feat(deps): upgrade aws-cdk-lib by aws-cdk-automation · Pull Request #1615 · aws/aws-cdk-cli

aws-cdk-automation · 2026-06-10T01:02:09Z

Upgrades project dependencies. See details in workflow run.

Automatically created by projen via the "upgrade-aws-cdk-lib_aws-cdk" workflow

Upgrades project dependencies. See details in [workflow run]. [Workflow Run]: https://github.com/aws/aws-cdk-cli/actions/runs/27245972961 ------ *Automatically created by projen via the "upgrade-aws-cdk-lib_aws-cdk" workflow* Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

github-actions · 2026-06-10T01:02:23Z

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package

Version

Score

Details

npm/aws-cdk-lib

2.258.1

🟢 5.9

Details

Check	Score	Reason
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ 0	dangerous workflow patterns detected
License	🟢 10	license file detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	⚠️ -1	internal error: internal error: invalid Dockerfile
SAST	🟢 9	SAST tool detected but not run on all commits
Binary-Artifacts	⚠️ 0	binaries present in source code
Fuzzing	🟢 10	project is fuzzed

npm/aws-cdk-lib

2.258.1

🟢 5.9

Details

Check	Score	Reason
Code-Review	🟢 10	all changesets reviewed
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	⚠️ 0	dangerous workflow patterns detected
License	🟢 10	license file detected
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Signed-Releases	🟢 8	5 out of the last 5 releases have a total of 5 signed artifacts.
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Pinned-Dependencies	⚠️ -1	internal error: internal error: invalid Dockerfile
SAST	🟢 9	SAST tool detected but not run on all commits
Binary-Artifacts	⚠️ 0	binaries present in source code
Fuzzing	🟢 10	project is fuzzed

Scanned Files

packages/aws-cdk/package.json
yarn.lock

codecov-commenter · 2026-06-10T01:19:51Z

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 88.21%. Comparing base (c03ef3e) to head (433aeab).
⚠️ Report is 3 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main    #1615   +/-   ##
=======================================
  Coverage   88.21%   88.21%           
=======================================
  Files          76       76           
  Lines       11064    11064           
  Branches     1528     1528           
=======================================
  Hits         9760     9760           
  Misses       1275     1275           
  Partials       29       29

Flag	Coverage Δ
suite.unit	`88.21% <ø> (ø)`

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

aws-cdk-automation added the auto-approve label Jun 10, 2026

aws-cdk-automation temporarily deployed to automation June 10, 2026 01:02 — with GitHub Actions Inactive

github-actions Bot approved these changes Jun 10, 2026

View reviewed changes

github-actions Bot added the p2 label Jun 10, 2026

aws-cdk-automation requested a review from a team June 10, 2026 01:02

aws-cdk-automation enabled auto-merge June 10, 2026 01:02

aws-cdk-automation temporarily deployed to no-approval June 10, 2026 01:02 — with GitHub Actions Inactive

aws-cdk-automation temporarily deployed to run-tests June 10, 2026 01:06 — with GitHub Actions Inactive

aws-cdk-automation temporarily deployed to run-tests June 10, 2026 01:12 — with GitHub Actions Inactive

aws-cdk-automation added this pull request to the merge queue Jun 10, 2026

Merged via the queue into main with commit 8d3083c Jun 10, 2026
41 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(deps): upgrade aws-cdk-lib#1615

feat(deps): upgrade aws-cdk-lib#1615
aws-cdk-automation merged 2 commits into
mainfrom
github-actions/upgrade-aws-cdk-lib_aws-cdk

aws-cdk-automation commented Jun 10, 2026

Uh oh!

github-actions Bot commented Jun 10, 2026 •

edited

Loading

Uh oh!

codecov-commenter commented Jun 10, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

aws-cdk-automation commented Jun 10, 2026

Uh oh!

github-actions Bot commented Jun 10, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Dependency Review

OpenSSF Scorecard

Scanned Files

Uh oh!

codecov-commenter commented Jun 10, 2026

Codecov Report

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

github-actions Bot commented Jun 10, 2026 •

edited

Loading