Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade @aws-sdk/client-secrets-manager from 3.370.0 to 3.389.0 #932

Merged
merged 1 commit into from
Mar 14, 2024

Conversation

isomeradmin
Copy link
Contributor

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.370.0 to 3.389.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 9 versions ahead of your current version.
  • The recommended version was released 22 days ago, on 2023-08-10.
Release notes
Package name: @aws-sdk/client-secrets-manager
  • 3.389.0 - 2023-08-10

    3.389.0(2023-08-10)

    Chores
    • credential-providers: use .browser extension for index (#3519) (b228e1b4)
    • scripts: use lerna from yarn instead of node_modules (#4835) (bd9cff75)
    Documentation Changes
    • client-transfer: Documentation updates for AW Transfer Family (314bf5b9)
    • client-cloudtrail: Documentation updates for CloudTrail. (7cf068be)
    New Features
    • clients: update client endpoints as of 2023-08-10 (f0f32c53)
    • client-elastic-load-balancing-v2: This release enables configuring security groups for Network Load Balancers (87ba343e)
    • client-connect: This release adds APIs to provision agents that are global / available in multiple AWS regions and distribute them across these regions by percentage. (cda89d3a)
    • client-secrets-manager: Add additional InvalidRequestException to list of possible exceptions for ListSecret. (f80ac692)
    • client-omics: This release adds instanceType to GetRunTask & ListRunTasks responses. (0224db7c)
    • experimentalIdentityAndAuth: add experimentalIdentityAndAuth flag (#5065) (07a70fbf)
    Bug Fixes

    For list of updated packages, view updated-packages.md in assets-3.389.0.zip

  • 3.388.0 - 2023-08-09

    3.388.0(2023-08-09)

    Documentation Changes
    • client-global-accelerator: Documentation update for dualstack EC2 endpoint support (f3db88f9)
    New Features
    • clients: update client endpoints as of 2023-08-09 (1f056b30)
    • client-sagemaker: This release adds support for cross account access for SageMaker Model Cards through AWS RAM. (1f562b46)
    • client-fsx: For FSx for Lustre, add new data repository task type, RELEASE_DATA_FROM_FILESYSTEM, to release files that have been archived to S3. For FSx for Windows, enable support for configuring and updating SSD IOPS, and for updating storage type. For FSx for OpenZFS, add new deployment type, MULTI_AZ_1. (9326b4df)
    • client-guardduty: Added autoEnable ALL to UpdateOrganizationConfiguration and DescribeOrganizationConfiguration APIs. (5571771b)
    • client-chime-sdk-voice: Updating CreatePhoneNumberOrder, UpdatePhoneNumber and BatchUpdatePhoneNumbers APIs, adding phone number name (861a8a85)
    Bug Fixes
    • token-providers:
      • use static version of bundled sso oidc client (#5067) (ba1b1458)
      • revert declaring dependencies from sso-oidc bundle (#5066) (f86ff342)
      • declare dependencies from sso-oidc bundle (#5064) (380482b3)

    For list of updated packages, view updated-packages.md in assets-3.388.0.zip

  • 3.387.0 - 2023-08-08

    3.387.0(2023-08-08)

    Chores
    New Features
    • clients:
      • update client endpoints as of 2023-08-08 (809a91b6)
      • allow client creation without configuration (#5060) (a9723dcb)
    • client-elasticache: Added support for cluster mode in online migration and test migration API (f0d3d51c)
    • client-service-catalog: Introduce support for HashiCorp Terraform Cloud in Service Catalog by addying TERRAFORM_CLOUD product type in CreateProduct and CreateProvisioningArtifact API. (27fef8f7)
    • client-backup: This release introduces a new logically air-gapped vault (Preview) in AWS Backup that stores immutable backup copies, which are locked by default and isolated with encryption using AWS owned keys. Logically air-gapped vault (Preview) allows secure recovery of application data across accounts. (9ab7f45a)

    For list of updated packages, view updated-packages.md in assets-3.387.0.zip

  • 3.386.0 - 2023-08-07

    3.386.0(2023-08-07)

    Chores
    Documentation Changes
    • client-rekognition: This release adds code snippets for Amazon Rekognition Custom Labels. (10120486)
    New Features
    • client-kinesis-video-archived-media: This release enables minimum of Images SamplingInterval to be as low as 200 milliseconds in Kinesis Video Stream Image feature. (5bbf9b20)
    • client-ivs-realtime: Add QUOTA_EXCEEDED and PUBLISHER_NOT_FOUND to EventErrorCode for stage health events. (19047c81)
    • client-kinesis-video: This release enables minimum of Images SamplingInterval to be as low as 200 milliseconds in Kinesis Video Stream Image feature. (29e5e50d)
    • client-detective: Updated the email validation regex to be in line with the TLD name specifications. (1a60c2e8)

