AWS CloudFormation Hooks introduces stack and change set target invocation points
AWS CloudFormation Hooks announces the general availability of new target invocation points: stack and change set. CloudFormation Hooks allows you to invoke custom logic to inspect resource configurations prior to CloudFormation operations to enforce organizational best practices and ensure only compliant resources are provisioned. Today’s launch extends this capability beyond resource properties, enabling expressive safety checks that consider the entire context of a stack and the planned CloudFormation operation changes.
Customers previously used Hooks to run validation checks on resource properties before provisioning. Now, by targeting the stack as the control point, you can run hooks against the entire template payload and target multiple resources at once. This allows you to examine resource relationships and their dependencies. Moreover, you can use the change set invocation point to run Hooks when a change set is created to evaluate the updated template and change set payload. This allows you to automate your change set review, and reduce the end-to-end time to resolve issues. You can set Hooks to fail the deployment or warn about the operations if there is any non-compliant configurations found.
The stack and change set target control points are now available in all AWS Commercial Regions. Refer to Hooks developer guide to learn more.