Skip to content

Commit 55c9a70

Browse files
committed
Release v3.3.7 - patch for python module h11.
1 parent cdaeef3 commit 55c9a70

File tree

32 files changed

+1761
-135
lines changed

32 files changed

+1761
-135
lines changed

.gitignore

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,9 @@ deployment/ecr/**/*.jar
1212
.idea
1313
source/test/
1414

15+
# IDE
16+
.vscode
17+
1518
.pnp
1619
.pnp.js
1720
aws_exports.js

CHANGELOG.md

Lines changed: 28 additions & 21 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,12 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
66
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
77

88

9+
## [3.3.7] - 2025-05-12
10+
11+
### Security
12+
13+
- Update h11 to 0.16.0 to fix [CVE](https://nvd.nist.gov/vuln/detail/CVE-2025-43859)
14+
915
## [3.3.6] - 2025-04-16
1016

1117
### Security
@@ -15,7 +21,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
1521

1622
### Changes
1723

18-
- Updating lambda runtimes to use node-20
24+
- Updating lambda runtimes to use node-20.
25+
- Updated Dockerfile results in an [image of size 424 MB instead of the earlier 2.2 GB](https://gallery.ecr.aws/aws-solutions/distributed-load-testing-on-aws-load-tester), this results in improved test start times, depending on the task count, a 500 task count tests starts 40% faster than the previous version of the solution.
1926

2027
## [3.3.5] - 2025-03-17
2128

@@ -26,8 +33,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
2633
## [3.3.4] - 2025-02-06
2734

2835
### Security
29-
- `path-to-regexp` to mitigate [CVE-2024-52798]
30-
- `nanoid` to mitigate [CVE-2024-55565]
36+
- `path-to-regexp` to mitigate [CVE-2024-52798](https://nvd.nist.gov/vuln/detail/CVE-2024-52798)
37+
- `nanoid` to mitigate [CVE-2024-55565](https://nvd.nist.gov/vuln/detail/CVE-2024-55565)
3138

3239
### Fixed
3340

@@ -37,12 +44,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
3744

3845
### Security
3946

40-
- Update `cross-spawn` to mitigate [CVE-2024-21538]
41-
- Update `Werzeug` to mitigate [CVE-2024-49767]
47+
- Update `cross-spawn` to mitigate [CVE-2024-21538](https://nvd.nist.gov/vuln/detail/CVE-2024-21538)
48+
- Update `Werzeug` to mitigate [CVE-2024-49767](https://nvd.nist.gov/vuln/detail/CVE-2024-49767)
4249

4350
### Fixed
4451

45-
- Update tika-core to v3.0.0 to resolve [https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/214]
52+
- Update tika-core to v3.0.0 to resolve [#214](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/214)
4653

4754
### Updated
4855

@@ -52,19 +59,19 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
5259

5360
### Security
5461

55-
- `http-proxy-middleware` to mitigate [CVE-2024-21536]
56-
- Bumping cryptography to v43.0.1 in docker image to mitigate (https://github.com/advisories/GHSA-h4gh-qq45-vh27)
57-
- Bumping setuptool to 65.5.1 in docker image to mitigate [CVE-2022-40897]
62+
- `http-proxy-middleware` to mitigate [CVE-2024-21536](https://nvd.nist.gov/vuln/detail/CVE-2024-21536)
63+
- Bumping cryptography to v43.0.1 in docker image to mitigate [pyca/cryptography has a vulnerable OpenSSL included in cryptography wheels](https://github.com/advisories/GHSA-h4gh-qq45-vh27)
64+
- Bumping setuptool to 65.5.1 in docker image to mitigate [CVE-2022-40897](https://nvd.nist.gov/vuln/detail/CVE-2022-40897)
5865

5966
### Fixed
6067

61-
- Fixed bug pertain to start button not working properly (https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/218)
68+
- Fixed bug pertain to start button not working properly [#218](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/218)
6269

6370
## [3.3.1] - 2024-10-02
6471

6572
### Security
6673

67-
- `rollup` to mitigate [CVE-2024-4067](https://github.com/advisories/GHSA-952p-6rrq-rcjv)
74+
- `rollup` to mitigate [CVE-2024-4067](https://github.com/advisories/GHSA-952p-6rrq-rcjv)
6875

6976
### Fixed
7077

@@ -74,18 +81,18 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
7481

7582
### Added
7683

77-
- Added cron scheduling (https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/84)
78-
- Added jtl report to s3 bucket logs (https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/150)
79-
- Added enhanced mechanism to collect Anonymized Metrics Feature
84+
- Added cron scheduling [#84](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/84)
85+
- Added jtl report to s3 bucket logs [#150](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/150)
86+
- Added enhanced mechanism to collect Anonymized Metrics Feature
8087
- Added new integration tests
8188

8289
### Fixed
8390

84-
- Fixed issues pertaining to (https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/193)
91+
- Fixed issues pertaining to [#193](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/193)
8592

8693
### Security
8794

88-
- `micromatch` to mitigate [CVE-2024-4067](https://github.com/advisories/GHSA-952p-6rrq-rcjv)
95+
- `micromatch` to mitigate [CVE-2024-4067](https://github.com/advisories/GHSA-952p-6rrq-rcjv)
8996
- `webpack` to mitigate [CVE-2024-43788](https://github.com/advisories/GHSA-4vvj-4cpr-p986)
9097
- `path-to-regexp` to mitigate [CVE-2024-45296](https://github.com/advisories/GHSA-9wv6-86v2-598j)
9198
- `serve-static` to mitigate [CVE-2024-43800](https://github.com/advisories/GHSA-cm22-4g7w-348p)
@@ -135,15 +142,15 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
135142

136143
### Updated
137144

138-
- Updated webpack-dev-middleware from 5.3.3 to 5.3.4 to resolve security vulnerability [CVE-2024-29180]
139-
- Updated express from 4.18.1 to 4.19.2 to resolve security vulnerability [CVE-2024-29041]
140-
- Updated follow-redirects from 1.15.4 to 1.15.6 to resolve security vulnerability [CVE-2024-28849]
145+
- Updated webpack-dev-middleware from 5.3.3 to 5.3.4 to resolve security vulnerability [CVE-2024-29180](https://nvd.nist.gov/vuln/detail/CVE-2024-29180)
146+
- Updated express from 4.18.1 to 4.19.2 to resolve security vulnerability [CVE-2024-29041](https://nvd.nist.gov/vuln/detail/CVE-2024-29041)
147+
- Updated follow-redirects from 1.15.4 to 1.15.6 to resolve security vulnerability [CVE-2024-28849](https://nvd.nist.gov/vuln/detail/CVE-2024-28849)
141148
- Updated docker image to resolve security vulnerabilities
142149

143150
### Fixed
144151

145-
- Fixed issues pertaining to [https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/170]
146-
- Fixed issues pertaining the update stack problem from versions before DLT v3.2.6 to DLT versions after 3.2.6
152+
- Fixed issues pertaining to [#170](https://github.com/aws-solutions/distributed-load-testing-on-aws/issues/170)
153+
- Fixed issues pertaining the update stack problem from versions before DLT v3.2.6 to DLT versions after 3.2.6.
147154

148155
## [3.2.7] - 2024-03-11
149156

0 commit comments

Comments
 (0)