Skip to content

chore(deps): update dependency aws-cdk-lib to v2.192.0 - autoclosed #6684

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
mend-for-github-com wants to merge 1 commit into from

Update dependency aws-cdk-lib to v2.192.0

df1806c
Select commit
Loading
Failed to load commit list.
Closed

chore(deps): update dependency aws-cdk-lib to v2.192.0 - autoclosed #6684

Update dependency aws-cdk-lib to v2.192.0
df1806c
Select commit
Loading
Failed to load commit list.
Mend for GitHub.com / Mend Security Check failed Mar 30, 2026 in 6m 31s

Security Report

You have successfully remediated 1 vulnerabilities, but introduced 2 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2026-33750

Path to dependency file: /testing/aws-testing-cdk/package.json

Path to vulnerable library: /testing/aws-testing-cdk/package.json

Dependency Hierarchy:

-> aws-cdk-lib-2.241.0.tgz (Root Library)

   -> minimatch-10.2.4.tgz

     -> ❌ brace-expansion-5.0.3.tgz (Vulnerable Library)

Medium 6.5 Transitive brace-expansion-5.0.3.tgz aws-cdk-lib-2.241.0.tgz Transitive https://github.com/juliangruber/brace-expansion.git - v2.0.3,https://github.com/juliangruber/brace-expansion.git - v3.0.2,https://github.com/juliangruber/brace-expansion.git - v5.0.5,https://github.com/juliangruber/brace-expansion.git - v1.1.13 None
CVE-2026-25645

Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260330140706_PXIVYD/python_UVJNRD/202603301407071/env/lib/python3.9/site-packages/requests-2.32.5.dist-info

Dependency Hierarchy:

-> ❌ requests-2.32.5-py3-none-any.whl (Vulnerable Library)

Medium 4.4 Direct requests-2.32.5-py3-none-any.whl requests-2.32.5-py3-none-any.whl https://github.com/psf/requests.git - v2.33.0 None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2026-25645 requests-2.32.4-py3-none-any.whl

Base branch total remaining vulnerabilities: 10
Base branch commit: a5020bb2d319c475823ef4bd791b52fdec71fc4b


Total libraries scanned: 102

Scan token: 5542355820524a258888d3322b3446b7

View more details on Mend for GitHub.com