Skip to content
This repository has been archived by the owner on Jan 25, 2022. It is now read-only.

[Snyk] Upgrade @aws-cdk/cdk from 0.22.0 to 0.35.0 #3

Closed

Conversation

snyk-bot
Copy link
Contributor

Snyk has created this PR to upgrade @aws-cdk/cdk from 0.22.0 to 0.35.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
  • The recommended version is 17 versions ahead of your current version.
  • The recommended version was released 6 months ago, on 2019-06-19.
Release notes
Package name: @aws-cdk/cdk
  • 0.35.0 - 2019-06-19

    Bug Fixes

    Code Refactoring

    Features

    • cli: Expose props in CFN resources and remove propertyOverrides (#2372) (#2372) (aa61dfb), closes #2100
    • cli: deploy/destory require explicit stack selection if app contains more than a single stack (#2772) (118a716), closes #2731
    • cli: Remove stack rename support (#2819) (0f30e39), closes #2670
    • cloudformation: add option to restrict data returned AwsCustomResource (#2859) (a691900), closes #2825
    • cloudformation: Add removalPolicy on CustomResource (#2770) (859248a)
    • cloudfront: add Lambda associations (#2760) (b088c8c)
    • codepipeline: final form of the CodeBuild Pipeline action. (#2716) (c10fc9a)
    • core: show token creation stack trace upon resolve error (#2886) (f4c8dcd)
    • ecs: add metrics for Fargate services (#2798) (acf015d)
    • ecs-patterns: LoadBalancedFargateService - allow specifying containerName and role (#2764) (df12197)
    • elasticloadbalancing: add crossZone load balancing (#2787) (192bab7), closes #2786
    • lambda: Expose $LATEST function version (#2792) (55d1bc8), closes #2776
    • s3: add CORS Property to S3 Bucket (#2101) (#2843) (1a386d8)
    • s3: add missing storage classes and API cleanups (#2834) (5cd9609), closes #2708
    • stepfunctions: add grantStartExecution() (#2793) (da32176)
    • stepfunctions: add support for AmazonSageMaker APIs (#2808) (8b1f3ed), closes #1314
    • stepfunctions: waitForTaskToken for Lambda, SQS, SNS (#2686) (d017a14), closes #2658 #2735
    • formalize the concept of physical names, and use them for cross-environment CodePipelines. (#1924) (6daaca8)

