformation templates and write to disk.
• Added zip-before-put support to copy-to-s3 task.
• Added support for !ReadFile and !JsonString inside CloudFormation templates.
• Added functions !MD5Dir and !MD5File, which can be used in both task files and cloudformation.
• Added psuedo parameter ORG::StateBucketName.
• Optimized build time by locally skipping resource providers if task did not change.
• Updated codebuild image used to create new pipelines with to standard:4.0.
  Note: If you are running a pipeline generated by org-formation, you might want to update the build image for faster provisioning time!

v0.9.12

• Allow failure tolerance to be set to 0 on validate-tasks command (allows CI/CD processes to fail on validation)
• Added support for Mappings section and !FindInMap / !Select functions for task files.
• Added functions !MD5 / !ReadFile that can be used in task files.
• Added function !JsonString that can be used in task files.
• Added support for !Ref OrganizationRoot (and other types) in task files.
• Fixed bug on org-formation init where tags on the MasterAccount where not added to generated template.
• Updating stacks that have state ROLLBACK_FAILED will be retried.
• Support for large (> 512000 byte) templates

v0.9.11

• Added pseudo parameter ORG::PrincipalOrgID (in tasks file).
• Improved parsing of attributes in task files.
• AWSAccount can be used as alias for CurrentAccount in task file expressions.
• Added support for cross account references on VPCEndpoint.DnsEntries.
• Fixed bug where register-type tasks did not properly register execution role.