github cloudposse/geodesic 2.9.2
v2.9.2
on GitHub

latest releases: 2.11.2, 2.11.1, 2.11.0...
2 months ago

🚀 Enhancements

Fix aws CLI auto-completions, use smaller kubectl package @Nuru (#924)

what

  • Fix aws auto-completion
  • Only install latest kubectl

why

  • The aws CLI is provided in 2 versions, v1 and v2, and which version is in use is managed by update-alternatives. However, each version of the CLI has a corresponding version of the aws_completer utility to perform auto-completion, but until now, Geodesic always used the v1 completer (a python script), even with the v2 CLI. This mostly worked, but it is not supported or correct.
  • Previously, we installed the kubectl package from packages.cloud.google.com, which is over 200 MB because it installs multiple versions of kubectl. We now install only the latest kubectl package from the Cloud Posse package repo, which is under 50 MB, to save space. Cloud Posse publishes packages for each minor version of kubectl (e.g. kubectl-1.29) so you can install the latest version compatible with your cluster if you do not want the current latest version.

references

This was brought to our attention by aws/aws-cli#8547 since upgrading to Python 3.12 in Geodesic v2.9.0.

🧰 Included Tools

Update AWS CLI packages @renovate (#925)

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
awscli (source, changelog) ==1.32.44 -> ==1.32.49 age adoption passing confidence
boto3 ==1.34.44 -> ==1.34.49 age adoption passing confidence

Release Notes

aws/aws-cli (awscli)

v1.32.49

Compare Source

=======

  • api-change:appsync: Documentation only updates for AppSync
  • api-change:qldb: Clarify possible values for KmsKeyArn and EncryptionDescription.
  • api-change:rds: Add pattern and length based validations for DBShardGroupIdentifier
  • api-change:rum: Doc-only update for new RUM metrics that were added

v1.32.48

Compare Source

=======

  • api-change:internetmonitor: This release adds IPv4 prefixes to health events
  • api-change:kinesisvideo: Increasing NextToken parameter length restriction for List APIs from 512 to 1024.

v1.32.47

Compare Source

=======

  • api-change:iotevents: Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models
  • api-change:lookoutequipment: This release adds a field exposing model quality to read APIs for models. It also adds a model quality field to the API response when creating an inference scheduler.
  • api-change:medialive: MediaLive now supports the ability to restart pipelines in a running channel.
  • api-change:ssm: This release adds support for sharing Systems Manager parameters with other AWS accounts.

v1.32.46

Compare Source

=======

  • api-change:dynamodb: Publishing quick fix for doc only update.
  • api-change:firehose: This release updates a few Firehose related APIs.
  • api-change:lambda: Add .NET 8 (dotnet8) Runtime support to AWS Lambda.

v1.32.45

Compare Source

=======

  • api-change:amplify: This release contains API changes that enable users to configure their Amplify domains with their own custom SSL/TLS certificate.
  • api-change:chatbot: This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK.
  • api-change:config: Documentation updates for the AWS Config CLI
  • api-change:ivs: Changed description for latencyMode in Create/UpdateChannel and Channel/ChannelSummary.
  • api-change:keyspaces: Documentation updates for Amazon Keyspaces
  • api-change:mediatailor: MediaTailor: marking #AdBreak.OffsetMillis as required.
boto/boto3 (boto3)

v1.34.49

Compare Source

=======

  • api-change:appsync: [botocore] Documentation only updates for AppSync
  • api-change:qldb: [botocore] Clarify possible values for KmsKeyArn and EncryptionDescription.
  • api-change:rds: [botocore] Add pattern and length based validations for DBShardGroupIdentifier
  • api-change:rum: [botocore] Doc-only update for new RUM metrics that were added

v1.34.48

Compare Source

=======

  • api-change:internetmonitor: [botocore] This release adds IPv4 prefixes to health events
  • api-change:kinesisvideo: [botocore] Increasing NextToken parameter length restriction for List APIs from 512 to 1024.

v1.34.47

Compare Source

=======

  • api-change:iotevents: [botocore] Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models
  • api-change:lookoutequipment: [botocore] This release adds a field exposing model quality to read APIs for models. It also adds a model quality field to the API response when creating an inference scheduler.
  • api-change:medialive: [botocore] MediaLive now supports the ability to restart pipelines in a running channel.
  • api-change:ssm: [botocore] This release adds support for sharing Systems Manager parameters with other AWS accounts.

v1.34.46

Compare Source

=======

  • api-change:dynamodb: [botocore] Publishing quick fix for doc only update.
  • api-change:firehose: [botocore] This release updates a few Firehose related APIs.
  • api-change:lambda: [botocore] Add .NET 8 (dotnet8) Runtime support to AWS Lambda.

v1.34.45

Compare Source

=======

  • api-change:amplify: [botocore] This release contains API changes that enable users to configure their Amplify domains with their own custom SSL/TLS certificate.
  • api-change:chatbot: [botocore] This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK.
  • api-change:config: [botocore] Documentation updates for the AWS Config CLI
  • api-change:ivs: [botocore] Changed description for latencyMode in Create/UpdateChannel and Channel/ChannelSummary.
  • api-change:keyspaces: [botocore] Documentation updates for Amazon Keyspaces
  • api-change:mediatailor: [botocore] MediaTailor: marking #AdBreak.OffsetMillis as required.
Update dependency cryptography to v42.0.5 @renovate (#921)

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
cryptography (changelog) ==42.0.4 -> ==42.0.5 age adoption passing confidence

Release Notes

pyca/cryptography (cryptography)

v42.0.5

Compare Source

Update dependency cryptography to v42.0.4 [SECURITY] @renovate (#923)

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
cryptography (changelog) ==42.0.3 -> ==42.0.4 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2024-26130

If pkcs12.serialize_key_and_certificates is called with both:

  1. A certificate whose public key did not match the provided private key
  2. An encryption_algorithm with hmac_hash set (via PrivateFormat.PKCS12.encryption_builder().hmac_hash(...)

Then a NULL pointer dereference would occur, crashing the Python process.

This has been resolved, and now a ValueError is properly raised.

Patched in https://github.com/pyca/cryptography/pull/10423

Release Notes

pyca/cryptography (cryptography)

v42.0.4

Compare Source

Check out latest releases or
releases around cloudposse/geodesic 2.9.2

Don't miss a new geodesic release

NewReleases is sending notifications on new releases.

Get notifications