    BREAKING CHANGES

    • assets: AssetProps.packaging has been removed and is now automatically discovered based on the file type.
    • assets: ZipDirectoryAsset has been removed, use aws-s3-assets.Asset.
    • assets: FileAsset has been removed, use aws-s3-assets.Asset.
    • lambda: Code.directory and Code.file have been removed. Use Code.asset.
    • assets-docker: The module has been renamed to aws-ecr-assets
    • ecs: the property that specifies the type of EC2 AMI optimized for ECS was renamed to hardwareType from hwType.
    • codebuild: the method addToRoleInlinePolicy in CodeBuild's Project class has been removed.
    • dynamodb: TableOptions.pitrEnabled renamed to pointInTimeRecovery.
    • dynamodb: TableOptions.sseEnabled renamed to serverSideEncryption.
    • dynamodb: TableOptions.ttlAttributeName renamed to timeToLiveAttribute.
    • dynamodb: TableOptions.streamSpecification renamed stream.
    • ecs: ContainerImage.fromAsset() now takes only build directory
      directly (no need to pass scope or id anymore).
    • secretsmanager: ISecret.secretJsonValue renamed to secretValueFromJson.
    • ssm: ParameterStoreString has been removed. Use StringParameter.fromStringParameterAttributes.
    • ssm: ParameterStoreSecureString has been removed. Use StringParameter.fromSecureStringParameterAttributes.
    • ssm: ParameterOptions.name was renamed to parameterName.
    • logs: newStream renamed to addStream and doesn't need a scope
    • logs: newSubscriptionFilter renamed to addSubscriptionFilter and doesn't need a scope
    • logs: newMetricFilter renamed to addMetricFilter and doesn't need a scope
    • logs: NewSubscriptionFilterProps renamed to SubscriptionProps
    • logs: NewLogStreamProps renamed to LogStreamOptions
    • logs: NewMetricFilterProps renamed to MetricFilterOptions
    • logs: JSONPattern renamed to JsonPattern
    • apigateway: MethodOptions.authorizerId is now called authorizer and accepts an IAuthorizer which is a placeholder interface for the authorizer resource.
    • apigateway: restapi.executeApiArn renamed to arnForExecuteApi.
    • apigateway: restapi.latestDeployment and deploymentStage are now read-only.
    • events: EventPattern.detail is now a map.
    • events: scheduleExpression: string is now schedule: Schedule.
    • multiple modules have been changed to use cdk.RemovalPolicy
      to configure the resource's removal policy.
    • core: applyRemovalPolicy is now CfnResource.applyRemovalPolicy.
    • core: RemovalPolicy.Orphan has been renamed to Retain.
    • core: RemovalPolicy.Forbid has been removed, use Retain.
    • ecr: RepositoryProps.retain is now removalPolicy, and defaults to Retain instead of remove since ECR is a stateful resource
    • kms: KeyProps.retain is now removalPolicy
    • logs: LogGroupProps.retainLogGroup is now removalPolicy
    • logs: LogStreamProps.retainLogStream is now removalPolicy
    • rds: DatabaseClusterProps.deleteReplacePolicy is now removalPolicy
    • rds: DatabaseInstanceNewProps.deleteReplacePolicy is now removalPolicy
    • codebuild: rename BuildSource to Source, S3BucketSource to S3Source, BuildArtifacts to Artifacts, S3BucketBuildArtifacts to S3Artifacts
    • codebuild: the classes CodePipelineBuildSource, CodePipelineBuildArtifacts, NoBuildSource, and NoBuildArtifacts have been removed
    • codebuild: rename buildScriptAsset and buildScriptAssetEntrypoint to buildScript and buildScriptEntrypoint, respectively
    • cli: All L1 ("Cfn") Resources attributes are now prefixed with
      attr instead of the resource type. For example, in S3 bucket.bucketArn is now bucket.attrArn.
    • propertyOverrides has been removed from all "Cfn" resources, instead
      users can now read/write resource properties directly on the resource class. For example, instead of lambda.propertyOverrides.runtime just use lambda.runtime.
    • codepipeline: the property designating the name of the stage when creating a CodePipeline is now called stageName instead of name
    • codepipeline: the output and extraOutputs properties of the CodeBuildAction were merged into one property, outputs.
    • lambda:
      • Renamed Function.addLayer to addLayers and made it variadic
      • Removed IFunction.handler property
      • Removed IVersion.versionArn property (the value is at functionArn)
      • Removed SingletonLayerVersion
      • Stopped exporting LogRetention
    • cli: if an app includes more than one stack "cdk deploy" and "cdk destroy" now require that an explicit selector will be passed. Use "cdk deploy '*'" if you want to select all stacks.
    • iam: PolicyStatement no longer has a fluid API, and accepts a
      props object to be able to set the important fields.
    • iam: rename ImportedResourcePrincipal to UnknownPrincipal.
    • iam: managedPolicyArns renamed to managedPolicies, takes
      return value from ManagedPolicy.fromAwsManagedPolicyName().
    • iam: PolicyDocument.postProcess() is now removed.
    • iam: PolicyDocument.addStatement() renamed to addStatements.
    • iam: PolicyStatement is no longer IResolvable, call .toStatementJson()
      to retrieve the IAM policy statement JSON.
    • iam: AwsPrincipal has been removed, use ArnPrincipal instead.
    • s3: s3.StorageClass is now an enum-like class instead of a regular
      enum. This means that you need to call .value in order to obtain it's value.
    • s3: s3.Coordinates renamed to s3.Location
    • codepipeline: Artifact.s3Coordinates renamed to Artifact.s3Location.
    • codebuild: buildSpec argument is now a BuildSpec object.
    • lambda: lambda.Runtime.NodeJS* are now lambda.Runtime.Nodejs*
    • core: multiple changes to the Stack API
    • core: stack.name renamed to stack.stackName
    • core: stack.stackName will return the concrete stack name. Use Aws.stackName to indicate { Ref: "AWS::StackName" }.
    • core: stack.account and stack.region will return the concrete account/region only if they are explicitly specified when the stack is defined (under the env prop). Otherwise, they will return a token that resolves to the AWS::AccountId and AWS::Region intrinsic references. Use Context.getDefaultAccount() and Context.getDefaultRegion() to obtain the defaults passed through the toolkit in case those are needed. Use Token.isUnresolved(v) to check if you have a concrete or intrinsic.
    • core: stack.logicalId has been removed. Use stack.getLogicalId()
    • core: stack.env has been removed, use stack.account, stack.region and stack.environment instead
    • core: stack.accountId renamed to stack.account (to allow treating account more abstractly)
    • core: AvailabilityZoneProvider can now be accessed through Context.getAvailabilityZones()
    • core: SSMParameterProvider can now be accessed through Context.getSsmParameter()
    • core: parseArn is now Arn.parse
    • core: arnFromComponents is now arn.format
    • core: node.lock and node.unlock are now private
    • core: stack.requireRegion and requireAccountId have been removed. Use Token.unresolved(stack.region) instead
    • core: stack.parentApp have been removed. Use App.isApp(stack.node.root) instead.
    • core: stack.missingContext is now private
    • core: stack.renameLogical have been renamed to stack.renameLogicalId
    • core: IAddressingScheme, HashedAddressingScheme and LogicalIDs are now internal. Override Stack.allocateLogicalId to customize how logical IDs are allocated to resources.
    • cli: The CLI no longer accepts --rename, and the stack
      names are now immutable on the stack artifact.
    • sns: using a queue, lambda, email, URL as SNS Subscriber now
      requires an integration object from the @aws-cdk/aws-sns-subscribers
      package.
    • ecs-patterns: Renamed QueueWorkerService for base, ec2 and fargate to QueueProcessingService, QueueProcessingEc2Service, and QueueProcessingFargateService.
    • iam: roleName in RoleProps is now of type PhysicalName
    • s3: bucketName in BucketProps is now of type PhysicalName
    • codebuild: roleName in RoleProps is now of type PhysicalName
  • 0.34.0 - 2019-06-10

