Release v1.8.0 (#115)

- Freeze `ndc-nodejs-lambda` to `v1.20.2`
- Update dockerfile to ubuntu:24.04
- Updates for security vulnerabilities

Author: codedmart

.github/workflows/build.yaml

@@ -59,32 +59,6 @@ jobs:
           path: ${{ env.tar_file }}
           retention-days: 1
 
-  scan-docker-image-with-gokakashi:
-    needs: build-docker-image
-    runs-on: ubuntu-latest
-    steps:
-      - name: Download Docker image artifact
-        uses: actions/download-artifact@v4
-        with:
-          name: ${{ needs.build-docker-image.outputs.tar_file }}
-
-      - name: Load Docker image
-        run: |
-          docker load -i ${{ needs.build-docker-image.outputs.tar_file }}
-
-      - name: Scan docker image with gokakashi
-        uses: shinobistack/gokakashi-action@v0.1.1
-        with:
-          image: '${{ needs.build-docker-image.outputs.image_name }}'
-          labels: agentKey=${{ github.run_id }}
-          policy: ci-platform
-          server: https://gokakashi-server.hasura-app.io
-          token: ${{ secrets.GOKAKASHI_API_TOKEN }}
-          cf_client_id: ${{ secrets.CF_ACCESS_CLIENT_ID }}
-          cf_client_secret: ${{ secrets.CF_ACCESS_CLIENT_SECRET }}
-          interval: 10
-          retries: 8
-
   scan-docker-image-with-trivy:
     needs: build-docker-image
     runs-on: ubuntu-latest

Dockerfile

@@ -1,8 +1,21 @@
-FROM node:20-alpine
+FROM ubuntu:noble-20260113
 
-# we need to update npm to update cross-spawn to a version higher than or equal to 7.0.6 to avoid a critical vulnerability
+RUN apt-get update && apt-get install -y \
+    bash \
+    jq \
+    curl \
+    ca-certificates \
+    gnupg \
+    && mkdir -p /etc/apt/keyrings \
+    && curl -fsSL https://deb.nodesource.com/gpgkey/nodesource-repo.gpg.key | gpg --dearmor -o /etc/apt/keyrings/nodesource.gpg \
+    && echo "deb [signed-by=/etc/apt/keyrings/nodesource.gpg] https://deb.nodesource.com/node_20.x nodistro main" > /etc/apt/sources.list.d/nodesource.list \
+    && apt-get update \
+    && apt-get install -y nodejs \
+    && rm -rf /var/lib/apt/lists/*
+
+# Update npm to fix vulnerabilities in its bundled dependencies
+# (cross-spawn, glob, tar)
 RUN npm update -g npm
-RUN apk add bash jq curl
 
 COPY ./ /app/
 WORKDIR /app/

changelog.md

@@ -2,6 +2,12 @@
 
 ## Unreleased
 
+## [[1.8.0](https://github.com/hasura/ndc-open-api-lambda/releases/tag/v1.8.0)] 2026-02-13
+
+- Freeze `ndc-nodejs-lambda` to `v1.20.2`
+- Update dockerfile to ubuntu:24.04
+- Updates for security vulnerabilities
+
 ## [[1.7.1](https://github.com/hasura/ndc-open-api-lambda/releases/tag/v1.7.1)] 2025-07-22
 
 - Freeze `ndc-nodejs-lambda` to `v1.15.0` ([#100](https://github.com/hasura/ndc-open-api-lambda/pull/100))
@@ -75,7 +81,7 @@
 
 - Add compatibilty for Windows Powershell and Command Prompt. ([#51](https://github.com/hasura/ndc-open-api-lambda/pull/51))
 
-- Use `hasuraSdk.JSONValue` as the type for `Record<>` and `object`. Also, make APIs that don't have a return type return `hasuraSdk.JSONValue` instead of `void` (39)[https://github.com/hasura/ndc-open-api-lambda/pull/39]
+- Use `hasuraSdk.JSONValue` as the type for `Record<>` and `object`. Also, make APIs that don't have a return type return `hasuraSdk.JSONValue` instead of `void` [39](https://github.com/hasura/ndc-open-api-lambda/pull/39)
 
 ## [[0.1.1](https://github.com/hasura/ndc-open-api-lambda/releases/tag/v0.1.1)] 2024-06-05
 
@@ -93,7 +99,7 @@
 
 - Added [Prettier Code Formatting](https://prettier.io/docs/en/api.html) to the generated `functions.ts` file
 - Added `--ndc-lambda-sdk` flag and corresponding environment variable `NDC_LAMBDA_SDK_VERSION` that can be used to set the preferred version of NDC Lambda SDK to be used
-- Return api errors that are not code 500 as `hasuraSdk.UnprocessableContent` (#14)[https://github.com/hasura/ndc-open-api-lambda/pull/14]
+- Return api errors that are not code 500 as `hasuraSdk.UnprocessableContent` [#14](https://github.com/hasura/ndc-open-api-lambda/pull/14)
 
 ## [[0.0.1-alpha](https://github.com/hasura/ndc-open-api-lambda/releases/tag/v0.0.1-alpha)] 2024-04-10
 

connector-definition/.hasura-connector/Dockerfile

@@ -1,4 +1,4 @@
-FROM ghcr.io/hasura/ndc-nodejs-lambda:v1.15.0
+FROM ghcr.io/hasura/ndc-nodejs-lambda:v1.20.2
 