    For list of updated packages, view updated-packages.md in assets-3.386.0.zip

  • 3.385.0 - 2023-08-04

    3.385.0(2023-08-04)

    Documentation Changes
    • client-acm-pca: Documentation correction for AWS Private CA (6a5d8006)
    • client-ecs: This is a documentation update to address various tickets. (2aecb8b8)
    New Features
    • clients: update client endpoints as of 2023-08-04 (54a679f8)
    • client-connect: Added a new API UpdateRoutingProfileAgentAvailabilityTimer to update agent availability timer of a routing profile. (a2d8d183)
    • client-sagemaker: Including DataCaptureConfig key in the Amazon Sagemaker Search's transform job object (126b1c6d)
    • client-datasync: Display cloud storage used capacity at a cluster level. (70146bec)
    Bug Fixes
    • token-providers: break dependency cycle with sso-oidc (#5049) (d6977c92)

    For list of updated packages, view updated-packages.md in assets-3.385.0.zip

  • 3.382.0 - 2023-08-01

    3.382.0(2023-08-01)

    Chores
    • util-endpoints: update aws partitions.json (f86c62ab)
    • endpoints: update endpoints model (1debb4dd)
    • models: update API models (9896e808)
    Documentation Changes
    New Features
    • client-medialive: AWS Elemental Link devices now report their Availability Zone. Link devices now support the ability to change their Availability Zone. (c6e9083c)
    • client-sagemaker: Add Stairs TrafficPattern and FlatInvocations to RecommendationJobStoppingConditions (aae65693)
    • client-database-migration-service: Adding new API describe-engine-versions which provides information about the lifecycle of a replication instance's version. (dac6d124)
    • client-internetmonitor: This release adds a new feature for Amazon CloudWatch Internet Monitor that enables customers to set custom thresholds, for performance and availability drops, for impact limited to a single city-network to trigger creation of a health event. (3eca91f5)
    • client-batch: This release adds support for price capacity optimized allocation strategy for Spot Instances. (be1dfe23)
    • client-rds: Added support for deleted clusters PiTR. (ee7aaf6b)
    • client-polly: Amazon Polly adds new French Belgian voice - Isabelle. Isabelle is available as Neural voice only. (913c968a)

    For list of updated packages, view updated-packages.md in assets-3.382.0.zip

  • 3.379.1 - 2023-07-28
  • 3.378.0 - 2023-07-26
  • 3.377.0 - 2023-07-25
  • 3.370.0 - 2023-07-13
from @aws-sdk/client-secrets-manager GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@isomeradmin isomeradmin requested a review from a team February 20, 2024 10:18
@seaerchin seaerchin force-pushed the snyk-upgrade-5980230304b017bcdd749ebe6d9251a9 branch from cd6d8f3 to 809038b Compare March 14, 2024 07:48
@dcshzj dcshzj merged commit 4fefcae into develop Mar 14, 2024
12 checks passed
@mergify mergify bot deleted the snyk-upgrade-5980230304b017bcdd749ebe6d9251a9 branch March 14, 2024 09:12
@seaerchin seaerchin mentioned this pull request Mar 21, 2024
5 tasks
seaerchin added a commit that referenced this pull request Mar 21, 2024
* build(deps): bump @aws-sdk/client-secrets-manager (#1218)

Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.501.0 to 3.533.0.
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-secrets-manager/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.533.0/clients/client-secrets-manager)

---
updated-dependencies:
- dependency-name: "@aws-sdk/client-secrets-manager"
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* fix: upgrade isomorphic-dompurify from 0.24.0 to 0.27.0 (#881)

Snyk has created this PR to upgrade isomorphic-dompurify from 0.24.0 to 0.27.0.

See this package in npm:
https://www.npmjs.com/package/isomorphic-dompurify

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>
Co-authored-by: seaerchin <[email protected]>

* fix: upgrade dd-trace from 4.7.0 to 4.11.0 (#922)

Snyk has created this PR to upgrade dd-trace from 4.7.0 to 4.11.0.

See this package in npm:
https://www.npmjs.com/package/dd-trace

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade @aws-sdk/client-amplify from 3.370.0 to 3.382.0 (#923)

Snyk has created this PR to upgrade @aws-sdk/client-amplify from 3.370.0 to 3.382.0.

