Skip to content

chore(deps): update dependency aws-xray-sdk to v2.15.0#97

Open
mend-for-github-com[bot] wants to merge 1 commit intodevelopfrom
whitesource-remediate/aws-xray-sdk-2.x-lockfile
Open

chore(deps): update dependency aws-xray-sdk to v2.15.0#97
mend-for-github-com[bot] wants to merge 1 commit intodevelopfrom
whitesource-remediate/aws-xray-sdk-2.x-lockfile

Conversation

@mend-for-github-com
Copy link
Copy Markdown

@mend-for-github-com mend-for-github-com bot commented Nov 17, 2025
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
aws-xray-sdk 2.9.02.15.0 age adoption passing confidence

This PR resolves the vulnerabilities described in Issue #-1

Version 2.9.0
Risk Change Critical High Medium Low
N/A 0 4 4 0
Version 2.15.0
Risk Change Critical High Medium Low
-100% 0 (--) 0 (-4 ) 0 (-4 ) 0 (--)

Mend ensures you have the greatest risk reduction ("Recommended Fix"-highlighted in green) by removing as many vulnerabilities as possible. Click to see how we calculate risk reduction.

Release Notes

aws/aws-xray-sdk-python (aws-xray-sdk)

v2.15.0

Compare Source

==========

  • bugfix: Fix log stack overflow if metadata contains circular reference https://github.com/aws/aws-xray-sdk-python/pull/464

v2.14.0

Compare Source

==========

  • bugfix: Fix warning message condition for subsegment ending https://github.com/aws/aws-xray-sdk-python/pull/434

v2.13.1

Compare Source

==========

  • improvement: Bump idna from 3.6 to 3.7 in /sample-apps/flask https://github.com/aws/aws-xray-sdk-python/pull/425
  • bugfix: Fix end_time param type docstring from int to float https://github.com/aws/aws-xray-sdk-python/pull/426
  • improvement: Bump werkzeug from 3.0.1 to 3.0.3 in /sample-apps/flask https://github.com/aws/aws-xray-sdk-python/pull/428
  • improvement: [LambdaContext] Create dummy segment when trace header is incomplete https://github.com/aws/aws-xray-sdk-python/pull/429
  • bugfix: [LambdaContext] Fix logging to only happen inside lambda function https://github.com/aws/aws-xray-sdk-python/pull/431

v2.13.0

Compare Source

==========

  • bugfix: Fix passing multiple values in testenv.passenv in tox.ini https://github.com/aws/aws-xray-sdk-python/pull/399
  • improvement: Pin flask < 3.x for flask sqlalchemy tests https://github.com/aws/aws-xray-sdk-python/pull/412
  • improvement: Bump werkzeug from 2.2.3 to 3.0.1 in /sample-apps/flask https://github.com/aws/aws-xray-sdk-python/pull/413
  • improvement: Fix typo in docs https://github.com/aws/aws-xray-sdk-python/pull/419
  • bugfix: Fix sqlalchemy_core patch errors for unencoded special characters in db url https://github.com/aws/aws-xray-sdk-python/pull/418
  • bugfix: Fix EB platform version for integration test https://github.com/aws/aws-xray-sdk-python/pull/420

v2.12.1

Compare Source

==========

  • bugfix: set_trace_entity() in lambda adds segment to thread PR409 https://github.com/aws/aws-xray-sdk-python/pull/409
  • bugfix: Cleanup after drop of support for Python PR387 https://github.com/aws/aws-xray-sdk-python/pull/387

v2.12.0

Compare Source

==========

  • improvement: Default Context Missing Strategy set to Log Error PR372 https://github.com/aws/aws-xray-sdk-python/pull/372
  • bugfix: Pin tox version to <=3.27.1 to fix CI tests PR374 https://github.com/aws/aws-xray-sdk-python/pull/374
  • improvement: Sample app dependency update PR373 https://github.com/aws/aws-xray-sdk-python/pull/373
  • bugfix: Fix pynamodb tests for Python < 3.6 PR375 https://github.com/aws/aws-xray-sdk-python/pull/375
  • improvement: Use latest GH Actions versions in CI tests PR365 https://github.com/aws/aws-xray-sdk-python/pull/365
  • improvement: Simplify setup script PR363 https://github.com/aws/aws-xray-sdk-python/pull/363
  • bugfix: Fix deprecation warnings related to asyncio PR364 https://github.com/aws/aws-xray-sdk-python/pull/364
  • improvement: Run tests against Python 3.10 and 3.11 PR376 https://github.com/aws/aws-xray-sdk-python/pull/376
  • improvement: Sample app dependency update PR380 https://github.com/aws/aws-xray-sdk-python/pull/380
  • bugfix: Pin sqlalchemy version to 1.x to fix tests PR381 https://github.com/aws/aws-xray-sdk-python/pull/381
  • bugfix: Fix sample app dependencies incompatibility with XRay SDK PR382 https://github.com/aws/aws-xray-sdk-python/pull/382
  • bugfix: Start MySQL from GH Actions, upgrade Ubuntu, and remove Python versions for unit tests PR384 https://github.com/aws/aws-xray-sdk-python/pull/384

v2.11.0

Compare Source

==========

  • bugfix: Fix TypeError by patching register_default_jsonb from psycopg2 PR350 https://github.com/aws/aws-xray-sdk-python/pull/350
  • improvement: Add annotations PR348 https://github.com/aws/aws-xray-sdk-python/pull/348
  • bugfix: Use service parameter to match centralized sampling rules PR 353 https://github.com/aws/aws-xray-sdk-python/pull/353
  • bugfix: Implement PEP3134 to discover underlying problems with python3 PR355 https://github.com/aws/aws-xray-sdk-python/pull/355
  • improvement: Allow list TopicArn for SNS PublishBatch request PR358 https://github.com/aws/aws-xray-sdk-python/pull/358
  • bugfix: Version pinning flask-sqlalchemy version to 2.5.1 or less PR360 https://github.com/aws/aws-xray-sdk-python/pull/360
  • bugfix: Fix UnboundLocalError when aiohttp server raises a CancelledError PR356 https://github.com/aws/aws-xray-sdk-python/pull/356
  • improvement: Instrument httpx >= 0.20 PR357 https://github.com/aws/aws-xray-sdk-python/pull/357
  • improvement: [LambdaContext] persist original trace header PR362 https://github.com/aws/aws-xray-sdk-python/pull/362
  • bugfix: Run tests against Django 4.x PR361 https://github.com/aws/aws-xray-sdk-python/pull/361
  • improvement: Oversampling Mitigation PR366 https://github.com/aws/aws-xray-sdk-python/pull/366

v2.10.0

Compare Source

==========

  • bugfix: Only import future for py2. PR343 <https://github.com/aws/aws-xray-sdk-python/pull/343>_.
  • bugfix: Defensively copy context entities to async thread. PR340 <https://github.com/aws/aws-xray-sdk-python/pull/340>_.
  • improvement: Added support for IGNORE_ERROR option when context is missing. PR338 <https://github.com/aws/aws-xray-sdk-python/pull/338>_.
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by Mend label Nov 17, 2025
@mend-for-github-com mend-for-github-com bot changed the title chore(deps): update dependency aws-xray-sdk to v2.10.0 chore(deps): update dependency aws-xray-sdk to v2.15.0 Feb 8, 2026
@mend-for-github-com mend-for-github-com bot changed the title chore(deps): update dependency aws-xray-sdk to v2.15.0 chore(deps): update dependency aws-xray-sdk to v2.10.0 Feb 14, 2026
@mend-for-github-com mend-for-github-com bot changed the title chore(deps): update dependency aws-xray-sdk to v2.10.0 chore(deps): update dependency aws-xray-sdk to v2.15.0 Mar 17, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

security fix Security fix generated by Mend

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants