[Snyk] Upgrade aws-cdk from 2.44.0 to 2.150.0

[gitafolabi]

Snyk has created this PR to upgrade aws-cdk from 2.44.0 to 2.150.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 145 versions ahead of your current version.

• The recommended version was released on 24 days ago.

Release notes

Package name: aws-cdk

• 2.150.0 - 2024-07-23
  

  Features

  • update L1 CloudFormation resource definitions (#30921) (153a698)
  • ec2: add g6 instance (#30693) (90a41d5), closes #30683
  • lambda: add SnapStart support for arm64 functions (#30898) (b4377a5), closes #30899
  • logs: enabling IA log group creation in CN and GovCloud regions (#30904) (230b56b)
  • update L1 CloudFormation resource definitions (#30860) (ce7a8d5)

  Bug Fixes

  • custom-resources: provider framework will always log all data including confidential data (#30689) (9bd92da), closes #30275
  • stepfunctions-tasks: allow camelCase for parameters of CallAwsServiceCrossRegion (#30795) (5d6ace8), closes #30799

  ---

  Alpha modules (2.150.0-alpha.0)

• 2.149.0 - 2024-07-12
  

  Features

  • codedeploy: zonal configuration for ServerDeploymentConfig (#30429) (da0dc57), closes #30430
  • codestarnotifications: add createdBy property for notification rule (#30780) (a68b418)
  • stepfunctions-tasks: add guardrailConfiguration and trace property to the BedrockInvokeModel (#30426) (772b1d1), closes #30425
  • stepfunctions-tasks: enable resultReuseConfiguration in AthenaStartQueryExecution (#30447) (046bf56), closes #30446
  • update L1 CloudFormation resource definitions (#30786) (6d0a09f)

  Bug Fixes

  • apigateway: authorization scope is not added when not explicitly defining authorization type in method or root api (#30822) (e4367a0), closes #30444
  • scheduler-targetes-alpha: multiple schedules cause resolution error during synth (#30634) (727e886), closes #28713

  ---

  Alpha modules (2.149.0-alpha.0)

• 2.148.1 - 2024-07-11
  

  Bug Fixes

  • apigateway: authorization scope is not added when not explicitly defining authorization type in method or root api (#30822) (4bee768), closes #30444

  ---

  Alpha modules (2.148.1-alpha.0)

• 2.148.0 - 2024-07-05
  

  Features

  • lambda: add grantInvokeLatestVersion to grant invoke only to latest function version (#29856) (61c28dd), closes #20177
  • update L1 CloudFormation resource definitions (#30722) (4ceeced), closes /docs.aws.amazon.com/service-terms/#87
  • codebuild: adding project.visibility (#30103) (1bacb69)
  • codedeploy: termination hook (#30644) (8f652a7)
  • cognito: add defaultRedirectUri to UserPoolClient (#30481) (f2c5f68)
  • eks: eks pod identities (#30576) (9437b4d), closes /github.com/aws/aws-cdk/blob/b196b13b0b8a54dcacadf87fdbe744772a6e6c4d/packages/aws-cdk-lib/aws-eks/lib/oidc-provider.ts#L36 /github.com/aws/aws-cdk/blob/b196b13b0b8a54dcacadf87fdbe744772a6e6c4d/packages/aws-cdk-lib/aws-eks/lib/oidc-provider.ts#L36 /github.com/aws/aws-cdk/blob/b196b13b0b8a54dcacadf87fdbe744772a6e6c4d/packages/aws-cdk-lib/aws-iam/lib/role.ts#L373 #30519
  • stepfunctions-tasks: step functions task for cross-region AWS API call (#30061) (1397737), closes #29918
  • update L1 CloudFormation resource definitions (#30642) (2a659f0)
  • fsx: add properties to enable automatic backups for Lustre file system (#30343) (3b95777), closes #30340

  Bug Fixes

  • ecs: let AsgCapacityProvider use IAutoScalingGroup only when Managed Termination Protection is disable (#30335) (efee07d), closes #29174
  • lambda-nodejs: breaking change in esbuild causes import module error (#30726) (7f5ce4b), closes #30717
  • s3: allow import S3 bucket with a legacy name (#30679) (e09126f), closes #22640
  • s3-notifications: unable to delete the existing S3 event notifications (#30610) (b880067), closes #28915s too broad (under feature flag) (#30389) (8ebfade), closes #30368

  Reverts

  • fix(core): overrideLogicalId validation (#30695) (0aa2be7), closes aws/aws-cdk#29708
  • route53 CrossAccountZoneDelegationRecord fails at deployment time with imported delegatedZone (#30440)" (#30606) (95280a0), closes #30600

  ---

  Alpha modules (2.148.0-alpha.0)

  Features

  • apprunner: add AutoScalingConfiguration for AppRunner Service (#30358) (a598508), closes #30353
  • apprunner: add ObservabilityConfiguration for AppRunner Service (#30359) (9e9cc27), closes #22985
  • pipes-enrichments: add Step Functions enrichment eventbridge pipes (#30495) (8b495f9), closes #29385
  • pipes-targets: add lambda function (#30271) (f594fae), closes #30270

  Bug Fixes

  • apprunner: auto deployment fails after new container image pushed due to lack of a permission (#30630) (cce10b1), closes #26640 /github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/aws-ecr/lib/repository.ts#L385 40aws-cdk/aws-apprunner-alpha/lib/service.ts#L1303 40aws-cdk/aws-apprunner-alpha/lib/service.ts#L1368
• 2.147.3 - 2024-07-02
  

  Bug Fixes

  • lambda-nodejs: breaking change in esbuild causes import module error (#30726) (06c14b1), closes #30717

  ---

  Alpha modules (2.147.3-alpha.0)

• 2.147.2 - 2024-06-28
  

  Reverts

  • fix(core): overrideLogicalId validation (#29708) (b196b13)

  ---

  Alpha modules (2.147.2-alpha.0)

• 2.147.1 - 2024-06-24
  

  Reverts

  • route53 CrossAccountZoneDelegationRecord fails at deployment time with imported delegatedZone (#30440)" (#30606) (69eb617), closes #30600

  ---

  Alpha modules (2.147.1-alpha.0)

• 2.147.0 - 2024-06-20
  

  Features

  • ec2: add nitro enclave and hibernation settings to the Instance Construct (#30228) (4e9ef15)
  • ses: allow VDM settings at the configuration set level (#30051) (49a98ac), closes #30041
  • stepfunctions-tasks: support FLEX execution class for GlueStartJobRun (#30534) (c826d8f), closes #30533
  • update L1 CloudFormation resource definitions (#30569) (a5c6d21), closes /docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/aurora-serverless-v2.requirements.html#aurora-serverless-v2 /docs.aws.amazon.com/AmazonRDS/latest/AuroraUserGuide/aurora-serverless-v2.requirements.html#aurora-serverless-v2

  Bug Fixes

  • apigateway: remove timeout upper bound max (#30547) (3c36fe9), closes #30539
  • core: overrideLogicalId validation (#29708) (b196b13), closes #29701
  • globalaccelerator-endpoints: add preserveClientIp option for net… (#30346) (c1e1b4d)
  • stepfunctions: add docs and warning DistributedMap Class ignores executionType in the ProcessorConfig (#30301) (0499adf), closes #30194 #27913 #28821

  ---

  Alpha modules (2.147.0-alpha.0)

  Bug Fixes

  • custom-resource-handlers: don't recursively process s3 bucket objects (#30209) (25835e4), closes #30573 /github.com/aws/aws-cdk/pull/30209#issuecomment-2118991218
• 2.146.0 - 2024-06-13
  

  Features

  • appsync: add maxBatchSize property to the AppSyncFunction Construct (#30266) (f1dc142)
  • eks: support AccessConfig for the Cluster construct (#30016) (f45f2ca), closes #28588
  • opensearch: add OpenSearch 2.13 engine version (#30399) (db3e77d)
  • implement node runtime region awareness for cdk vended custom resources (#30108) (69c5dde)
  • codebuild: add missing types for webhook filters (#30064) (1d93094), closes #30062
  • sns: add grantSubscribe method (#30486) (36a48ad), closes #29049
  • update L1 CloudFormation resource definitions (#30508) (06d0a1b)

  Bug Fixes

  • cloudfront: make long function name deterministic (#30392) (e19d18b), closes #20017 #15523 #28629
  • route53: delegation fails with public and private hosted zones with same name (#30439) (1f866c9), closes #30262

  ---

  Alpha modules (2.146.0-alpha.0)

  Features

  • apprunner: add ipAddressType property to the Service class (#30351) (665396f)
• 2.145.0 - 2024-06-07
  

  Features

  • config: proactive evaluation mode (#30174) (516ecef), closes #30172
  • eks: support for Kubernetes version 1.30 (#30454) (d2ea280)
  • update L1 CloudFormation resource definitions (#30438) (3ee5ce0)
  • chatbot: configure userRoleRequired for the SlackChannelConfiguration (#30420) (5b84ca6), closes #30403
  • codebuild: Fleet L2 (#29754) (940e799), closes #29617 #29616
  • logs: add distribution property to the Subscription class (#30423) (0e95bf0), closes #30422

  Bug Fixes

  • custom-resources: logApiResponseData is added to custom resource event properties by default (#30418) (a899ac6), closes #30121 #29949 #29648
  • route53 CrossAccountZoneDelegationRecord fails at deployment time with imported delegatedZone (#30440) (a3d9b10), closes #28581
  • apigateway: allow overriding authorizer on methods (#30415) (1b8d73c), closes #8827

  ---

  Alpha modules (2.145.0-alpha.0)

• 2.144.0 - 2024-05-31
• 2.143.1 - 2024-05-30
• 2.143.0 - 2024-05-24
• 2.142.1 - 2024-05-17
• 2.142.0 - 2024-05-15
• 2.141.0 - 2024-05-08
• 2.140.0 - 2024-05-02
• 2.139.1 - 2024-04-30
• 2.139.0 - 2024-04-24
• 2.138.0 - 2024-04-18
• 2.137.0 - 2024-04-11
• 2.136.1 - 2024-04-10
• 2.136.0 - 2024-04-06
• 2.135.0 - 2024-04-02
• 2.134.0 - 2024-03-26
• 2.133.0 - 2024-03-15
• 2.132.1 - 2024-03-12
• 2.132.0 - 2024-03-09
• 2.131.0 - 2024-03-01
• 2.130.0 - 2024-02-23
• 2.129.0 - 2024-02-21
• 2.128.0 - 2024-02-14
• 2.127.0 - 2024-02-10
• 2.126.0 - 2024-02-02
• 2.125.0 - 2024-02-01
• 2.124.0 - 2024-01-26
• 2.123.0 - 2024-01-24
• 2.122.0 - 2024-01-18
• 2.121.1 - 2024-01-13
• 2.121.0 - 2024-01-12
• 2.120.0 - 2024-01-12
• 2.119.0 - 2024-01-11
• 2.118.0 - 2024-01-03
• 2.117.0 - 2023-12-27
• 2.116.1 - 2023-12-22
• 2.116.0 - 2023-12-22
• 2.115.0 - 2023-12-14
• 2.114.1 - 2023-12-06
• 2.114.0 - 2023-12-05
• 2.113.0 - 2023-12-01
• 2.112.0 - 2023-12-01
• 2.111.0 - 2023-11-27
• 2.110.1 - 2023-11-22
• 2.110.0 - 2023-11-17
• 2.109.0 - 2023-11-16
• 2.108.1 - 2023-11-14
• 2.108.0 - 2023-11-14
• 2.107.0 - 2023-11-13
• 2.106.1 - 2023-11-11
• 2.106.0 - 2023-11-10
• 2.105.0 - 2023-11-08
• 2.104.0 - 2023-11-02
• 2.103.1 - 2023-10-27
• 2.103.0 - 2023-10-26
• 2.102.1 - 2023-10-25
• 2.102.0 - 2023-10-19
• 2.101.1 - 2023-10-16
• 2.101.0 - 2023-10-13
• 2.100.0 - 2023-10-06
• 2.99.1 - 2023-09-30
• 2.99.0 - 2023-09-28
• 2.98.0 - 2023-09-26
• 2.97.1 - 2023-09-26
• 2.97.0 - 2023-09-22
• 2.96.2 - 2023-09-15
• 2.96.1 - 2023-09-14
• 2.96.0 - 2023-09-13
• 2.95.1 - 2023-09-09
• 2.95.0 - 2023-09-07
• 2.94.0 - 2023-09-01
• 2.93.0 - 2023-08-23
• 2.92.0 - 2023-08-15
• 2.91.0 - 2023-08-10
• 2.90.0 - 2023-08-04
• 2.89.0 - 2023-07-28
• 2.88.0 - 2023-07-20
• 2.87.0 - 2023-07-06
• 2.86.0 - 2023-06-29
• 2.85.0 - 2023-06-21
• 2.84.0 - 2023-06-14
• 2.83.1 - 2023-06-09
• 2.83.0 - 2023-06-07
• 2.82.0 - 2023-06-02
• 2.81.0 - 2023-05-25
• 2.80.0 - 2023-05-20
• 2.79.1 - 2023-05-11
• 2.79.0 - 2023-05-10
• 2.78.0 - 2023-05-04
• 2.77.0 - 2023-04-26
• 2.76.0 - 2023-04-20
• 2.75.1 - 2023-04-19
• 2.75.0 - 2023-04-18
• 2.74.0 - 2023-04-13
• 2.73.0 - 2023-04-06
• 2.72.1 - 2023-03-31
• 2.72.0 - 2023-03-29
• 2.71.0 - 2023-03-29
• 2.70.0 - 2023-03-22
• 2.69.0 - 2023-03-14
• 2.68.0 - 2023-03-08
• 2.67.0 - 2023-03-02
• 2.66.1 - 2023-02-24
• 2.66.0 - 2023-02-21
• 2.65.0 - 2023-02-15
• 2.64.0 - 2023-02-09
• 2.63.2 - 2023-02-04
• 2.63.1 - 2023-02-03
• 2.63.0 - 2023-01-31
• 2.62.2 - 2023-01-27
• 2.62.1 - 2023-01-26
• 2.62.0 - 2023-01-25
• 2.61.1 - 2023-01-20
• 2.61.0 - 2023-01-19
• 2.60.0 - 2023-01-12
• 2.59.0 - 2023-01-03
• 2.58.1 - 2022-12-30
• 2.58.0 - 2022-12-29
• 2.57.0 - 2022-12-27
• 2.56.1 - 2022-12-23
• 2.56.0 - 2022-12-21
• 2.55.1 - 2022-12-16
• 2.55.0 - 2022-12-14
• 2.54.0 - 2022-12-07
• 2.53.0 - 2022-11-29
• 2.52.1 - 2022-11-29
• 2.52.0 - 2022-11-27
• 2.51.1 - 2022-11-18
• 2.51.0 - 2022-11-18
• 2.50.0 - 2022-11-01
• 2.49.1 - 2022-11-01
• 2.49.0 - 2022-10-28
• 2.48.0 - 2022-10-27
• 2.47.0 - 2022-10-20
• 2.46.0 - 2022-10-13
• 2.45.0 - 2022-10-06
• 2.44.0 - 2022-09-29

