The AWS Cloud Development Kit is a framework for defining cloud infrastructure in code
Installations
npm install @aws-cdk/aws-apigatewayv2-alphaScore
60.2
Supply Chain
83.2
Quality
81.3
Maintenance
100
Vulnerability
84.7
License
Developer
Developer Guide
BETA
Module System
CommonJS
Min. Node Version
>= 14.15.0
Typescript Support
Yes
Node Version
18.16.1
NPM Version
9.5.1
Statistics
11,709 Stars
14,601 Commits
3,933 Forks
227 Watching
186 Branches
1,529 Contributors
Updated on 28 Nov 2024
Bundle Size
76.46 kB
Minified
11.09 kB
Minified + Gzipped
Languages
TypeScript (97.82%)
JavaScript (1.22%)
Python (0.52%)
Shell (0.27%)
Dockerfile (0.04%)
Go (0.04%)
Java (0.03%)
C# (0.02%)
Alloy (0.02%)
Velocity Template Language (0.01%)
Total Downloads
Cumulative downloads
Total Downloads
21,158,290
Last day
-19.1%
20,266
Compared to previous day
Last week
-0%
118,278
Compared to previous week
Last month
2.6%
501,291
Compared to previous month
Last year
-22%
7,636,741
Compared to previous year
Daily Downloads
Weekly Downloads
Monthly Downloads
Yearly Downloads
Peer Dependencies
2
Versions
AWS Cloud Development Kit (AWS CDK)
The AWS Cloud Development Kit (AWS CDK) is an open-source software development framework to define cloud infrastructure in code and provision it through AWS CloudFormation.
It offers a high-level object-oriented abstraction to define AWS resources imperatively using the power of modern programming languages. Using the CDK’s library of infrastructure constructs, you can easily encapsulate AWS best practices in your infrastructure definition and share it without worrying about boilerplate logic.
The CDK is available in the following languages:
- JavaScript, TypeScript (Node.js ≥ 14.15.0)
- We recommend using a version in Active LTS
- Python (Python ≥ 3.8)
- Java (Java ≥ 8 and Maven ≥ 3.5.4)
- .NET (.NET ≥ 6.0)
- Go (Go ≥ 1.16.4)
Third-party Language Deprecation: language version is only supported until its EOL (End Of Life) shared by the vendor or community and is subject to change with prior notice.
Jump To:
Developer Guide |
API Reference |
Getting Started |
Getting Help |
Contributing |
RFCs |
Roadmap |
More Resources
Developers use the CDK framework in one of the supported programming languages to define reusable cloud components called constructs, which are composed together into stacks, forming a "CDK app".
They then use the AWS CDK CLI to interact with their CDK app. The CLI allows developers to synthesize artifacts such as AWS CloudFormation Templates, deploy stacks to development AWS accounts and "diff" against a deployed stack to understand the impact of a code change.
The AWS Construct Library includes a module for each AWS service with constructs that offer rich APIs that encapsulate the details of how to use AWS. The AWS Construct Library aims to reduce the complexity and glue-logic required when integrating various AWS services to achieve your goals on AWS.
Modules in the AWS Construct Library are designated Experimental while we build them; experimental modules may have breaking API changes in any release. After a module is designated Stable, it adheres to semantic versioning, and only major releases can have breaking changes. Each module's stability designation is available on its Overview page in the AWS CDK API Reference. For more information, see Versioning in the CDK Developer Guide.
Getting Started
For a detailed walkthrough, see the tutorial in the AWS CDK Developer Guide.
At a glance
Install or update the AWS CDK CLI from npm (requires Node.js ≥ 14.15.0). We recommend using a version in Active LTS
1npm i -g aws-cdk
(See Manual Installation for installing the CDK from a signed .zip file).
Initialize a project:
1mkdir hello-cdk 2cd hello-cdk 3cdk init sample-app --language=typescript
This creates a sample project looking like this:
1export class HelloCdkStack extends cdk.Stack { 2 constructor(scope: cdk.App, id: string, props?: cdk.StackProps) { 3 super(scope, id, props); 4 5 const queue = new sqs.Queue(this, 'HelloCdkQueue', { 6 visibilityTimeout: cdk.Duration.seconds(300) 7 }); 8 9 const topic = new sns.Topic(this, 'HelloCdkTopic'); 10 11 topic.addSubscription(new subs.SqsSubscription(queue)); 12 } 13}
Deploy this to your account:
1cdk deploy
Use the cdk command-line toolkit to interact with your project:
cdk deploy: deploys your app into an AWS accountcdk synth: synthesizes an AWS CloudFormation template for your appcdk diff: compares your app with the deployed stack
Getting Help
The best way to interact with our team is through GitHub. You can open an issue and choose from one of our templates for bug reports, feature requests, documentation issues, or guidance.
If you have a support plan with AWS Support, you can also create a new support case.
You may also find help on these community resources:
- Look through the API Reference or Developer Guide
- The #aws-cdk Slack channel in cdk.dev
- Ask a question on Stack Overflow
and tag it with
aws-cdk
Roadmap
The AWS CDK Roadmap lets developers know about our upcoming features and priorities to help them plan how to best leverage the CDK and identify opportunities to contribute to the project. See ROADMAP.md for more information and FAQs.
Contributing
We welcome community contributions and pull requests. See CONTRIBUTING.md for information on how to set up a development environment and submit code.
Metrics collection
This solution collects anonymous operational metrics to help AWS improve the quality and features of the CDK. For more information, including how to disable this capability, please see the developer guide.
More Resources
- CDK Workshop
- Construct Hub - Find and use open-source Cloud Development Kit (CDK) libraries
- Best Practices
- All developer blog posts about AWS CDK
- CDK Construction Zone - A Twitch live coding series hosted by the CDK team, season one episodes:
- Triggers: Join us as we implement Triggers, a Construct for configuring deploy time actions. Episodes 1-3:
- S1E4: Tokens Deep Dive; Participants: @NetaNir,@rix0rrr, @iliapolo, @RomainMuller
- S1E5: Assets Deep Dive; Participants: @NetaNir, @eladb, @jogold
- S1E6: Best Practices; Participants: @skinny85, @eladb, @rix0rrr, @alexpulver
- S1E7: Tips and Tricks From The CDK Team; Participants: All the CDK team!
- Examples
- Changelog
- NOTICE
- License
No vulnerabilities found.
Reason
30 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 10
Reason
all changesets reviewed
Reason
license file detected
Details
- Info: project has a license file: LICENSE:0
- Info: FSF or OSI recognized license: Apache License 2.0: LICENSE:0
Reason
security policy file detected
Details
- Info: security policy file detected: github.com/aws/.github/SECURITY.md:1
- Info: Found linked content: github.com/aws/.github/SECURITY.md:1
- Info: Found disclosure, vulnerability, and/or timelines in security policy: github.com/aws/.github/SECURITY.md:1
- Info: Found text in security policy: github.com/aws/.github/SECURITY.md:1
Reason
project is fuzzed
Details
- Info: TypeScriptPropertyBasedTesting integration found: packages/@aws-cdk/cloudformation-diff/test/diff-template.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/@aws-cdk/cloudformation-diff/test/iam/statement.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/@aws-cdk/cloudformation-diff/test/network/rule.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/@aws-cdk/cloudformation-diff/test/test-arbitraries.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk-lib/aws-applicationautoscaling/test/step-scaling-policy.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk-lib/aws-applicationautoscaling/test/util.ts:2
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk-lib/aws-autoscaling-common/test/intervals.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk-lib/aws-autoscaling-common/test/util.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk-lib/core/test/fn.test.ts:1
- Info: TypeScriptPropertyBasedTesting integration found: packages/aws-cdk/test/util/objects.test.ts:2
Reason
SAST tool detected but not run on all commits
Details
- Info: SAST configuration detected: CodeQL
- Warn: 25 commits out of 30 are checked with a SAST tool
Reason
5 out of the last 5 releases have a total of 5 signed artifacts.
Details
- Info: signed release artifact: aws-cdk-2.171.0.zip.sig: https://github.com/aws/aws-cdk/releases/tag/v2.171.0
- Info: signed release artifact: aws-cdk-2.170.0.zip.sig: https://github.com/aws/aws-cdk/releases/tag/v2.170.0
- Info: signed release artifact: aws-cdk-2.169.0.zip.sig: https://github.com/aws/aws-cdk/releases/tag/v2.169.0
- Info: signed release artifact: aws-cdk-2.168.0.zip.sig: https://github.com/aws/aws-cdk/releases/tag/v2.168.0
- Info: signed release artifact: aws-cdk-2.167.2.zip.sig: https://github.com/aws/aws-cdk/releases/tag/v2.167.2
- Warn: release artifact v2.171.0 does not have provenance: https://api.github.com/repos/aws/aws-cdk/releases/187342694
- Warn: release artifact v2.170.0 does not have provenance: https://api.github.com/repos/aws/aws-cdk/releases/186789612
- Warn: release artifact v2.169.0 does not have provenance: https://api.github.com/repos/aws/aws-cdk/releases/186582896
- Warn: release artifact v2.168.0 does not have provenance: https://api.github.com/repos/aws/aws-cdk/releases/186457624
- Warn: release artifact v2.167.2 does not have provenance: https://api.github.com/repos/aws/aws-cdk/releases/186216809
Reason
7 existing vulnerabilities detected
Details
- Warn: Project is vulnerable to: GHSA-wf5p-g6vw-rhxx
- Warn: Project is vulnerable to: GHSA-jchw-25xp-jwwc
- Warn: Project is vulnerable to: GHSA-cxjh-pqwp-8mfp
- Warn: Project is vulnerable to: GHSA-9wx4-h78v-vm56
- Warn: Project is vulnerable to: GHSA-34jh-p97f-mpxf
- Warn: Project is vulnerable to: GHSA-rx28-r23p-2qc3
- Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Reason
dangerous workflow patterns detected
Details
- Warn: script injection with untrusted input ' github.event.pull_request.head.ref ': .github/workflows/lambda-runtime-tests.yml:42
- Warn: untrusted code checkout '${{ github.event.pull_request.head.ref }}': .github/workflows/request-cli-integ-test.yml:13
- Warn: untrusted code checkout '${{ github.event.pull_request.head.sha }}': .github/workflows/request-cli-integ-test.yml:44
Reason
detected GitHub workflow tokens with excessive permissions
Details
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/close-stale-issues.yml:15
- Info: jobLevel 'packages' permission set to 'read': .github/workflows/codeql.yml:25
- Info: jobLevel 'actions' permission set to 'read': .github/workflows/codeql.yml:28
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/codeql.yml:29
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/pr-linter.yml:66
- Info: jobLevel 'statuses' permission set to 'read': .github/workflows/pr-linter.yml:68
- Info: jobLevel 'issues' permission set to 'read': .github/workflows/pr-linter.yml:69
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/spec-update.yml:15
- Info: found token with 'none' permissions: .github/workflows/spec-update.yml:82
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/spec-update.yml:81
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/spec-update.yml:123
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/sync-from-upstream.yml:43
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/update-metadata-regions.yml:45
- Info: jobLevel 'contents' permission set to 'read': .github/workflows/yarn-upgrade.yml:13
- Warn: jobLevel 'contents' permission set to 'write': .github/workflows/yarn-upgrade.yml:101
- Warn: no topLevel permission defined: .github/workflows/auto-approve.yml:1
- Warn: no topLevel permission defined: .github/workflows/close-stale-issues.yml:1
- Warn: no topLevel permission defined: .github/workflows/close-stale-prs.yml:1
- Warn: no topLevel permission defined: .github/workflows/codecov.yml:1
- Warn: no topLevel permission defined: .github/workflows/codeql.yml:1
- Warn: no topLevel permission defined: .github/workflows/github-merit-badger.yml:1
- Warn: no topLevel permission defined: .github/workflows/handle-stale-discussions.yml:1
- Warn: no topLevel permission defined: .github/workflows/issue-label-assign.yml:1
- Warn: no topLevel permission defined: .github/workflows/issue-regression-labeler.yml:1
- Warn: no topLevel permission defined: .github/workflows/issue-reprioritization.yml:1
- Warn: no topLevel permission defined: .github/workflows/lambda-runtime-tests.yml:1
- Warn: no topLevel permission defined: .github/workflows/lock-issue-pr-with-message.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-labeler.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-linter-exemption-labeler.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-linter-trigger.yml:1
- Warn: no topLevel permission defined: .github/workflows/pr-linter.yml:1
- Info: topLevel 'pull-requests' permission set to 'read': .github/workflows/repo-metrics-monthly.yml:9
- Warn: no topLevel permission defined: .github/workflows/request-cli-integ-test.yml:1
- Warn: no topLevel permission defined: .github/workflows/spec-update.yml:1
- Warn: no topLevel permission defined: .github/workflows/sync-from-upstream.yml:1
- Warn: no topLevel permission defined: .github/workflows/update-contributors.yml:1
- Warn: no topLevel permission defined: .github/workflows/update-metadata-regions.yml:1
- Warn: no topLevel permission defined: .github/workflows/yarn-upgrade.yml:1
Reason
no effort to earn an OpenSSF best practices badge detected
Reason
binaries present in source code
Details
- Warn: binary detected: packages/@aws-cdk-testing/framework-integ/test/aws-s3-assets/test/integ.assets.directory.lit.js.snapshot/asset.6b84b87243a4a01c592d78e1fd3855c4bfef39328cd0a450cc97e81717fea2a2/sample-jar-asset.jar:1
- Warn: binary detected: packages/@aws-cdk-testing/framework-integ/test/aws-s3-assets/test/integ.assets.refs.lit.js.snapshot/asset.6b84b87243a4a01c592d78e1fd3855c4bfef39328cd0a450cc97e81717fea2a2/sample-jar-asset.jar:1
- Warn: binary detected: packages/@aws-cdk-testing/framework-integ/test/aws-s3-assets/test/sample-asset-directory/sample-jar-asset.jar:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/integ.alias.js.snapshot/asset.b95e4173bc399a8f686a4951aa26e01de1ed1e9d981ee1a7f18a15512dbdcb37/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/integ.build-fleet.js.snapshot/asset.b9a6ac85861c7bf3d745d9866a46a450a1b14afa77e28d2c2767e74ce4e37c03/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/integ.build.js.snapshot/asset.b95e4173bc399a8f686a4951aa26e01de1ed1e9d981ee1a7f18a15512dbdcb37/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/integ.game-session-queue.js.snapshot/asset.b95e4173bc399a8f686a4951aa26e01de1ed1e9d981ee1a7f18a15512dbdcb37/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/integ.queued-matchmaking-configuration.js.snapshot/asset.b95e4173bc399a8f686a4951aa26e01de1ed1e9d981ee1a7f18a15512dbdcb37/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-gamelift-alpha/test/my-game-build/TestApplicationServer:1
- Warn: binary detected: packages/@aws-cdk/aws-kinesisanalytics-flink-alpha/test/code-asset/WordCount.jar:1
- Warn: binary detected: packages/@aws-cdk/aws-kinesisanalytics-flink-alpha/test/integ.application-code-from-bucket.lit.js.snapshot/asset.8be9e0b5f53d41e9a3b1d51c9572c65f24f8170a7188d0ed57fb7d571de4d577/WordCount.jar:1
- Warn: binary detected: packages/@aws-cdk/aws-kinesisanalytics-flink-alpha/test/integ.application.lit.js.snapshot/asset.8be9e0b5f53d41e9a3b1d51c9572c65f24f8170a7188d0ed57fb7d571de4d577/WordCount.jar:1
- Warn: binary detected: packages/@aws-cdk/aws-kinesisanalytics-flink-alpha/test/integ.vpc-application.js.snapshot/asset.8be9e0b5f53d41e9a3b1d51c9572c65f24f8170a7188d0ed57fb7d571de4d577/WordCount.jar:1
- Warn: binary detected: packages/@aws-cdk/aws-lambda-go-alpha/test/integ.function.js.snapshot/asset.3ca3899fd89ffddaa38e2f556f7357f6e178b0d94502b5dc21dce70490ed642f/bootstrap:1
- Warn: binary detected: packages/@aws-cdk/aws-lambda-go-alpha/test/integ.function.provided.runtimes.js.snapshot/asset.3ca3899fd89ffddaa38e2f556f7357f6e178b0d94502b5dc21dce70490ed642f/bootstrap:1
- Warn: binary detected: packages/aws-cdk-lib/aws-s3-assets/test/sample-asset-directory/sample-jar-asset.jar:1
Reason
dependency not pinned by hash detected -- score normalized to 0
Details
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/auto-approve.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/auto-approve.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/close-stale-issues.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/close-stale-issues.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/close-stale-prs.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/close-stale-prs.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codecov.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codecov.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codecov.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codecov.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/codecov.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codecov.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:41: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codeql.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codeql.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codeql.yml:73: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/codeql.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/github-merit-badger.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/github-merit-badger.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/handle-stale-discussions.yml:18: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/handle-stale-discussions.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-label-assign.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-label-assign.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-label-assign.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-label-assign.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-label-assign.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-label-assign.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/issue-regression-labeler.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-regression-labeler.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-reprioritization.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-reprioritization.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/issue-reprioritization.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/issue-reprioritization.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lambda-runtime-tests.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/lambda-runtime-tests.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/lambda-runtime-tests.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/lambda-runtime-tests.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/lock-issue-pr-with-message.yml:16: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/lock-issue-pr-with-message.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-labeler.yml:27: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/pr-labeler.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/pr-linter-exemption-labeler.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/pr-linter-exemption-labeler.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-linter-trigger.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/pr-linter-trigger.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-linter.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/pr-linter.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/pr-linter.yml:74: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/pr-linter.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repo-metrics-monthly.yml:33: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/repo-metrics-monthly.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/repo-metrics-monthly.yml:39: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/repo-metrics-monthly.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/repo-metrics-monthly.yml:47: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/repo-metrics-monthly.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/repo-metrics-monthly.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/repo-metrics-monthly.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/request-cli-integ-test.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/request-cli-integ-test.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/request-cli-integ-test.yml:45: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/request-cli-integ-test.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:19: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:34: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:52: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:72: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:88: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:93: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:113: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:128: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:131: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/spec-update.yml:140: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/spec-update.yml:146: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/spec-update.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sync-from-upstream.yml:48: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/sync-from-upstream.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/sync-from-upstream.yml:55: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/sync-from-upstream.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-contributors.yml:13: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-contributors.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-contributors.yml:14: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-contributors.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-contributors.yml:21: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-contributors.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:22: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:23: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:36: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:50: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:53: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/update-metadata-regions.yml:62: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/update-metadata-regions.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:17: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:20: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:31: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:92: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:106: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:109: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: third-party GitHubAction not pinned by hash: .github/workflows/yarn-upgrade.yml:119: update your workflow using https://app.stepsecurity.io/secureworkflow/aws/aws-cdk/yarn-upgrade.yml/main?enable=pin
- Warn: containerImage not pinned by hash: .devcontainer/Dockerfile:1: pin your Docker image by updating jsii/superchain:1-bookworm-slim-node20 to jsii/superchain:1-bookworm-slim-node20@sha256:d82f4fc18863fe59cb46c691b69136013a1570ebd4004eec84d597a12c25b0e0
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/cli-integ/resources/cdk-apps/app/docker/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/alpine:latest to public.ecr.aws/docker/library/alpine:latest@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/cli-integ/resources/cdk-apps/app/docker/Dockerfile.Custom:1: pin your Docker image by updating public.ecr.aws/docker/library/alpine:latest to public.ecr.aws/docker/library/alpine:latest@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/cli-integ/resources/cdk-apps/sam_cdk_integ_app/src/docker/DockerImageFunctionConstruct/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/nodejs:18 to public.ecr.aws/lambda/nodejs:18@sha256:c1196a82e95fe4ad8ee91aada7aa9f5d047798198609eed5aa48ae37c6d27c26
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-batch/test/batchjob-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-batch/test/integ.ecs-job-definition.js.snapshot/asset.8b518243ecbfcfd08b4734069e7e74ff97b7889dfde0a60d16e7bdc96e6c593b/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-codebuild/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-codebuild/test/integ.docker-asset.lit.js.snapshot/asset.73ee9c3cafd103104e2a42ee76961a90a2410d0dcad42110343c5fd85ad6db78/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/demo-image-secret/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/demo-image-ssh/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.assets-docker.js.snapshot/asset.0a3355be12051c9984bf2b0b2bba4e6ea535968e5b6e7396449701732fe5ed14/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.assets-docker.js.snapshot/asset.394b24fcdc153a83b1fc400bf2e812ee67e3a5ffafdf977d531cfe2187d95f38/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.assets-docker.js.snapshot/asset.60dea2e16e94d1977b92fe03fa7085fea446233f1fe499702b69593438baa59f/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.assets-docker.js.snapshot/asset.615e365307bd4811880256cf541a7d05b5d4a752ee76ac03863a0a39631607a6/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.assets-docker.js.snapshot/asset.fa08370824fa0a7eab2c59a4f371fe7631019044d6c906b4268193120dc213b4/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecr-assets/test/integ.nested-stacks-docker.js.snapshot/asset.0a3355be12051c9984bf2b0b2bba4e6ea535968e5b6e7396449701732fe5ed14/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.asset-image.js.snapshot/asset.0a3355be12051c9984bf2b0b2bba4e6ea535968e5b6e7396449701732fe5ed14/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.circuit-breaker-queue-processing-fargate-service.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-custom-cpu-scaling.js.snapshot/asset.8be39d348c20f7e58a373abbd1152069e18da130e51bf52c89bd82a38d0e51d7/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-health-check.js.snapshot/asset.205c5d917605ee59cc93dc29526bc4f73b315ae613cdfbc52b8179f388041a03/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.11 to public.ecr.aws/lambda/python:3.11@sha256:885e7899bbfb56dbc34401eb07b5bee738f0909032d5342479acf229f196a4a2
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-isolated.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-no-cpu-scaling.js.snapshot/asset.8be39d348c20f7e58a373abbd1152069e18da130e51bf52c89bd82a38d0e51d7/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-public.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-task-definition-with-cooldown.js.snapshot/asset.205c5d917605ee59cc93dc29526bc4f73b315ae613cdfbc52b8179f388041a03/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.11 to public.ecr.aws/lambda/python:3.11@sha256:885e7899bbfb56dbc34401eb07b5bee738f0909032d5342479acf229f196a4a2
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-task-definition.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.runtime-platform-application-load-balanced-fargate-service.js.snapshot/asset.0a3355be12051c9984bf2b0b2bba4e6ea535968e5b6e7396449701732fe5ed14/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.scheduled-fargate-task.js.snapshot/asset.0a3355be12051c9984bf2b0b2bba4e6ea535968e5b6e7396449701732fe5ed14/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/sqs-reader/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.11 to public.ecr.aws/lambda/python:3.11@sha256:885e7899bbfb56dbc34401eb07b5bee738f0909032d5342479acf229f196a4a2
