[Snyk] Upgrade @aws-sdk/client-secrets-manager from 3.329.0 to 3.398.0 #435

vishjain · 2023-09-20T02:07:56Z

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.329.0 to 3.398.0.

As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.

✨ Snyk has automatically assigned this pull request, set who gets assigned.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 36 versions ahead of your current version.
The recommended version was released a month ago, on 2023-08-23.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-5668858	589/1000 Why? Has a fix available, CVSS 7.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @aws-sdk/client-secrets-manager

3.398.0 - 2023-08-23
3.398.0(2023-08-23)

Chores
- clients:
  - codegen defaultExtensionConfiguration (#5131) (b3f447d5)
  - bump @ smithy/* dependencies (#5130) (16e85a68)
- private: bump @ smithy/* packages in test folders (#5133) (4954be61)
New Features
- clients: update client endpoints as of 2023-08-23 (cc58fcee)
- client-ec2: Marking fields as sensitive on BundleTask and GetPasswordData (31c97854)
- client-polly: Amazon Polly adds 1 new voice - Zayd (ar-AE) (7d48fbaa)
- client-api-gateway: This release adds RootResourceId to GetRestApi response. (2054e2cb)
- client-rekognitionstreaming: add oval fit timeout configuration option (#5132) (f19b2c1c)
Bug Fixes
- credential-provider-sso: accept all unexpired tokens as unexpired (#5124) (b57d48f5)
For list of updated packages, view updated-packages.md in assets-3.398.0.zip
3.395.0 - 2023-08-18
3.395.0(2023-08-18)

Chores
- clients: codegen update for runtime extensions (#5103) (3833c243)
Documentation Changes
- credential-provider-node: behavior when roleAssumer is not provided (#1950) (015cd791)
- credential-providers: fix fromTokenFile() env var names (#3412) (7196b681)
- upgrading: add notes on Lambda invoke (#5094) (78200fcc)
New Features
- clients: update client endpoints as of 2023-08-18 (13307927)
- client-codecommit: Add new ListFileCommitHistory operation to retrieve commits which introduced changes to a specific file. (d57dcd22)
- client-securityhub: Added Inspector Lambda code Vulnerability section to ASFF, including GeneratorDetails, EpssScore, ExploitAvailable, and CodeVulnerabilities. (2cdf852f)
For list of updated packages, view updated-packages.md in assets-3.395.0.zip
3.391.0 - 2023-08-14
3.389.0 - 2023-08-10
3.388.0 - 2023-08-09
3.387.0 - 2023-08-08
3.386.0 - 2023-08-07
3.385.0 - 2023-08-04
3.382.0 - 2023-08-01
3.379.1 - 2023-07-28
3.378.0 - 2023-07-26
3.377.0 - 2023-07-25
3.370.0 - 2023-07-13
3.369.0 - 2023-07-11
3.363.0 - 2023-06-29
3.362.0 - 2023-06-28
3.360.0 - 2023-06-26
3.359.0 - 2023-06-23
3.358.0 - 2023-06-22
3.357.0 - 2023-06-21
3.354.0 - 2023-06-16
3.353.0 - 2023-06-15
3.352.0 - 2023-06-13
3.350.0 - 2023-06-09
3.348.0 - 2023-06-07
3.347.1 - 2023-06-07
3.347.0 - 2023-06-06
3.345.0 - 2023-06-02
3.344.0 - 2023-06-01
3.342.0 - 2023-05-30
3.341.0 - 2023-05-26
3.338.0 - 2023-05-23
3.337.0 - 2023-05-22
3.335.0 - 2023-05-18
3.334.0 - 2023-05-16
3.332.0 - 2023-05-11
3.329.0 - 2023-05-08