Merge pull request #1636 from aligent/fix/aikido-security-update-packages-21158889-otdv

[Aikido] Fix security issue in aws-cdk-lib via minor version upgrade from 2.235.1 to 2.245.0

Author: TheOrangePuff

.changeset/bot-pr-1636.md

@@ -0,0 +1,18 @@
+---
+"@aligent/cdk-aspects": patch
+"@aligent/cdk-basic-auth": patch
+"@aligent/cdk-cloudfront-security-headers": patch
+"@aligent/cdk-domain-hosting": patch
+"@aligent/cdk-esbuild": patch
+"@aligent/cdk-geoip-redirect": patch
+"@aligent/cdk-graphql-mesh-server": patch
+"@aligent/cdk-header-change-detection": patch
+"@aligent/cdk-prerender-proxy": patch
+"@aligent/cdk-rabbitmq": patch
+"@aligent/cdk-shared-vpc": patch
+"@aligent/cdk-static-hosting": patch
+"@aligent/cdk-step-function-from-file": patch
+"@aligent/cdk-waf": patch
+---
+
+[Aikido] Fix security issue in aws-cdk-lib via minor version upgrade from 2.235.1 to 2.245.0

yarn.lock

@@ -353,17 +353,17 @@ __metadata:
   languageName: unknown
   linkType: soft
 
-"@aws-cdk/asset-awscli-v1@npm:2.2.261":
-  version: 2.2.261
-  resolution: "@aws-cdk/asset-awscli-v1@npm:2.2.261"
-  checksum: 10c0/56a5ab5bed7a26606e7564af04de4e6acfc14bfd38ade99f7efe2dc0bee069404eb1887879ea3bec62bd35b730b04939c3e036a94128b4a618f3cc5929b31774
+"@aws-cdk/asset-awscli-v1@npm:2.2.263":
+  version: 2.2.263
+  resolution: "@aws-cdk/asset-awscli-v1@npm:2.2.263"
+  checksum: 10c0/d84d00fa1f576a7774a15f30431675fe174e2d42369117bf6b336c33b89525d61628364c084460029b23fa404b73474559af2274773e9e4f06be962f322690ff
   languageName: node
   linkType: hard
 
-"@aws-cdk/asset-node-proxy-agent-v6@npm:^2.1.0":
-  version: 2.1.0
-  resolution: "@aws-cdk/asset-node-proxy-agent-v6@npm:2.1.0"
-  checksum: 10c0/1ac7bccf82afee69c05241a5ad66345fbd468678ce633bb43c5921c7241a3186231b3b65f9ac6b9924933349c826a9470c79a3ddf14a03fbfce43f14c4d957f2
+"@aws-cdk/asset-node-proxy-agent-v6@npm:^2.1.1":
+  version: 2.1.1
+  resolution: "@aws-cdk/asset-node-proxy-agent-v6@npm:2.1.1"
+  checksum: 10c0/cb9684d0e4693c01ce9698522c268acf804d61a0ff665958accb58914c547ce54690861c8b58dbb2bbf12cc0c7e7215ccbb4f0edd402e8fd9cfa3b32e48218ca
   languageName: node
   linkType: hard
 
@@ -399,7 +399,19 @@ __metadata:
   languageName: node
   linkType: hard
 
-"@aws-cdk/cloud-assembly-schema@npm:^48.20.0, @aws-cdk/cloud-assembly-schema@npm:^48.6.0":
+"@aws-cdk/cloud-assembly-api@npm:^2.2.0":
+  version: 2.2.1
+  resolution: "@aws-cdk/cloud-assembly-api@npm:2.2.1"
+  dependencies:
+    jsonschema: "npm:~1.4.1"
+    semver: "npm:^7.7.4"
+  peerDependencies:
+    "@aws-cdk/cloud-assembly-schema": ">=53.8.0"
+  checksum: 10c0/ef2ddb3e0e03e05039f76cdca856eb2c7ab240ca125513be0085c33d2354e62a2431a74f9334564af87cda26f8e0658f507fc130c34568ebf572bd646d3ada78
+  languageName: node
+  linkType: hard
+
+"@aws-cdk/cloud-assembly-schema@npm:^48.6.0":
   version: 48.20.0
   resolution: "@aws-cdk/cloud-assembly-schema@npm:48.20.0"
   dependencies:
@@ -409,6 +421,16 @@ __metadata:
   languageName: node
   linkType: hard
 
