Releases: guardian/cdk
v62.5.3
v62.5.2
v62.5.1
v62.5.0
Minor Changes
-
6a41012: Remove dependency
@oclif/core.We were using
@oclif/coreto create a spinner with the new project CLI. See https://github.com/oclif/core/tree/main/src/ux#action.
We currently have some open vulnerabilities withminimatch, which@oclif/coreadds transitively.
This change removes@oclif/corein favour ofconsole.logstatements.
v62.4.0
Minor Changes
-
62c6674: Add a class for safe instantiation of managed policies with a specific structure of path
which enables them to be discoverable.This enables teams to define sets of permissions which are re-usable and can be used to
create credentials suitable to approach a given workload, consistent with the Principle
of Least Privilege. This is preferred to existing workflows where a wide-ranging
developer role is used.These can be reused in multiple locations, so, for example, an EC2 instance can be given
a specific set of permissions which are also identically available for a support task.
Changing one would then change the other, ensuring encapsulation of requirements in a
single place.
v62.3.5
Patch Changes
- abf37bc: Update aws-cdk to ^2.1107.0, aws-cdk-lib to ^2.240.0, constructs to ^10.5.1
- f0c4165: Update dependencies to resolve security vulnerability CVE-2026-26996.
- 4baf9ed: Update dependencies to resolve security vulnerability CVE-2026-26278.
v62.3.4
v62.3.3
v62.3.2
Patch Changes
-
c35e7db: Add the option to create a WAF parameter to GuEc2App.
Various projects use WAF to protect their load balancer. This is implemented by an SSM Parameter which is picked up by WAF configuration.
Rather than have multiple projects create the param, it is now possible to simply mark the GuEc2App as WAF enabled, and the param will be created with a standard format.