Perform regular drift detection on every CloudFormation stacks and report drifts by email automatically.
Example of output using SES

How does it work ?
- Detection
- The
DetectionSchedulescheduler triggers theDetectStackDriftslambda. By default, it runs every 15 minutes between 6 AM and 7 AM everyday. (It allows retries in case of Throttling by CloudFormation). - For each selected
Regionsthe lambda lists all the stacks and filters the ones matchingIgnoreStackIdRegexand the ones that have already have a drift detection with a age smaller thanDriftAgeCheckHours(23 hours by default). - Loop over all the stacks and call the
DetectStackDriftAPI.
- The
- Notification
- The
NotificationSchedulescheduler triggers theNotifyStackDriftslambda. By default, it runs at 7:45 AM everyday, this should leave enough time for the drift detection and potential retries to finish. - For each selected
Regionsthe lambda lists all the stacks and filters the ones matchingIgnoreStackIdRegexor the ones that are not drifted. - Depending on
NotifierService, the lambda will send an HTML or text report to theDestinationemail.
- The