+"@aws-cdk/cloud-assembly-schema@npm:^53.0.0":
+  version: 53.9.0
+  resolution: "@aws-cdk/cloud-assembly-schema@npm:53.9.0"
+  dependencies:
+    jsonschema: "npm:~1.4.1"
+    semver: "npm:^7.7.4"
+  checksum: 10c0/1ebdea6d20ac4ba7daece77968a46baf6c55c813175d18113a70ebbc5d0b9797004331dcfda0c095ffa30a67d2286782c0b9d44d74e42fda392d05bff6918c99
+  languageName: node
+  linkType: hard
+
 "@aws-crypto/crc32@npm:5.2.0":
   version: 5.2.0
   resolution: "@aws-crypto/crc32@npm:5.2.0"
@@ -6289,26 +6311,27 @@ __metadata:
   linkType: hard
 
 "aws-cdk-lib@npm:^2.168.0, aws-cdk-lib@npm:^2.201.0":
-  version: 2.235.1
-  resolution: "aws-cdk-lib@npm:2.235.1"
+  version: 2.245.0
+  resolution: "aws-cdk-lib@npm:2.245.0"
   dependencies:
-    "@aws-cdk/asset-awscli-v1": "npm:2.2.261"
-    "@aws-cdk/asset-node-proxy-agent-v6": "npm:^2.1.0"
-    "@aws-cdk/cloud-assembly-schema": "npm:^48.20.0"
+    "@aws-cdk/asset-awscli-v1": "npm:2.2.263"
+    "@aws-cdk/asset-node-proxy-agent-v6": "npm:^2.1.1"
+    "@aws-cdk/cloud-assembly-api": "npm:^2.2.0"
+    "@aws-cdk/cloud-assembly-schema": "npm:^53.0.0"
     "@balena/dockerignore": "npm:^1.0.2"
     case: "npm:1.6.3"
     fs-extra: "npm:^11.3.3"
     ignore: "npm:^5.3.2"
     jsonschema: "npm:^1.5.0"
     mime-types: "npm:^2.1.35"
-    minimatch: "npm:^3.1.2"
+    minimatch: "npm:^10.2.3"
     punycode: "npm:^2.3.1"
-    semver: "npm:^7.7.3"
+    semver: "npm:^7.7.4"
     table: "npm:^6.9.0"
-    yaml: "npm:1.10.2"
+    yaml: "npm:1.10.3"
   peerDependencies:
-    constructs: ^10.0.0
-  checksum: 10c0/8e9c657c7e151c1d35e1ffff03142ef26469192c2cf2d38b8ede8d9cc2d158d953898716a19e8fe37f286b173917c07e277a50dbbc9621c170d0da8509372685
+    constructs: ^10.5.0
+  checksum: 10c0/af558d5355524b977d363650aab2902ea7b5337319a181babc1ab10180c8c9e0f481f51661012c201f077bf1b21ac851c5396912a55baff9876ce370a4e53c1d
   languageName: node
   linkType: hard
 
@@ -9381,7 +9404,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"minimatch@npm:^10.1.1":
+"minimatch@npm:^10.1.1, minimatch@npm:^10.2.3":
   version: 10.2.4
   resolution: "minimatch@npm:10.2.4"
   dependencies:
@@ -10426,6 +10449,15 @@ __metadata:
   languageName: node
   linkType: hard
 
+"semver@npm:^7.7.4":
+  version: 7.7.4
+  resolution: "semver@npm:7.7.4"
+  bin:
+    semver: bin/semver.js
+  checksum: 10c0/5215ad0234e2845d4ea5bb9d836d42b03499546ddafb12075566899fc617f68794bb6f146076b6881d755de17d6c6cc73372555879ec7dce2c2feee947866ad2
+  languageName: node
+  linkType: hard
+
 "set-blocking@npm:^2.0.0":
   version: 2.0.0
   resolution: "set-blocking@npm:2.0.0"
@@ -11275,14 +11307,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"yaml@npm:1.10.2":
-  version: 1.10.2
-  resolution: "yaml@npm:1.10.2"
-  checksum: 10c0/5c28b9eb7adc46544f28d9a8d20c5b3cb1215a886609a2fd41f51628d8aaa5878ccd628b755dbcd29f6bb4921bd04ffbc6dcc370689bb96e594e2f9813d2605f
-  languageName: node
-  linkType: hard
-
-"yaml@npm:^1.10.0":
+"yaml@npm:1.10.3, yaml@npm:^1.10.0":
   version: 1.10.3
   resolution: "yaml@npm:1.10.3"
   checksum: 10c0/c309ff85a0a569a981d71ab9cf0fef68672a16b9cdf40639d1c3b30034f6cd16ee428602bd6d64ecf006f8c8bee499023cac236538f79898aa99fb5db529a2ed