Skip to content

Commit

Permalink
Release v1.0.8 to fix CVE(s) (#24)
Browse files Browse the repository at this point in the history
  • Loading branch information
@gockle
gockle authored Sep 16, 2024
1 parent 9d816e8 commit 1c501fa
Show file tree
Hide file tree
Showing 6 changed files with 87 additions and 854 deletions.
8 changes: 8 additions & 0 deletions CHANGELOG.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,14 @@ All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).

## [1.0.8] - 2024-09

### Changed

- Library updates to address [path-to-regexp outputs backtracking regular expressions](https://avd.aquasec.com/nvd/cve-2024-45296)
- Library updates to address [AWS CDK RestApi not generating authorizationScope correctly in resultant CFN template](https://avd.aquasec.com/nvd/cve-2024-45037)
- Library updates to address [micromatch: vulnerable to Regular Expression Denial of Service](https://avd.aquasec.com/nvd/cve-2024-4067)

## [1.0.7] - 2024-08

### Changed
Expand Down
2 changes: 1 addition & 1 deletion solution-manifest.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
---
id: SO0108 # Solution Id
name: centralized-network-inspection-on-aws # trademarked name
version: v1.0.7 # current version of the solution. Used to verify template headers
version: v1.0.8 # current version of the solution. Used to verify template headers
cloudformation_templates: # This list should match with AWS CloudFormation templates section of IG
- template: centralized-network-inspection-on-aws.template
main_template: true
Expand Down
Loading

0 comments on commit 1c501fa

Please sign in to comment.