Merge branch 'main' into sumo_247335

Author: akhil-sumologic

awsautoenableS3Logging/packaged.yaml

@@ -24,10 +24,10 @@ Metadata:
     - s3logging
     - flowlogs
     Name: sumologic-s3-logging-auto-enable
-    SemanticVersion: 1.0.14
+    SemanticVersion: 1.0.16
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/awsautoenableS3Logging
-    LicenseUrl: s3://appdevstore/AutoEnableS3Logs/v1.0.14/978602b5b9ec16f8bab0e38fd6b3998f
-    ReadmeUrl: s3://appdevstore/AutoEnableS3Logs/v1.0.14/d05d411471e0bb4db3389f2523f515f0
+    LicenseUrl: s3://appdevstore/AutoEnableS3Logs/v1.0.16/978602b5b9ec16f8bab0e38fd6b3998f
+    ReadmeUrl: s3://appdevstore/AutoEnableS3Logs/v1.0.16/d05d411471e0bb4db3389f2523f515f0
     SpdxLicenseId: Apache-2.0
 Mappings:
   Region2ELBAccountId:
@@ -229,9 +229,9 @@ Resources:
     Type: AWS::Serverless::Function
     Condition: auto_enable_new
     Properties:
-      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.17/sumo_app_utils.zip
+      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.19/sumo_app_utils.zip
       Handler: awsresource.enable_s3_logs
-      Runtime: python3.12
+      Runtime: python3.13
       Role:
         Fn::GetAtt:
         - SumoLambdaRole
@@ -466,8 +466,8 @@ Resources:
     Condition: auto_enable_existing
     Properties:
       Handler: main.handler
-      Runtime: python3.12
-      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.17/sumo_app_utils.zip
+      Runtime: python3.13
+      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.19/sumo_app_utils.zip
       MemorySize: 128
       Timeout: 900
       Role:

awsautoenableS3Logging/sumologic-s3-logging-auto-enable.yaml

@@ -24,7 +24,7 @@ Metadata:
       - s3logging
       - flowlogs
     Name: sumologic-s3-logging-auto-enable
-    SemanticVersion: 1.0.14
+    SemanticVersion: 1.0.16
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/awsautoenableS3Logging
     LicenseUrl: ./LICENSE
     ReadmeUrl: ./README.md
@@ -208,9 +208,9 @@ Resources:
     Type: 'AWS::Serverless::Function'
     Condition: auto_enable_new
     Properties:
-      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.17/sumo_app_utils.zip
+      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.19/sumo_app_utils.zip
       Handler: "awsresource.enable_s3_logs"
-      Runtime: python3.12
+      Runtime: python3.13
       Role: !GetAtt SumoLambdaRole.Arn
       Description: "Lambda Function for auto enable s3 logs for AWS Resources."
       MemorySize: 128
@@ -384,8 +384,8 @@ Resources:
     Condition: auto_enable_existing
     Properties:
       Handler: main.handler
-      Runtime: python3.12
-      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.17/sumo_app_utils.zip
+      Runtime: python3.13
+      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.19/sumo_app_utils.zip
       MemorySize: 128
       Timeout: 900
       Role:

awsautoenableS3Logging/test/Publishsam.sh

@@ -29,7 +29,8 @@ do
         export version=`grep AWS::ServerlessRepo::Application: ../${VALUE} -A 20 | grep SemanticVersion | cut -d ':' -f 2 | xargs`
         echo "Package and publish the Template file ${VALUE} with version ${version}."
 
-        echo `sam validate -t ../${VALUE} --lint`
+        ## ignoring lint command as errors can't fix
+        # echo `sam validate -t ../${VALUE} --lint`
 
         sam package --profile ${AWS_PROFILE} --template-file ../${VALUE} --s3-bucket ${SAM_S3_BUCKET} --output-template-file ../packaged.yaml \
         --s3-prefix "${KEY}/v${version}" --region ${AWS_REGION}

cloudformation-telemetry/install_python_dependencies.sh

@@ -1,25 +1,27 @@
 #!/bin/bash
 
 # Pull the Amazon Linux image from Docker Hub
-docker pull amazonlinux
+# aws ecr-public get-login-password --region us-east-1 | docker login --username AWS --password-stdin public.ecr.aws
+docker pull public.ecr.aws/lambda/python:3.13-x86_64
 