See this package in npm:
https://www.npmjs.com/package/@aws-sdk/client-amplify

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade @aws-sdk/client-secrets-manager from 3.370.0 to 3.389.0 (#932)

Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.370.0 to 3.389.0.

See this package in npm:
https://www.npmjs.com/package/@aws-sdk/client-secrets-manager

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade aws-sdk from 2.1428.0 to 2.1450.0 (#948)

Snyk has created this PR to upgrade aws-sdk from 2.1428.0 to 2.1450.0.

See this package in npm:
https://www.npmjs.com/package/aws-sdk

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: package.json & package-lock.json to reduce vulnerabilities (#1161)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-INFLIGHT-6095116

Co-authored-by: snyk-bot <[email protected]>

* feat(pino): removes extraneous stuff (#1212)

* fix(logger): delete old files, shift to pino

* fix(pino-pretty): intsall as dev deps

* refactor(tracer): inject logs based on env

* fix(ggsrepair): delete outdated import

* fix(stats-spec): update error log

* build(deps): bump follow-redirects from 1.15.5 to 1.15.6 (#1221)

Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.5 to 1.15.6.
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/follow-redirects/follow-redirects/commit/35a517c5861d79dc8bff7db8626013d20b711b06"><code>35a517c</code></a> Release version 1.15.6 of the npm package.</li>
<li><a href="https://github.com/follow-redirects/follow-redirects/commit/c4f847f85176991f95ab9c88af63b1294de8649b"><code>c4f847f</code></a> Drop Proxy-Authorization across hosts.</li>
<li><a href="https://github.com/follow-redirects/follow-redirects/commit/8526b4a1b2ab3a2e4044299377df623a661caa76"><code>8526b4a</code></a> Use GitHub for disclosure.</li>
<li>See full diff in <a href="https://github.com/follow-redirects/follow-redirects/compare/v1.15.5...v1.15.6">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=follow-redirects&package-manager=npm_and_yarn&previous-version=1.15.5&new-version=1.15.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/isomerpages/isomercms-backend/network/alerts).

</details>

* chore(admin): convert manual release creation steps into automated script (#1209)

* chore(admin): convert manual release creation steps into automated script

* feat: prepare the draft release

* fix: correct spelling for "grouped"

* feat: extract and present deploy notes

* chore: slight comment update

* feat: extract tests and notes in one pass

* chore: add comment

* fix: fix invalid string concat in subshells (use file holders instead)

* feat: sync local tags to remote tags

* chore: more comments

* chore: remove empty line

* chore: add more comments

* fix: upgrade @aws-sdk/client-cloudwatch-logs from 3.501.0 to 3.521.0 (#1226)

Snyk has created this PR to upgrade @aws-sdk/client-cloudwatch-logs from 3.501.0 to 3.521.0.

See this package in npm:
https://www.npmjs.com/package/@aws-sdk/client-cloudwatch-logs

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade @aws-sdk/lib-dynamodb from 3.501.0 to 3.521.0 (#1225)

Snyk has created this PR to upgrade @aws-sdk/lib-dynamodb from 3.501.0 to 3.521.0.

See this package in npm:
https://www.npmjs.com/package/@aws-sdk/lib-dynamodb

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade aws-sdk from 2.1545.0 to 2.1565.0 (#1223)

Snyk has created this PR to upgrade aws-sdk from 2.1545.0 to 2.1565.0.

See this package in npm:
https://www.npmjs.com/package/aws-sdk

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* fix: upgrade @aws-sdk/client-dynamodb from 3.501.0 to 3.521.0 (#1224)

Snyk has created this PR to upgrade @aws-sdk/client-dynamodb from 3.501.0 to 3.521.0.

See this package in npm:
https://www.npmjs.com/package/@aws-sdk/client-dynamodb

See this project in Snyk:
https://app.snyk.io/org/isomer/project/676b9e26-cebf-4964-b7b3-d9843e3339ff?utm_source=github&utm_medium=referral&page=upgrade-pr

Co-authored-by: snyk-bot <[email protected]>

* perf(I/O): rm blocking fs calls (#1220)

## Problem

We have quite a number of blocking I/O calls that has lead to unwanted CPU spikes in the event pool thread. 

This PR scrapes any existence of I/O calls and ensures that there is no lingering sync fs calls made from node. 


