v2.3.4

Added

• Beta support for rendering diagrams using WebGL, significantly improving the performance of diagrams with thousands of resources.

Fixed

• Security issue in axios.
• Security issue in vite.
• Security issue in vite.

v2.3.3

Added

• Beta support for rendering diagrams using WebGL, significantly improving the performance of diagrams with thousands of resources.

Fixed

• Security issue in sha.js.
• Security issue in tmp.

v2.3.2

Fixed

• Security issue in form-data.

v2.3.1

Added

• AWS::EC2::Volume -> AWS::EC2::VPC/AWS::EC2::Subnet relationships

Fixed

• Workload Discovery ECS tasks failing with AWS Config errors 593

Changed

• AWS::Bedrock::KnowledgeBase resource type is now discovered via AWS Config
• Update Neptune Engine version to 1.4.5.1.

v2.3.0

Added

• New resource types include:
  • AWS::Bedrock::Agent
  • AWS::Bedrock::AgentVersion
  • AWS::Bedrock::CustomModel
  • AWS::Bedrock::DataSource
  • AWS::Bedrock::FoundationModel
  • AWS::Bedrock::ImportedModel
  • AWS::Bedrock::InferenceProfile
  • AWS::Bedrock::KnowledgeBase
  • AWS::Glue::Connection
  • AWS::Glue::Crawler
  • AWS::Glue::Database
  • AWS::Glue::Table
  • AWS::OpenSearchServerless::Collection
• New relationships include:
  • AWS::Bedrock::Agent -> AWS::IAM::Role/AWS::Bedrock::FoundationModel/AWS::Lambda::Function/AWS::KMS::Key
  • AWS::Bedrock::AgentVersion -> AWS::Bedrock::KnowledgeBase
  • AWS::Bedrock::CustomModel -> AWS::Bedrock::FoundationModel/AWS::KMS::Key/AWS::S3::Bucket
  • AWS::Bedrock::DataSource -> AWS::Bedrock::KnowledgeBase/AWS::KMS::Key/AWS::S3::Bucket/AWS::SecretsManager::Secret/AWS::Lambda::Function/AWS::Bedrock::FoundationModel
  • AWS::Bedrock::ImportedModel -> AWS::KMS::Key/AWS::S3::Bucket
  • AWS::Bedrock::KnowledgeBase -> AWS::IAM::Role/AWS::Kendra::Index/AWS::RDS::DBCluster/AWS::OpenSearchServerless::Collection/AWS::S3::Bucket/AWS::Redshift::Cluster
  • AWS::Glue::Connection -> AWS::EC2::Subnet/AWS::EC2::SecurityGroup/AWS::EC2::Instance/AWS::SecretsManager::Secret/AWS::IAM::Role/AWS::Glue::Connection
  • AWS::Glue::Crawler -> AWS::SQS::Queue/AWS::S3::Bucket/AWS::Glue::Database/AWS::Glue::Connection/AWS::DynamoDB::Table
  • AWS::Glue::Database -> AWS::Glue::Connection/AWS::S3::Bucket
  • AWS::Glue::Job -> AWS::IAM::Role/AWS::S3::Bucket/AWS::Glue::Connection
  • AWS::Glue::Table -> AWS::Kinesis::Stream/AWS::S3::Bucket/AWS::Glue::Connection/AWS::Glue::Database
• Configuration status section on Cost Page
• Alert in AppInsights dashboard if Config aggregator is of incorrect type

Changed

• Updated Homepage with quicklinks to common user actions and configuration status alerts to surface errors in the solution's deployment and their remediation steps
• Accounts in accounts page now display if AWS Config is enabled in imported regions
• Warning displayed on Accounts page in SELF_MANAGED mode if regional CloudFormation template is not deployed in imported region
• Default Neptune instance type is now db.r8g.large
• Neptune engine version has been updated to 1.4.5.0
• Added extra validation to account names to disallow angle brackets
• Added extra validation for all inputs in Settings AppSync Lambda resovler
• Reduced whitespace on diagram page

Fixed

• Account name could not be updated through form on Accounts page

v2.2.4

Fixed

• Security issue in image-size.
• Security issue in vite.
• Security issue in vite.

Changed

• Pagination size in resource table on Resources page is now configurable. Resolves #586.

v2.2.3

Added

• Alert in AppInsights dashboard if discovery process cannot route to required AWS services

Fixed

• Security issue in axios.
• Security issue in babel.
• Security issue in esbuild.
• Security issue in jinja.
• Security issue in tsup.

Changed

• Discovery process now downloads accounts from Neptune concurrently

v2.2.2

Added

• Alert in AppInsights dashboard if discovery process cannot pull image from ECR

Fixed

• Metrics lambda always sent false for costFeatureEnabled metric
• Invalid default value in CognitoAttributeMapping CloudFormation parameter
• Large dark circle appears in canvas when user saves an empty diagram
• Security issue in jinja.
• Security issue in cryptography.

Changed

• Importing accounts using form is now default setting on Accounts page
• Account lists can now be filtered by account name 514
• Error dialog on resources page now includes link to AppInsights dashboard
• Text for button on diagram page is now Add to diagram rather than Search

v2.2.1

Added

• Alert in AppInsights dashboard if discovery process runs out of memory
• Alert in AppInsights dashboard if Config not enabled in discoverable region

Fixed

• Null pointer error in SAML identity provider custom resource 567
• Incorrect description string in diagram settings filter when hiding resources
• Erroneous validation error when exporting diagrams with global resources to myApplications
• Empty region dropdown list when exporting diagram with only global resources to myApplications
• Security vulnerability in vite.
• Security vulnerability in vitest.
• Security vulnerability in undici.
• Security vulnerability in jinja.
• Security vulnerability in jinja.

Changed

• Use of FARGATE or FARGATE_SPOT for discovery process is configurable via a CloudFormation parameter.

v2.2.0

Added

• Support for custom identity providers (SAML and OIDC) 61 510
• Export of diagrams to myApplications
• Export of diagrams to SVG
• Application Insights dashboard to monitor health of solution
• Number of supported resource types is over 450, newly added types include, but are not limited to:
  • AWS::AppSync::DataSource
  • AWS::AppSync::Resolver
  • AWS::MediaConnect::Flow
  • AWS::MediaConnect::FlowEntitlement
  • AWS::MediaConnect::FlowSource
  • AWS::MediaConnect::FlowVpcInterface
  • AWS::MediaPackage::PackagingConfiguration
  • AWS::MediaPackage::PackagingGroup
  • AWS::ServiceCatalogAppRegistry::Application
• Increase in number of relationships not captured by AWS Config, including, but not limited to:
  • AWS::AppSync::DataSource -> AWS::Lambda::Function/AWS::DynamoDB::Table/AWS::Events::EventBus/AWS::RDS::DBCluster/AWS::OpenSearchService::Domain
  • AWS::AppSync::Resolver -> AWS::AppSync::GraphQLApi/AWS::AppSync::DataSource
  • AWS::S3::Bucket -> AWS::Lambda::Function/AWS::SQS::Queue/AWS::SNS::Topic
  • AWS::IAM::InstanceProfile -> AWS::IAM::Role
  • AWS::MediaConnect::FlowEntitlement -> AWS::MediaConnect::Flow
  • AWS::MediaConnect::FlowSource -> AWS::MediaConnect::Flow/AWS::MediaConnect::FlowEntitlement/AWS::MediaConnect::FlowVpcInterface/AWS::IAM::Role/AWS::SecretsManager::Secret
  • AWS::MediaConnect::FlowVpcInterface -> AWS::EC2::VPC/AWS::EC2::Subnet/AWS::EC2::SecurityGroup/AWS::EC2::NetworkInterface
  • AWS::MediaPackage::PackagingConfiguration -> AWS::MediaPackage::PackagingGroup/AWS::IAM::Role

Changed

• Multiple resources can now be selected in the search bar on the Diagram page
• Migrate AppRegistry integration to myApplications for monitoring solution costs and usage.
• Migrate JavaScript lambda functions and the discovery process from CommonJS to ESM
• Update Neptune Engine version to 1.3.1.0.
• Update OpenSearch version to 2.11.0.

Fixed

• AWS::EC2::NetworkInterface -> AWS::OpenSearchService::Domain relationships are not discovered
• Failed writes to OpenSearch should stop the corresponding write being made to Neptune
• Metrics lambda times out when hundreds of accounts have been imported