 # Run the Amazon Linux container in detached mode
-docker run -d --name telemetry amazonlinux tail -f /dev/null
+docker run -d --name telemetry public.ecr.aws/lambda/python:3.13-x86_64 lambda_function.lambda_handler
 
-# Install Python, pip, and other dependencies inside the container
-docker exec -it telemetry /bin/bash -c "yum update -y && yum install -y python3-pip zip && python3 -m pip install virtualenv"
+# Install dependencies inside the container
+docker exec -it telemetry /bin/bash -c "dnf install -y zip"
 
 # Create a virtual environment and install dependencies
 docker exec -it telemetry /bin/bash -c "python3 -m venv temp-venv && source temp-venv/bin/activate && mkdir telemetry && cd telemetry && pip install crhelper sumologic-appclient-sdk future_fstrings setuptools -t ."
 
 # Copy python file from host to container
-docker cp ./lambda_function.py telemetry:/telemetry
+docker cp ./lambda_function.py telemetry:/var/task/telemetry
+docker cp ./metadata.yaml telemetry:/var/task/telemetry
 
 # Zip the contents of the telemetry directory
 docker exec -it telemetry /bin/bash -c "cd telemetry && ls -l && zip -r ../telemetry.zip ."
 
 # Copy the telemetry.zip file from the container to the host
-docker cp telemetry:/telemetry.zip ./telemetry.zip
+docker cp telemetry:/var/task/telemetry.zip ./telemetry.zip
 
 # Stop and remove the container
 docker stop telemetry

cloudformation-telemetry/metadata.yaml

@@ -0,0 +1,21 @@
+Logging:
+ LOG_FORMAT: "%(levelname)s | %(asctime)s | %(threadName)s | %(name)s | %(message)s"
+ ROTATION_TYPE: D
+ ROTATION_INTERVAL: 10
+ ENABLE_CONSOLE_LOG: true
+ ENABLE_LOGFILE: false
+ LOG_FILEPATH: /tmp/cloudformation-telemetry/telemetry.log
+ LOG_LEVEL: "DEBUG"
+
+Collection:
+ MAX_PAYLOAD_BYTESIZE: 500000
+ MAX_RETRY: 5
+ BACKOFF_FACTOR: 1
+ COMPRESSED: true
+ TIMEOUT: 60
+
+DeployMetaData:
+ PACKAGENAME: "cloudformation-telemetry"
+
+SumoLogic:
+  SUMO_ENDPOINT: null

cloudformation-telemetry/telemetry.zip

@@ -43,9 +43,9 @@ Metadata:
     - benchmark
     - cloudtrail
     Name: sumologic-aws-cloudtrail-benchmark
-    LicenseUrl: s3://appdevstore/cloudtrailbenchmark/v1.0.17/cac1a6df52c685e0f6ebe4ae72078c80
-    ReadmeUrl: s3://appdevstore/cloudtrailbenchmark/v1.0.17/8a901bb4fbbe82f128fc502dd3077508
-    SemanticVersion: 1.0.17
+    LicenseUrl: s3://appdevstore/cloudtrailbenchmark/v1.0.18/cac1a6df52c685e0f6ebe4ae72078c80
+    ReadmeUrl: s3://appdevstore/cloudtrailbenchmark/v1.0.18/8a901bb4fbbe82f128fc502dd3077508
+    SemanticVersion: 1.0.18
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/cloudtrailbenchmark
 Parameters:
   CollectorName:
@@ -129,7 +129,7 @@ Resources:
     Properties:
       Location:
         ApplicationId: arn:aws:serverlessrepo:us-east-1:956882708938:applications/sumologic-app-utils
-        SemanticVersion: 2.0.17
+        SemanticVersion: 2.0.19
     Metadata:
       SamResourceId: SumoAppUtils
   SumoRole:

cloudtrailbenchmark/packaged.yaml

@@ -49,7 +49,7 @@ Metadata:
     Name: sumologic-aws-cloudtrail-benchmark
     LicenseUrl: ./LICENSE
     ReadmeUrl: ./README.md
-    SemanticVersion: 1.0.17
+    SemanticVersion: 1.0.19
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/cloudtrailbenchmark
 
 
@@ -125,7 +125,8 @@ Resources:
     Properties:
       Location:
         ApplicationId: arn:aws:serverlessrepo:us-east-1:956882708938:applications/sumologic-app-utils
-        SemanticVersion: 2.0.17
+        SemanticVersion: 2.0.19
+
 
   SumoRole:
     Condition: SetupSumoResources

cloudtrailbenchmark/template.yaml

@@ -12,7 +12,7 @@ else
 fi
 uid=$(cat /dev/random | LC_CTYPE=C tr -dc "[:lower:]" | head -c 6)
 
-version="1.0.17"
+version="1.0.19"
 
 sam package --template-file template.yaml --s3-bucket $SAM_S3_BUCKET  --output-template-file packaged.yaml --s3-prefix "cloudtrailbenchmark/v$version" --region $AWS_REGION --profile $AWS_PROFILE
 

cloudtrailbenchmark/testdeploy.sh

@@ -21,9 +21,9 @@ Metadata:
     - cloudwatchevents
     - securityhub
     Name: sumologic-securityhub-connector-aws-org
-    LicenseUrl: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.7/6092dd6c323e33634657102f570628e0
-    ReadmeUrl: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.7/eb911876461845db8f3113dbace6d454
-    SemanticVersion: 1.0.7
+    LicenseUrl: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.8/6092dd6c323e33634657102f570628e0
+    ReadmeUrl: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.8/eb911876461845db8f3113dbace6d454
+    SemanticVersion: 1.0.8
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/securityhub-org/sumologic-securityhub-collector-awsorg/src
     SpdxLicenseId: Apache-2.0
 Parameters:
@@ -42,8 +42,8 @@ Resources:
     Type: AWS::Serverless::Function
     Properties:
       Handler: securityhub_collector_org.lambda_handler
-      Runtime: python3.11
-      CodeUri: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.7/72d8a9923335d52f948cbd3f99d8b91d
+      Runtime: python3.13
+      CodeUri: s3://appdevstore/SecurityHubCollectorAWSOrg/v1.0.8/72d8a9923335d52f948cbd3f99d8b91d
       MemorySize: 128
       Timeout: 300
       Environment:

securityhub-org/sumologic-securityhub-collector-awsorg/sam/packaged.yaml

@@ -10,7 +10,7 @@ else
     AWS_REGION="us-east-1"
 fi
 
-version="1.0.6"
+version="1.0.8"
 
 echo "Creating package.yaml"
 sam package --template-file template.yaml --s3-bucket $SAM_S3_BUCKET  --output-template-file packaged.yaml --s3-prefix "SecurityHubCollectorAWSOrg/v"$version --region $AWS_REGION --profile $AWS_PROFILE

securityhub-org/sumologic-securityhub-collector-awsorg/sam/sam_package.sh

@@ -20,7 +20,7 @@ Metadata:
     Name: sumologic-securityhub-connector-aws-org
     LicenseUrl: ../LICENSE
     ReadmeUrl: ../README.md
-    SemanticVersion: 1.0.7
+    SemanticVersion: 1.0.8
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/securityhub-org/sumologic-securityhub-collector-awsorg/src
     SpdxLicenseId: Apache-2.0
 
@@ -41,7 +41,7 @@ Resources:
     Type: 'AWS::Serverless::Function'
     Properties:
       Handler: securityhub_collector_org.lambda_handler
-      Runtime: python3.11
+      Runtime: python3.13
       CodeUri: ../src/src.zip
       MemorySize: 128
       Timeout: 300

securityhub-org/sumologic-securityhub-collector-awsorg/sam/template.yaml

@@ -0,0 +1,26 @@
+#!/bin/bash
+
+# Pull the Amazon lambda Linux image from Docker Hub
+docker pull public.ecr.aws/lambda/python:3.13-x86_64
+
+# Run the Amazon lambda Linux container in detached mode
+docker run -d --name sumologic-app-utils public.ecr.aws/lambda/python:3.13-x86_64 lambda_function.lambda_handler
+
+# Install dependencies inside the container
+docker exec -it sumologic-app-utils /bin/bash -c "dnf install -y zip"
+
+# Create a virtual environment and install dependencies
+docker exec -it sumologic-app-utils /bin/bash -c "python3 -m venv temp-venv && source temp-venv/bin/activate && mkdir sumo_app_utils && cd sumo_app_utils && pip install crhelper jsonschema requests retrying -t ."
+
+# Copy python file from host to container
+docker cp src/. sumologic-app-utils:/var/task/sumo_app_utils
+
+# Zip the contents of the sumologic-app-utils directory
+docker exec -it sumologic-app-utils /bin/bash -c "cd sumo_app_utils && ls -l && zip -r ../sumo_app_utils.zip ."
+
+# Copy the sumologic-app-utils.zip file from the container to the host
+docker cp sumologic-app-utils://var/task/sumo_app_utils.zip ./sumo_app_utils.zip
+
+# Stop and remove the container
+docker stop sumologic-app-utils
+docker rm sumologic-app-utils

sumologic-app-utils/build.sh

@@ -15,26 +15,29 @@ rm src/external/*.pyc
 rm src/*.pyc
 rm sumo_app_utils.zip
 
-if [ ! -f sumo_app_utils.zip ]; then
-    echo "creating zip file"
-    mkdir python
-    cd python
-    pip3 install  crhelper -t .
-    pip3 install requests -t .
-    pip3 install retrying -t .
-    cp -v ../src/*.py .
-    zip -r ../sumo_app_utils.zip .
-    cd ..
-    rm -r python
-fi
-
-version="2.0.15"
+#if [ ! -f sumo_app_utils.zip ]; then
+#    echo "creating zip file"
+#    mkdir python
+#    cd python
+#    pip3 install crhelper -t .
+#    pip3 install jsonschema==4.17.3 -t .
+#    pip3 install requests -t .
+#    pip3 install retrying -t .
+#    cp -v ../src/*.py .
+#    zip -r ../sumo_app_utils.zip .
+#    cd ..
+#    rm -r python
+#fi
+
+./build.sh
+
+version="2.0.19"
 
 aws s3 cp sumo_app_utils.zip s3://$SAM_S3_BUCKET/sumo_app_utils/v"$version"/sumo_app_utils.zip --region $AWS_REGION --acl public-read
 
 sam package --template-file sumo_app_utils.yaml --s3-bucket $SAM_S3_BUCKET  --output-template-file packaged_sumo_app_utils.yaml --s3-prefix "sumo_app_utils/v"$version --region $AWS_REGION --profile $AWS_PROFILE
 
 sam publish --template packaged_sumo_app_utils.yaml --region $AWS_REGION --semantic-version $version
 
-# sam deploy --template-file packaged_sumo_app_utils.yaml --stack-name testingsumoapputils --capabilities CAPABILITY_IAM --region $AWS_REGION
+#sam deploy --template-file packaged_sumo_app_utils.yaml --stack-name testingsumoapputils --capabilities CAPABILITY_IAM --region $AWS_REGION
 

sumologic-app-utils/deploy.sh

@@ -20,17 +20,17 @@ Metadata:
     - sumologic
     - serverless
     Name: sumologic-app-utils
-    SemanticVersion: 2.0.17
+    SemanticVersion: 2.0.19
     SourceCodeUrl: https://github.com/SumoLogic/sumologic-aws-lambda/tree/main/sumologic-app-utils
     SpdxLicenseId: Apache-2.0
-    ReadmeUrl: s3://appdevstore/sumo_app_utils/v2.0.17/4d5a92c06a7fa9d956a900e51a1f6be4
+    ReadmeUrl: s3://appdevstore/sumo_app_utils/v2.0.19/4d5a92c06a7fa9d956a900e51a1f6be4
 Resources:
   SumoAppUtilsFunction:
     Type: AWS::Serverless::Function
     Properties:
       Handler: main.handler
-      Runtime: python3.12
-      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.17/sumo_app_utils.zip
+      Runtime: python3.13
+      CodeUri: s3://appdevstore/sumo_app_utils/v2.0.19/sumo_app_utils.zip
       MemorySize: 128
       Timeout: 300
       Policies:

sumologic-app-utils/packaged_sumo_app_utils.yaml

@@ -0,0 +1,23 @@
+
+
+# Define the JSON schema
+AWS_TAG_FILTERS_SCHEMA = {
+  "$schema": "http://json-schema.org/draft-07/schema#",
+  "type": "object",
+  "patternProperties": {
+    "^[A-Za-z0-9_/]+$": {
+      "type": "object",
+      "properties": {
+        "tags": {
+          "type": "array",
+          "items": {
+            "type": "string"
+          }
+        }
+      },
+      "required": ["tags"],
+      "additionalProperties": False
+    }
+  },
+  "additionalProperties": False
+}