v0.15.2

Enhance SCP to Cover Additional BlockPublicAccess Cases @petabook (#69)

This update extends the Service Control Policy (SCP) to address more scenarios involving S3 `BlockPublicAccess`. * There are two types of `BlockPublicAccess` APIs: - Bucket-level - Account-level

By using a wildcard * the SCP now denies both (and future) types.

• Additionally, deletion of these policies is protected to prevent accidental or unauthorized removal.

Impact

• Strengthens security posture by ensuring consistent enforcement of S3 BlockPublicAccess at both the bucket and account levels.
• Prevents tampering or removal of critical access control policies.

🤖 Automatic Updates

Fix go version in tests @osterman (#68)

## what - Update go `1.24`

why

• Error loading shared library libresolv.so.2 in Go 1.20

References

• https://sweetops.slack.com/archives/G014YEKDH4K/p1746672149263629
• golang/go#59305 (comment)
• cloudposse/terraform-aws-cloudfront-s3-cdn#294

Replace Makefile with atmos.yaml @osterman (#67)

## what - Remove `Makefile` - Add `atmos.yaml`

why

• Replace build-harness with atmos for readme genration

References

• DEV-3229 Migrate from build-harness to atmos