## Solution
use `fs.promises` instead

Looking at the spike after running the site checker
### NOTE: initial spike in event loop delay is due to the startup push to staging environment, this is not due to the site checker calls that were made
![Screenshot 2024-03-19 at 2 30 02 PM](https://github.com/isomerpages/isomercms-backend/assets/42832651/10604267-a702-4764-9ba4-e428987a8317)



![Screenshot 2024-03-19 at 1 30 03 PM](https://github.com/isomerpages/isomercms-backend/assets/42832651/fd9432b0-c83d-4a34-9c56-3e62d5d23a37)

**Breaking Changes**

<!-- Does this PR contain any backward incompatible changes? If so, what are they and should there be special considerations for release? -->

- [ ] Yes - this PR contains breaking changes
  - Details ...
- [X] No - this PR is backwards compatible with ALL of the following feature flags in this [doc](https://www.notion.so/opengov/Existing-feature-flags-518ad2cdc325420893a105e88c432be5)

**Features**:


when running the site repair form:

- Details ...

**Improvements**:

- Details ...

**Bug Fixes**:

- Details ...

## Before & After Screenshots

**BEFORE**:

<!-- [insert screenshot here] -->

**AFTER**:

<!-- [insert screenshot here] -->

## Tests

- [ ] Run the following command from the command line: 
```
grep -rE '(accessSync|appendFileSync|chmodSync|chownSync|closeSync|copyFileSync|cpSync|existsSync|fchmodSync|fchownSync|fdatasyncSync|fstatSync|fsyncSync|ftruncateSync|futimesSync|lchmodSync|lchownSync|lutimesSync|linkSync|lstatSync|mkdirSync|mkdtempSync|opendirSync|openSync|readdirSync|readFileSync|readlinkSync|readSync|readvSync|realpathSync|renameSync|rmdirSync|rmSync|statSync|statfsSync|symlinkSync|truncateSync|unlinkSync|utimesSync|writeFileSync|writeSync|writevSync)\b' src 
```

the only results should be from the `GitFileSystemService.spec.ts` which is fine since this test file runs locally and not in prod line

- [ ] Submit a form [here](https://form.gov.sg/65e4a3d2c25a061b046f3f01) for a repo in staging efs, and assert that the attachments are sent properly

- [ ] submit the site create form 


## Deploy Notes

<!-- Notes regarding deployment of the contained body of work.  -->
<!-- These should note any new dependencies, new scripts, etc. -->

**New environment variables**:

- `env var` : env var details
    - [ ] added env var to 1PW + SSM script (`fetch_ssm_parameters.sh`)

**New scripts**:

- `script` : script details

**New dependencies**:

- `dependency` : dependency details

**New dev dependencies**:

- `dependency` : dependency details

* fix(tags): update tagging for dd (#1222)

* fix(tags): update tagging for dd

* fix(task-def): update to isomer

* fix(link checker): wrong error reported (#1227)

## Problem

when pages are empty, we currently throw a link checker error which trips up alarms 

it is ok for a page content to be empty (eg, newly created page)


## Solution

remove the existing errors being reported

**Breaking Changes**

<!-- Does this PR contain any backward incompatible changes? If so, what are they and should there be special considerations for release? -->

- [ ] Yes - this PR contains breaking changes
  - Details ...
- [ ] No - this PR is backwards compatible with ALL of the following feature flags in this [doc](https://www.notion.so/opengov/Existing-feature-flags-518ad2cdc325420893a105e88c432be5)

**Features**:

- Details ...

**Improvements**:

- Details ...

**Bug Fixes**:

- Details ...

## Before & After Screenshots

**BEFORE**:

<!-- [insert screenshot here] -->

**AFTER**:

<!-- [insert screenshot here] -->

## Tests

<!-- What tests should be run to confirm functionality? -->

## Deploy Notes

<!-- Notes regarding deployment of the contained body of work.  -->
<!-- These should note any new dependencies, new scripts, etc. -->

**New environment variables**:

- `env var` : env var details
    - [ ] added env var to 1PW + SSM script (`fetch_ssm_parameters.sh`)

**New scripts**:

- `script` : script details

**New dependencies**:

- `dependency` : dependency details

**New dev dependencies**:

- `dependency` : dependency details

* chore: bump version to v0.72.0

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Hsu Zhong Jun <[email protected]>
Co-authored-by: Isomer Admin <[email protected]>
Co-authored-by: snyk-bot <[email protected]>
Co-authored-by: Timothee Groleau <[email protected]>
Co-authored-by: Kishore <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants