Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.7.0 #867

Merged
merged 1 commit into from
Sep 30, 2024
Merged

fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.7.0 #867

merged 1 commit into from
Sep 30, 2024
+1 −1

Conversation

mend-for-github-com[bot]
Copy link
Contributor

@mend-for-github-com mend-for-github-com bot commented Sep 9, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
software.amazon.cryptography:aws-cryptographic-material-providers 1.0.2 -> 1.7.0 age adoption passing confidence

Release Notes

aws/aws-cryptographic-material-providers-library (software.amazon.cryptography:aws-cryptographic-material-providers)

v1.7.0

Features
  • HierarchyKeyring; CMC: Shared cache across Hierarchy Keyrings (#​747) (d4709e9)

v1.6.0

Bug Fixes
Features
  • bump dafny verification and code gen to dafny 4.8.0 (#​520) (e16539e)

1.5.1 (2024-07-08)

Fixes

v1.5.1

Fixes

v1.5.0

Features

v1.4.0

Features
  • Keystore: Introduce additional KMSConfiguration options (#​316) (f3a0a52)

The Hierarchical Keyring's Keystore now supports four (4) KMSConfigurations:

  • kmsKeyArn
  • kmsMRKeyArn
  • discovery
  • mrDiscovery

See our JavaDocs for details
on how these options effect the relationship between
a Keystore and KMS.

Maintenance

v1.3.0

Bug Fixes
  • dafny: Local Service Constructors MUST return concrete (64f72c1)
  • Improvements to the Java Release process (#​162) (d92c06a)
  • Increase try-block scope when calling MPL components (#​267) (7661bf4)
Features
  • Multi-Region Key Logic in the Keystore (#​285) (d924395)
  • .NET : Enforce User input Constraints at Type Conversion (#​281) (04102d7)
  • Update error message to include expected values when no Encrypted Data Keys found to match (#​275) (da95f9a)

1.2.0 (2024-01-08)

Features
* add command line parser (#​131)
Bug Fixes
* resolve awssdk:core dependency in TestVectors build.gradle.kts (#​177)
* add more tests to ComputeSetToOrderedSequence (#​111)
* Empty string defers to SDK default region (#​127)
* update mpl .csproj to use project references (#​134)
* newest polymorph for newest shims. Catch all exceptions. DDB only (#​135)
* update README for repo rename update (#​147)
* rerun latest polymorph. (#​128)
* typo lead to two verification, no format (#​130)
* Improve compatibility with Dafny 4.4 (#​129)
Maintenance
* A variety of fixes to the libraries CI and testing

1.0.2 (2023-10-18)

Bug Fixes
* CmpError must return custom error message (#​118) (86abacc)
* Deafult entryPruningTailSize (#​93) (0344e9f)
* Fix brittle concurrent test (#​105) (#​60) (c043162)
* fix typo in encryption materials validation (cd6b0aa), closes #​84
* fix typo in encryption materials validation (89a234c)
* Forward the underlying error (#​90) (bc21551)

1.0.1 2023-07-26

Fix
  • Fixes a runtime check in VersionKey Key Store API that no longer checks for the CipherText length
    on the output of a KMS ReEncrypt API call.

1.0.0 2023-07-21

Features
  • Introduces Thread Safe Cryptographic Materials Caches (CMCs):
    • Storm Tracking Cache
      Safe for use in a multi threaded environment,
      tries to prevent redundant or overly parallel backend calls.
      See Spec changes for details.
    • Multi Threaded Cache
      Safe for use in a multi threaded environment,
      but no extra functionality
BREAKING CHANGES
  • CMCs:
    • Original Cryptographic Materials Cache has been renamed to Single Threaded Cache
    • CreateCryptographicMaterialsCacheInput now ONLY accepts CacheType,
      which determines which, if any, of the three implemented CMCs will be returned.
    • The DefaultCache is StormTrackingCache
  • CreateAwsKmsHierarchicalKeyringInput:
    • no longer has a maxCacheSize field
    • now has an optional cache field for a CacheType
  • Hierarchical Keyring's Key Store:
    • The Hierarchical Keyring's Key Store's Data Structure has changed.
      As such, entries persisted in the Key Store with prior versions of this library are NOT compatibale.
      Instead, we recommend Creating a new DynamoDB Table for this version of the Key Store.
    • The Key Store's CreateKeyInput now takes:
      • An Optional String branchKeyIdentifier
      • An Optional EncryptionContext encryptionContext
        • This encryptionContext will be added to the Encryption Context sent to KMS prefixed with aws-crypto-ec:
    • Creating a Key now also calls KMS:ReEncrypt
    • CreateKeyStore no longer creates a GSI
    • The Encryption Context used with KMS' GenerateDataKeyWithoutPlaintext no longer include's the discarded GSI's status.
    • More details about the Key Store's changes are avaible in our Specification:
Maintenance
  • A variety of fixes to the libraries CI and testing
Fix
  • Fixes Required Encryption Context CMM and UpdateUsageMetadata names in smithy model

1.0.0-preview-3 2023-06-22

Fix
  • Fixes PutCacheEntry
    • PutCacheEntry will now update an entry.
      This simplifies using the cache in concurrent situations.
      Rather than having the caller implement some retry logic
      the cache will now update the entry.
  • Fixes pom.xml to include runtime version of BouncyCastle and removes bundling of BC in the jar.

1.0.0-preview-2 2023-06-19

Fix
  • Fixes build file to correctly generate pom file with correct dependencies during release.

1.0.0-preview-1 2023-06-07

Features
  • Initial release of the AWS Cryptographic Material Providers Library.
    This release is considered a developer preview
    and is not intended for production use cases.

v1.2.0

Features
* add command line parser (#​131)
Bug Fixes
* resolve awssdk:core dependency in TestVectors build.gradle.kts (#​177)
* add more tests to ComputeSetToOrderedSequence (#​111)
* Empty string defers to SDK default region (#​127)
* update mpl .csproj to use project references (#​134)
* newest polymorph for newest shims. Catch all exceptions. DDB only (#​135)
* update README for repo rename update (#​147)
* rerun latest polymorph. (#​128)
* typo lead to two verification, no format (#​130)
* Improve compatibility with Dafny 4.4 (#​129)
Maintenance
* A variety of fixes to the libraries CI and testing

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

@github-actions github-actions bot added the backport 2.x backport PRs to 2.x branch label Sep 9, 2024
@codecov Codecov
Copy link

codecov bot commented Sep 9, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 77.55%. Comparing base (22c994b) to head (892e7fe).
Report is 8 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff            @@
##               main     #867   +/-   ##
=========================================
  Coverage     77.55%   77.55%           
  Complexity      966      966           
=========================================
  Files            97       97           
  Lines          4531     4531           
  Branches        422      422           
=========================================
  Hits           3514     3514           
  Misses          835      835           
  Partials        182      182

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/software.amazon.cryptography-aws-cryptographic-material-providers-1.x branch 2 times, most recently from 1fc096b to b78a6f6 Compare September 13, 2024 03:34
@mend-for-github-com mend-for-github-com bot changed the title fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.5.1 fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.6.0 Sep 13, 2024
@mend-for-github-com
fix(deps): update dependency software.amazon.cryptography:aws-cryptog…
892e7fe 
…raphic-material-providers to v1.7.0

Signed-off-by: mend-for-github-com[bot] <mend-for-github-com[bot]@users.noreply.github.com>
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/software.amazon.cryptography-aws-cryptographic-material-providers-1.x branch from b78a6f6 to 892e7fe Compare September 25, 2024 03:05
@mend-for-github-com mend-for-github-com bot changed the title fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.6.0 fix(deps): update dependency software.amazon.cryptography:aws-cryptographic-material-providers to v1.7.0 Sep 25, 2024
@owaiskazi19 owaiskazi19 merged commit 973999b into main Sep 30, 2024
20 checks passed
@owaiskazi19 owaiskazi19 deleted the whitesource-remediate/software.amazon.cryptography-aws-cryptographic-material-providers-1.x branch September 30, 2024 18:46
@opensearch-trigger-bot
Copy link
Contributor

The backport to 2.x failed:

The process '/usr/bin/git' failed with exit code 128

To backport manually, run these commands in your terminal:

# Navigate to the root of your repository
cd $(git rev-parse --show-toplevel)
# Fetch latest updates from GitHub
git fetch
# Create a new working tree
git worktree add ../.worktrees/flow-framework/backport-2.x 2.x
# Navigate to the new working tree
pushd ../.worktrees/flow-framework/backport-2.x
# Create a new branch
git switch --create backport/backport-867-to-2.x
# Cherry-pick the merged commit of this pull request and resolve the conflicts
git cherry-pick -x --mainline 1 973999bf3b055df41029663083ef901f778ac363
# Push it to GitHub
git push --set-upstream origin backport/backport-867-to-2.x
# Go back to the original working tree
popd
# Delete the working tree
git worktree remove ../.worktrees/flow-framework/backport-2.x

Then, create a pull request where the base branch is 2.x and the compare/head branch is backport/backport-867-to-2.x.

dbwiddis pushed a commit to dbwiddis/flow-framework that referenced this pull request Sep 30, 2024
@mend-for-github-com @dbwiddis
fix(deps): update dependency software.amazon.cryptography:aws-cryptog…
c5cb685 
…raphic-material-providers to v1.7.0 (opensearch-project#867)

Signed-off-by: mend-for-github-com[bot] <mend-for-github-com[bot]@users.noreply.github.com>
Co-authored-by: mend-for-github-com[bot] <50673670+mend-for-github-com[bot]@users.noreply.github.com>
@dbwiddis dbwiddis mentioned this pull request Sep 30, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dbwiddis dbwiddis dbwiddis approved these changes

@owaiskazi19 owaiskazi19 owaiskazi19 approved these changes

@joshpalis joshpalis Awaiting requested review from joshpalis joshpalis is a code owner

@ohltyler ohltyler Awaiting requested review from ohltyler ohltyler is a code owner

@amitgalitz amitgalitz Awaiting requested review from amitgalitz amitgalitz is a code owner

@jackiehanyang jackiehanyang Awaiting requested review from jackiehanyang jackiehanyang is a code owner

Assignees
No one assigned
Labels
backport 2.x backport PRs to 2.x branch skip-changelog
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@dbwiddis @owaiskazi19