v8.0.5

What's Changed

• 8.0.5 by @bryceaug in #645

[8.0.5] - 2026-05-11

Fixed

• Migration issue preventing users from upgrading past major version v8.0.0 #644
• Animated content in the .gif format had the abiltiy to be converted to non-animated image formats, breaking the animation and serving a still image

Security

• Bump fast-xml-parser to 5.7.0 to mitigate CVE-2026-41650

Full Changelog: v8.0.4...release/v8.0.5-rc01

Contributors

@kingdoooo

v8.0.4

[8.0.4] - 2026-04-20

Security

• Bump @aws-amplify/ui-react to 6.15.3 and aws-amplify to 6.16.4 to resolve transitive lodash vulnerabilities: CVE-2026-2950, CVE-2026-4800
• Bump vite to 6.4.2 to mitigate CVE-2026-39363 and CVE-2026-39365
• Bump qs to 6.14.2 to mitigate CVE-2026-2391

v8.0.3

What's Changed

Full Changelog: v8.0.2...v8.0.3

[8.0.3] - 2026-02-26

Added

• CorsOriginParameter to restrict image processing endpoint to specific origin, default to * #624
• added no-store, no-cache cache control headers on management api

Changed

• restrict management api to admin-ui cloudfront origin, preventing arbitrary origins being trusted on api
• fix stripExif, stripIcc transforms and autoOrient logic #623
• remove default Sharp image size limit and support the limit as environment variable on container #632
• move to built-in node:crypto
• added verboseDescription to log image processing errors at a different verbosity than the HTTP response
• narrowed resource for logs actions to specific container log group
• fix e2e test setup in management-lambda package to clear ddb table instead of delete/recreate

Security

• Bump systeminformation to mitigate CVE-2026-26318 and CVE-2026-26280

v8.0.2

[8.0.2] - 2026-01-07

Security

• Version bump qs to mitigate CVE-2025-15284

v8.0.1

What's Changed

• 8.0.1 by @gsingh04 in #629

[8.0.1] - 2025-12-18

Security

• Bump systeminformation to mitigate CVE-2025-68154

Added

• Support watermark with policy create/edit on web ui

Changed

• upgrade lambda runtime to nodejs22 #628
• refactor log retention to default 10 years with all cw log groups #620
• fix output quality optimization to use integer values #622
• pass next token correctly for list policy operation on ui
• move auto format selection to CF function and refactor dit-accept header normalization to improve cache hit
• corrected auto-optimization logic for static optimization configuration
• use dynamodb local image from public ecr for integration tests
• fix backtracking prone regex in data-models

Full Changelog: v8.0.0...v8.0.1

Contributors

@fabidick22

v8.0.0

Dynamic Image Transformation v8.0.0 - Major Architecture Update

🚀 What's New

Version 8.0.0 introduces a complete architectural overhaul with a new ECS-based processing engine, Admin UI, and policy-driven configuration system.

🎯 Key Highlights

• Admin UI - Web-based configuration management interface
• ECS Architecture - Image processing with container-based engine
• Policy System - Declarative transformation policies with support for auto-optimizations and conditional header transformations
• Multi-tenant Support - Host and path-based routing capabilities

✨ New Features

Admin UI and Configuration Management

• Admin UI built with React and TypeScript for configuration management
• CRUD operations for Origins, Transformation Policies, and Mappings
• Authentication integration with Amazon Cognito User Pools
• Real-time form validation and AWS Cloudscape Design System components

Management API and Backend Services

• RESTful management API using Amazon API Gateway
• DynamoDB integration with single-table design for configuration storage
• Lambda-based management functions with AWS SDK v3 integration
• OpenAPI specification for API documentation
• Comprehensive error handling and structured logging
• Pagination support on list APIs

ECS-Based Container Architecture for Image Processing Engine

• Amazon ECS Fargate-based image processing engine
• Express.js-based REST API server with Docker containerization
• Auto-scaling capabilities and t-shirt sizing deployment options (Small, Medium, Large, X-Large)
• Container health check endpoints
• CloudFront Function for header normalization to improve cache hit ratio
• URL validation and sanitization
• Caching policy with DIT specific custom cache keys (dit-host, dit-accept, dit-dpr, dit-viewport-width)

Origin

• Support for S3 and external HTTPS image sources
• S3 URL helper utilities for secure access
• Connection management for external origin sources
• Origin validation and error handling

Transformation Policy

• Declarative transformation policy system with schema validation
• Support for one default transformation policy as fallback
• Auto-optimization based on client hints (Sec-ch-viewport-width, Sec-ch-dpr, Accept headers)
• Conditional transformations based on request headers and query parameters
• Policy and transformation override capabilities via query string in request

Mapping (Routing Rules)

• Path-based mapping to route based on request path
• Host header-based mapping for multi-tenant support and routing on host-header
• Support for configuring policy with the mappings/routing rules

Data Models and Validation

• Comprehensive TypeScript data models using Zod for runtime validation
• Strict type safety across all configuration entities
• Request validation and sanitization

🔧 Deployment Options

Choose from pre-configured deployment sizes:
• Small - Basic workloads
• Medium - Standard production use
• Large - High-volume processing
• X-Large - Enterprise scale

📋 Migration Notes

This is a major version with architectural changes. Please review the guide before upgrading from v7.x.

🔗 Quick Deploy

ECS Architecture (Recommended):
https://solutions-reference.s3.us-east-1.amazonaws.com/dynamic-image-transformation-for-amazon-cloudfront/latest/dynamic-image-transformation-for-amazon-cloudfront-ecs.template

Lambda Architecture:
https://solutions-reference.s3.us-east-1.amazonaws.com/dynamic-image-transformation-for-amazon-cloudfront/latest/dynamic-image-transformation-for-amazon-cloudfront-lambda.template

v7.0.8

[7.0.8] - 2025-10-07

Added

• Added deprecation notice for S3 Object Lambda architecture usage

v7.0.7

[7.0.7] - 2025-09-22

Security

• Bumped axios to 1.12.2 to mitigate CVE-2025-58754

Changed

• Modified sourcebucketpattern to allow valid s3 bucket names

Removed

• AppRegistry application at resource level

v7.0.6

What's Changed

• Release 7.0.6 by @gsingh04 in #602

Security

• Bump form-data to mitigate CVE-2025-7783

Full Changelog: v7.0.5...v7.0.6

v7.0.5

What's Changed

• Release v7.0.5 by @gsingh04 in #601

Changed

• Migrated to AWS SDK for JavaScript v3 (#548)
• Bundling instruction for sharp module as per cross-platform installation instruction
• Bumped dependencies, sharp bumped to 0.34.2

Fixed

• Return image metadata for all cases by default using withMetadata()
• In thumbor-styled requests, align filters:rotate() with sharp rotate behavior, if no angle is provided autoOrient() (#590)

Full Changelog: v7.0.4...v7.0.5

Contributors

@markatom