[Snyk] Upgrade aws-cdk-lib from 2.66.1 to 2.150.0

[gitafolabi]

Snyk has created this PR to upgrade aws-cdk-lib from 2.66.1 to 2.150.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 111 versions ahead of your current version.

• The recommended version was released on 24 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Incorrect Privilege Assignment SNYK-JS-AWSCDKLIB-5721464	654	No Known Exploit

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[dryrunsecurity]

DryRun Security Summary

The pull request primarily focuses on updating the project's dependencies, particularly the aws-cdk-lib library from version ^2.66.1 to ^2.150.0, as well as several other dependencies, to improve the overall security posture of the application.

Expand for full summary

Summary:

The code changes in this pull request primarily focus on updating the project's dependencies, particularly the aws-cdk-lib library, which has been updated from version ^2.66.1 to ^2.150.0. This is a significant version bump, indicating that the project is being updated to use a newer version of the AWS CDK library. Updating dependencies is generally a positive change as it often includes bug fixes and security patches, which can help improve the overall security posture of the application.

Additionally, the project includes several other dependencies, such as @aws-cdk/aws-lambda-python-alpha, async-retry, aws-sdk, cdk-assets, and constructs, which have also been updated. It's important to ensure that all of these dependencies are up-to-date and that any known security vulnerabilities have been addressed.

Files Changed:

1. cdk/package.json: This file has been updated to reflect the new dependency versions, including the aws-cdk-lib update from ^2.66.1 to ^2.150.0.
2. cdk/yarn.lock: This file has been updated to reflect the changes in the project's dependencies, including updates to @aws-cdk/asset-awscli-v1, @aws-cdk/asset-kubectl-v20, @aws-cdk/asset-node-proxy-agent-v5 (and its replacement @aws-cdk/asset-node-proxy-agent-v6), and aws-cdk-lib from 2.66.1 to 2.152.0.

Overall, these changes appear to be routine updates to the project's dependencies, which is a good practice to keep the application secure and up-to-date. However, it's still important to thoroughly review the changes and ensure that they do not introduce any new security vulnerabilities or breaking changes that could impact the application's functionality.

Code Analysis

We ran 9 analyzers against 2 files and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer	Findings
Sensitive Files Analyzer	1 finding

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.