    Bug Fixes

    • build: Correct buildspec so it does not fail (#2737) (e362ac8)
    • certificatemanager: correct certificateArn typo in the README (#2712) (2bfc1c2)
    • cli: don't fail if region cannot be determined (#2721) (0c72ef3), closes #2697
    • cli: remove support for applets (#2691) (0997ee2)
    • cloudwatch: move SNS Alarm Action to aws-cloudwatch-actions (#2688) (e3df21a)
    • codebuild: grant the Project's Role permissions to the KMS Key if it was passed. (#2715) (4e12fe6)
    • core: apply overrides after rendering properties (#2685) (f2636e5), closes #2677
    • core: Make filterUndefined null-safe (#2789) (e4fb811), closes awslabs/jsii#523
    • ecs: remove LoadBalancedFargateServiceApplet, no longer supported (#2779) (a610017)
    • ecs-patterns: expose service on queue worker services (#2780) (6d83cb9)
    • pkglint: Adjust stability banner style (#2768) (da94d8b)
    • route53: support zone roots as record names (#2705) (08a2852)
    • stepfunctions: improve Task payload encoding (#2706) (1c13faa)

    Code Refactoring

    Features

    BREAKING CHANGES

    • route53: recordValue: string prop in route53.TxtRecord changed to values: string[]
    • recordValue prop in route53.CnameRecord renamed to domainName
    • route53.AliasRecord has been removed, use route53.ARecord or route53.AaaaRecord with the target prop.
    • kms: The EncryptionKeyAlias class was renamed to Alias.
      Associated types (such as EncryptionKeyAliasProps) were renamed in the
      same way.
    • cli: This release requires CDK CLI >= 0.34.0
    • core: App.run() was renamed to App.synth() (soft deprecation, it will be removed in the next release).
    • core: node.stack is now Stack.of(construct) (fixes #2766)
    • core: node.resolve has been moved to stack.resolve.
    • core: node.stringifyJson has been moved to stack.stringifyJson.
    • core: node.validateTree is now ConstructNode.validate(node)
    • core: node.prepareTree is now ConstructNode.prepare(node)
    • core: node.getContext is now node.tryGetContext
    • core: node.recordReference is now node.addReference
    • core: node.apply is now node.applyAspect
    • core: node.ancestors() is now node.scopes
    • core: node.required has been removed.
    • core: node.typename has been removed.
    • core: node.addChild is now private
    • core: node.findReferences() is now node.references
    • core: node.findDependencies() is now node.dependencies
    • core: stack.dependencies() is now stack.dependencies
    • core: CfnElement.stackPath has been removed.
    • core: CloudFormationLang is now internal (use stack.toJsonString())
    • cloudwatch: using an SNS topic as CloudWatch Alarm Actxion now
      requires an integration object from the @aws-cdk/aws-cloudwatch-actions
      package.
    • event-targets: targets.EcsEc2Task renamed to targets.EcsTask
    • SNS - Subscription endpoint is now type string (previously any)
    • Step Functions - result in the Pass state is now type map (previously any)
    • the following modules are no longer released: @aws-cdk/applet-js, @aws-cdk/aws-autoscaling-api, @aws-cdk/aws-codedeploy-api
    • cli: applets are no longer supported as an app type, use "decdk" instead.
    • core: Properties passed to addPropertyOverride should match in capitalization to the CloudFormation schema (normally pascal case). For example, addPropertyOverride('accessControl', 'xxx') should now be addPropertyOverride('AccessControl', 'xxx').
    • rds: rds.RotationSingleUser renamed to rds.SecretRotation
    • rds: rds.ClusterParameterGroup no longer has setParameter() and removeParameter() methods, use the parameters prop directly in the constructor instead.
  • 0.33.0 - 2019-05-30

    IMPORTANT: apps created with the CDK version 0.33.0 and above cannot be used with an older CLI version.

    Bug Fixes

    • core: Fn.cidr should return a list and not a string (#2678) (9d2ea2a), closes #2671
    • cli: fix ts-node usage on Windows (#2660) (5fe0af5)
    • cli: make cdk docs open the new API reference (#2633) (6450758)
    • cli: correctly pass build args to docker build (#2634) (9c58d6f)
    • core: hide dependencyRoots from public API (#2668) (2ba5ad2), closes #2348
    • autoscaling: move lifecycle hook targets to their own module (#2628) (b282132), closes #2447
    • codepipeline: no longer allow providing an index when adding a Stage to a Pipeline. (#2624) (ce39b12)
    • codepipeline-actions: correctly serialize the userParameters passed to the Lambda invoke Action. (#2537) (ceaf54a)
    • cx-api: improve compatibility messages for cli <=> app (#2676) (38a9894)
    • ecs: move high level ECS constructs into aws-ecs-patterns (#2623) (f901313)
    • logs: move log destinations into 'aws-logs-destinations' (#2655) (01601c2), closes #2444
    • s3: move notification destinations into their own module (#2659) (185951c), closes #2445

    Features

    BREAKING CHANGES

    • logs: using a Lambda or Kinesis Stream as CloudWatch log subscription destination now requires an integration object from the @aws-cdk/aws-logs-destinations package.
    • codepipeline-actions: removed the addPutJobResultPolicy property when creating LambdaInvokeAction.
    • cli: --interactive has been removed
    • cli: --numbered has been removed
    • cli: --staging is now a boolean flag that indicates whether assets should be copied to the --output directory or directly referenced (--no-staging is useful for e.g. local debugging with SAM CLI)
    • assets: Assets (e.g. Lambda code assets) are now referenced relative to the output directory.
    • assert: SynthUtils.templateForStackName has been removed (use SynthUtils.synthesize(stack).template).
    • cx-api: cxapi.SynthesizedStack renamed to cxapi.CloudFormationStackArtifact with multiple API changes.
    • core: cdk.App.run() now returns a cxapi.CloudAssembly instead of cdk.ISynthesisSession.
    • s3: using a Topic, Queue or Lambda as bucket notification destination now requires an integration object from the @aws-cdk/aws-s3-notifications package.
    • autoscaling: using a Topic, Queue or Lambda as Lifecycle Hook Target now requires an integration object from the @aws-cdk/aws-autoscaling-hooktargets package.
    • codepipeline: the property atIndex has been removed from the StagePlacement interface.
    • aws-ecs: These changes move all L3 and higher constructs out of the aws-ecs module into the aws-ecs-patterns module. The following constructs have been moved into the aws-ecs-patterns module: EcsQueueWorkerService, FargateQueueWorkerService, LoadBalancedEcsService, LoadBalancedFargateService and LoadBalancedFargateServiceApplets.
    • cloudwatch: rename leftAxisRange => leftYAxis, rightAxisRange => rightYAxis, rename YAxisRange => YAxisProps.
  • 0.32.0 - 2019-05-24

    Bug Fixes

    • update all 'onXxx' methods to be CloudWatch Events (#2609) (28942d2), closes #2278
    • appscaling: fix StepScaling (#2522) (1f004f6)
    • aws-ecs: allow linux parameters to be settable (#2397) (417e5e8), closes #2380
    • aws-glue: fix glue tableArn and integer schema name (#2585) (99e173e)
    • cdk: CfnMapping.findInMap with tokens (#2531) (756e2b6), closes #1363
    • cloudfront: Use regional endpoint for S3 bucket origins (64c3c6b)
    • codebuild: correctly pass the VPC subnet IDs to the Policy Statement's condition when using a VPC. (#2506) (145da28), closes #2335
    • codecommit: add a Repository.fromRepositoryName() method. (#2515) (6fc3718), closes #2514
    • codedeploy: change the load balancer API in server Deployment Group. (#2548) (8e05d49), closes #2449
    • codepipeline: correctly validate Artifacts used by Actions in the same Stage. (#2558) (cfe46f6), closes #2549
    • core: Correctly search for loaded modules in node 12 (#2612) (286866a), closes nodejs/node#27583
    • ec2: allow disabling privateDnsEnabled on VPCs (#2596) (4d2fbe9), closes #2556
    • ec2: fix VPC endpoint name for SageMaker Notebooks (#2598) (aec8ec2)
    • iam: allow CompositePrincipal construction with spread (#2507) (eb13741)
    • lambda: compare Runtimes by value instead of identity (#2543) (584579e)
    • lambda: deprecate old Lambda runtimes (#2594) (20f4ec1)
    • route53-targets: move Alias Targets into their own package (#2617) (f40fe98), closes #2448
    • s3: Make IBucket.arnForObject accept only (exactly) one key pattern (5ac6e77)

