[Snyk] Security upgrade @pulumi/aws from 4.37.2 to 6.56.0

[Abuchtela]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • infra/review-pr/package.json
  • infra/review-pr/package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	141/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Local, EPSS: 0.01055, Social Trends: No, Days since published: 327, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Medium, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.35, Score Version: V5	Missing Release of Resource after Effective Lifetime SNYK-JS-INFLIGHT-6095116	Yes	Proof of Concept
	59/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: Low, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: High, Attack Vector: Network, EPSS: 0.03488, Social Trends: No, Days since published: 946, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: Low, Package Popularity Score: 99, Impact: 2.35, Likelihood: 2.51, Score Version: V5	Prototype Pollution SNYK-JS-MINIMIST-2429795	Yes	Proof of Concept
	159/1000 Why? Confidentiality impact: None, Integrity impact: None, Availability impact: High, Scope: Unchanged, Exploit Maturity: Proof of Concept, User Interaction (UI): None, Privileges Required (PR): None, Attack Complexity: Low, Attack Vector: Network, EPSS: 0.0016, Social Trends: No, Days since published: 490, Reachable: No, Transitive dependency: Yes, Is Malicious: No, Business Criticality: High, Provider Urgency: High, Package Popularity Score: 99, Impact: 5.99, Likelihood: 2.64, Score Version: V5	Regular Expression Denial of Service (ReDoS) SNYK-JS-SEMVER-3247795	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Regular Expression Denial of Service (ReDoS)

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	None	0	8.47 kB	jonschlinkert
npm/[email protected]	None	0	5.19 kB	wooorm
npm/[email protected]	None	0	12 kB	wooorm
npm/[email protected]	None	0	7.65 kB	wooorm
npm/[email protected]	None	0	7.67 kB	cwmma
npm/[email protected]	None	0	7.51 kB	wooorm
npm/[email protected]	None	0	13.4 kB	sokra
npm/[email protected]	None	0	10.1 kB	sindresorhus
npm/[email protected]	None	0	8.9 kB	zensh
npm/[email protected]	None	0	84.8 kB	jonschlinkert
npm/[email protected]	None	0	6.84 kB	indutny
npm/[email protected]	None	0	3.06 kB	sindresorhus
npm/[email protected]	None	0	4.76 kB	indutny
npm/[email protected]	None	0	33.1 kB	isaacs
npm/[email protected]	None	0	4.06 kB	vdemedes
npm/[email protected]	None	0	16.1 kB	bret
npm/[email protected]	None	0	7.22 kB	doowb
npm/[email protected]	filesystem	0	7.95 kB	iarna
npm/[email protected]	None	0	6.84 kB	styfle
npm/[email protected]	None	0	75.6 kB	isaacs
npm/[email protected]	None	0	418 kB	kkoopa
npm/[email protected]	None	0	86.3 kB	jonschlinkert
npm/[email protected]	None	0	5.65 kB	megawac
npm/[email protected]	None	0	298 kB	suguru03
npm/[email protected]	None	0	3.75 kB	electerious
npm/[email protected]	network, unsafe	+1	33.8 kB	sokra
npm/[email protected]	None	0	248 kB	chicoxyzzy
npm/[email protected]	None	0	9.22 kB	jonschlinkert
npm/[email protected]	None	0	7.77 kB	james.talmage
npm/[email protected]	None	0	12.9 kB	getify
npm/[email protected]	None	0	5.31 kB	yisi
npm/[email protected]	None	0	5.49 kB	sindresorhus
npm/[email protected]	None	0	5.47 kB	jonschlinkert
npm/[email protected]	None	0	6.7 kB	jonschlinkert
npm/[email protected]	None	0	6.36 kB	phated
npm/[email protected]	None	0	3.48 kB	sindresorhus
npm/[email protected]	None	0	50.1 kB	gkz
npm/[email protected]	None	0	2.74 kB	coderpuppy
npm/[email protected]	None	0	3.06 kB	sindresorhus
npm/[email protected]	None	0	7.39 kB	sindresorhus
npm/[email protected]	None	0	7.29 kB	sindresorhus
npm/[email protected]	None	0	4.37 kB	sindresorhus
npm/[email protected]	None	0	788 kB	vitaly
npm/[email protected]	None	0	5.54 kB	mafintosh
npm/[email protected]	None	0	13 kB	cwmma
npm/[email protected]	None	0	21.7 kB	wooorm
npm/[email protected]	None	0	3.74 kB	sindresorhus
npm/[email protected]	None	0	5.96 kB	doowb
npm/[email protected]	None	0	4.46 kB	jonschlinkert
npm/[email protected]	None	0	27 kB	goto-bus-stop
npm/[email protected]	None	0	6.26 kB	es128
npm/[email protected]	filesystem	0	3.92 kB	sindresorhus
npm/[email protected]	None	0	3.32 kB	domenic
npm/[email protected]	None	0	3.02 kB	sindresorhus
npm/[email protected]	filesystem	+1	10.5 kB	sindresorhus
npm/[email protected]	None	0	13.8 kB	cwmma
npm/[email protected]	None	0	89 kB	jonschlinkert
npm/[email protected]	None	0	4.75 kB	sindresorhus
npm/[email protected]	None	0	17 kB	blakeembrey
npm/[email protected]	None	0	6.97 kB	jonschlinkert
npm/[email protected]	None	0	10.6 kB	gucong
npm/[email protected]	None	0	33.5 kB	ai
npm/[email protected]	None	0	19.3 kB	shellscape
npm/[email protected]	None	0	6.9 kB	gucong
npm/[email protected]	None	0	24.7 kB	dryoma
npm/[email protected]	None	0	9.69 kB	sullenor
npm/[email protected]	None	0	23.5 kB	evilebottnawi
npm/[email protected]	None	+1	340 kB	evilebottnawi
npm/[email protected]	None	0	7.05 kB	evilebottnawi
npm/[email protected]	None	0	14.4 kB	ai
npm/[email protected]	None	0	3.82 kB	davidtheclark
npm/[email protected]	None	0	17.4 kB	ai
npm/[email protected]	None	0	242 kB	aleshaoleg
npm/[email protected]	None	0	82.9 kB	ai
npm/[email protected]	None	0	21.5 kB	gucong
npm/[email protected]	None	0	26.3 kB	evilebottnawi
npm/[email protected]	None	0	36 kB	gkz
npm/[email protected]	None	0	3.17 kB	cwmma
npm/[email protected]	None	0	15.5 kB	turbopope
npm/[email protected]	None	0	3.04 kB	iarna
npm/[email protected]	None	0	10.1 kB	rvagg
npm/[email protected]	environment	0	8.21 kB	isaacs
npm/[email protected]	None	+1	34.2 kB	cwmma
npm/[email protected]	filesystem	0	7.38 kB	mafintosh
npm/[email protected]	None	0	10.2 kB	mafintosh
npm/[email protected]	None	0	32.4 kB	mathias
npm/[email protected]	None	0	16.1 kB	spaintrain
npm/[email protected]	None	0	5.53 kB	sindresorhus
npm/[email protected]	None	0	6.84 kB	cwmma
npm/[email protected]	Transitive: filesystem	+6	28.1 kB	sindresorhus
npm/[email protected]	None	0	4.33 kB	sindresorhus
npm/[email protected]	environment	0	87.7 kB	matteo.collina
npm/[email protected]	filesystem	0	20.5 kB	paulmillr
npm/[email protected]	None	0	2.85 kB	sindresorhus
npm/[email protected]	None	0	391 kB	mathias
npm/[email protected]	None	0	49.2 kB	mathias
npm/[email protected]	None	0	27.2 kB	benjamn
npm/[email protected]	None	0	128 kB	benjamn
npm/[email protected]	None	0	8.46 kB	jonschlinkert

🚮 Removed packages: npm/@pulumi/[email protected], npm/@pulumi/[email protected], npm/@types/[email protected], npm/@types/[email protected], npm/[email protected]

View full report↗︎