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-eks/test/integ.eks-service-account-sdk-call.js.snapshot/asset.b89975f7b3f26164c931fa6358f91bc80c51661f8629fd4146cc9056a2412780/Dockerfile:1: pin your Docker image by updating node:18-alpine3.18 to node:18-alpine3.18@sha256:8863523fed890ce945343aebf959daa56e6b089de1851074f4fe22fe86c04399
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-eks/test/sdk-call-integ-test-docker-app/app/Dockerfile:1: pin your Docker image by updating node:18-alpine3.18 to node:18-alpine3.18@sha256:8863523fed890ce945343aebf959daa56e6b089de1851074f4fe22fe86c04399
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-events-targets/test/ecs/eventhandler-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-events-targets/test/ecs/image-simple/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-events-targets/test/ecs/integ.event-ec2-task.js.snapshot/asset.cb8db1ca45b29cf8a7db558e2cb31ac823252251ae003dc87318f485c6415d2b/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-events-targets/test/ecs/integ.event-fargate-task.js.snapshot/asset.7a4895bc694ae074467753dddb9a798e58f2f5eda62bcce5833d7d356b8a1da2/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-lambda/test/docker-arm64-handler/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:latest to public.ecr.aws/lambda/python:latest@sha256:f5b51b377b80bd303fe8055084e2763336ea8920d12955b23ef8cb99dda56112
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-lambda/test/docker-lambda-handler/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/nodejs:18 to public.ecr.aws/lambda/nodejs:18@sha256:c1196a82e95fe4ad8ee91aada7aa9f5d047798198609eed5aa48ae37c6d27c26
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-lambda/test/integ.lambda.docker-arm64.js.snapshot/asset.027b9b499ce9e488d4c3cfa41abdbdc6afe203989a5bd77258f471da03f3f040/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:latest to public.ecr.aws/lambda/python:latest@sha256:f5b51b377b80bd303fe8055084e2763336ea8920d12955b23ef8cb99dda56112
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-lambda/test/integ.lambda.docker.js.snapshot/asset.768d7b6c1d41b85135f498fe0cca69fea410be3c3322c69cf08690aaad29a610/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/nodejs:12 to public.ecr.aws/lambda/nodejs:12@sha256:0fe4eb7ea2af0c349142d7cda41ddaf7356e0d15452b55b7f4e5a3161178cc4f
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-s3-assets/test/alpine-markdown/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/alpine:latest to public.ecr.aws/docker/library/alpine:latest@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/batch/batchjob-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/batch/integ.run-batch-job.js.snapshot/asset.8b518243ecbfcfd08b4734069e7e74ff97b7889dfde0a60d16e7bdc96e6c593b/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/batch/integ.submit-job.js.snapshot/asset.8b518243ecbfcfd08b4734069e7e74ff97b7889dfde0a60d16e7bdc96e6c593b/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/eventhandler-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/integ.ec2-run-task-ref-definition.js.snapshot/asset.d87af9b5acc567118fa529d3d3b763098200a6446a5ca64aea987729efd52534/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/integ.ec2-run-task.js.snapshot/asset.d87af9b5acc567118fa529d3d3b763098200a6446a5ca64aea987729efd52534/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/integ.ec2-task.js.snapshot/asset.d87af9b5acc567118fa529d3d3b763098200a6446a5ca64aea987729efd52534/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/integ.fargate-run-task.js.snapshot/asset.d87af9b5acc567118fa529d3d3b763098200a6446a5ca64aea987729efd52534/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-stepfunctions-tasks/test/ecs/integ.fargate-task.js.snapshot/asset.d87af9b5acc567118fa529d3d3b763098200a6446a5ca64aea987729efd52534/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/@aws-cdk/app-staging-synthesizer-alpha/test/assets/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.10 to public.ecr.aws/lambda/python:3.10@sha256:6bae866749914201269b67307e95393c302af00d8c2666e5b5326120abf8b8a7
- Warn: containerImage not pinned by hash: packages/@aws-cdk/app-staging-synthesizer-alpha/test/integ.synth-default-resources.js.snapshot/asset.16624c2a162b07c5cc0e2c59c484f638bac238ca558ccbdc2aa0e0535df3e622/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.10 to public.ecr.aws/lambda/python:3.10@sha256:6bae866749914201269b67307e95393c302af00d8c2666e5b5326120abf8b8a7
- Warn: containerImage not pinned by hash: packages/@aws-cdk/app-staging-synthesizer-alpha/test/integ.synth-default-resources.js.snapshot/asset.68539effc3f7ad46fff9765606c2a01b7f7965833643ab37e62799f19a37f650/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.10 to public.ecr.aws/lambda/python:3.10@sha256:6bae866749914201269b67307e95393c302af00d8c2666e5b5326120abf8b8a7
- Warn: containerImage not pinned by hash: packages/@aws-cdk/app-staging-synthesizer-alpha/test/integ.synth-default-resources.ts.snapshot/asset.16624c2a162b07c5cc0e2c59c484f638bac238ca558ccbdc2aa0e0535df3e622/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.10 to public.ecr.aws/lambda/python:3.10@sha256:6bae866749914201269b67307e95393c302af00d8c2666e5b5326120abf8b8a7
- Warn: containerImage not pinned by hash: packages/@aws-cdk/app-staging-synthesizer-alpha/test/integ.synth-default-resources.ts.snapshot/asset.68539effc3f7ad46fff9765606c2a01b7f7965833643ab37e62799f19a37f650/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.10 to public.ecr.aws/lambda/python:3.10@sha256:6bae866749914201269b67307e95393c302af00d8c2666e5b5326120abf8b8a7
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-apprunner-alpha/test/docker.assets/Dockerfile:2: pin your Docker image by updating public.ecr.aws/aws-containers/hello-app-runner:latest to public.ecr.aws/aws-containers/hello-app-runner:latest@sha256:241db9b79e1ddc65bab9f3a01a4e5e29b2da9c552f3a21740d466749dbae1b4b
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-apprunner-alpha/test/integ.service-ecr.js.snapshot/asset.77284835684772d19c95f4f5a37e7618d5f9efc40db9321d44ac039db457b967.assets/Dockerfile:2: pin your Docker image by updating public.ecr.aws/aws-containers/hello-app-runner:latest to public.ecr.aws/aws-containers/hello-app-runner:latest@sha256:241db9b79e1ddc65bab9f3a01a4e5e29b2da9c552f3a21740d466749dbae1b4b
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-lambda-go-alpha/lib/Dockerfile:4
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-lambda-python-alpha/lib/Dockerfile:4
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-lambda-python-alpha/test/lambda-handler-custom-build/Dockerfile:1: pin your Docker image by updating public.ecr.aws/sam/build-python3.7 to public.ecr.aws/sam/build-python3.7@sha256:66a882903ad0e3647ea10d6a4f96cdf821536d695473efe9904438773b70c67f
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-sagemaker-alpha/test/integ.endpoint-config.js.snapshot/asset.442a71de95281cb26bd41da567c79060206108b97bdde93cb4ce5f213f50013a/Dockerfile:1: pin your Docker image by updating python:3 to python:3@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-sagemaker-alpha/test/integ.endpoint.alarms.js.snapshot/asset.442a71de95281cb26bd41da567c79060206108b97bdde93cb4ce5f213f50013a/Dockerfile:1: pin your Docker image by updating python:3 to python:3@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-sagemaker-alpha/test/integ.endpoint.js.snapshot/asset.442a71de95281cb26bd41da567c79060206108b97bdde93cb4ce5f213f50013a/Dockerfile:1: pin your Docker image by updating python:3 to python:3@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-sagemaker-alpha/test/integ.model.js.snapshot/asset.442a71de95281cb26bd41da567c79060206108b97bdde93cb4ce5f213f50013a/Dockerfile:1: pin your Docker image by updating python:3 to python:3@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0
- Warn: containerImage not pinned by hash: packages/@aws-cdk/aws-sagemaker-alpha/test/test-image/Dockerfile:1: pin your Docker image by updating python:3 to python:3@sha256:bc78d3c007f86dbb87d711b8b082d9d564b8025487e780d24ccb8581d83ef8b0
- Warn: containerImage not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3-deployment/bucket-deployment-handler/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:latest to public.ecr.aws/lambda/python:latest@sha256:f5b51b377b80bd303fe8055084e2763336ea8920d12955b23ef8cb99dda56112
- Warn: containerImage not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3-deployment/bucket-deployment-handler/Dockerfile.debug:1: pin your Docker image by updating public.ecr.aws/lambda/python:latest to public.ecr.aws/lambda/python:latest@sha256:f5b51b377b80bd303fe8055084e2763336ea8920d12955b23ef8cb99dda56112
- Warn: containerImage not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3/notifications-resource-handler/Dockerfile:2: pin your Docker image by updating public.ecr.aws/lambda/python:3.11 to public.ecr.aws/lambda/python:3.11@sha256:885e7899bbfb56dbc34401eb07b5bee738f0909032d5342479acf229f196a4a2
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-batch/test/batchjob-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-cloudformation/test/asset-docker-fixture/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/alpine:latest to public.ecr.aws/docker/library/alpine:latest@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-codebuild/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/allow-listed-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/demo-image-custom-docker-file/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/demo-image-custom-docker-file/Dockerfile.Custom:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/demo-image-secret/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecr-assets/test/dockerignore-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecs-patterns/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecs-patterns/test/sqs-reader/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-ecs/test/demo-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-events-targets/test/ecs/eventhandler-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-lambda-nodejs/lib/Dockerfile:4
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-lambda/test/docker-arm64-handler/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:latest to public.ecr.aws/lambda/python:latest@sha256:f5b51b377b80bd303fe8055084e2763336ea8920d12955b23ef8cb99dda56112
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-lambda/test/docker-build-lambda/Dockerfile:1: pin your Docker image by updating public.ecr.aws/amazonlinux/amazonlinux:latest to public.ecr.aws/amazonlinux/amazonlinux:latest@sha256:196476f434b7027f42e9352cb6b36232134e47da15faa6676ddce79893493813
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-lambda/test/docker-lambda-handler/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/nodejs:18 to public.ecr.aws/lambda/nodejs:18@sha256:c1196a82e95fe4ad8ee91aada7aa9f5d047798198609eed5aa48ae37c6d27c26
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-s3-assets/test/alpine-markdown/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/alpine:latest to public.ecr.aws/docker/library/alpine:latest@sha256:1e42bbe2508154c9126d48c2b8a75420c3544343bf86fd041fb7527e017a4b4a
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-stepfunctions-tasks/test/batch/batchjob-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/lambda/python:3.6 to public.ecr.aws/lambda/python:3.6@sha256:bae58c5ea51776403c3b76bda7178bca25dc1f3f4696cf76230e5a0250958480
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/aws-stepfunctions-tasks/test/ecs/eventhandler-image/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/python:3.12 to public.ecr.aws/docker/library/python:3.12@sha256:f71437b2bad6af0615875c8f7fbeeeae1b73e3c76b82056d283644aca5afe355
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/cx-api/test/fixtures/asset-manifest/docker-asset/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/ubuntu:latest to public.ecr.aws/docker/library/ubuntu:latest@sha256:278628f08d4979fb9af9ead44277dbc9c92c2465922310916ad0c46ec9999295
- Warn: containerImage not pinned by hash: packages/aws-cdk-lib/cx-api/test/fixtures/assets/docker-asset/Dockerfile:1: pin your Docker image by updating public.ecr.aws/docker/library/ubuntu:latest to public.ecr.aws/docker/library/ubuntu:latest@sha256:278628f08d4979fb9af9ead44277dbc9c92c2465922310916ad0c46ec9999295
- Warn: npmCommand not pinned by hash: packages/@aws-cdk-testing/cli-integ/resources/cdk-apps/sam_cdk_integ_app/src/docker/DockerImageFunctionConstruct/Dockerfile:6
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.circuit-breaker-queue-processing-fargate-service.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-custom-cpu-scaling.js.snapshot/asset.8be39d348c20f7e58a373abbd1152069e18da130e51bf52c89bd82a38d0e51d7/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-health-check.js.snapshot/asset.205c5d917605ee59cc93dc29526bc4f73b315ae613cdfbc52b8179f388041a03/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-isolated.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-no-cpu-scaling.js.snapshot/asset.8be39d348c20f7e58a373abbd1152069e18da130e51bf52c89bd82a38d0e51d7/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-public.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-task-definition-with-cooldown.js.snapshot/asset.205c5d917605ee59cc93dc29526bc4f73b315ae613cdfbc52b8179f388041a03/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service-task-definition.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/fargate/integ.queue-processing-fargate-service.js.snapshot/asset.95cefedd43575452a70cdeeeceb0f1c5728fd58c9ff8e81e760c3dac33c46417/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk-testing/framework-integ/test/aws-ecs-patterns/test/sqs-reader/Dockerfile:3
- Warn: pipCommand not pinned by hash: packages/@aws-cdk/aws-lambda-python-alpha/lib/Dockerfile:20-37
- Warn: pipCommand not pinned by hash: packages/@aws-cdk/aws-lambda-python-alpha/lib/Dockerfile:20-37
- Warn: pipCommand not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3-deployment/bucket-deployment-handler/Dockerfile:7
- Warn: pipCommand not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3-deployment/bucket-deployment-handler/Dockerfile.debug:4
- Warn: pipCommand not pinned by hash: packages/@aws-cdk/custom-resource-handlers/test/aws-s3/notifications-resource-handler/Dockerfile:7
- Warn: pipCommand not pinned by hash: packages/aws-cdk-lib/aws-ecs-patterns/test/sqs-reader/Dockerfile:3
- Warn: npmCommand not pinned by hash: packages/aws-cdk-lib/aws-lambda-nodejs/lib/Dockerfile:7
- Warn: npmCommand not pinned by hash: packages/aws-cdk-lib/aws-lambda-nodejs/lib/Dockerfile:10
- Warn: npmCommand not pinned by hash: packages/aws-cdk-lib/aws-lambda-nodejs/lib/Dockerfile:13
- Warn: npmCommand not pinned by hash: packages/aws-cdk-lib/aws-lambda-nodejs/lib/Dockerfile:19
- Warn: npmCommand not pinned by hash: packages/@aws-cdk-testing/cli-integ/bin/download-and-run-old-tests:30
- Warn: npmCommand not pinned by hash: packages/@aws-cdk-testing/cli-integ/entrypoints/test-cli-regression.bash:45
- Warn: npmCommand not pinned by hash: packages/@aws-cdk-testing/cli-integ/resources/cli-regression-patches/v1.44.0/test.sh:23
- Warn: npmCommand not pinned by hash: packages/aws-cdk-lib/aws-appsync/test/verify.integ.graphql-iam.sh:9
- Warn: npmCommand not pinned by hash: packages/aws-cdk/test/integ/run-against-dist:13
- Warn: npmCommand not pinned by hash: packages/aws-cdk/test/integ/run-against-release:11
- Warn: npmCommand not pinned by hash: scripts/update-dependencies.sh:56
- Warn: npmCommand not pinned by hash: scripts/update-dependencies.sh:63
- Warn: npmCommand not pinned by hash: scripts/update-dependencies.sh:63
- Warn: npmCommand not pinned by hash: .github/workflows/spec-update.yml:43
- Warn: npmCommand not pinned by hash: .github/workflows/yarn-upgrade.yml:41
- Info: 0 out of 40 GitHub-owned GitHubAction dependencies pinned
- Info: 2 out of 23 third-party GitHubAction dependencies pinned
- Info: 0 out of 16 pipCommand dependencies pinned
- Info: 0 out of 91 containerImage dependencies pinned
- Info: 2 out of 18 npmCommand dependencies pinned
Score
5
/10
Last Scanned on 2024-11-25
The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.
Learn MoreOther packages similar to @aws-cdk/aws-apigatewayv2-alpha
@aws-cdk/aws-apigatewayv2-integrations-alpha
2.114.1-alpha.0
This module is deprecated. All constructs are now available under aws-cdk-lib/aws-apigatewayv2-integrations
@aws-cdk/aws-apigatewayv2-authorizers-alpha
2.114.1-alpha.0
This module is deprecated. All constructs are now available under aws-cdk-lib/aws-apigatewayv2-authorizers
aws-cdk
2.171.1
CDK Toolkit, the command line tool for CDK apps
@aws-sdk/client-apigatewayv2
3.699.0
AWS SDK for JavaScript Apigatewayv2 Client for Node.js, Browser and React Native