    Code Refactoring

    Features

    BREAKING CHANGES

    • route53-targets: using a CloudFront Distribution or an ELBv2
      Load Balancer as an Alias Record Target now requires an integration
      object from the @aws-cdk/aws-route53-targets package.
    • s3: The IBucket.arnForObject method no longer
      concatenates path fragments on your behalf. Pass the /-concatenated
      key pattern instead.
    • All export methods from all AWS resources have been removed. CloudFormation Exports are now automatically created when attributes are referenced across stacks within the same app. To export resources manually, you can explicitly define a CfnOutput.
    • kms: kms.EncryptionKey renamed to kms.Key
    • ec2: ec2.VpcNetwork renamed to ec2.Vpc
    • ec2: ec2.VpcSubnet renamed to ec2.Subnet
    • cloudtrail: cloudtrail.CloudTrail renamed to cloudtrail.Trail`
    • Deleted a few XxxAttribute and XxxImportProps interfaces which were no longer in used after their corresponding export method was deleted and there was no use for them in imports.
    • ecs: ecs.ClusterAttributes now accepts IVpc and ISecurityGroup instead of attributes. You can use their
      corresponding fromXxx methods to import them as needed.
    • servicediscovery: servicediscovery.CnameInstance.instanceCname renamed to cname.
    • glue: glue.IDatabase.locationUrl is now only in glue.Database (not on the interface)
    • ec2: ec2.TcpPortFromAttribute and UdpPortFromAttribute removed. Use TcpPort and UdpPort with new Token(x).toNumber instead.
    • ec2: ec2.VpcNetwork.importFromContext renamed to ec2.Vpc.fromLookup
    • iam: iam.IRole.roleId has been removed from the interface, but Role.roleId is still available for owned resources.
    • codedeploy: the type of the loadBalancer property in ServerDeploymentGroupProps has been changed.
    • apigateway: apigateway.ResourceBase.trackChild is now internal.
    • cloudfront: cloudfront.S3OriginConfig.originAccessIdentity is now originAccessIdentityId
    • codedeploy: codedeploy.LambdaDeploymentGroup.alarms is now cloudwatch.IAlarm[] (previously cloudwatch.Alarm[])
    • codepipeline: codepipeline.crossRegionScaffoldingStacks renamed to crossRegionScaffolding
    • codepipeline: codepipeline.CrossRegionScaffoldingStack renamed to codepipeline.CrossRegionScaffolding and cannot be instantiated (abstract)
    • ec2: ec2.VpcSubnet.addDefaultRouteToNAT renamed to addDefaultNatRoute and made public
    • ec2: ec2.VpcSubnet.addDefaultRouteToIGW renamed to addDefaultInternetRoute, made public and first argument is the gateway ID (string) and not the CFN L1 class
    • ecs: ecs.Ec2EventRuleTarget.taskDefinition is now ITaskDefinition (previously TaskDefinition)
    • lambda: lambda.IEventSource.bind now accepts IFunction instead of FunctionBase. Use IFunction.addEventSourceMapping to add an event source mapping under the function.
    • lambda: lambda.Layer.grantUsage renamed to lambda.layer.addPermission and returns void
    • stepfunctions: stepfunctions.StateMachine.role is now iam.IRole (previously iam.Role)
    • cloudwatch-events: the events API has been significantly re-worked
      • ⚠️ This new API is still being discussed (see #2609) and might change again in the next release!
      • All onXxx() CloudWatch Event methods now have the signature:
        resource.onEvent('SomeId', {
            target: new SomeTarget(...),
            // options
        });
      • CloudWatch:
        • onAlarm was renamed to addAlarmAction
        • onOk was renamed to addOkAction
        • onInsufficientData was renamed to addInsufficientDataAction
      • AutoScaling:
        • onLifecycleTransition was renamed to addLifecycleHook
      • LambdaDeploymentGroup
        • onPreHook was renamed to addPreHook
        • onPostHook was renamed to addPostHook
      • UserPool:
        • all onXxx were renamed to addXxxTrigger
      • Repository:
        • onImagePushed was renamed to onCloudTrailImagePushed
      • Bucket:
        • onEvent was renamed to addEventNotification
        • onObjectCreated was renamed to addObjectCreatedNotification
        • onObjectRemoved was renamed to addObjectRemovedNotification
        • onPutObject was renamed to onCloudTrailPutObject
  • 0.31.0 - 2019-05-07

    Bug Fixes

    Code Refactoring

    Features

    • bootstrap: allow specifying the toolkit staging bucket name (#2407) (3bfc641), closes #2390
    • codebuild: add webhook Filter Groups. (#2319) (fd74d07), closes #1842
    • elbv2: add fixed response support for application load balancers (#2328) (750bc8b)

    BREAKING CHANGES

    • all Foo.import static methods are now Foo.fromFooAttributes
    • all FooImportProps structs are now called FooAttributes
    • stepfunctions.StateMachine.export has been removed.
    • ses.ReceiptRule.name is now ses.ReceiptRule.receiptRuleName
    • ses.ReceiptRuleSet.name is now ses.ReceiptRuleSet.receiptRuleSetName
    • secretsmanager.AttachedSecret is now called secretsmanager.SecretTargetAttachment to match service semantics
    • ecr.Repository.export has been removed
    • s3.Bucket.bucketUrl is now called s3.Bucket.bucketWebsiteUrl
    • lambda.Version.functionVersion is now called lambda.Version.version
    • ec2.SecurityGroup.groupName is now ec2.SecurityGroup.securityGroupName
    • cognito.UserPoolClient.clientId is now cognito.UserPoolClient.userPoolClientId
    • apigateway.IRestApiResource is now apigateway.IResource
    • apigateway.IResource.resourcePath is now apigateway.IResource.path
    • apigateway.IResource.resourceApi is now apigateway.IResource.restApi
  • 0.30.0 - 2019-05-02

    Bug Fixes

    Code Refactoring

    Features

    • cdk-test: check API compatibility (#2356) (1642925), closes #145
    • codepipeline: allow creation of GitHub Pipelines without source trigger (#2332) (ed39a8c)
    • elbv2: add TLS listener for NLB (#2122) (71d694f)

    BREAKING CHANGES

    • s3.Bucket.domainName renamed to s3.Bucket.bucketDomainName.
    • codedeploy.IXxxDeploymentConfig.deploymentConfigArn is now a property and not a method.
    • ec2.SecurityGroupBase is now private
    • ec2.VpcNetworkBase is now private
    • kinesis.StreamBase is now private
    • kms.EncryptionKeyBase is now private
    • logs.LogGroupBase is now private
    • ssm.ParameterBase is now private
    • eks.ClusterBase is now private
    • codebuild.ProjectBase is now private
    • codecommit.RepositoryBase is now private
    • codedeploy.ServerDeploymentGroupBase is now private
    • eks.ClusterBase is now private
    • lambda.LayerVersionBase is now private
    • rds.DatabaseClusterBase is now private
    • secretsmanager.SecretBase is now private
    • ses.ReceiptRuleSetBase is now private
    • codepipeline: the pollForSourceChanges property in GitHubSourceAction has been renamed to trigger, and its type changed from a boolean to an enum.
  • 0.29.0 - 2019-04-24

    Bug Fixes

    • acm: enabled validation of certificates on the zone name (#2133) (f216f96)
    • aws-apigateway: add integrationHttpMethod prop to AwsIntegration (#2160) (dfc6665), closes #2105
    • aws-cloudwatch: remove workaround on optional DashboardName (6c73d8a), closes #213
    • aws-ecs: fix default daemon deploymentConfig values (#2210) (c2e806b), closes #2209
    • aws-ecs: handle long ARN formats for services (#2176) (66df1c8), closes #1849
    • aws-lambda: fix circular dependency with lambda and codedeploy (#2236) (382da6a)
    • certificatemanager: remove bundled lambda devdependencies (#2186) (6728b41)
    • codebuild: add validation for Source when the badge property is true (#2242) (07812b2), closes #1749
    • core: allow CfnMapping.findInMap to use pseudo functions/params (#2220) (464cb6f), closes #1363
    • core: Use different symbol for Stack.isStack versus CfnReference.isCfnReference (#2305) (c1e41ed)
    • decdk: set the timeout in the schema tests to 10 seconds. (#2250) (8521b6f)
    • dynamodb: remove global secondary index limit (#2301) (43afa3a), closes #2262
    • ecr: Fix typo in ImportRepository error message (#2217) (b7c9b21)
    • elasticloadbalancingv2: dependency between ALB and logging bucket (#2221) (99e085d), closes #1633
    • java-app-template: invoke app.run() (#2300) (47ff448), closes #2289 awslabs/jsii#456
    • lambda: avoid OperationAbortedException when using log retention (#2237) (12a118c)
    • s3: Add validations for S3 bucket names (#2256) (f810265), closes #1308
    • servicediscovery: allow to register multiple instances on a service (#2207) (9f88696)
    • toolkit: don't fail when terminal width is 0 (#2355) (9c2220c), closes #2253
    • toolkit: fix broken confirmation prompt (#2333) (4112c84)
    • toolkit: options requiring arguments fail if not supplied (#2197) (0f6ce56), closes #2192
    • toolkit: remove metadata warning if region does not have resource (#2216) (22ed67c)
    • toolkit: stop 'cdk doctor' from printing AWS_ variables (#2357) (6209c6b), closes #1931
    • codebuild: remove oauthToken property from source (#2252) (8705af3), closes #2252 #2199
    • aws-ec2: correct InstanceSize.Nano spelling (#2215) (d22a154), closes #2215 #2214

    Features

    • aws-dynamodb-global: global dynamodb tables (experimental) (#2251) (ec367c8)
    • aws-events-targets: centralized module for cloudwatch event targets (#2343) (1069938)
    • cdk-dasm: generate cdk code from cloudformation (#2244) (b707782)
    • cloudwatch: add support for time ranges in dashboards (#2248) (18c1723)
    • codebuild: add support for more images (#2233) (87b1ea0), closes #2079
    • codepipeline: add ECS deploy Action. (#2050) (d46b814), closes #1386
    • codepipeline: change to stand-alone Artifacts. (#2338) (b778e10)
    • codepipeline: make the default CodePipeline Bucket have an encryption key (#2241) (ef9bba5), closes #1924
    • core: verify CfnOutput has a value and fix VPC export (#2219) (9e87661), closes #2012
    • events-targets: LambdaFunction (#2350) (48d536b), closes #1663
    • ec2: add support for vpc endpoints (#2104) (bbb3f34)
    • lambda: introduce a new kind of Code, CfnParametersCode. (#2027) (4247966)
    • cfnspec: update CloudFormation resources to v2.30.0 (#2239) (aebcde5)
    • toolkit: stage assets under .cdk.assets (#2182) (2f74eb4), closes #1716 #2096

    BREAKING CHANGES

    • cloudwatch: Renamed MetricCustomization to MetricOptions.
    • codepipeline: CodePipeline Actions no longer have the outputArtifact and outputArtifacts properties.
    • codepipeline: inputArtifact(s) and additionalInputArtifacts properties were renamed to input(s) and extraInputs.
    • codepipeline: outputArtifactName(s) and additionalOutputArtifactNames properties were renamed to output(s) and extraOutputs.
    • codepipeline: The classes CodeBuildBuildAction and CodeBuildTestAction were merged into one class CodeBuildAction.
    • codepipeline: The classes JenkinsBuildAction and JenkinsTestAction were merged into one class JenkinsAction.
    • events-targets: lambda.Function no longer implements IEventRuleTarget. Instead, use @aws-cdk/aws-events-targets.LambdaFunction.
    • aws-events-targets: sns.Topic no longer implements IEventRuleTarget. Use @aws-cdk/aws-events-targets.SnsTopic instead.
    • codebuild: codebuild.Project no longer implements IEventRuleTarget. Use @aws-cdk/aws-events-targets.CodeBuildProject.
    • core: the cdk.Root construct has been removed. Use cdk.App instead.
    • stepfunctions: In stepfunctions.WaitProps: the props seconds, timestamp, secondsPath and timestampPath are now duration of a union-like class WaitDuration (e.g. duration: WaitDuration.seconds(n))
    • codedeploy: In codedeploy.ServerDeploymentConfigProps: the props minHealthyHostCount and minHealthyHostPercentage are now minimumHealthyHosts of union-like class MinimumHealthyHosts (e.g. minimumHealthyHosts: MinimumHealthyHosts.percentage(50))
    • cloudformation: In cloudformation.CustomResourceProps: the props topicProvider and lambdaProvider are now provider of union-like class CustomResourceProvider (e.g. CustomResourceProvider.lambda(fn)
    • cloudformation: cloudformation.CustomResource no longer extends CfnCustomResource.
    • ssm: ssm.ParameterProps renamed to ssm.ParameterOptions.
    • codepipeline: customers who use GitHub, GitHubEnterprise or Bitbucket as source will need to remove the oauthToken field as it's no longer available.
    • codebuild: change the default image from UBUNTU_14_04_BASE to UBUNTU_18_04_STANDARD.
    • ec2: aws-ec2.InstanceSize.None was renamed to InstanceSize.Nano
    • ec2: * vpc.selectSubnetIds(...) has been replaced with vpc.selectSubnets(...).subnetIds.
    • You will not be able to combine jsii libraries written against previous versions of jsii with this version of the CDK.
  • 0.28.0 - 2019-04-04

    Bug Fixes

    Code Refactoring

    • cdk: introduce SecretValue to represent secrets (#2161) (a3d9f2e)

    Features

    • codepipeline: move all of the Pipeline Actions to their dedicated package. (#2098) (b314ecf)
    • codepipeline: re-factor the CodePipeline Action bind method to take a Role separately from the Pipeline. (#2085) (ffe0046)
    • ec2: support reserving IP space in VPCs (#2090) (4819ff4)
    • Add python support to cdk init (#2130) (997dbcc)
    • ecs: support AWS Cloud Map (service discovery) (#2065) (4864cc8), closes #1554
    • lambda: add a newVersion method. (#2099) (6fc179a)
    • update CloudFormation resource spec to v2.29.0 (#2170) (ebc490d)

    BREAKING CHANGES

    • The secretsmanager.SecretString class has been removed in favor of cdk.SecretValue.secretsManager(id[, options])
    • The following prop types have been changed from string to cdk.SecretValue: codepipeline-actions.AlexaSkillDeployAction.clientSecret, codepipeline-actions.AlexaSkillDeployAction.refreshToken, codepipeline-actions.GitHubSourceAction.oauthToken, iam.User.password
    • secretsmanager.Secret.stringValue and jsonFieldValue have been removed. Use secretsmanage.Secret.secretValue and secretJsonValue instead.
    • secretsmanager.Secret.secretString have been removed. Use cdk.SecretValue.secretsManager() or secretsmanager.Secret.import(..).secretValue.
    • The class cdk.Secret has been removed. Use cdk.SecretValue instead.
    • The class cdk.DynamicReference is no longer a construct, and it's constructor signature was changed and was renamed cdk.CfnDynamicReference.
    • grant(function.role) and grant(project.role) are now grant(function) and grant(role).
    • core: Replace use of cdk.Secret with secretsmanager.SecretString (preferred) or ssm.ParameterStoreSecureString.
    • codepipeline: this changes the package of all CodePipeline Actions to be aws-codepipeline-actions.
    • codepipeline: this moves all classes from the aws-codepipeline-api package to the aws-codepipeline package.
    • codepipeline: this changes the CodePipeline Action naming scheme from .PipelineAction (s3.PipelineSourceAction) to codepipeline_actions.Action (codepipeline_actions.S3SourceAction).
  • 0.27.0 - 2019-03-28

