[Snyk] Upgrade aws-cdk from 2.99.1 to 2.170.0 #142
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade aws-cdk from 2.99.1 to 2.170.0. See this package in npm: aws-cdk See this project in Snyk: https://app.snyk.io/org/nexuscompute/project/8dc05337-ecf2-4f17-8aa5-207b89eb95db?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade aws-cdk from 2.99.1 to 2.170.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 98 versions ahead of your current version.
The recommended version was released on 22 days ago.
Release notes
Package name: aws-cdk
-
2.170.0 - 2024-11-22
- lambda: support for Provisioned Pollers (#32205) (68b969e)
- vpcv2: vpc peering connection construct (#31645) (e1195f9), closes RFC#507 1#L252
- cli: sts retry options are ignored (#32227) (193ab8c)
- "fix(ecr): allow creating repository uri to use tokens like cfn params" (#32241) (b3e39a9), closes #32238
-
2.169.0 - 2024-11-21
- cloudfront: add
- update L1 CloudFormation resource definitions (#32223) (5d61a1b)
- sns: add delivery policy to sns subscriptions (#30830) (27babe6), closes #17576
- cli: cannot assume a doubly-chained role (#32216) (8746e44)
- cli: proxy is not configured correctly (#32213) (ec58c77)
- s3: key rotation is not enabled while creating KMS encrypted S3 buckets (#32064) (e3024fc), closes #31982
- location: support Map (#30648) (98b801c), closes #30647
- scheduler:
- location: underscores are not allowed in the name (#32046) (f6ad9c9)
-
2.168.0 - 2024-11-20
- cloudfront:
- elasticloadbalancingv2: support target group level cross-zone settings for ALB and NLB (#31814) (6b0b1e1), closes #31790
- lambda: add NodeJS 22.x support (#32104) (baa8561)
- lambda: support observability for ESM ( DDB, Kinesis, SQS) (#32204) (6317a2a)
- lambda-destinations: support Lambda async S3 destination (#31709) (e1a2f68)
- ses: maximum delivery time for emails (#32102) (771eeff)
- update L1 CloudFormation resource definitions (#32175) (6820c62)
- rds: support 8.0.40 engine version for RDS for MySQL (#32117) (dcb5cf1)
- stepfunctions-tasks: create scheduler (#29458) (d14a01c), closes #29351
- cdk: remove source-map-support from typescript init templates (#32113) (d5c0aa2), closes #20754 #30231
- cdk: use built-in source map support (#32115) (5d499dc)
- cli:
- cli: excessive stack event polling during deployment (#32196) (a8bc46d), closes /github.com/aws/aws-cdk/blob/7bb9203eb95fe894c0d40942ff49c782a9fec251/packages/aws-cdk/lib/api/util/cloudformation/stack-event-poller.ts#L73-L74
- cli: externally managed stack notification arns are deleted on
- cli: failure to get credentials when session token is not set (#32134) (9ef4e72)
- cli: region specified in
- cli: the LoadBalancerProvider doesn't match LBs when querying by a subset of tags (#32164) (f75dc72)
- eks: eks.AccessEntryType.STANDARD maps to a wrong value (#31147) (1bbb456)
- scheduler-targets-alpha: imported target resources as schedule target throws synth error (#32105) (1a8306f), closes #31785 /github.com/aws/aws-cdk/pull/29615#issuecomment-2417858246
- scheduler-targets-alpha: kinesis data firehose target uses l1 instead of l2 (#32150) (11384f0), closes #31785
- scheduler-targets-alpha: scope down permissions for sqs and kinesis stream targets (#32122) (6bb142e), closes #31785
-
2.167.2 - 2024-11-19
- cli:
- cli: externally managed stack notification arns are deleted on
- cli: the LoadBalancerProvider doesn't match LBs when querying by a subset of tags (#32164) (a0b47c5)
-
2.167.1 - 2024-11-15
- cli: failure to get credentials when session token is not set (#32134) (425efbc), closes #32120
- cli: region specified in
-
2.167.0 - 2024-11-13
- cli: upgrade aws-sdk to sdkv3 (#31702) (5bc0662), closes #25870 #26292 #20956 #24744 #27265
- elasticloadbalancingv2: enable zonal shift for network load balancer (#31990) (497abdc), closes #31983
- kms: support KEY_AGREEMENT for keyUsage (#30993) (2323877), closes #30989
- lambda: add Python 3.13 runtime (#32054) (e0ebcfe)
- lambda: add supportsSnapStart config to dotnet8 and python 3.12 (#32112) (53f4713)
- lambda: support for customer managed encryption (CMCMK) (#32072) (2f16415)
- update L1 CloudFormation resource definitions (#32090) (6303b72)
- rds: support minor engine versions for oracle (#32058) (3d72b63)
- rds: support minor versions for RDS for SQL Server (#32055) (8c80bf8)
- service-catalog: allow Product Stack to override analytics reporting and stack descriptions (#31985) (d8ad02a), closes #31924
- ecr: allow creating repository uri to use tokens like cfn params (#32053) (5648199), closes #31860
- ivs: support recording configuration for channel (#31899) (8a3734d), closes #31780
- redshift: relocating a cluster (#31993) (b763d86)
- scheduler-targets-alpha: add dlq policy to execution role instead of queue policy (#32032) (b953b2a), closes #31785
-
2.166.0 - 2024-11-07
- cli: automatically roll back stacks if necessary (#31920) (2f9fb1e), closes #30546
- kinesis: support resource policy for a data stream (#31909) (18fbd6d), closes #28814
- rds: configure
- route53: support HTTPS, SSHFP, SVCB, and TLSA DNS resource record (#31955) (afc2b0d), closes /docs.aws.amazon.com/ja_jp/AWSCloudFormation/latest/UserGuide/aws-resource-route53-recordset.html#cfn-route53
- synthetics: add
- update L1 CloudFormation resource definitions (#32007) (be6a964)
- deploy-time stack tags cause synthesis to fail (#32041) (18c19fd), closes #32040
- aws_route53: cannot use CfnParameter.valueAsNumber for L2 RecordSet weight (#31823) (14561ac), closes #31810
- cli: asset uploads fail if Object Lock is enabled on access bucket (#31937) (ab1e91d)
- dynamoDB: make TableV2 taggable (#31867) (796c6d1), closes #30631
- opensearch: add I4G to list of OpenSearch nodes not requiring EBS volumes (#31948) (73378f2)
- scheduler-targets-alpha: Schedule Target will reuse role if target is re-used across schedules. This change triggered replacement of existing roles for Schedule as logical ID of the roles are changed.
- glue-alpha: add job run queuing to Glue job (#31830) (5fca268), closes #31826
- scheduler-targets-alpha: create a role per target instead of singleton schedule target role (#31895) (aee1b30), closes #31785
-
2.165.0 - 2024-10-31
- bootstrap: add lifecycle rule to abort multipart uploads after 7 days (#31956) (b800da8), closes #29045
- bootstrap: delete noncurrent versions after 30 days (#31949) (579041e)
- cli: garbage collect ecr assets (under --unstable flag) (#31841) (da85e54), closes #31611
- codebuild: add support of organization webhook in github source (#31740) (8c15b5f), closes #31736
- cognito: support UserPoolGroup (#31351) (408b20f), closes #21026
- update L1 CloudFormation resource definitions (#31917) (8c93291)
- assertions: throw error or warn when
- cli: ecr garbage collection hangs when repository has no images (#31951) (a235a9f)
- cli: garbage collection ignores review_in_progress stacks (#31906) (cb3ecfe)
- s3-assets: cannot publish a file without extension (#30597) (ccab485), closes #30471
- sqs: queue with
- enable node-fips compatible body checksums for S3 (#31883) (4f29c1d)
- ec2-alpha: The new
- apprunner: support vpc ingress connection (#30623) (048e753), closes #22850
- ec2-alpha: adding imports for SubnetV2 and VpcV2 (#31765) (d108a80)
- location: support Tracker and TrackerConsumer (#31268) (046f041), closes #30712
- pipes-enrichments: support API Gateway enrichment (#31794) (09052c2), closes #29384
- pipes-targets: add SageMaker (#30696) (a5fdf57)
- redshift-alpha: query execution timeout setting during table creation (#31818) (40f07ae), closes #31329
- kinesisfirehose-alpha: kinesis firehose and kinesis firehose destinations modules are now in Developer Preview (#31952)
- location: remove base class from PlaceIndex class (#31287) (bc67866), closes #30711 #30682
- scheduler-alpha: scheduler input always get transformed to string with extra double quotes (#31894) (186b8ab)
- scheduler-alpha: too many KMS permissions granted (#31923) (06678a3), closes #31785
-
2.164.1 - 2024-10-25
- enable node-fips compatible body checksums for S3 (#31883) (290a499)
-
2.164.0 - 2024-10-24
- cli: add ability to configure hotswap properties for ECS (#30511) (fee2cf8), closes #29618
- cognito: support email based MFA (#31816) (f9d6eef), closes #31815
- cognito: the Cognito Identity Pools module is now in Developer Preview (#31854) (b22899f)
- cli: cross-account asset publishing doesn't work without bootstrap stack (#31876) (427bf63), closes #31866
- cli: deploy-role is not authorized to perform DescribeStackResources (#31878) (8d06824)
- core: fix policy synthesizer logic for precreated roles (#31710) (aae03c9)
- dynamodb: replication regions are incompatible with resource policies in TableV2 and feature flag (#31513) (0b03eb0), closes #30705
- events-targets: kinesis Stream target with Customer-Managed KMS key causes EventBridge FailedInvocations (#31836) (58dfda0), closes #10996
- iot: scheduled audit (#31776) (366b492), closes #31779
- ec2: allow NAT instance to associate public IP (#31812) (e96b4ce), closes #31711
- scheduler-targets-alpha: imported lambda function as schedule target throws synth error (#31837) (d1d179f), closes #29284
-
2.163.1 - 2024-10-22
-
2.163.0 - 2024-10-22
-
2.162.1 - 2024-10-11
-
2.162.0 - 2024-10-10
-
2.161.1 - 2024-10-05
-
2.161.0 - 2024-10-04
-
2.160.0 - 2024-09-24
-
2.159.1 - 2024-09-19
-
2.159.0 - 2024-09-19
-
2.158.0 - 2024-09-11
-
2.157.0 - 2024-09-10
-
2.156.0 - 2024-09-06
-
2.155.0 - 2024-08-30
-
2.154.1 - 2024-08-23
-
2.154.0 - 2024-08-22
-
2.153.0 - 2024-08-20
-
2.152.0 - 2024-08-15
-
2.151.1 - 2024-08-14
-
2.151.0 - 2024-08-02
-
2.150.0 - 2024-07-23
-
2.149.0 - 2024-07-12
-
2.148.1 - 2024-07-11
-
2.148.0 - 2024-07-05
-
2.147.3 - 2024-07-02
-
2.147.2 - 2024-06-28
-
2.147.1 - 2024-06-24
-
2.147.0 - 2024-06-20
-
2.146.0 - 2024-06-13
-
2.145.0 - 2024-06-07
-
2.144.0 - 2024-05-31
-
2.143.1 - 2024-05-30
-
2.143.0 - 2024-05-24
-
2.142.1 - 2024-05-17
-
2.142.0 - 2024-05-15
-
2.141.0 - 2024-05-08
-
2.140.0 - 2024-05-02
-
2.139.1 - 2024-04-30
-
2.139.0 - 2024-04-24
-
2.138.0 - 2024-04-18
-
2.137.0 - 2024-04-11
-
2.136.1 - 2024-04-10
-
2.136.0 - 2024-04-06
-
2.135.0 - 2024-04-02
-
2.134.0 - 2024-03-26
-
2.133.0 - 2024-03-15
-
2.132.1 - 2024-03-12
-
2.132.0 - 2024-03-09
-
2.131.0 - 2024-03-01
-
2.130.0 - 2024-02-23
-
2.129.0 - 2024-02-21
-
2.128.0 - 2024-02-14
-
2.127.0 - 2024-02-10
-
2.126.0 - 2024-02-02
-
2.125.0 - 2024-02-01
-
2.124.0 - 2024-01-26
-
2.123.0 - 2024-01-24
-
2.122.0 - 2024-01-18
-
2.121.1 - 2024-01-13
-
2.121.0 - 2024-01-12
-
2.120.0 - 2024-01-12
-
2.119.0 - 2024-01-11
-
2.118.0 - 2024-01-03
-
2.117.0 - 2023-12-27
-
2.116.1 - 2023-12-22
-
2.116.0 - 2023-12-22
-
2.115.0 - 2023-12-14
-
2.114.1 - 2023-12-06
-
2.114.0 - 2023-12-05
-
2.113.0 - 2023-12-01
-
2.112.0 - 2023-12-01
-
2.111.0 - 2023-11-27
-
2.110.1 - 2023-11-22
-
2.110.0 - 2023-11-17
-
2.109.0 - 2023-11-16
-
2.108.1 - 2023-11-14
-
2.108.0 - 2023-11-14
-
2.107.0 - 2023-11-13
-
2.106.1 - 2023-11-11
-
2.106.0 - 2023-11-10
-
2.105.0 - 2023-11-08
-
2.104.0 - 2023-11-02
-
2.103.1 - 2023-10-27
-
2.103.0 - 2023-10-26
-
2.102.1 - 2023-10-25
-
2.102.0 - 2023-10-19
-
2.101.1 - 2023-10-16
-
2.101.0 - 2023-10-13
-
2.100.0 - 2023-10-06
-
2.99.1 - 2023-09-30
from aws-cdk GitHub release notesFeatures
Bug Fixes
Reverts
Alpha modules (2.170.0-alpha.0)
Features
attachWebAclIdmethod for Distribution (#30567) (cbe2bec)Bug Fixes
Alpha modules (2.169.0-alpha.0)
Features
schedulerandscheduler-targetsmodules are now in Developer Preview (#32207) (8776832), closes #31785Bug Fixes
Features
function URLorigin access control L2 construct (#31339) (b8f47c8), closes #31629Bug Fixes
cdk diffalways falls back to template only diff (#32165) (089e9d8)deploy(#32163) (9966f57)~/.aws/credentialsis ignored (#32133) (d1b3c81), closes #32130Alpha modules (2.168.0-alpha.0)
Bug Fixes
Bug Fixes
cdk diffalways falls back to template only diff (#32165) (3fd9699)deploy(#32163) (465da31)Alpha modules (2.167.2-alpha.0)
Bug Fixes
~/.aws/credentialsis ignored (#32133) (9859f33), closes #32130Alpha modules (2.167.1-alpha.0)
Features
Bug Fixes
Alpha modules (2.167.0-alpha.0)
Features
Bug Fixes
Features
autoMinorVersionUpgradefor a database cluster (#31962) (0fb6106)artifactS3Encryptionproperty to the Canary Construct. (#30197) (1f39cb9), closes #30190Bug Fixes
Alpha modules (2.166.0-alpha.0)
⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES
Features
Bug Fixes
Features
Bug Fixes
synthis called multiple times on mutated construct tree (#31865) (a261c9d), closes #24689fifo: falsedoes not deploy (#31922) (a9d3b02), closes #8550Alpha modules (2.165.0-alpha.0)
⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES
VpcCidrBlockL2 construct replacesCfnVPCCidrBlock. This change alters the logical ID ofAWS::EC2::VPCCidrBlockresources in CloudFormation templates. Existing deployments will see errors likeCIDR range conflicts with x.xx.xx.xx/xx with association ID vpc-cidr-assoc-ABCD. To resolve this, you must recreate your existing stacks to use the new module.Features
Bug Fixes
Bug Fixes
Alpha modules (2.164.1-alpha.0)
Features
Bug Fixes
Alpha modules (2.164.0-alpha.0)
Features
Bug Fixes
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: