From 7f4ba32d0febcdcf44dad6545bcc620792ce1fc3 Mon Sep 17 00:00:00 2001 From: Michael Lin Date: Wed, 18 Sep 2024 14:08:51 -0700 Subject: [PATCH] Update to version v1.9.3 --- CHANGELOG.md | 41 +- CONTRIBUTING.md | 2 + NOTICE.txt | 613 +++++++++++++++++- .../kds-lambda-consumer/package-lock.json | 27 +- .../lambda/kds-lambda-consumer/package.json | 5 +- .../msk-lambda-consumer/package-lock.json | 27 +- .../lambda/msk-lambda-consumer/package.json | 5 +- .../lambda/msk-lambda-kdf/package-lock.json | 247 +++---- source/lambda/msk-lambda-kdf/package.json | 9 +- .../taxi-fare-endpoint/package-lock.json | 27 +- source/lambda/taxi-fare-endpoint/package.json | 5 +- source/package-lock.json | 13 +- source/package.json | 5 +- 13 files changed, 818 insertions(+), 208 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 461aa85..5baf981 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,26 +5,37 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [1.9.3] - 2024-09-19 + +### Security + +- Patched path-to-regex and micromatch vulnerabilities + ## [1.9.2] - 2024-08-05 ### Security + - Patched fast-xml-parser vulnerability ## [1.9.1] - 2024-06-13 ### Added + - Onboarded to CloudFormation Guard scanning -### Updated +### Fixed + - Upgraded and patched dependencies ## [1.9.0] - 2024-02-21 ### Added + - Encrypt Glue Data Catalog data at-rest - Add custom CloudWatch dashboard -### Updated +### Fixed + - Fix SASL authentication deployment - Upgrade MSK to 3.5.1 - Upgrade Apache Flink to Flink 1.15 @@ -33,12 +44,13 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.8.1] - 2023-10-18 -### Updated +### Fixed + - Patch critical security vulnerabilities ## [1.8.0] - 2023-09-14 -### Updated +### Fixed - Migrate to AWS SDKv3 - Migrate to CDKv2 @@ -47,27 +59,28 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.7.8] - 2023-07-13 -### Updated +### Fixed + - Set urllib3 version to address security issue - Remove vm2 dependency - Patch word-wrap and tough-cookie vulnerability ## [1.7.7] - 2023-06-14 -### Updated +### Fixed - python package security patching - (`requests` bumped to v2.31.0) - Changed logical ID of AWS AppRegistry application and attribute group ## [1.7.6] - 2023-05-16 -### Updated +### Fixed - npm package security patching (vm2) ## [1.7.5] - 2023-04-20 -### Updated +### Fixed - npm package security patching (vm2) @@ -82,18 +95,18 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ### Fixed -- Update AWS-SDK V2 that addresses the security issue identified in xml2js (https://github.com/aws/aws-sdk-js/issues/4387) +- Update AWS-SDK V2 that addresses the security issue identified in [xml2js](https://github.com/aws/aws-sdk-js/issues/4387) ## [1.7.2] - 2023-01-10 -### Updated +### Fixed - npm package security patching (json5) - python security patching (requests) ## [1.7.1] - 2022-12-19 -### Updated +### Fixed - Fixes [Issue #74](https://github.com/aws-solutions/streaming-data-solution-for-amazon-kinesis-and-amazon-msk/issues/74). - AppRegistry application name now has 'App' prepended to it, to prevent any failures if the stack name starts with 'AWS'. @@ -102,7 +115,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.7.0] - 2022-11-17 -### Updated +### Fixed - [AWS Service Catalog AppRegistry](https://docs.aws.amazon.com/servicecatalog/latest/arguide/intro-app-registry.html) integration. When a stack is deployed, an Service Catalog application is created where all associated resources collections and attribute groups can be viewed. - To monitor costs of resources used by the stack, the tag `AppManagerCFNStackKey` is added to the solution by AWS Systems Manager Application Manager. @@ -110,13 +123,13 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [1.6.2] - 2022-09-28 -### Updated +### Fixed - npm package security patching (vm2) ## [1.6.1] - 2022-07-14 -### Updated +### Fixed - npm package security patching (minimist, vm2) - Gson 2.8.9 diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md index ddac4a2..0cce930 100644 --- a/CONTRIBUTING.md +++ b/CONTRIBUTING.md @@ -55,3 +55,5 @@ If you discover a potential security issue in this project we ask that you notif ## Licensing See the [LICENSE](https://github.com/aws-solutions/streaming-data-solution-for-amazon-kinesis-and-amazon-msk/blob/main/LICENSE.txt) file for our project's licensing. We will ask you to confirm the licensing of your contribution. + +We may ask you to sign a [Contributor License Agreement (CLA)](https://en.wikipedia.org/wiki/Contributor_License_Agreement) for larger changes. diff --git a/NOTICE.txt b/NOTICE.txt index be888f5..fb4f055 100644 --- a/NOTICE.txt +++ b/NOTICE.txt @@ -1,4 +1,5 @@ Streaming Data Solution for Amazon Kinesis and Streaming Data Solution for Amazon MSK + Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. Licensed under the Apache License Version 2.0 (the "License"). You may not use this file except in compliance with the License. A copy of the License is located at http://www.apache.org/licenses/ @@ -6,7 +7,6 @@ or in the "license" file accompanying this file. This file is distributed on an WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, express or implied. See the License for the specific language governing permissions and limitations under the License. - ********************** THIRD PARTY COMPONENTS ********************** @@ -79,3 +79,614 @@ cdk-nag under the Apache License 2.0 typing_extensions under Python Software Foundation License boolean.py under BSD-2-Clause license-expression under Apache License Version 2.0 +com.amazonaws/amazon-kinesis-client under the Apache-2.0 license +com.amazonaws/amazon-kinesis-producer under the Apache-2.0 license +com.amazonaws/aws-java-sdk-cloudwatch under the Apache-2.0 license +com.amazonaws/aws-java-sdk-core under the Apache-2.0 license +com.amazonaws/aws-java-sdk-dynamodb under the Apache-2.0 license +com.amazonaws/aws-java-sdk-kinesis under the Apache-2.0 license +com.amazonaws/aws-java-sdk-kms under the Apache-2.0 license +com.amazonaws/aws-java-sdk-s3 under the Apache-2.0 license +com.amazonaws/aws-java-sdk-sts under the Apache-2.0 license +com.amazonaws/jmespath-java under the Apache-2.0 license +com.damnhandy/handy-uri-templates under the Apache-2.0 license +com.demo/aws-kda-flink-ml under the license +com.demo/aws-kpl-demo under the license +com.fasterxml.jackson.core/jackson-annotations under the Apache-2.0 license +com.fasterxml.jackson.core/jackson-core under the Apache-2.0 license +com.fasterxml.jackson.core/jackson-databind under the Apache-2.0 license +com.fasterxml.jackson.dataformat/jackson-dataformat-cbor under the Apache-2.0 license +com.github.erosb/everit-json-schema under the Apache-2.0 license +com.github.luben/zstd-jni under the BSD-2-Clause license +com.google.api.grpc/proto-google-common-protos under the Apache-2.0 license +com.google.code.findbugs/jsr305 under the Apache-2.0 license +com.google.errorprone/error_prone_annotations under the Apache-2.0 license +com.google.guava/failureaccess under the Apache-2.0 license +com.google.guava/guava under the Apache-2.0 license +com.google.guava/listenablefuture under the Apache-2.0 license +com.google.j2objc/j2objc-annotations under the Apache-2.0 license +com.google.jimfs/jimfs under the Apache-2.0 license +com.google.protobuf/protobuf-java under the BSD-3-Clause license +com.google.re2j/re2j under the Go License license +com.kjetland/mbknor-jackson-jsonschema_2.12 under the MIT license +com.squareup.okhttp3/okhttp under the Apache-2.0 license +com.squareup.okio/okio-fakefilesystem-jvm under the Apache-2.0 license +com.squareup.okio/okio-fakefilesystem under the Apache-2.0 license +com.squareup.okio/okio-jvm under the Apache-2.0 license +com.squareup.okio/okio under the Apache-2.0 license +com.squareup.wire/wire-compiler under the Apache-2.0 license +com.squareup.wire/wire-grpc-client-jvm under the Apache-2.0 license +com.squareup.wire/wire-grpc-server-generator under the Apache-2.0 license +com.squareup.wire/wire-java-generator under the Apache-2.0 license +com.squareup.wire/wire-kotlin-generator under the Apache-2.0 license +com.squareup.wire/wire-profiles under the Apache-2.0 license +com.squareup.wire/wire-runtime-jvm under the Apache-2.0 license +com.squareup.wire/wire-runtime under the Apache-2.0 license +com.squareup.wire/wire-schema-jvm under the Apache-2.0 license +com.squareup.wire/wire-schema under the Apache-2.0 license +com.squareup.wire/wire-swift-generator under the Apache-2.0 license +com.squareup/javapoet under the Apache-2.0 license +com.squareup/kotlinpoet under the Apache-2.0 license +commons-codec/commons-codec under the Apache-2.0 license +commons-digester/commons-digester under the Apache-2.0 license +commons-io/commons-io under the Apache-2.0 license +commons-lang/commons-lang under the Apache-2.0 license +commons-logging/commons-logging under the Apache-2.0 license +commons-validator/commons-validator under the Apache-2.0 license +io.github.classgraph/classgraph under the MIT license +io.netty/netty-buffer under the Apache-2.0 license +io.netty/netty-codec-http2 under the Apache-2.0 license +io.netty/netty-codec-http under the Apache-2.0 license +io.netty/netty-codec under the Apache-2.0 license +io.netty/netty-common under the Apache-2.0 license +io.netty/netty-handler under the Apache-2.0 license +io.netty/netty-resolver under the Apache-2.0 license +io.netty/netty-transport-classes-epoll under the Apache-2.0 license +io.netty/netty-transport-native-unix-common under the Apache-2.0 license +io.netty/netty-transport under the Apache-2.0 license +io.outfoxx/swiftpoet under the Apache-2.0 license +javax.validation/validation-api under the Apache-2.0 license +joda-time/joda-time under the Apache-2.0 license +org.apache.avro/avro under the Apache-2.0 license +org.apache.commons/commons-collections4 under the Apache-2.0 license +org.apache.commons/commons-compress under the Apache-2.0 license +org.apache.commons/commons-lang3 under the Apache-2.0 license +org.apache.httpcomponents/httpclient under the Apache-2.0 license +org.apache.httpcomponents/httpcore under the Apache-2.0 license +org.apache.kafka/kafka-clients under the Apache-2.0 license +org.checkerframework/checker-qual under the MIT license +org.jetbrains.kotlin/kotlin-reflect under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-script-runtime under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-scripting-common under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-scripting-compiler-impl-embeddable under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-scripting-jvm under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-stdlib-common under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-stdlib-jdk7 under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-stdlib-jdk8 under the Apache-2.0 license +org.jetbrains.kotlin/kotlin-stdlib under the Apache-2.0 license +org.jetbrains.kotlinx/kotlinx-coroutines-core-jvm under the Apache-2.0 license +org.jetbrains.kotlinx/kotlinx-datetime-jvm under the Apache-2.0 license +org.jetbrains.kotlinx/kotlinx-serialization-core-jvm under the Apache-2.0 license +org.jetbrains/annotations under the Apache-2.0 license +org.json/json under the Public Domain license +org.lz4/lz4-java under the Apache-2.0 license +org.reactivestreams/reactive-streams under the MIT-0 license +org.scala-lang/scala-library under the Apache-2.0 license +org.slf4j/slf4j-api under the MIT license +org.slf4j/slf4j-simple under the MIT license +org.xerial.snappy/snappy-java under the Apache-2.0 license +software.amazon.awssdk/apache-client under the Apache-2.0 license +software.amazon.awssdk/arns under the Apache-2.0 license +software.amazon.awssdk/auth under the Apache-2.0 license +software.amazon.awssdk/aws-core under the Apache-2.0 license +software.amazon.awssdk/aws-json-protocol under the Apache-2.0 license +software.amazon.awssdk/aws-query-protocol under the Apache-2.0 license +software.amazon.awssdk/checksums-spi under the Apache-2.0 license +software.amazon.awssdk/checksums under the Apache-2.0 license +software.amazon.awssdk/endpoints-spi under the Apache-2.0 license +software.amazon.awssdk/glue under the Apache-2.0 license +software.amazon.awssdk/http-auth-aws under the Apache-2.0 license +software.amazon.awssdk/http-auth-spi under the Apache-2.0 license +software.amazon.awssdk/http-auth under the Apache-2.0 license +software.amazon.awssdk/http-client-spi under the Apache-2.0 license +software.amazon.awssdk/identity-spi under the Apache-2.0 license +software.amazon.awssdk/json-utils under the Apache-2.0 license +software.amazon.awssdk/metrics-spi under the Apache-2.0 license +software.amazon.awssdk/netty-nio-client under the Apache-2.0 license +software.amazon.awssdk/profiles under the Apache-2.0 license +software.amazon.awssdk/protocol-core under the Apache-2.0 license +software.amazon.awssdk/regions under the Apache-2.0 license +software.amazon.awssdk/sdk-core under the Apache-2.0 license +software.amazon.awssdk/sts under the Apache-2.0 license +software.amazon.awssdk/third-party-jackson-core under the Apache-2.0 license +software.amazon.awssdk/url-connection-client under the Apache-2.0 license +software.amazon.awssdk/utils under the Apache-2.0 license +software.amazon.eventstream/eventstream under the Apache-2.0 license +software.amazon.glue/schema-registry-build-tools under the Apache-2.0 license +software.amazon.glue/schema-registry-common under the Apache-2.0 license +software.amazon.glue/schema-registry-serde under the Apache-2.0 license +@aashutoshrathi/word-wrap under the MIT license +@ampproject/remapping under the Apache-2.0 license +@aws-cdk/asset-awscli-v1 under the Apache-2.0 license +@aws-cdk/asset-kubectl-v20 under the Apache-2.0 license +@aws-cdk/asset-node-proxy-agent-v6 under the Apache-2.0 license +@aws-cdk/aws-servicecatalogappregistry-alpha under the Apache-2.0 license +@aws-crypto/crc32 under the Apache-2.0 license +@aws-crypto/ie11-detection under the Apache-2.0 license +@aws-crypto/sha256-browser under the Apache-2.0 license +@aws-crypto/sha256-js under the Apache-2.0 license +@aws-crypto/supports-web-crypto under the Apache-2.0 license +@aws-crypto/util under the Apache-2.0 license +@aws-sdk/client-firehose under the Apache-2.0 license +@aws-sdk/client-sso-oidc under the Apache-2.0 license +@aws-sdk/client-sso under the Apache-2.0 license +@aws-sdk/client-sts under the Apache-2.0 license +@aws-sdk/credential-provider-env under the Apache-2.0 license +@aws-sdk/credential-provider-ini under the Apache-2.0 license +@aws-sdk/credential-provider-node under the Apache-2.0 license +@aws-sdk/credential-provider-process under the Apache-2.0 license +@aws-sdk/credential-provider-sso under the Apache-2.0 license +@aws-sdk/credential-provider-web-identity under the Apache-2.0 license +@aws-sdk/middleware-host-header under the Apache-2.0 license +@aws-sdk/middleware-logger under the Apache-2.0 license +@aws-sdk/middleware-recursion-detection under the Apache-2.0 license +@aws-sdk/middleware-sdk-sts under the Apache-2.0 license +@aws-sdk/middleware-signing under the Apache-2.0 license +@aws-sdk/middleware-user-agent under the Apache-2.0 license +@aws-sdk/token-providers under the Apache-2.0 license +@aws-sdk/types under the Apache-2.0 license +@aws-sdk/util-endpoints under the Apache-2.0 license +@aws-sdk/util-locate-window under the Apache-2.0 license +@aws-sdk/util-user-agent-browser under the Apache-2.0 license +@aws-sdk/util-user-agent-node under the Apache-2.0 license +@aws-sdk/util-utf8-browser under the Apache-2.0 license +@aws-solutions-constructs/core under the Apache-2.0 license +@babel/code-frame under the MIT license +@babel/compat-data under the MIT license +@babel/generator under the MIT license +@babel/helper-compilation-targets under the MIT license +@babel/helper-environment-visitor under the MIT license +@babel/helper-function-name under the MIT license +@babel/helper-hoist-variables under the MIT license +@babel/helper-module-imports under the MIT license +@babel/helper-module-transforms under the MIT license +@babel/helper-plugin-utils under the MIT license +@babel/helper-simple-access under the MIT license +@babel/helper-split-export-declaration under the MIT license +@babel/helper-string-parser under the MIT license +@babel/helper-validator-identifier under the MIT license +@babel/helper-validator-option under the MIT license +@babel/helpers under the MIT license +@babel/highlight under the MIT license +@babel/parser under the MIT license +@babel/plugin-syntax-async-generators under the MIT license +@babel/plugin-syntax-bigint under the MIT license +@babel/plugin-syntax-class-properties under the MIT license +@babel/plugin-syntax-import-meta under the MIT license +@babel/plugin-syntax-json-strings under the MIT license +@babel/plugin-syntax-jsx under the MIT license +@babel/plugin-syntax-logical-assignment-operators under the MIT license +@babel/plugin-syntax-nullish-coalescing-operator under the MIT license +@babel/plugin-syntax-numeric-separator under the MIT license +@babel/plugin-syntax-object-rest-spread under the MIT license +@babel/plugin-syntax-optional-catch-binding under the MIT license +@babel/plugin-syntax-optional-chaining under the MIT license +@babel/plugin-syntax-top-level-await under the MIT license +@babel/plugin-syntax-typescript under the MIT license +@babel/template under the MIT license +@babel/traverse under the MIT license +@balena/dockerignore under the Apache-2.0 license +@bcoe/v8-coverage under the MIT license +@eslint-community/eslint-utils under the MIT license +@eslint-community/regexpp under the MIT license +@eslint/eslintrc under the MIT license +@eslint/js under the MIT license +@humanwhocodes/config-array under the Apache-2.0 license +@humanwhocodes/module-importer under the Apache-2.0 license +@humanwhocodes/object-schema under the BSD-3-Clause license +@istanbuljs/load-nyc-config under the ISC license +@istanbuljs/schema under the MIT license +@jest/console under the MIT license +@jest/environment under the MIT license +@jest/expect-utils under the MIT license +@jest/expect under the MIT license +@jest/fake-timers under the MIT license +@jest/globals under the MIT license +@jest/reporters under the MIT license +@jest/schemas under the MIT license +@jest/source-map under the MIT license +@jest/test-result under the MIT license +@jest/test-sequencer under the MIT license +@jest/transform under the MIT license +@jridgewell/gen-mapping under the MIT license +@jridgewell/resolve-uri under the MIT license +@jridgewell/set-array under the MIT license +@jridgewell/sourcemap-codec under the MIT license +@jridgewell/trace-mapping under the MIT license +@nodelib/fs.scandir under the MIT license +@nodelib/fs.stat under the MIT license +@nodelib/fs.walk under the MIT license +@sinclair/typebox under the MIT license +@sinonjs/commons under the BSD-3-Clause license +@sinonjs/samsam under the BSD-3-Clause license +@sinonjs/text-encoding under the (Unlicense OR Apache-2.0) license +@smithy/abort-controller under the Apache-2.0 license +@smithy/config-resolver under the Apache-2.0 license +@smithy/credential-provider-imds under the Apache-2.0 license +@smithy/eventstream-codec under the Apache-2.0 license +@smithy/fetch-http-handler under the Apache-2.0 license +@smithy/hash-node under the Apache-2.0 license +@smithy/invalid-dependency under the Apache-2.0 license +@smithy/is-array-buffer under the Apache-2.0 license +@smithy/middleware-content-length under the Apache-2.0 license +@smithy/middleware-endpoint under the Apache-2.0 license +@smithy/middleware-retry under the Apache-2.0 license +@smithy/middleware-serde under the Apache-2.0 license +@smithy/middleware-stack under the Apache-2.0 license +@smithy/node-config-provider under the Apache-2.0 license +@smithy/node-http-handler under the Apache-2.0 license +@smithy/property-provider under the Apache-2.0 license +@smithy/protocol-http under the Apache-2.0 license +@smithy/querystring-builder under the Apache-2.0 license +@smithy/querystring-parser under the Apache-2.0 license +@smithy/service-error-classification under the Apache-2.0 license +@smithy/shared-ini-file-loader under the Apache-2.0 license +@smithy/signature-v4 under the Apache-2.0 license +@smithy/smithy-client under the Apache-2.0 license +@smithy/url-parser under the Apache-2.0 license +@smithy/util-base64 under the Apache-2.0 license +@smithy/util-body-length-browser under the Apache-2.0 license +@smithy/util-body-length-node under the Apache-2.0 license +@smithy/util-buffer-from under the Apache-2.0 license +@smithy/util-config-provider under the Apache-2.0 license +@smithy/util-defaults-mode-browser under the Apache-2.0 license +@smithy/util-defaults-mode-node under the Apache-2.0 license +@smithy/util-hex-encoding under the Apache-2.0 license +@smithy/util-middleware under the Apache-2.0 license +@smithy/util-retry under the Apache-2.0 license +@smithy/util-stream under the Apache-2.0 license +@smithy/util-uri-escape under the Apache-2.0 license +@smithy/util-utf8 under the Apache-2.0 license +@types/babel__core under the MIT license +@types/babel__generator under the MIT license +@types/babel__template under the MIT license +@types/babel__traverse under the MIT license +@types/graceful-fs under the MIT license +@types/istanbul-lib-coverage under the MIT license +@types/istanbul-lib-report under the MIT license +@types/istanbul-reports under the MIT license +@types/jest under the MIT license +@types/json-schema under the MIT license +@types/node under the MIT license +@types/prettier under the MIT license +@types/semver under the MIT license +@types/sinon under the MIT license +@types/sinonjs__fake-timers under the MIT license +@types/stack-utils under the MIT license +@types/yargs-parser under the MIT license +@types/yargs under the MIT license +@typescript-eslint/eslint-plugin under the MIT license +@typescript-eslint/scope-manager under the MIT license +@typescript-eslint/type-utils under the MIT license +@typescript-eslint/typescript-estree under the BSD-2-Clause license +@typescript-eslint/visitor-keys under the MIT license +@ungap/structured-clone under the ISC license +acorn-jsx under the MIT license +acorn under the MIT license +ajv under the MIT license +ansi-escapes under the MIT license +ansi-regex under the MIT license +ansi-styles under the MIT license +anymatch under the ISC license +aproba under the ISC license +are-we-there-yet under the ISC license +arg under the MIT license +argparse under the MIT license +array-union under the MIT license +assertion-error under the MIT license +astral-regex under the MIT license +aws-cdk under the Apache-2.0 license +aws-sdk-client-mock under the MIT license +babel-jest under the MIT license +babel-plugin-istanbul under the BSD-3-Clause license +babel-plugin-jest-hoist under the MIT license +babel-preset-current-node-syntax under the MIT license +babel-preset-jest under the MIT license +balanced-match under the MIT license +big-integer under the Unlicense license +bowser under the MIT license +bplist-parser under the MIT license +brace-expansion under the MIT license +braces under the MIT license +browserslist under the MIT license +bs-logger under the MIT license +bser under the Apache-2.0 license +buffer-from under the MIT license +bundle-name under the MIT license +callsites under the MIT license +camelcase under the MIT license +caniuse-lite under the CC-BY-4.0 license +case under the (MIT OR GPL-3.0-or-later) license +chalk under the MIT license +char-regex under the MIT license +check-error under the MIT license +ci-info under the MIT license +cjs-module-lexer under the MIT license +cliui under the ISC license +co under the MIT license +code-point-at under the MIT license +collect-v8-coverage under the MIT license +color-convert under the MIT license +color-name under the MIT license +concat-map under the MIT license +console-control-strings under the ISC license +constructs under the Apache-2.0 license +convert-source-map under the MIT license +core-util-is under the MIT license +create-jest under the MIT license +create-require under the MIT license +cross-spawn under the MIT license +debug under the MIT license +dedent under the MIT license +deep-diff under the MIT license +deep-eql under the MIT license +deep-is under the MIT license +deepmerge under the MIT license +default-browser-id under the MIT license +default-browser under the MIT license +define-lazy-prop under the MIT license +delegates under the MIT license +detect-newline under the MIT license +diff-sequences under the MIT license +diff under the BSD-3-Clause license +dir-glob under the MIT license +doctrine under the Apache-2.0 license +electron-to-chromium under the ISC license +emittery under the MIT license +emoji-regex under the MIT license +error-ex under the MIT license +escalade under the MIT license +escape-string-regexp under the MIT license +eslint-config-prettier under the MIT license +eslint-plugin-prettier under the MIT license +eslint-scope under the BSD-2-Clause license +eslint-visitor-keys under the Apache-2.0 license +eslint under the MIT license +espree under the BSD-2-Clause license +esprima under the BSD-2-Clause license +esquery under the BSD-3-Clause license +esrecurse under the BSD-2-Clause license +estraverse under the BSD-2-Clause license +esutils under the BSD-2-Clause license +execa under the MIT license +exit under the MIT license +fast-deep-equal under the MIT license +fast-diff under the Apache-2.0 license +fast-glob under the MIT license +fast-json-stable-stringify under the MIT license +fast-levenshtein under the MIT license +fast-xml-parser under the MIT license +fastq under the ISC license +fb-watchman under the Apache-2.0 license +file-entry-cache under the MIT license +fill-range under the MIT license +find-up under the MIT license +flat-cache under the MIT license +flatted under the ISC license +fs-extra under the MIT license +fs.realpath under the ISC license +fs under the ISC license +fsevents under the MIT license +function-bind under the MIT license +gauge under the ISC license +gensync under the MIT license +get-caller-file under the ISC license +get-func-name under the MIT license +get-package-type under the MIT license +get-stream under the MIT license +glob-parent under the ISC license +glob under the ISC license +globby under the MIT license +graphemer under the MIT license +has-flag under the MIT license +has-unicode under the ISC license +hasown under the MIT license +html-escaper under the MIT license +human-signals under the Apache-2.0 license +ignore under the MIT license +import-fresh under the MIT license +import-local under the MIT license +imurmurhash under the MIT license +inflight under the ISC license +inherits under the ISC license +is-arrayish under the MIT license +is-core-module under the MIT license +is-docker under the MIT license +is-extglob under the MIT license +is-fullwidth-code-point under the MIT license +is-generator-fn under the MIT license +is-glob under the MIT license +is-inside-container under the MIT license +is-number under the MIT license +is-path-inside under the MIT license +is-stream under the MIT license +is-wsl under the MIT license +isarray under the MIT license +isexe under the ISC license +istanbul-lib-instrument under the BSD-3-Clause license +istanbul-lib-source-maps under the BSD-3-Clause license +jest-changed-files under the MIT license +jest-circus under the MIT license +jest-cli under the MIT license +jest-config under the MIT license +jest-diff under the MIT license +jest-docblock under the MIT license +jest-each under the MIT license +jest-environment-node under the MIT license +jest-get-type under the MIT license +jest-haste-map under the MIT license +jest-leak-detector under the MIT license +jest-matcher-utils under the MIT license +jest-message-util under the MIT license +jest-mock under the MIT license +jest-pnp-resolver under the MIT license +jest-regex-util under the MIT license +jest-resolve-dependencies under the MIT license +jest-resolve under the MIT license +jest-runner under the MIT license +jest-runtime under the MIT license +jest-snapshot under the MIT license +jest-util under the MIT license +jest-validate under the MIT license +jest-watcher under the MIT license +jest-worker under the MIT license +js-tokens under the MIT license +js-yaml under the MIT license +jsesc under the MIT license +json-buffer under the MIT license +json-parse-even-better-errors under the MIT license +json-schema-traverse under the MIT license +json-stable-stringify-without-jsonify under the MIT license +json5 under the MIT license +jsonfile under the MIT license +jsonschema under the MIT license +just-extend under the MIT license +keyv under the MIT license +kleur under the MIT license +leven under the MIT license +levn under the MIT license +lines-and-columns under the MIT license +locate-path under the MIT license +lodash.get under the MIT license +lodash.memoize under the MIT license +lodash.merge under the MIT license +lodash.truncate under the MIT license +lru-cache under the ISC license +make-dir under the MIT license +make-error under the ISC license +makeerror under the BSD-3-Clause license +merge-stream under the MIT license +merge2 under the MIT license +micromatch under the MIT license +mimic-fn under the MIT license +minimatch under the ISC license +ms under the MIT license +natural-compare under the MIT license +nise under the BSD-3-Clause license +node-int64 under the MIT license +node-releases under the MIT license +normalize-path under the MIT license +npm-run-path under the MIT license +npmlog under the ISC license +number-is-nan under the MIT license +object-assign under the MIT license +once under the ISC license +onetime under the MIT license +open under the MIT license +optionator under the MIT license +p-limit under the MIT license +p-locate under the MIT license +p-try under the MIT license +parent-module under the MIT license +parse-json under the MIT license +path-exists under the MIT license +path-is-absolute under the MIT license +path-key under the MIT license +path-parse under the MIT license +path-to-regexp under the MIT license +path-type under the MIT license +pathval under the MIT license +picocolors under the ISC license +picomatch under the MIT license +pirates under the MIT license +pkg-dir under the MIT license +prelude-ls under the MIT license +prettier-linter-helpers under the MIT license +pretty-format under the MIT license +process-nextick-args under the MIT license +prompts under the MIT license +punycode under the MIT license +pure-rand under the MIT license +queue-microtask under the MIT license +react-is under the MIT license +readable-stream under the MIT license +require-directory under the MIT license +require-from-string under the MIT license +resolve-cwd under the MIT license +resolve-from under the MIT license +resolve.exports under the MIT license +resolve under the MIT license +reusify under the MIT license +rimraf under the ISC license +run-applescript under the MIT license +run-parallel under the MIT license +safe-buffer under the MIT license +set-blocking under the ISC license +shebang-command under the MIT license +shebang-regex under the MIT license +signal-exit under the ISC license +sisteransi under the MIT license +slash under the MIT license +slice-ansi under the MIT license +sprintf-js under the BSD-3-Clause license +string-length under the MIT license +string-width under the MIT license +string_decoder under the MIT license +strip-ansi under the MIT license +strip-bom under the MIT license +strip-final-newline under the MIT license +strip-json-comments under the MIT license +strnum under the MIT license +supports-color under the MIT license +supports-preserve-symlinks-flag under the MIT license +synckit under the MIT license +table under the BSD-3-Clause license +test-exclude under the ISC license +text-table under the MIT license +titleize under the MIT license +tmpl under the BSD-3-Clause license +to-fast-properties under the MIT license +to-regex-range under the MIT license +ts-api-utils under the MIT license +tslib under the 0BSD license +type-check under the MIT license +type-detect under the MIT license +type-fest under the (MIT OR CC0-1.0) license +typescript under the Apache-2.0 license +undici-types under the MIT license +universalify under the MIT license +untildify under the MIT license +update-browserslist-db under the MIT license +uri-js under the BSD-2-Clause license +util-deprecate under the MIT license +uuid under the MIT license +v8-to-istanbul under the ISC license +walker under the Apache-2.0 license +which under the ISC license +wide-align under the ISC license +wrap-ansi under the MIT license +wrappy under the ISC license +write-file-atomic under the ISC license +y18n under the ISC license +yallist under the ISC license +yaml under the ISC license +yn under the MIT license +yocto-queue under the MIT license +urllib3 under the MIT license + +******************** +OPEN SOURCE LICENSES +******************** + +0BSD - https://opensource.org/licenses/0BSD +Apache-2.0 - https://opensource.org/license/apache-2-0 +BSD-2-Clause - https://opensource.org/license/bsd-2-clause +BSD-3-Clause - https://opensource.org/licenses/BSD-3-Clause +CC-BY-4.0 - https://opensource.org/licenses/CC-BY-4.0 +Go License - https://golang.org/LICENSE +ISC - https://opensource.org/licenses/ISC +MIT - https://opensource.org/licenses/MIT +MIT-0 - https://github.com/aws/mit-0 +Public Domain - https://github.com/stleary/JSON-java/blob/master/LICENSE +Unlicense - https://opensource.org/licenses/Unlicense \ No newline at end of file diff --git a/source/lambda/kds-lambda-consumer/package-lock.json b/source/lambda/kds-lambda-consumer/package-lock.json index 1e9ef49..8405862 100644 --- a/source/lambda/kds-lambda-consumer/package-lock.json +++ b/source/lambda/kds-lambda-consumer/package-lock.json @@ -1,12 +1,12 @@ { "name": "kds-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "kds-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "license": "Apache-2.0", "devDependencies": { "chai": "4.3.4", @@ -2779,10 +2779,11 @@ "dev": true }, "node_modules/micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, + "license": "MIT", "dependencies": { "braces": "^3.0.3", "picomatch": "^2.3.1" @@ -4046,7 +4047,7 @@ "jest-util": "^29.7.0", "jest-validate": "^29.7.0", "jest-watcher": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "strip-ansi": "^6.0.0" @@ -4202,7 +4203,7 @@ "jest-haste-map": "^29.7.0", "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pirates": "^4.0.4", "slash": "^3.0.0", "write-file-atomic": "^4.0.2" @@ -5206,7 +5207,7 @@ "jest-runner": "^29.7.0", "jest-util": "^29.7.0", "jest-validate": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "parse-json": "^5.2.0", "pretty-format": "^29.7.0", "slash": "^3.0.0", @@ -5283,7 +5284,7 @@ "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", "jest-worker": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "walker": "^1.0.8" } }, @@ -5320,7 +5321,7 @@ "@types/stack-utils": "^2.0.0", "chalk": "^4.0.0", "graceful-fs": "^4.2.9", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "stack-utils": "^2.0.3" @@ -5650,9 +5651,9 @@ "dev": true }, "micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, "requires": { "braces": "^3.0.3", diff --git a/source/lambda/kds-lambda-consumer/package.json b/source/lambda/kds-lambda-consumer/package.json index 112547b..5192bc8 100644 --- a/source/lambda/kds-lambda-consumer/package.json +++ b/source/lambda/kds-lambda-consumer/package.json @@ -1,6 +1,6 @@ { "name": "kds-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "description": "sample lambda consumer for KDS", "main": "index.js", "scripts": { @@ -17,6 +17,9 @@ "chai": "4.3.4", "jest": "^29.7.0" }, + "overrides": { + "micromatch": "^4.0.8" + }, "jest": { "testEnvironment": "node", "collectCoverage": true, diff --git a/source/lambda/msk-lambda-consumer/package-lock.json b/source/lambda/msk-lambda-consumer/package-lock.json index 133e903..89ea316 100644 --- a/source/lambda/msk-lambda-consumer/package-lock.json +++ b/source/lambda/msk-lambda-consumer/package-lock.json @@ -1,12 +1,12 @@ { "name": "msk-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "msk-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "license": "Apache-2.0", "devDependencies": { "chai": "4.3.4", @@ -2779,10 +2779,11 @@ "dev": true }, "node_modules/micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, + "license": "MIT", "dependencies": { "braces": "^3.0.3", "picomatch": "^2.3.1" @@ -4046,7 +4047,7 @@ "jest-util": "^29.7.0", "jest-validate": "^29.7.0", "jest-watcher": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "strip-ansi": "^6.0.0" @@ -4202,7 +4203,7 @@ "jest-haste-map": "^29.7.0", "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pirates": "^4.0.4", "slash": "^3.0.0", "write-file-atomic": "^4.0.2" @@ -5206,7 +5207,7 @@ "jest-runner": "^29.7.0", "jest-util": "^29.7.0", "jest-validate": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "parse-json": "^5.2.0", "pretty-format": "^29.7.0", "slash": "^3.0.0", @@ -5283,7 +5284,7 @@ "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", "jest-worker": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "walker": "^1.0.8" } }, @@ -5320,7 +5321,7 @@ "@types/stack-utils": "^2.0.0", "chalk": "^4.0.0", "graceful-fs": "^4.2.9", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "stack-utils": "^2.0.3" @@ -5650,9 +5651,9 @@ "dev": true }, "micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, "requires": { "braces": "^3.0.3", diff --git a/source/lambda/msk-lambda-consumer/package.json b/source/lambda/msk-lambda-consumer/package.json index 2c5a1db..f337ba0 100644 --- a/source/lambda/msk-lambda-consumer/package.json +++ b/source/lambda/msk-lambda-consumer/package.json @@ -1,6 +1,6 @@ { "name": "msk-lambda-consumer", - "version": "1.9.2", + "version": "1.9.3", "description": "sample lambda consumer for MSK", "main": "index.js", "scripts": { @@ -17,6 +17,9 @@ "chai": "4.3.4", "jest": "^29.7.0" }, + "overrides": { + "micromatch": "^4.0.8" + }, "jest": { "testEnvironment": "node", "collectCoverage": true, diff --git a/source/lambda/msk-lambda-kdf/package-lock.json b/source/lambda/msk-lambda-kdf/package-lock.json index b40c7d6..974e2c1 100644 --- a/source/lambda/msk-lambda-kdf/package-lock.json +++ b/source/lambda/msk-lambda-kdf/package-lock.json @@ -1,12 +1,12 @@ { "name": "msk-lambda-kdf", - "version": "1.9.2", + "version": "1.9.3", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "msk-lambda-kdf", - "version": "1.9.2", + "version": "1.9.3", "license": "Apache-2.0", "dependencies": { "@aws-sdk/client-firehose": "3.382.0" @@ -15,7 +15,7 @@ "aws-sdk-client-mock": "3.0.0", "chai": "4.3.4", "jest": "^29.7.0", - "sinon": "12.0.1" + "sinon": "^18.0.1" } }, "node_modules/@ampproject/remapping": { @@ -1495,10 +1495,11 @@ "dev": true }, "node_modules/@sinonjs/commons": { - "version": "1.8.6", - "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-1.8.6.tgz", - "integrity": "sha512-Ky+XkAkqPZSm3NLBeUng77EBQl3cmeJhITaGHdYH8kjVB+aun3S4XBRti2zt17mtt0mIUDiNxYeoJm6drVvBJQ==", + "version": "3.0.1", + "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-3.0.1.tgz", + "integrity": "sha512-K3mCHKQ9sVh8o1C9cxkwxaOmXoAMlDxC1mYyHrjqOWEcBjYr76t96zL2zlj5dUGZ3HSw240X1qgH3Mjf1yJWpQ==", "dev": true, + "license": "BSD-3-Clause", "dependencies": { "type-detect": "4.0.8" } @@ -1512,31 +1513,34 @@ "@sinonjs/commons": "^3.0.0" } }, - "node_modules/@sinonjs/fake-timers/node_modules/@sinonjs/commons": { - "version": "3.0.1", - "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-3.0.1.tgz", - "integrity": "sha512-K3mCHKQ9sVh8o1C9cxkwxaOmXoAMlDxC1mYyHrjqOWEcBjYr76t96zL2zlj5dUGZ3HSw240X1qgH3Mjf1yJWpQ==", + "node_modules/@sinonjs/samsam": { + "version": "8.0.2", + "resolved": "https://registry.npmjs.org/@sinonjs/samsam/-/samsam-8.0.2.tgz", + "integrity": "sha512-v46t/fwnhejRSFTGqbpn9u+LQ9xJDse10gNnPgAcxgdoCDMXj/G2asWAC/8Qs+BAZDicX+MNZouXT1A7c83kVw==", "dev": true, + "license": "BSD-3-Clause", "dependencies": { - "type-detect": "4.0.8" + "@sinonjs/commons": "^3.0.1", + "lodash.get": "^4.4.2", + "type-detect": "^4.1.0" } }, - "node_modules/@sinonjs/samsam": { - "version": "6.1.3", - "resolved": "https://registry.npmjs.org/@sinonjs/samsam/-/samsam-6.1.3.tgz", - "integrity": "sha512-nhOb2dWPeb1sd3IQXL/dVPnKHDOAFfvichtBf4xV00/rU1QbPCQqKMbvIheIjqwVjh7qIgf2AHTHi391yMOMpQ==", + "node_modules/@sinonjs/samsam/node_modules/type-detect": { + "version": "4.1.0", + "resolved": "https://registry.npmjs.org/type-detect/-/type-detect-4.1.0.tgz", + "integrity": "sha512-Acylog8/luQ8L7il+geoSxhEkazvkslg7PSNKOX59mbB9cOveP5aq9h74Y7YU8yDpJwetzQQrfIwtf4Wp4LKcw==", "dev": true, - "dependencies": { - "@sinonjs/commons": "^1.6.0", - "lodash.get": "^4.4.2", - "type-detect": "^4.0.8" + "license": "MIT", + "engines": { + "node": ">=4" } }, "node_modules/@sinonjs/text-encoding": { - "version": "0.7.2", - "resolved": "https://registry.npmjs.org/@sinonjs/text-encoding/-/text-encoding-0.7.2.tgz", - "integrity": "sha512-sXXKG+uL9IrKqViTtao2Ws6dy0znu9sOaP1di/jKGW1M6VssO8vlpXCQcpZ+jisQ1tTFAC5Jo/EOzFbggBagFQ==", - "dev": true + "version": "0.7.3", + "resolved": "https://registry.npmjs.org/@sinonjs/text-encoding/-/text-encoding-0.7.3.tgz", + "integrity": "sha512-DE427ROAphMQzU4ENbliGYrBSYPXF+TtLg9S8vzeA+OF4ZKzoDdzfL8sxuMUGS/lgRhM6j1URSk9ghf7Xo1tyA==", + "dev": true, + "license": "(Unlicense OR Apache-2.0)" }, "node_modules/@smithy/abort-controller": { "version": "2.0.1", @@ -2214,62 +2218,6 @@ "tslib": "^2.1.0" } }, - "node_modules/aws-sdk-client-mock/node_modules/@sinonjs/commons": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-2.0.0.tgz", - "integrity": "sha512-uLa0j859mMrg2slwQYdO/AkrOfmH+X6LTVmNTS9CqexuE2IvVORIkSpJLqePAbEnKJ77aMmCwr1NUZ57120Xcg==", - "dev": true, - "dependencies": { - "type-detect": "4.0.8" - } - }, - "node_modules/aws-sdk-client-mock/node_modules/@sinonjs/fake-timers": { - "version": "9.1.2", - "resolved": "https://registry.npmjs.org/@sinonjs/fake-timers/-/fake-timers-9.1.2.tgz", - "integrity": "sha512-BPS4ynJW/o92PUR4wgriz2Ud5gpST5vz6GQfMixEDK0Z8ZCUv2M7SkBLykH56T++Xs+8ln9zTGbOvNGIe02/jw==", - "dev": true, - "dependencies": { - "@sinonjs/commons": "^1.7.0" - } - }, - "node_modules/aws-sdk-client-mock/node_modules/@sinonjs/fake-timers/node_modules/@sinonjs/commons": { - "version": "1.8.6", - "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-1.8.6.tgz", - "integrity": "sha512-Ky+XkAkqPZSm3NLBeUng77EBQl3cmeJhITaGHdYH8kjVB+aun3S4XBRti2zt17mtt0mIUDiNxYeoJm6drVvBJQ==", - "dev": true, - "dependencies": { - "type-detect": "4.0.8" - } - }, - "node_modules/aws-sdk-client-mock/node_modules/@sinonjs/samsam": { - "version": "7.0.1", - "resolved": "https://registry.npmjs.org/@sinonjs/samsam/-/samsam-7.0.1.tgz", - "integrity": "sha512-zsAk2Jkiq89mhZovB2LLOdTCxJF4hqqTToGP0ASWlhp4I1hqOjcfmZGafXntCN7MDC6yySH0mFHrYtHceOeLmw==", - "dev": true, - "dependencies": { - "@sinonjs/commons": "^2.0.0", - "lodash.get": "^4.4.2", - "type-detect": "^4.0.8" - } - }, - "node_modules/aws-sdk-client-mock/node_modules/sinon": { - "version": "14.0.2", - "resolved": "https://registry.npmjs.org/sinon/-/sinon-14.0.2.tgz", - "integrity": "sha512-PDpV0ZI3ZCS3pEqx0vpNp6kzPhHrLx72wA0G+ZLaaJjLIYeE0n8INlgaohKuGy7hP0as5tbUd23QWu5U233t+w==", - "dev": true, - "dependencies": { - "@sinonjs/commons": "^2.0.0", - "@sinonjs/fake-timers": "^9.1.2", - "@sinonjs/samsam": "^7.0.1", - "diff": "^5.0.0", - "nise": "^5.1.2", - "supports-color": "^7.2.0" - }, - "funding": { - "type": "opencollective", - "url": "https://opencollective.com/sinon" - } - }, "node_modules/babel-jest": { "version": "29.7.0", "resolved": "https://registry.npmjs.org/babel-jest/-/babel-jest-29.7.0.tgz", @@ -2724,10 +2672,11 @@ } }, "node_modules/diff": { - "version": "5.1.0", - "resolved": "https://registry.npmjs.org/diff/-/diff-5.1.0.tgz", - "integrity": "sha512-D+mk+qE8VC/PAUrlAU34N+VfXev0ghe5ywmpqrawphmVZc1bEfn56uo9qpyGp1p4xpzOHkSW4ztBd6L7Xx4ACw==", + "version": "5.2.0", + "resolved": "https://registry.npmjs.org/diff/-/diff-5.2.0.tgz", + "integrity": "sha512-uIFDxqpRZGZ6ThOk84hEfqWoHx2devRFvpTZcTHur85vImfaxUbTW9Ryh4CpCuDnToOP1CEtXKIgytHBPVff5A==", "dev": true, + "license": "BSD-3-Clause", "engines": { "node": ">=0.3.1" } @@ -2920,6 +2869,21 @@ "integrity": "sha512-OO0pH2lK6a0hZnAdau5ItzHPI6pUlvI7jMVnxUQRtw4owF2wk8lOSabtGDCTP4Ggrg2MbGnWO9X8K1t4+fGMDw==", "dev": true }, + "node_modules/fsevents": { + "version": "2.3.3", + "resolved": "https://registry.npmjs.org/fsevents/-/fsevents-2.3.3.tgz", + "integrity": "sha512-5xoDfX+fL7faATnagmWPpbFtwh/R77WmMMqqHGS65C3vvB0YHrgF+B1YmZ3441tMj5n63k0212XNoJwzlhffQw==", + "dev": true, + "hasInstallScript": true, + "license": "MIT", + "optional": true, + "os": [ + "darwin" + ], + "engines": { + "node": "^8.16.0 || ^10.6.0 || >=11.0.0" + } + }, "node_modules/function-bind": { "version": "1.1.2", "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.2.tgz", @@ -3851,12 +3815,6 @@ "node": ">=6" } }, - "node_modules/just-extend": { - "version": "4.2.1", - "resolved": "https://registry.npmjs.org/just-extend/-/just-extend-4.2.1.tgz", - "integrity": "sha512-g3UB796vUFIY90VIv/WX3L2c8CS2MdWUww3CNrYmqza1Fg0DURc2K/O4YrnklBdQarSJ/y8JnJYDGc+1iumQjg==", - "dev": true - }, "node_modules/kleur": { "version": "3.0.3", "resolved": "https://registry.npmjs.org/kleur/-/kleur-3.0.3.tgz", @@ -3951,10 +3909,11 @@ "dev": true }, "node_modules/micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, + "license": "MIT", "dependencies": { "braces": "^3.0.3", "picomatch": "^2.3.1" @@ -3996,28 +3955,6 @@ "integrity": "sha512-OWND8ei3VtNC9h7V60qff3SVobHr996CTwgxubgyQYEpg290h9J0buyECNNJexkFm5sOajh5G116RYA1c8ZMSw==", "dev": true }, - "node_modules/nise": { - "version": "5.1.4", - "resolved": "https://registry.npmjs.org/nise/-/nise-5.1.4.tgz", - "integrity": "sha512-8+Ib8rRJ4L0o3kfmyVCL7gzrohyDe0cMFTBa2d364yIrEGMEoetznKJx899YxjybU6bL9SQkYPSBBs1gyYs8Xg==", - "dev": true, - "dependencies": { - "@sinonjs/commons": "^2.0.0", - "@sinonjs/fake-timers": "^10.0.2", - "@sinonjs/text-encoding": "^0.7.1", - "just-extend": "^4.0.2", - "path-to-regexp": "^1.7.0" - } - }, - "node_modules/nise/node_modules/@sinonjs/commons": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/@sinonjs/commons/-/commons-2.0.0.tgz", - "integrity": "sha512-uLa0j859mMrg2slwQYdO/AkrOfmH+X6LTVmNTS9CqexuE2IvVORIkSpJLqePAbEnKJ77aMmCwr1NUZ57120Xcg==", - "dev": true, - "dependencies": { - "type-detect": "4.0.8" - } - }, "node_modules/node-int64": { "version": "0.4.0", "resolved": "https://registry.npmjs.org/node-int64/-/node-int64-0.4.0.tgz", @@ -4177,21 +4114,6 @@ "integrity": "sha512-LDJzPVEEEPR+y48z93A0Ed0yXb8pAByGWo/k5YYdYgpY2/2EsOsksJrq7lOHxryrVOn1ejG6oAp8ahvOIQD8sw==", "dev": true }, - "node_modules/path-to-regexp": { - "version": "1.8.0", - "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-1.8.0.tgz", - "integrity": "sha512-n43JRhlUKUAlibEJhPeir1ncUID16QnEjNpwzNdO3Lm4ywrBpBZ5oLD0I6br9evr1Y9JTqwRtAh7JLoOzAQdVA==", - "dev": true, - "dependencies": { - "isarray": "0.0.1" - } - }, - "node_modules/path-to-regexp/node_modules/isarray": { - "version": "0.0.1", - "resolved": "https://registry.npmjs.org/isarray/-/isarray-0.0.1.tgz", - "integrity": "sha512-D2S+3GLxWH+uhrNEcoh/fnmYeP8E8/zHl644d/jdA0g2uyXvy3sb0qxotE+ne0LtccHknQzWwZEzhak7oJ0COQ==", - "dev": true - }, "node_modules/pathval": { "version": "1.1.1", "resolved": "https://registry.npmjs.org/pathval/-/pathval-1.1.1.tgz", @@ -4394,17 +4316,18 @@ "dev": true }, "node_modules/sinon": { - "version": "12.0.1", - "resolved": "https://registry.npmjs.org/sinon/-/sinon-12.0.1.tgz", - "integrity": "sha512-iGu29Xhym33ydkAT+aNQFBINakjq69kKO6ByPvTsm3yyIACfyQttRTP03aBP/I8GfhFmLzrnKwNNkr0ORb1udg==", + "version": "18.0.1", + "resolved": "https://registry.npmjs.org/sinon/-/sinon-18.0.1.tgz", + "integrity": "sha512-a2N2TDY1uGviajJ6r4D1CyRAkzE9NNVlYOV1wX5xQDuAk0ONgzgRl0EjCQuRCPxOwp13ghsMwt9Gdldujs39qw==", "dev": true, + "license": "BSD-3-Clause", "dependencies": { - "@sinonjs/commons": "^1.8.3", - "@sinonjs/fake-timers": "^8.1.0", - "@sinonjs/samsam": "^6.0.2", - "diff": "^5.0.0", - "nise": "^5.1.0", - "supports-color": "^7.2.0" + "@sinonjs/commons": "^3.0.1", + "@sinonjs/fake-timers": "11.2.2", + "@sinonjs/samsam": "^8.0.0", + "diff": "^5.2.0", + "nise": "^6.0.0", + "supports-color": "^7" }, "funding": { "type": "opencollective", @@ -4412,12 +4335,54 @@ } }, "node_modules/sinon/node_modules/@sinonjs/fake-timers": { - "version": "8.1.0", - "resolved": "https://registry.npmjs.org/@sinonjs/fake-timers/-/fake-timers-8.1.0.tgz", - "integrity": "sha512-OAPJUAtgeINhh/TAlUID4QTs53Njm7xzddaVlEs/SXwgtiD1tW22zAB/W1wdqfrpmikgaWQ9Fw6Ws+hsiRm5Vg==", + "version": "11.2.2", + "resolved": "https://registry.npmjs.org/@sinonjs/fake-timers/-/fake-timers-11.2.2.tgz", + "integrity": "sha512-G2piCSxQ7oWOxwGSAyFHfPIsyeJGXYtc6mFbnFA+kRXkiEnTl8c/8jul2S329iFBnDI9HGoeWWAZvuvOkZccgw==", + "dev": true, + "license": "BSD-3-Clause", + "dependencies": { + "@sinonjs/commons": "^3.0.0" + } + }, + "node_modules/sinon/node_modules/just-extend": { + "version": "6.2.0", + "resolved": "https://registry.npmjs.org/just-extend/-/just-extend-6.2.0.tgz", + "integrity": "sha512-cYofQu2Xpom82S6qD778jBDpwvvy39s1l/hrYij2u9AMdQcGRpaBu6kY4mVhuno5kJVi1DAz4aiphA2WI1/OAw==", + "dev": true, + "license": "MIT" + }, + "node_modules/sinon/node_modules/nise": { + "version": "6.1.1", + "resolved": "https://registry.npmjs.org/nise/-/nise-6.1.1.tgz", + "integrity": "sha512-aMSAzLVY7LyeM60gvBS423nBmIPP+Wy7St7hsb+8/fc1HmeoHJfLO8CKse4u3BtOZvQLJghYPI2i/1WZrEj5/g==", + "dev": true, + "license": "BSD-3-Clause", + "dependencies": { + "@sinonjs/commons": "^3.0.1", + "@sinonjs/fake-timers": "^13.0.1", + "@sinonjs/text-encoding": "^0.7.3", + "just-extend": "^6.2.0", + "path-to-regexp": "^8.1.0" + } + }, + "node_modules/sinon/node_modules/nise/node_modules/@sinonjs/fake-timers": { + "version": "13.0.2", + "resolved": "https://registry.npmjs.org/@sinonjs/fake-timers/-/fake-timers-13.0.2.tgz", + "integrity": "sha512-4Bb+oqXZTSTZ1q27Izly9lv8B9dlV61CROxPiVtywwzv5SnytJqhvYe6FclHYuXml4cd1VHPo1zd5PmTeJozvA==", "dev": true, + "license": "BSD-3-Clause", "dependencies": { - "@sinonjs/commons": "^1.7.0" + "@sinonjs/commons": "^3.0.1" + } + }, + "node_modules/sinon/node_modules/path-to-regexp": { + "version": "8.1.0", + "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-8.1.0.tgz", + "integrity": "sha512-Bqn3vc8CMHty6zuD+tG23s6v2kwxslHEhTj4eYaVKGIEB+YX/2wd0/rgXLFD9G9id9KCtbVy/3ZgmvZjpa0UdQ==", + "dev": true, + "license": "MIT", + "engines": { + "node": ">=16" } }, "node_modules/sisteransi": { diff --git a/source/lambda/msk-lambda-kdf/package.json b/source/lambda/msk-lambda-kdf/package.json index 0c838f5..25006f9 100644 --- a/source/lambda/msk-lambda-kdf/package.json +++ b/source/lambda/msk-lambda-kdf/package.json @@ -1,6 +1,6 @@ { "name": "msk-lambda-kdf", - "version": "1.9.2", + "version": "1.9.3", "description": "lambda consumer that publishes MSK events to KDF", "main": "index.js", "scripts": { @@ -17,8 +17,9 @@ "aws-sdk-client-mock": "3.0.0", "chai": "4.3.4", "jest": "^29.7.0", - "sinon": "12.0.1" + "sinon": "^18.0.1" }, + "jest": { "testEnvironment": "node", "collectCoverage": true, @@ -35,6 +36,8 @@ "@aws-sdk/client-firehose": "3.382.0" }, "overrides": { - "fast-xml-parser": "^4.4.1" + "fast-xml-parser": "^4.4.1", + "micromatch": "^4.0.8", + "sinon": "^18.0.1" } } diff --git a/source/lambda/taxi-fare-endpoint/package-lock.json b/source/lambda/taxi-fare-endpoint/package-lock.json index 49dfd36..2dea531 100644 --- a/source/lambda/taxi-fare-endpoint/package-lock.json +++ b/source/lambda/taxi-fare-endpoint/package-lock.json @@ -1,12 +1,12 @@ { "name": "taxi-fare-endpoint", - "version": "1.9.2", + "version": "1.9.3", "lockfileVersion": 2, "requires": true, "packages": { "": { "name": "taxi-fare-endpoint", - "version": "1.9.2", + "version": "1.9.3", "license": "Apache-2.0", "devDependencies": { "chai": "4.3.4", @@ -2779,10 +2779,11 @@ "dev": true }, "node_modules/micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, + "license": "MIT", "dependencies": { "braces": "^3.0.3", "picomatch": "^2.3.1" @@ -4046,7 +4047,7 @@ "jest-util": "^29.7.0", "jest-validate": "^29.7.0", "jest-watcher": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "strip-ansi": "^6.0.0" @@ -4202,7 +4203,7 @@ "jest-haste-map": "^29.7.0", "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pirates": "^4.0.4", "slash": "^3.0.0", "write-file-atomic": "^4.0.2" @@ -5206,7 +5207,7 @@ "jest-runner": "^29.7.0", "jest-util": "^29.7.0", "jest-validate": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "parse-json": "^5.2.0", "pretty-format": "^29.7.0", "slash": "^3.0.0", @@ -5283,7 +5284,7 @@ "jest-regex-util": "^29.6.3", "jest-util": "^29.7.0", "jest-worker": "^29.7.0", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "walker": "^1.0.8" } }, @@ -5320,7 +5321,7 @@ "@types/stack-utils": "^2.0.0", "chalk": "^4.0.0", "graceful-fs": "^4.2.9", - "micromatch": "^4.0.4", + "micromatch": "^4.0.8", "pretty-format": "^29.7.0", "slash": "^3.0.0", "stack-utils": "^2.0.3" @@ -5650,9 +5651,9 @@ "dev": true }, "micromatch": { - "version": "4.0.7", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.7.tgz", - "integrity": "sha512-LPP/3KorzCwBxfeUuZmaR6bG2kdeHSbe0P2tY3FLRU4vYrjYz5hI4QZwV0njUx3jeuKe67YukQ1LSPZBKDqO/Q==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, "requires": { "braces": "^3.0.3", diff --git a/source/lambda/taxi-fare-endpoint/package.json b/source/lambda/taxi-fare-endpoint/package.json index 091d8cf..2a0dcdd 100644 --- a/source/lambda/taxi-fare-endpoint/package.json +++ b/source/lambda/taxi-fare-endpoint/package.json @@ -1,6 +1,6 @@ { "name": "taxi-fare-endpoint", - "version": "1.9.2", + "version": "1.9.3", "description": "sample endpoint for taxi fare prediction", "main": "index.js", "scripts": { @@ -17,6 +17,9 @@ "chai": "4.3.4", "jest": "^29.7.0" }, + "overrides": { + "micromatch": "^4.0.8" + }, "jest": { "testEnvironment": "node", "collectCoverage": true, diff --git a/source/package-lock.json b/source/package-lock.json index ca12dae..909fe01 100644 --- a/source/package-lock.json +++ b/source/package-lock.json @@ -1,12 +1,12 @@ { "name": "streaming-data-solution", - "version": "1.9.2", + "version": "1.9.3", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "streaming-data-solution", - "version": "1.9.2", + "version": "1.9.3", "license": "Apache-2.0", "dependencies": { "@aws-solutions-constructs/aws-apigateway-kinesisstreams": "2.45.0", @@ -4918,12 +4918,13 @@ } }, "node_modules/micromatch": { - "version": "4.0.5", - "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.5.tgz", - "integrity": "sha512-DMy+ERcEW2q8Z2Po+WNXuw3c5YaUSFjAO5GsJqfEl7UjvtIuFKO6ZrKvcItdy98dwFI2N1tg3zNIdKaQT+aNdA==", + "version": "4.0.8", + "resolved": "https://registry.npmjs.org/micromatch/-/micromatch-4.0.8.tgz", + "integrity": "sha512-PXwfBhYu0hBCPw8Dn0E+WDYb7af3dSLVWKi3HGv84IdF4TyFoC0ysxFd0Goxw7nSv4T/PzEJQxsYsEiFCKo2BA==", "dev": true, + "license": "MIT", "dependencies": { - "braces": "^3.0.2", + "braces": "^3.0.3", "picomatch": "^2.3.1" }, "engines": { diff --git a/source/package.json b/source/package.json index 09fd60a..337a091 100644 --- a/source/package.json +++ b/source/package.json @@ -1,6 +1,6 @@ { "name": "streaming-data-solution", - "version": "1.9.2", + "version": "1.9.3", "bin": { "streaming-data-solution": "bin/streaming-data-solution.js" }, @@ -39,6 +39,9 @@ "cdk-nag": "^2.27.172", "source-map-support": "^0.5.21" }, + "overrides": { + "micromatch": "^4.0.8" + }, "private": true, "license": "Apache-2.0", "description": "AWS Data Streaming solutions for Kinesis/MSK",