@aws-cdk/cloudformation-diff

Utilities to diff CDK stacks against CloudFormation templates

Supply chain provenance

Status for the latest visible version.

SLSA provenance attestation npm registry signatures No source commit

Maintainers

amzn-ossaws-cdk-team

Keywords

awscdk

Accepted risks

Findings the reviewer chose to accept rather than block on.

Source	Rule	Reason	Accepted by	When
dependencies	unvetted-dep:aws-sdk	AI (dependencies): aws-sdk is the official AWS JavaScript SDK v2, a first-party Amazon package. Its use is expected and appropriate in an AWS CDK CloudFormation diff utility.	ai	2026/04/22
dependencies	unvetted-dep:@aws-cdk/cfnspec	AI (dependencies): @aws-cdk/cfnspec is a sibling package from the same aws-cdk-team publisher and monorepo; it is a legitimate internal CDK dependency.	ai	2026/04/22
phantom-deps	phantom-dep:@types/node	AI (phantom-deps): @types/node is a TypeScript type package commonly declared in CDK package dependencies for type resolution; not a real runtime phantom dependency concern for this package.	ai	2026/04/22
source-diff	obfuscated-file:lib/format-foreach.js	AI (source-diff): Compiled TypeScript output from official AWS CDK package; long lines are from TS compilation, not obfuscation. Code is readable and matches package purpose. SLSA provenance confirms CI/CD origin.	ai	2026/04/22
provenance	publisher-changed	AI (provenance): AWS CDK migrated to GitHub Actions CI/CD publishing with SLSA attestation; this is a legitimate infrastructure change for the official aws/aws-cdk-cli repo.	ai	2026/04/22
source-diff	obfuscated-file:lib/mappings.js	AI (source-diff): The file contains readable compiled TypeScript with meaningful names and logic; long lines are likely data tables, not obfuscation. Consistent with the package's diff-rendering purpose.	ai	2026/04/22
provenance	no-provenance	AI (provenance): aws-cdk-team is a well-established publisher with 500+ approved packages; lack of Sigstore provenance is a known gap for this publisher, not a security risk.	ai	2026/04/22
source-diff	obfuscated-file:lib/diff/template-and-changeset-diff-merger.js	AI (source-diff): File contains readable TypeScript-compiled JS with standard CDK class definitions. Long lines are an artifact of the TypeScript compiler output, not obfuscation. Pattern is consistent across all CDK packages.	ai	2026/04/22
source-diff	obfuscated-file:lib/iam/iam-identity-center.js	AI (source-diff): File contains readable TypeScript-compiled JS with standard CDK class definitions. Long lines are an artifact of the TypeScript compiler output, not obfuscation. Pattern is consistent across all CDK packages.	ai	2026/04/22
dependencies	unvetted-dep:@aws-cdk/service-spec-types	AI (dependencies): First-party AWS CDK package from the same aws/aws-cdk-cli organization; expected internal dependency for this package.	ai	2026/04/22
dependencies	unvetted-dep:@aws-cdk/aws-service-spec	AI (dependencies): First-party AWS CDK package from the same aws/aws-cdk-cli organization; expected internal dependency for this package.	ai	2026/04/22

Versions (showing 100 of 554)

