All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Library updates to address Regular Expression Denial of Service (ReDoS) in cross-spawn
- Replacing CodeCommit with S3 bucket as source code respository for network firewall configurations.
- Library updates to address path-to-regexp outputs backtracking regular expressions
- Library updates to address AWS CDK RestApi not generating authorizationScope correctly in resultant CFN template
- Library updates to address micromatch: vulnerable to Regular Expression Denial of Service
- Library updates to address axios 1.7.2 allows SSRF via unexpected behavior where requests for path relative URLs get processed as protocol relative URLs.
- Bump up minor versions of dependencies
- Library updates to address braces: fails to limit the number of characters it can handle
- Rename the solution to Centralized Network Inspection on AWS
- Bump up minor versions of dependencies
- Update NodeJS environment for CodeBuild from NodeJS16 to NodeJS18.
- Library updates to address Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
- Library updates to address xml2js vulnerable to improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
- Name change to Firewall Automation for Network Traffic on AWS
- Upgrade to CDK v2
- Fix NPM security warnings
- Fix SonarQube bugs and increase unit test coverage
- Updated default branch name to 'main'. Change branch settings in your existing AWS CodeCommit repository.
- New solution AWS Network Firewall Deployment Automations for AWS Transit Gateway, initial version