    Highlights

    • Python support (experimental)
    • You can now run the CLI through npx cdk
    • Make sure to go through the BREAKING CHANGES section below

    Bug Fixes

    • autoscaling: verify public subnets for associatePublicIpAddress (#2077) (1e3d41e)
    • ec2: descriptive error message when selecting 0 subnets (#2025) (0de2206), closes #2011
    • lambda: use Alias ARN directly (#2091) (bc40494)
    • rds: remove Instance class (#2081) (6699fed)
    • secretsmanager: allow templated string creation (#2010) (4e105a3)
    • secretsmanager/ssm: verify presence of parameter name (#2066) (b93350f)
    • serverless: rename aws-serverless to aws-sam (#2074) (4a82f13)
    • stepfunctions: make Fail.error optional (#2042) (86e9d03)

    Code Refactoring

    Features

    • toolkit:: new 'cdk' package to allow executing the cli through npx cdk (#2113) (32bca05)
    • Python Support (#2009) (e6083fa)
    • core: present reason for cyclic references (#2061) (e82e208)
    • lambda: add support for log retention (#2067) (63132ec), closes #667 #667
    • rds: cluster retention, reference KMS key by object (#2063) (99ab46d)
    • secretsmanager/rds: support credential rotation (#2052) (bf79c82)
    • toolkit: introduce the concept of auto-deployed Stacks. (#2046) (abacc66)

    BREAKING CHANGES

    • lambda: cloudWatchLogsRetentionTimeDays in @aws-cdk/aws-cloudtrail
      now uses a logs.RetentionDays instead of a LogRetention.
    • core: stack._toCloudFormation method is now unavailable and is replaced by @aws-cdk/assert.SynthUtils.toCloudFormation(stack).
    • rds: replaced kmsKeyArn: string by kmsKey: kms.IEncryptionKey in DatabaseClusterProps
    • autoscaling: VpcNetwork.isPublicSubnet() has been renamed to
      VpcNetwork.isPublicSubnetIds().
    • serverless: renamed aws-serverless to aws-sam
    • ec2: vpcPlacement has been renamed to vpcSubnets
      on all objects, subnetsToUse has been renamed to subnetType.
      natGatewayPlacement has been renamed to natGatewaySubnets.
    • All properties of all structs (interfaces that do not begin with an "I") are now readonly since it is passed by-value and not by-ref (Python is the first language to require that). This may impact code in all languages that assumed it is possible to mutate these structs. Let us know if this blocks you in any way.
  • 0.26.0 - 2019-03-20

    Bug Fixes

    Code Refactoring

    Features

    • aws-cdk: support fixed repository name for DockerImageAsset (#2032) (942f938)
    • aws-rds: ability to add an existing security group to RDS cluster (#2021) (1f24336)
    • cfn2ts: make cfn2ts output TSDoc-compatible docblocks (#2000) (c6c66e9)
    • cfnspec: update to version 2.28.0 (#2035) (6a671f2)
    • cloudformation: allow specifying additional inputs for deploy Actions (#2020) (2d463be), closes #1247
    • core: can use Constructs to model applications (#1940) (32c2377), closes #1479
    • ecs: support private registry authentication (#1737) (11ed691), closes #1698
    • glue: add L2 resources for Database and Table (#1988) (3117cd3)
    • region-info: Model region-specific information (#1839) (946b444), closes #1282
    • servicediscovery: AWS Cloud Map construct library (#1804) (1187366)
    • ses: add constructs for email receiving (#1971) (3790858)
    • add more directories excluded and treated as source in the JetBrains script. (#1961) (a1df717)

    BREAKING CHANGES

    • “toCloudFormation” is now internal and should not be called directly. Instead use “app.synthesizeStack”
    • ecs: ContainerImage.fromDockerHub has been renamed to ContainerImage.fromRegistry.
    • rename Condition to CfnCondition.
    • rename StackElement to CfnElement.
    • rename Parameter to CfnParameter.
    • rename Resource to CfnResource.
    • rename Output to CfnOutput.
    • rename Mapping to CfnMapping.
    • rename Referenceable to CfnRefElement.
    • rename IConditionExpression to ICfnConditionExpression.
    • rename CfnReference to Reference.
    • rename Rule to CfnRule.
  • 0.25.3 - 2019-03-12
  • 0.25.2 - 2019-03-07
  • 0.25.1 - 2019-03-05
  • 0.25.0 - 2019-02-28
  • 0.24.1 - 2019-02-07
  • 0.24.0 - 2019-02-07
  • 0.23.0 - 2019-02-04
  • 0.22.0 - 2019-01-11
from @aws-cdk/cdk GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@matt-tyler matt-tyler closed this Jul 12, 2020
@matt-tyler matt-tyler deleted the snyk-upgrade-4126edc9d585ba6b4b32dc6621eb3555 branch July 12, 2020 14:42
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.