StageAuto Changelog

v1.0.4 — Stability & Accuracy Update

Improvements

• Improved Terraform analysis accuracy for real-world configurations
• Better detection of inline S3 configurations (versioning & encryption)
• More precise resource attribution in reports (resource names preserved)
• Reduced false positives in secure infrastructure setups
• Improved handling of nested configuration blocks
• General improvements:
• More consistent analysis across different Terraform styles
• Better reliability in production-like environments
• Cleaner and more trustworthy report outputs

v1.0.3 — Security & Architecture Update

New Features

• Detection of HTTPS misconfiguration (HTTP without TLS)
• Global HTTPS enforcement check
• Infrastructure exposure detection:
• Public subnet (auto public IP)
• Database snapshot risk (no final snapshot)
• Database high availability check (Multi-AZ)
• Improved architecture insights:
• S3 versioning analysis
• S3 encryption visibility
• Improved report scoring and prioritization
• More realistic risk modeling for production-like environments

v1.0.2 — Initial Release

Core Features (Current Scope)

• Terraform (.tf) infrastructure analysis
• Detection of critical security risks:
• Public S3 buckets (data exposure)
• Public database access (RDS)
• Exposed sensitive ports (SSH, RDP)
• Basic architecture insights:
• S3 versioning not enabled
• Missing encryption configuration
• Compliance-oriented findings:
• Public storage risks (aligned with common standards like SOC 2 / ISO 27001)
• Cost-related signals:
• Public resources increasing potential traffic costs
• Professional report generation:
• TXT report
• PDF report (client-ready format)
• License validation system
• Automatic license delivery via email

Positioning

StageAuto v1.0 focuses on identifying high-impact security risks in Terraform environments. Future updates will expand into deeper infrastructure analysis, compliance frameworks, and advanced cloud configurations.