Skip to main content
InfraAudit follows semantic versioning: MAJOR.MINOR.PATCH. Minor and patch releases are backward compatible. Major releases may include breaking changes, which are always called out in the release notes. The complete changelog with detailed release notes, migration guides, and pre-release history lives on GitHub: View all releases on GitHub →

Versioning scheme

Change typeVersion bumpBackward compatible?
New features, new environment variablesMinor (e.g. v1.2 → v1.3)Yes
Bug fixes, performance improvementsPatch (e.g. v1.2.0 → v1.2.1)Yes
Breaking changes, removed variables, changed API responsesMajor (e.g. v1.x → v2.0)No — see migration notes
Database migrations run automatically on API startup. When upgrading across a minor version boundary, read the release notes for any new required environment variables before pulling new images.

v1.0.0 — 2024-01-15

Initial public release of InfraAudit Community edition.

What’s included

Multi-cloud providers

AWS, Google Cloud Platform, Microsoft Azure, and Kubernetes — with support for multiple accounts per provider.

Drift detection

Baseline capture and configuration diff engine with severity classification across all supported resource types.

Vulnerability scanning

Trivy integration with NVD enrichment for CVE discovery in container images and OS packages.

Cost optimization

Multi-cloud billing ingest, trend visualization, 30/60/90-day forecasting, and anomaly detection.

Compliance

CIS Benchmarks (AWS, GCP, Azure), SOC 2, NIST 800-53, PCI-DSS, and HIPAA with PDF/CSV export.

AI recommendations

Google Gemini integration for cost, security, and performance suggestions. Rule-based fallback for offline deployments.

Supported resource types

AWS: EC2 instances, S3 buckets, RDS instances and clusters, Lambda functions, CloudFront distributions, VPCs, security groups GCP: Compute instances, Cloud Storage buckets, BigQuery datasets, GKE clusters Azure: Virtual machines, Storage accounts, SQL servers, resource groups Kubernetes: Deployments, pods, services, namespaces, jobs, ingresses

Additional capabilities

  • IaC drift detection for Terraform and CloudFormation files
  • Cron-based job scheduler for all scan types
  • Slack, email, and custom webhook notifications with routing rules
  • Approval-gated remediation with rollback support
  • Full-featured infraudit CLI
  • Docker Compose and Kubernetes deployment manifests
  • Prometheus and Grafana monitoring profile
For releases before v1.0.0 (pre-release versions), see the GitHub releases page.