Skip to content

New: [AEA-6256] - StateMachine construct#604

Draft
tstephen-nhs wants to merge 17 commits intomainfrom
aea-6256-cdk-statemachine
Draft

New: [AEA-6256] - StateMachine construct#604
tstephen-nhs wants to merge 17 commits intomainfrom
aea-6256-cdk-statemachine

Conversation

@tstephen-nhs
Copy link

@tstephen-nhs tstephen-nhs commented Mar 19, 2026

Summary

  • ✨ New Feature

Details

Reusable state machine construct
Note this is stacked on PR 547

@tstephen-nhs tstephen-nhs changed the title New: [AEA-6256] cdk statemachine construct New: [AEA-6256] StateMachine construct Mar 25, 2026
@tstephen-nhs tstephen-nhs changed the title New: [AEA-6256] StateMachine construct New: [AEA-6256] - StateMachine construct Mar 25, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Mar 25, 2026

This PR is linked to a ticket in an NHS Digital JIRA Project. Here's a handy link to the ticket:

AEA-6256

github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 25, 2026
View reviewed changes
packages/cdkConstructs/tests/constructs/RestApiGateway.test.ts
statements: [
new PolicyStatement({
actions: ["lambda:InvokeFunction"],
resources: ["*"]

Check failure

Code scanning / SonarCloud

AWS IAM policies should limit the scope of permissions given High test

This policy is vulnerable to the "lambda:InvokeFunction" privilege escalation vector. Remove permissions or restrict the set of resources they apply to. See more on SonarQube Cloud
packages/cdkConstructs/tests/constructs/RestApiGateway.test.ts
statements: [
new PolicyStatement({
actions: ["lambda:InvokeFunction"],
resources: ["*"]

Check failure

Code scanning / SonarCloud

AWS IAM policies should limit the scope of permissions given High test

This policy is vulnerable to the "lambda:InvokeFunction" privilege escalation vector. Remove permissions or restrict the set of resources they apply to. See more on SonarQube Cloud
packages/cdkConstructs/tests/constructs/RestApiGateway.test.ts
statements: [
new PolicyStatement({
actions: ["lambda:InvokeFunction"],
resources: ["*"]

Check failure

Code scanning / SonarCloud

AWS IAM policies should limit the scope of permissions given High test

This policy is vulnerable to the "lambda:InvokeFunction" privilege escalation vector. Remove permissions or restrict the set of resources they apply to. See more on SonarQube Cloud
@tstephen-nhs tstephen-nhs force-pushed the aea-6256-cdk-statemachine branch from 197af08 to f701083 Compare March 25, 2026 11:24
@sonarqubecloud
Copy link

sonarqubecloud bot commented Mar 26, 2026

Quality Gate Failed Quality Gate failed

Failed conditions
D Security Rating on New Code (required ≥ A)
C Reliability Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Awaiting requested review from Copilot Copilot will automatically review once the pull request is marked ready for review

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tstephen-nhs