search

relaycorp / veraid-authority

Cloud-native app that allows organisations to manage their VeraId members and the issuance of their respective bundles.
https://docs.relaycorp.tech/veraid-authority/
GNU Affero General Public License v3.0
0 stars 0 forks source link

fix(deps): Bump fast-xml-parser, @aws-sdk/client-kms and @aws-sdk/credential-providers #190

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps fast-xml-parser, @aws-sdk/client-kms and @aws-sdk/credential-providers. These dependencies needed to be updated together. Updates fast-xml-parser from 4.2.4 to 4.2.5

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

4.2.5 / 2023-06-22

  • change code implementation

4.2.4 / 2023-06-06

  • fix security bug

4.2.3 / 2023-06-05

  • fix security bug

4.2.2 / 2023-04-18

  • fix #562: fix unpaired tag when it comes in last of a nested tag. Also throw error when unpaired tag is used as closing tag

4.2.1 / 2023-04-18

  • fix: jpath after unpaired tags

4.2.0 / 2023-04-09

  • support updateTag parser property

4.1.4 / 2023-04-08

  • update typings to let user create XMLBuilder instance without options (#556) (By Patrick)
  • fix: IsArray option isn't parsing tags with 0 as value correctly #490 (#557) (By Aleksandr Murashkin)
  • feature: support oneListGroup to group repeated children tags udder single group

4.1.3 / 2023-02-26

  • fix #546: Support complex entity value

4.1.2 / 2023-02-12

  • Security Fix

4.1.1 / 2023-02-03

  • Fix #540: ignoreAttributes breaks unpairedTags
  • Refactor XML builder code

4.1.0 / 2023-02-02

  • Fix '' in DTD comment throwing an error. (#533) (By Adam Baker)
  • Set "eNotation" to 'true' as default

4.0.15 / 2023-01-25

  • make "eNotation" optional

4.0.14 / 2023-01-22

  • fixed: add missed typing "eNotation" to parse values

4.0.13 / 2023-01-07

4.0.12 / 2022-11-19

... (truncated)

Commits


Updates @aws-sdk/client-kms from 3.350.0 to 3.359.0

Release notes

Sourced from @​aws-sdk/client-kms's releases.

v3.359.0

3.359.0(2023-06-23)

Chores
Documentation Changes
  • client-verifiedpermissions: Added improved descriptions and new code samples to SDK documentation. (2eb1c550)
  • client-fsx: Update to Amazon FSx documentation. (daf0eeaa)
  • client-rds: Documentation improvements for create, describe, and modify DB clusters and DB instances. (8e56fb35)
New Features
  • client-devops-guru: This release adds support for encryption via customer managed keys. (89734786)

v3.358.0

3.358.0(2023-06-22)

New Features
  • client-chime-sdk-identity: AppInstanceBots can be configured to be invoked or not using the Target or the CHIME.mentions attribute for ChannelMessages (b77d9856)
  • client-sfn: Adds support for Versions and Aliases. Adds 8 operations: PublishStateMachineVersion, DeleteStateMachineVersion, ListStateMachineVersions, CreateStateMachineAlias, DescribeStateMachineAlias, UpdateStateMachineAlias, DeleteStateMachineAlias, ListStateMachineAliases (71c4f39e)
  • client-kendra: Introducing Amazon Kendra Retrieve API that can be used to retrieve relevant passages or text excerpts given an input query. (151720c0)
  • client-chime-sdk-messaging: ChannelMessages can be made visible to sender and intended recipient rather than all channel members with the target attribute. For example, a user can send messages to a bot and receive messages back in a group channel without other members seeing them. (a9169d35)
Tests
  • util-stream: switch lambda test from e2e to integration (#4864) (7c50810c)

v3.357.0

3.357.0(2023-06-21)

Documentation Changes
  • client-dynamodb: Documentation updates for DynamoDB (5463a95a)
New Features
  • client-mq: The Cross Region Disaster Recovery feature allows to replicate a brokers state from one region to another in order to provide customers with multi-region resiliency in the event of a regional outage. (983be322)
  • client-sagemaker: This release provides support in SageMaker for output files in training jobs to be uploaded without compression and enable customer to deploy uncompressed model from S3 to real-time inference Endpoints. In addition, ml.trn1n.32xlarge is added to supported instance type list in training job. (f0ede901)
  • client-mediaconvert: This release introduces the bandwidth reduction filter for the HEVC encoder, increases the limits of outputs per job, and updates support for the Nagra SDK to version 1.14.7. (dd88e3f4)
  • client-inspector2: This release adds support for Software Bill of Materials (SBOM) export and the general availability of code scanning for AWS Lambda functions. (d57a444d)
  • client-transfer: This release adds a new parameter StructuredLogDestinations to CreateServer, UpdateServer APIs. (8f0033bb)
  • client-emr: This release introduces a new Amazon EMR EPI called ListSupportedInstanceTypes that returns a list of all instance types supported by a given EMR release. (9875d036)
  • clients: automatic blob type conversions (#4836) (60ec921c)
Tests

... (truncated)

Changelog

Sourced from @​aws-sdk/client-kms's changelog.

3.359.0 (2023-06-23)

Note: Version bump only for package @​aws-sdk/client-kms

3.358.0 (2023-06-22)

Note: Version bump only for package @​aws-sdk/client-kms

3.357.0 (2023-06-21)

Features

  • clients: automatic blob type conversions (#4836) (60ec921)

3.354.0 (2023-06-16)

Note: Version bump only for package @​aws-sdk/client-kms

3.353.0 (2023-06-15)

Note: Version bump only for package @​aws-sdk/client-kms

3.352.0 (2023-06-13)

Note: Version bump only for package @​aws-sdk/client-kms

Commits


Updates @aws-sdk/credential-providers from 3.351.0 to 3.359.0

Release notes

Sourced from @​aws-sdk/credential-providers's releases.

v3.359.0

3.359.0(2023-06-23)

Chores
Documentation Changes
  • client-verifiedpermissions: Added improved descriptions and new code samples to SDK documentation. (2eb1c550)
  • client-fsx: Update to Amazon FSx documentation. (daf0eeaa)
  • client-rds: Documentation improvements for create, describe, and modify DB clusters and DB instances. (8e56fb35)
New Features
  • client-devops-guru: This release adds support for encryption via customer managed keys. (89734786)

v3.358.0

3.358.0(2023-06-22)

New Features
  • client-chime-sdk-identity: AppInstanceBots can be configured to be invoked or not using the Target or the CHIME.mentions attribute for ChannelMessages (b77d9856)
  • client-sfn: Adds support for Versions and Aliases. Adds 8 operations: PublishStateMachineVersion, DeleteStateMachineVersion, ListStateMachineVersions, CreateStateMachineAlias, DescribeStateMachineAlias, UpdateStateMachineAlias, DeleteStateMachineAlias, ListStateMachineAliases (71c4f39e)
  • client-kendra: Introducing Amazon Kendra Retrieve API that can be used to retrieve relevant passages or text excerpts given an input query. (151720c0)
  • client-chime-sdk-messaging: ChannelMessages can be made visible to sender and intended recipient rather than all channel members with the target attribute. For example, a user can send messages to a bot and receive messages back in a group channel without other members seeing them. (a9169d35)
Tests
  • util-stream: switch lambda test from e2e to integration (#4864) (7c50810c)

v3.357.0

3.357.0(2023-06-21)

Documentation Changes
  • client-dynamodb: Documentation updates for DynamoDB (5463a95a)
New Features
  • client-mq: The Cross Region Disaster Recovery feature allows to replicate a brokers state from one region to another in order to provide customers with multi-region resiliency in the event of a regional outage. (983be322)
  • client-sagemaker: This release provides support in SageMaker for output files in training jobs to be uploaded without compression and enable customer to deploy uncompressed model from S3 to real-time inference Endpoints. In addition, ml.trn1n.32xlarge is added to supported instance type list in training job. (f0ede901)
  • client-mediaconvert: This release introduces the bandwidth reduction filter for the HEVC encoder, increases the limits of outputs per job, and updates support for the Nagra SDK to version 1.14.7. (dd88e3f4)
  • client-inspector2: This release adds support for Software Bill of Materials (SBOM) export and the general availability of code scanning for AWS Lambda functions. (d57a444d)
  • client-transfer: This release adds a new parameter StructuredLogDestinations to CreateServer, UpdateServer APIs. (8f0033bb)
  • client-emr: This release introduces a new Amazon EMR EPI called ListSupportedInstanceTypes that returns a list of all instance types supported by a given EMR release. (9875d036)
  • clients: automatic blob type conversions (#4836) (60ec921c)
Tests

... (truncated)

Changelog

Sourced from @​aws-sdk/credential-providers's changelog.

3.359.0 (2023-06-23)

Note: Version bump only for package @​aws-sdk/credential-providers

3.358.0 (2023-06-22)

Note: Version bump only for package @​aws-sdk/credential-providers

3.357.0 (2023-06-21)

Note: Version bump only for package @​aws-sdk/credential-providers

3.354.0 (2023-06-16)

Note: Version bump only for package @​aws-sdk/credential-providers

3.353.0 (2023-06-15)

Note: Version bump only for package @​aws-sdk/credential-providers

3.352.0 (2023-06-13)

Note: Version bump only for package @​aws-sdk/credential-providers

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/relaycorp/veraid-authority/network/alerts).
github-actions[bot] commented 1 year ago

:tada: This PR is included in version 1.18.2 :tada:

The release is available on:

Your semantic-release bot :package::rocket: