Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @aws-cdk/aws-iam from 0.0.0 to 0.39.0 #123

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

NOUIY
Copy link
Owner

@NOUIY NOUIY commented Sep 27, 2024

snyk-top-banner

Snyk has created this PR to upgrade @aws-cdk/aws-iam from 0.0.0 to 0.39.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 46 versions ahead of your current version.

  • The recommended version was released on 5 years ago.

Release notes
Package name: @aws-cdk/aws-iam
  • 0.39.0 - 2019-07-09

    Bug Fixes

    • codepipeline: mark crossRegionReplicationBuckets and crossRegionSupport as experimental. (#3226) (f8256e7)
    • assets: packages assets, aws-ecr-assets and aws-s3-assets are now experimental instead of stable

    BREAKING CHANGES

    • codepipeline: Pipeline.crossRegionReplicationBuckets is now experimental
    • codepipeline: Pipeline.crossRegionSupport is now experimental
    • codepipeline: CrossRegionSupport is now experimental
    • assets: package assetsis now experimental instead of stable
    • aws-ecr-assets: package aws-ecr-assetsis now experimental instead of stable
    • aws-s3-assets: package aws-s3-assetsis now experimental instead of stable
  • 0.38.0 - 2019-07-08

    Bug Fixes

    Features

    • use classes for structs in Python (#3232) (161a459)
    • codebuild: allow specifying principals and credentials for pulling build images. (#3049) (3319fe5), closes #2175

    BREAKING CHANGES

    • codebuild: LinuxBuildImage.fromDockerHub() has been renamed to fromDockerRegistry() and WindowsBuildImage.fromDockerHub() has been renamed to fromDockerRegistry()
    • iam: aws-iam.User and Group: managedPolicyArns =>
      managedPolicies.
    • in all identifiers, renamed IPv4 => Ipv4, IPv6 =>
      Ipv6, AZs => Azs.
  • 0.37.0 - 2019-07-04

    Bug Fixes

    BREAKING CHANGES

    • core: construct.findChild() now only looks up direct children
    • ec2: Port.toRuleJSON was renamed to toRuleJson
    • codebuild: PipelineProject.addSecondaryArtifact now returns void (formerly any)
    • codebuild: Project.addSecondaryArtifact now returns void (formerly any)
  • 0.36.2 - 2019-07-03

    Bug Fixes

    • cli: generate metadata resource for region-independent stacks (#3149) (0fb7ea3), closes #3142
    • cli: stop processing on metadata errors (#3168) (0936bde)
    • codepipeline: correctly pass the replication buckets to Action.bind() (#3131) (99ae5e7)
    • codepipeline: grant missing permisisons to the CloudFormationExecuteChangeSetAction. (#3178) (958acc2), closes #3160
    • codepipeline: grant the CodeCommit source Action read-write permissions to the Pipeline's Bucket. (#3175) (bd46e49), closes #3170
    • core: prevent volatile physical name generation (#2984) (af2680c)
    • ecs: remove temporary workaround for long arn support (#3072) (9fdb63f), closes #2176

    Features

    • codedeploy: allow setting a Deployment Configuration for an imported Lambda Deployment Group. (#3158) (05a49f0)
    • iam: can configure 'deny' for policy statements (#3165) (6679e86)
  • 0.36.1 - 2019-07-01

    Bug Fixes

    • aws-codepipeline-actions: use SecretValue (#3097) (b84caab)
    • cli: fix broken sample-app templates for TypeScript and JavaScript (#3101) (800ecf2)
    • cli: fix broken test in Java init template (#3108) (f696efc), closes #3065
    • cli: fix Python sample-app template (#3071) (796d6bb), closes #3058 #3069
    • cli: improve description of --json to reflect behavior (#3086) (68cfa54), closes #2965
    • cli: Python blank app should call app.synth(), not app.run() (16345dc), closes #3123
    • cli: update TypeScript lib init template (#3134) (629e963)
    • code: make CfnResource#_toCloudFormation null-safe (#3121) (71cb421), closes #3093
    • codepipeline-actions: set service as backing resource for EcsDeployAction (#3085) (f2293e0)
    • core: improve context providers error message for env-agnostic stacks (#3137) (5b80146), closes #2922 #3078 #3120 #3130
    • documentation: auto-labeling fixed (#3089) (7fb82ad)
    • documentation: removed duplicate generated template (#3090) (590b05c)
    • elasticloadbalancingv2: fix to be able to set deregistrationDelay (#3075) (22ab4b4)
    • events: correct token resolution in RuleTargetInput (#3127) (a20c841), closes #3119
    • sns: create subscriptions in consumer scope (#3065) (64a203f), closes #3064

    Features

  • 0.36.0 - 2019-06-25

    Bug Fixes

    Code Refactoring

    Features

    BREAKING CHANGES

    • IMPORTANT: previous versions of the CDK CLI will not be fully compatible with this version of the framework and vice versa.
    • core: the @ aws-cdk/cdk module was renamed to @ aws-cdk/core, python: aws_cdk.core, java: the artifact cdk in groupId software.amazon.awscdk was renamed to core
    • all enum and public static readonly members have been renamed to use "ALL_CAPS" capitalization
    • properties throughout the AWS Construct Libraries that represent lengths of time have been re-typed to be @ aws-cdk/cdk.Duration instead of number, and were renamed to exclude any unit indication.
    • core: The deprecated app.run() has been removed (use app.synth()).
    • core: The CfnResource.options property was renamed to CfnResource.cfnOptions to avoid conflicts with properties introduced by derived classes.
    • core CfnXxx.cfnResourceTypeName is now CFN_RESOURCE_TYPE_NAME in generated CFN resources.
    • core: ContextProvider is no longer designed to be extended. Use ContextProvider.getValue and ContextProvider.getKey as utilities.
    • core: Context.getSsmParameter has been removed. Use ssm.StringParameter.valueFromLookup
    • core: Context.getAvailabilityZones has been removed. Use stack.availabilityZones
    • core: Context.getDefaultAccount and getDefaultRegion have been removed an no longer available. Use the environment variables CDK_DEFAULT_ACCOUNT and CDK_DEFAULT_REGION instead.
    • core: StackProps.autoRun was renamed to StackProps.autoSynth.
    • core: CfnElement.refAsString renamed to ref of string type. The IResolvable version have been removed.
    • core: IStringValue renamed to IStringProducer
    • core: Include renamed to CfnInclude
    • core: Cfn prefix was added to the following types: CfnCreationPolicy, CfnResourceAutoScalingCreationPolicy, CfnResourceAutoScalingCreationPolicy, CfnDeletionPolicy, CfnUpdatePolicy, CfnAutoScalingRollingUpdate, CfnAutoScalingReplacingUpdate, CfnAutoScalingScheduledAction, CfnCodeDeployLambdaAliasUpdate, CfnTag CfnRuleAssertion, CfnDynamicReferenceProps
    • core: deepMerge is no longer exported.
    • core: CfnOutputProps.export was renamed to exportName.
    • core: CfnOutput all properties are now private
    • core: StringListCfnOutput has been removed
    • core: all instance methods of Fn were made static, and the Fn constructor was made private.
    • ec2: VpcNetworkProvider has been removed. Use Vpc.fromLookup.
    • ec2: ec2.MachineImage will now resolve AMIs from SSM during deployment.
    • ecs: ecs.EcsOptimizedAmi will now resolve AMis from SSM during deployment.
    • ecs: previously, the default generation is conditionally set to Amazon Linux v1 if hardwareType was STANDARD. Now it always defaults to Amazon Linux v2.
    • ecs: service.clusterName has been replaced with .cluster.
    • sam requiredTransform is now REQUIRED_TRANSFORM in generated code.
    • cloudformation: the AwsCustomResource class was moved to a new module called @ aws-cdk/custom-resource
    • codepipeline: the capabilities property is now an array to support multiple capabilities.
    • codepipeline: the Pipeline construction property crossRegionReplicationBuckets now takes values of type IBucket instead of string.
    • corepipeline: the property Pipeline.crossRegionScaffoldStacks has been renamed to crossRegionSupport, and its type changed from CrossRegionScaffoldStack to CrossRegionSupport.
    • codepipeline-actions: rename CodeCommitAction.pollForSourceChanges to trigger and make it an enum.
    • codepipeline-actions: rename S3SourceAction.pollForSourceChanges to trigger, and make it an enum.
    • codepipeline-actions: rename StageAddToPipelineProps interface to StageOptions.
    • codepipeline-actions: remove the classes CloudFormationAction and CloudFormationDeployAction.
    • route52: HostedZoneProvider has been removed. Use HostedZone.fromLookup.
  • 0.35.0 - 2019-06-19

    Bug Fixes

    Code Refactoring

    Features

    • cli: Expose props in CFN resources and remove propertyOverrides (#2372) (#2372) (aa61dfb), closes #2100
    • cli: deploy/destory require explicit stack selection if app contains more than a single stack (#2772) (118a716), closes #2731
    • cli: Remove stack rename support (#2819) (0f30e39), closes #2670
    • cloudformation: add option to restrict data returned AwsCustomResource (#2859) (a691900), closes #2825
    • cloudformation: Add removalPolicy on CustomResource (#2770) (859248a)
    • cloudfront: add Lambda associations (#2760) (b088c8c)
    • codepipeline: final form of the CodeBuild Pipeline action. (#2716) (c10fc9a)
    • core: show token creation stack trace upon resolve error (#2886) (f4c8dcd)
    • ecs: add metrics for Fargate services (#2798) (acf015d)
    • ecs-patterns: LoadBalancedFargateService - allow specifying containerName and role (#2764) (df12197)
    • elasticloadbalancing: add crossZone load balancing (#2787) (192bab7), closes #2786
    • lambda: Expose $LATEST function version (#2792) (55d1bc8), closes #2776
    • s3: add CORS Property to S3 Bucket (#2101) (#2843) (1a386d8)
    • s3: add missing storage classes and API cleanups (#2834) (5cd9609), closes #2708
    • stepfunctions: add grantStartExecution() (#2793) (da32176)
    • stepfunctions: add support for AmazonSageMaker APIs (#2808) (8b1f3ed), closes #1314
    • stepfunctions: waitForTaskToken for Lambda, SQS, SNS (#2686) (d017a14), closes #2658 #2735
    • formalize the concept of physical names, and use them for cross-environment CodePipelines. (#1924) (6daaca8)

    BREAKING CHANGES

    • assets: AssetProps.packaging has been removed and is now automatically discovered based on the file type.
    • assets: ZipDirectoryAsset has been removed, use aws-s3-assets.Asset.
    • assets: FileAsset has been removed, use aws-s3-assets.Asset.
    • lambda: Code.directory and Code.file have been removed. Use Code.asset.
    • assets-docker: The module has been renamed to aws-ecr-assets
    • ecs: the property that specifies the type of EC2 AMI optimized for ECS was renamed to hardwareType from hwType.
    • codebuild: the method addToRoleInlinePolicy in CodeBuild's Project class has been removed.
    • dynamodb: TableOptions.pitrEnabled renamed to pointInTimeRecovery.
    • dynamodb: TableOptions.sseEnabled renamed to serverSideEncryption.
    • dynamodb: TableOptions.ttlAttributeName renamed to timeToLiveAttribute.
    • dynamodb: TableOptions.streamSpecification renamed stream.
    • ecs: ContainerImage.fromAsset() now takes only build directory
      directly (no need to pass scope or id anymore).
    • secretsmanager: ISecret.secretJsonValue renamed to secretValueFromJson.
    • ssm: ParameterStoreString has been removed. Use StringParameter.fromStringParameterAttributes.
    • ssm: ParameterStoreSecureString has been removed. Use StringParameter.fromSecureStringParameterAttributes.
    • ssm: ParameterOptions.name was renamed to parameterName.
    • logs: newStream renamed to addStream and doesn't need a scope
    • logs: newSubscriptionFilter renamed to addSubscriptionFilter and doesn't need a scope
    • logs: newMetricFilter renamed to addMetricFilter and doesn't need a scope
    • logs: NewSubscriptionFilterProps renamed to SubscriptionProps
    • logs: NewLogStreamProp...

Snyk has created this PR to upgrade @aws-cdk/aws-iam from 0.0.0 to 0.39.0.

See this package in npm:
@aws-cdk/aws-iam

See this project in Snyk:
https://app.snyk.io/org/nexuscompute/project/654d6e40-6f6d-4e8d-84cc-9a118140c69d?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment