Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,294,696
Community Members
 
Community Events
165
Community Groups

Security issue with the latest available AWS SAM pipe available

Stuart Smiley
Stuart Smiley Jul 30, 2021

Recently we received a message from AWS to "Update all existing SAM CLI installations to version 1.25 or later." as soon as possible. So I went to https://bitbucket.org/atlassian/aws-sam-deploy to see what version was available in the latest pipe for use in our bitbucket pipeline. Looking at the was-sam-deploy/Dockerfile for master, it appears the version available is v1.18.0, which is well below the 1.25 or later recommended by AWS. 

I am using version 1.26 of the SAM CLI  when I work locally, but our test and production deployments use a bitbucket pipeline which appears to be using a less secure version of the SAM CLI

What is involved in getting an update to the Docker file to bump up the version of the aws SAM CLI in master. 

Answer
Watch
Like Be the first to like this
125 views

1 answer

0 votes
Oleksandr Kyrdan
Oleksandr Kyrdan Atlassian Team Aug 02, 2021

Hi @Stuart Smiley

Thank you for your question!

We're investigating it and notify you.

 

Best regards,
Oleksandr Kyrdan

Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
Community showcase
Colin Wood
Colin Wood
Published in Bitbucket

Git push size limits are coming to Bitbucket Cloud starting April 4th, 2022

Beginning on April 4th, we will be implementing push limits. This means that your push cannot be completed if it is over 3.5 GB. If you do attempt to complete a push that is over 3.5 GB, it will fail...

2,159 views 2 9
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you