from aws-cdk GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[dryrunsecurity]

DryRun Security Summary

The pull request updates the project's dependencies, specifically the aws-cdk library, from version 2.44.0 to 2.150.0, which is a routine and generally low-risk operation that should be thoroughly tested to ensure no regressions or unexpected behavior changes.

Expand for full summary

Summary:

The code changes in this pull request appear to be routine updates to the project's dependencies, specifically the aws-cdk library. The changes include updating the package-lock.json file with a new project name and updating the aws-cdk dependency from version 2.44.0 to 2.150.0 in the package.json file.

From an application security perspective, these changes do not introduce any immediate security concerns. Updating dependencies to their latest versions is generally a good practice, as it can help address known security vulnerabilities. However, it's important to thoroughly test the application after the update to ensure that there are no regressions or unexpected behavior changes.

Additionally, keeping the package-lock.json file up-to-date is important for maintaining the stability and reproducibility of the application across different environments.

Files Changed:

1. xw-batch/package-lock.json: This file has been updated with a new project name ("relock-npm-lock-v2-M1cwIs") and the aws-cdk dependency has been updated from version 2.44.0 to 2.150.0.

2. xw-batch/package.json: The aws-cdk dependency has been updated from version ^2.38.0 to ^2.150.0.

Overall, these changes appear to be routine dependency updates, which is a common and generally low-risk operation. However, it's still important to ensure that the application is thoroughly tested and monitored for any issues after the update.

Code Analysis

We ran 9 analyzers against 2 files and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	2 findings

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.