v0.7.0 ⚠️ Requires migration steps

Summary

Layer	Has changes	Needs migration
Account	✅	🚚
Network	✅
Build repository
Database
Service	✅

⚠️ Migration notes

This release moves the OIDC provider to be managed outside of Terraform. Thus, to prevent Terraform from destroying that resource, you need to remove the OIDC provider from the Terraform state file for each of your accounts in infra/accounts. Run the following commands for each AWS account:

./bin/terraform-init.sh infra/accounts $(./bin/current-account-config-name.sh)
terraform -chdir=infra/accounts state rm module.auth_github_actions.aws_iam_openid_connect_provider.github

New functionality

• Add storage module for uploading documents by @lorenyu in #510

Enhancements

• Configure service CPU, memory, and desired instance count per environment by @lorenyu in #503
• Catch feature flag regressions by testing feature flag endpoint in CI Infra Service workflow by @lorenyu in #512
• Make infra service test cleanup more robust by using target apply in EnableDestroy step by @lorenyu in #521
• Support account set up in AWS accounts with existing OIDC provider by managing OIDC provider outside of Terraform by @lorenyu (credit to @anybodys and @daphnegold) in #533

Fixes

• Ignore linting localhost Markdown links by @sawyerh in #506
• Fix broken Markdown link when template is installed by @sawyerh in #505
• Prevent AWS's automatically generated log delivery resource policy from getting too big by creating resource policy for feature flags log group by @lorenyu in #530
• Fix accounts setup for other regions by @lorenyu in #534

Tech debt

• Update markdown linter name and execution by @sawyerh in #504
• Remove obsolete todo by @sawyerh in #511
• Remove workaround for VPC endpoint availability by @lorenyu in #516
• Remove unused config value by @lorenyu in #519

Documentation

• Add system architecture diagram by @lorenyu in #494
• Fix typo by @lorenyu in #513
• Network layer system design ADR by @lorenyu in #489

Full Changelog: v0.6.1...v0.7.0