Version	Deps	Published
1.87.1	6 / 8	2021-01-28
1.87.0	6 / 8	2021-01-27
1.86.0	6 / 8	2021-01-21
1.85.0	6 / 8	2021-01-14
1.84.0	6 / 8	2021-01-12
1.83.0	6 / 8	2021-01-06
1.82.0	6 / 8	2021-01-03
1.81.0	6 / 8	2020-12-31
1.80.0	6 / 8	2020-12-22
1.79.0	6 / 8	2020-12-17
1.78.0	6 / 8	2020-12-12
1.77.0	6 / 8	2020-12-07
1.76.0	6 / 8	2020-12-01
1.75.0	6 / 8	2020-11-24
1.74.0	6 / 8	2020-11-17
1.73.0	6 / 8	2020-11-11
1.72.0	6 / 8	2020-11-06
1.71.0	6 / 8	2020-10-29
1.70.0	6 / 8	2020-10-24
1.69.0	6 / 8	2020-10-19
1.68.0	6 / 8	2020-10-15
1.67.0	6 / 8	2020-10-07
1.66.0	6 / 8	2020-10-02
1.65.0	6 / 8	2020-10-01
1.64.1	6 / 8	2020-09-25
1.64.0	6 / 8	2020-09-24
1.63.0	6 / 8	2020-09-14
1.62.0	6 / 8	2020-09-04
1.61.1	6 / 8	2020-08-28
1.61.0	6 / 8	2020-08-27
1.60.0	6 / 8	2020-08-20
1.59.0	6 / 8	2020-08-15
1.58.0	6 / 8	2020-08-12
1.57.0	6 / 8	2020-08-07
1.56.0	6 / 8	2020-08-01
1.55.0	6 / 8	2020-07-28
1.54.0	6 / 8	2020-07-22
1.53.0	6 / 8	2020-07-20
1.52.0	6 / 8	2020-07-18
1.51.0	6 / 8	2020-07-09
1.50.0	6 / 8	2020-07-07
1.49.1	6 / 8	2020-07-02
1.49.0	6 / 8	2020-07-02
1.48.0	6 / 8	2020-07-01
1.47.1	6 / 8	2020-06-30
1.47.0	6 / 8	2020-06-24
1.46.0	6 / 8	2020-06-20
1.45.0	6 / 8	2020-06-09
1.44.0	6 / 8	2020-06-04
1.43.0	6 / 8	2020-06-04
1.42.1	6 / 8	2020-06-01
1.42.0	6 / 8	2020-05-27
1.41.0	6 / 8	2020-05-21
1.40.0	6 / 8	2020-05-20
1.39.0	6 / 8	2020-05-16
1.38.0	6 / 8	2020-05-08
1.37.0	6 / 8	2020-05-05
1.36.1	6 / 8	2020-04-29
1.36.0	6 / 8	2020-04-28
1.35.0	6 / 8	2020-04-24
1.34.1	6 / 8	2020-04-22
1.34.0	6 / 8	2020-04-21
1.33.1	6 / 8	2020-04-19
1.33.0	6 / 8	2020-04-17
1.32.2	6 / 8	2020-04-10
1.32.1	6 / 8	2020-04-09
1.32.0	6 / 8	2020-04-07
1.31.0	6 / 8	2020-03-24
1.30.0	6 / 8	2020-03-18
1.29.0	6 / 8	2020-03-18
1.28.0	6 / 8	2020-03-16
1.27.0	6 / 8	2020-03-03
1.26.0	6 / 8	2020-02-26
1.25.0	7 / 8	2020-02-19
1.24.0	7 / 8	2020-02-14
1.23.0	7 / 8	2020-02-07
1.22.0	7 / 8	2020-01-23
1.21.1	7 / 8	2020-01-16
1.21.0	7 / 8	2020-01-16
1.20.0	7 / 8	2020-01-07
1.19.0	8 / 5	2019-12-17
1.18.0	8 / 5	2019-11-25
1.17.1	8 / 5	2019-11-19
1.17.0	8 / 5	2019-11-19
1.16.3	8 / 5	2019-11-13
1.16.2	8 / 5	2019-11-12
1.16.1	8 / 5	2019-11-12
1.16.0	8 / 5	2019-11-11
1.15.0	8 / 5	2019-10-28
1.14.0	8 / 5	2019-10-22
1.13.1	8 / 5	2019-10-15
1.13.0	8 / 5	2019-10-15
1.12.0	8 / 5	2019-10-07
1.11.0	8 / 5	2019-10-02
1.10.1	8 / 5	2019-10-01
1.10.0	8 / 5	2019-09-30
1.9.0	8 / 5	2019-09-20
1.8.0	8 / 5	2019-09-10
1.7.0	8 / 5	2019-09-06
1.6.1	8 / 5	2019-08-29

Showing 100 of 554 Next page →