Releases: aws-solutions/innovation-sandbox-on-aws
Releases · aws-solutions/innovation-sandbox-on-aws
v1.1.3
[1.1.3] - 2025-12-10
Security
- Upgraded
jwsto mitigate CVE-2025-65945 - Upgraded
mdast-util-to-hastto mitigate CVE-2025-66400 - Upgraded
curl-minimalto mitigate CVE-2025-11563 - Upgraded
libcurl-minimalto mitigate CVE-2025-11563 - Upgraded
glib2to mitigate CVE-2025-13601 - Upgraded
python-unversioned-commandto mitigate CVE-2025-6075 - Upgraded
python3-libsto mitigate CVE-2025-6075 - Upgraded
python3to mitigate CVE-2025-6075
v1.1.2
[1.1.2] - 2025-11-20
Security
- Upgraded
js-yamlto mitigate CVE-2025-64718 - Upgraded
globto mitigate CVE-2025-64756
v1.1.1
[1.1.1] - 2025-11-14
Fixed
- Issue preventing cost report group from being set when
requireCostGroupis set totruein AppConfig
Security
- Upgraded
libcapto mitigate:
v1.1.0
[1.1.0] - 2025-10-29
Added
- Lease unfreezing capability allowing users to reinstate frozen leases (#42)
- Cost reporting groups feature for tracking and reporting costs by organizational groups (#43)
- Lease assignment functionality allowing administrators and managers to assign leases to other users(#44)
- Prioritization of accounts that have been used less recently when selecting an account to use in a lease
- Visibility configuration to set lease templates as PUBLIC or PRIVATE - PUBLIC templates are visible to all users, while PRIVATE templates are only accessible to Admin and Manager roles, enabling administrators to create restricted templates for specific use cases
Fixed
- IP allow list configuration issues (#35) (@maniryu)
- Filtered out Credit and Refund entries from cost explorer queries for more accurate reporting (#36) (@RuidiH)
- Permission issue preventing deployment of IDC stack in delegated admin account
- Execution does not exist bug in account cleaner step function
Security
- Upgraded
aws-nuketo mitigate: - Upgraded
viteto mitigate CVE-2025-62522 - Upgraded
python3-pipto mitigate CVE-2025-8869 - Upgraded
python3-pip-wheelto mitigate CVE-2025-8869 - Upgraded
openssl-libsto mitigate: - Upgraded
openssl-fips-provider-latestto mitigate: - Upgraded
brace-expansionto mitigate CVE-2025-5889
Contributors
RuidiH and maniryu
Assets 2
v1.0.5
[1.0.5] - 2025-10-09
Fixed
- Disabled WAF SizeRestrictions_QUERYSTRING rule blocking legitimate AWS Organizations pagination tokens on GET /accounts/unregistered endpoint when handling large numbers of accounts (>20)
Security
- Upgraded
expatto mitigate CVE-2025-59375
v1.0.4
[1.0.4] - 2025-09-02
Added
- Conditional deployment of CloudFront access logs to support regions that don't support standard logging (legacy)
- Missing AppConfig Lambda layer extension ARN for eu-central-2 region
Fixed
- Deployment failures in regions that don't support CloudFront standard access logging (legacy)
v1.0.3
[1.0.3] - 2025-07-25
Security
- Upgraded
form-datato mitigate CVE-2025-7783 - Upgraded
@node-saml/passport-samlto mitigate CVE-2025-54369
v1.0.2
v1.0.1
[1.0.1] - 2025-06-23
Added
- Optional CloudFormation parameters to the IDC stack for mapping user groups from external identity providers (#2)
Fixed
- High latency on APIs that consume the idc service layer code (idc-service.ts) due to dynamic lookup of user groups and permission sets (#3)
- IDC Configuration custom resource failing deployment due to large number of groups and permission sets causing timeout (#6)
Security
- Upgraded
aws-nuketo mitigate: - Upgraded
brace-expansionto mitigate CVE-2025-5889
