Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: upgrade @aws-sdk/client-personalize from 3.470.0 to 3.474.0 #2980

Closed
wants to merge 1 commit into from
Closed

chore: upgrade @aws-sdk/client-personalize from 3.470.0 to 3.474.0 #2980

wants to merge 1 commit into from

Conversation

sandeepdsvs
Copy link
Contributor

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade @aws-sdk/client-personalize from 3.470.0 to 3.474.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 2 versions ahead of your current version.
  • The recommended version was released 25 days ago, on 2023-12-14.

The recommended version fixes:

Severity Issue PriorityScore (*) Exploit Maturity
Improper Input Validation
SNYK-JS-FOLLOWREDIRECTS-6141137		 544/1000
Why? Proof of Concept exploit, Recently disclosed, CVSS 7.3		 Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes
Package name: @aws-sdk/client-personalize
  • 3.474.0 - 2023-12-14

    3.474.0(2023-12-14)

    Documentation Changes
    • client-workspaces: Updated note to ensure customers understand running modes. (085ed53e)
    • client-b2bi: Documentation updates for AWS B2B Data Interchange (c81ff02e)
    • client-controltower: Documentation updates for AWS Control Tower. (7c20820c)
    New Features
    • clients: update client endpoints as of 2023-12-14 (ab69ea03)
    • client-iot: This release adds the ability to self-manage certificate signing in AWS IoT Core fleet provisioning using the new certificate provider resource. (a55c8784)
    • client-firehose: This release, 1) adds configurable buffering hints for the Splunk destination, and 2) reduces the minimum configurable buffering interval for supported destinations (dab64555)
    • client-neptune-graph: This is the initial SDK release for Amazon Neptune Analytics (8210ba24)
    • client-connect: This release adds support for more granular billing using tags (key:value pairs) (417de037)
    • client-appstream: This release includes support for images of Windows Server 2022 platform. (701ead08)
    • client-quicksight: Update Dashboard Links support; SingleAxisOptions support; Scatterplot Query limit support. (ee74785b)
    • client-opensearch: Updating documentation for Amazon OpenSearch Service support for new zero-ETL integration with Amazon S3. (c63279d4)
    • client-billingconductor: Billing Conductor is releasing a new API, GetBillingGroupCostReport, which provides the ability to retrieve/view the Billing Group Cost Report broken down by attributes for a specific billing group. (ba49477a)
    • client-gamelift: Amazon GameLift adds the ability to add and update the game properties of active game sessions. (9c8b6c6c)
    • experimentalIdentityAndAuth:
    • core: add experimentalIdentityAndAuth AWS SDK SigV4 support (#5586) (9a97df59)
    Bug Fixes
    • middleware-sdk-s3: safely access nested properties for error (#5580) (013665e1)

    For list of updated packages, view updated-packages.md in assets-3.474.0.zip

  • 3.473.0 - 2023-12-13

    3.473.0(2023-12-13)

    Chores
    New Features
    • clients: update client endpoints as of 2023-12-13 (3ef57fb7)
    • client-drs: Adding AgentVersion to SourceServer and RecoveryInstance structures (01b2633b)
    • experimentalIdentityAndAuth:
      • add event streaming input integrations relative to auth (#5578) (a12b2eb9)
      • add endpointRuleSet trait to generic client test (#5573) (03d62309)

    For list of updated packages, view updated-packages.md in assets-3.473.0.zip

  • 3.470.0 - 2023-12-08

    3.470.0(2023-12-08)

    Chores
    New Features
    • client-finspace: Releasing Scaling Group, Dataview, and Volume APIs (f18d4efb)
    • client-ec2: M2 Mac instances are built on Apple M2 Mac mini computers. I4i instances are powered by 3rd generation Intel Xeon Scalable processors. C7i compute optimized, M7i general purpose and R7i memory optimized instances are powered by custom 4th Generation Intel Xeon Scalable processors. (1a9fca9e)
    • client-cloudwatch: Adds support for the OpenTelemetry 1.0 output format in CloudWatch Metric Streams. (349863d8)
    Bug Fixes
    • client-workspaces-thin-client: add compatibility alias (#5555) (b0756b9a)

    For list of updated packages, view updated-packages.md in assets-3.470.0.zip

from @aws-sdk/client-personalize GitHub release notes

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

@sandeepdsvs sandeepdsvs requested review from sivashanmukh and a team as code owners January 8, 2024 14:06
@coderabbitai coderabbitai
Copy link
Contributor

coderabbitai bot commented Jan 8, 2024

Important

Auto Review Skipped

Auto reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository.

To trigger a single review, invoke the @coderabbitai review command.

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

Share
Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>.
    • Generate unit-tests for this file.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
    • @coderabbitai generate unit tests for this file.
    • @coderabbitai modularize this function.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai generate interesting stats about this repository from git and render them as a table.
    • @coderabbitai show all the console.log statements in this repository.
    • @coderabbitai read src/utils.ts and generate unit tests.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (invoked as PR comments)

  • @coderabbitai pause to pause the reviews on a PR.
  • @coderabbitai resume to resume the paused reviews.
  • @coderabbitai review to trigger a review. This is useful when automatic reviews are disabled for the repository.
  • @coderabbitai resolve resolve all the CodeRabbit review comments.
  • @coderabbitai help to get help.

Additionally, you can add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.

CodeRabbit Configration File (.coderabbit.yaml)

  • You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
  • The JSON schema for the configuration file is available here.
  • If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/coderabbit-overrides.v2.json

CodeRabbit Discord Community

Join our Discord Community to get help, request features, and share feedback.

@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Jan 8, 2024

Quality Gate Passed Quality Gate passed

Kudos, no new issues were introduced!

0 New issues
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

@codecov Codecov
Copy link

codecov bot commented Jan 8, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (d4e0ae3) 87.28% compared to head (e55d5a0) 87.28%.

Additional details and impacted files 
@@           Coverage Diff            @@
##           develop    #2980   +/-   ##
========================================
  Coverage    87.28%   87.28%           
========================================
  Files          872      872           
  Lines        29500    29500           
  Branches      6865     6865           
========================================
  Hits         25749    25749           
  Misses        3405     3405           
  Partials       346      346

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@koladilip koladilip changed the title [Snyk] Upgrade @aws-sdk/client-personalize from 3.470.0 to 3.474.0 chore: upgrade @aws-sdk/client-personalize from 3.470.0 to 3.474.0 Jan 8, 2024
@koladilip koladilip closed this Jan 23, 2024
@devops-github-rudderstack devops-github-rudderstack deleted the snyk-upgrade-e850aa08425dd4013b590df29b239125 branch April 9, 2024 01:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sivashanmukh sivashanmukh Awaiting requested review from sivashanmukh sivashanmukh is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sandeepdsvs @koladilip @snyk-bot