 COPY package-lock.json package.json api.ts /functions/
 

connector-definition/.hasura-connector/connector-metadata.yaml

@@ -14,11 +14,11 @@ supportedEnvironmentVariables:
 commands:
   update:
     type: Dockerized
-    dockerImage: ghcr.io/hasura/ndc-open-api-lambda:v1.7.1
-    commandArgs: [ "update" ]
+    dockerImage: ghcr.io/hasura/ndc-open-api-lambda:v1.8.0
+    commandArgs: ["update"]
 cliPlugin:
   type: Docker
-  dockerImage: ghcr.io/hasura/ndc-open-api-lambda:v1.7.1
+  dockerImage: ghcr.io/hasura/ndc-open-api-lambda:v1.8.0
 dockerComposeWatch:
   # Rebuild the container if a new package restore is required because package[-lock].json changed
   - path: package.json
@@ -50,4 +50,5 @@ nativeToolchainDefinition:
         HASURA_CONFIGURATION_DIRECTORY="$HASURA_PLUGIN_CONNECTOR_CONTEXT_PATH" "$HASURA_DDN_NATIVE_CONNECTOR_PLUGIN_DIR/ndc-oas-lambda" update
       powershell: |
         $ErrorActionPreference = "Stop"
-        & "$env:HASURA_DDN_NATIVE_CONNECTOR_PLUGIN_DIR\ndc-oas-lambda.bat" update
+        & "$env:HASURA_DDN_NATIVE_CONNECTOR_PLUGIN_DIR\ndc-oas-lambda.bat" update
+

docs/documentation.md

@@ -6,8 +6,8 @@ This connector is published as a Docker Image. The image name is `ghcr.io/hasura
 
 | Environment Variable       | Description                                                                                                                                                                                                          | Required | Example Value                                                                                         |
 | -------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -------- | ----------------------------------------------------------------------------------------------------- |
-| NDC_OAS_DOCUMENT_URI       | The URI to your Open API Document. If you're using a file instead of a HTTP link, please ensure that it is named `swagger.json` and is present in the root directory of the volume being mounted to `/etc/connector` | false    | https://raw.githubusercontent.com/swagger-api/swagger-petstore/master/src/main/resources/openapi.yaml |
-| NDC_OAS_BASE_URL           | The base URL of your API.                                                                                                                                                                                            | false    | http://my-awesome-webapp.com/v1/                                                                      |
+| NDC_OAS_DOCUMENT_URI       | The URI to your Open API Document. If you're using a file instead of a HTTP link, please ensure that it is named `swagger.json` and is present in the root directory of the volume being mounted to `/etc/connector` | false    | <https://raw.githubusercontent.com/swagger-api/swagger-petstore/master/src/main/resources/openapi.yaml> |
+| NDC_OAS_BASE_URL           | The base URL of your API.                                                                                                                                                                                            | false    | <http://my-awesome-webapp.com/v1/>                                                                      |
 | NDC_OAS_FILE_OVERWRITE     | A Boolean flag to allow previously generated files to be over-written. Defaults to `false`.                                                                                                                          | false    |                                                                                                       |
 | HASURA_PLUGIN_LOG_LEVEL    | The log level. Possible values: `trace`, `debug`, `info`, `warn`, `error`, `fatal`, `panic`. Defaults to `info`                                                                                                      | false    | info                                                                                                  |
 | NDC_OAS_LAMBDA_PRETTY_LOGS | A Boolean flag to print human readable logs instead of JSON. Defaults to `false`                                                                                                                                     | false    | true                                                                                                  |
@@ -133,19 +133,19 @@ The Docker Container will output the generated files at `/etc/connector`. Please
 
 ```bash
 # get command documentation/help
-docker run --rm ghcr.io/hasura/ndc-open-api-lambda:v1.7.1 update -h
+docker run --rm ghcr.io/hasura/ndc-open-api-lambda:v1.8.0 update -h
 
 # run the code generation (using env vars)
-docker run --rm -v ./:/etc/connector/ -e NDC_OAS_DOCUMENT_URI=${url to open API document} ghcr.io/hasura/ndc-open-api-lambda:v1.7.1 update
+docker run --rm -v ./:/etc/connector/ -e NDC_OAS_DOCUMENT_URI=${url to open API document} ghcr.io/hasura/ndc-open-api-lambda:v1.8.0 update
 
 # run the code generation (using CLI flags)
-docker run --rm -v ./:/etc/connector/ ghcr.io/hasura/ndc-open-api-lambda:v1.7.1 update --open-api ${url to open API document}
+docker run --rm -v ./:/etc/connector/ ghcr.io/hasura/ndc-open-api-lambda:v1.8.0 update --open-api ${url to open API document}
 
 # with baseUrl (using env vars)
-docker run --rm -v ./:/etc/connector/ -e NDC_OAS_DOCUMENT_URI=${url to open API document} -e NDC_OAS_BASE_URL=http://demoapi.com/ ghcr.io/hasura/ndc-open-api-lambda:v1.7.1 update
+docker run --rm -v ./:/etc/connector/ -e NDC_OAS_DOCUMENT_URI=${url to open API document} -e NDC_OAS_BASE_URL=http://demoapi.com/ ghcr.io/hasura/ndc-open-api-lambda:v1.8.0 update
 
 # with baseUrl (using CLI flags)
-docker run --rm -v ./:/etc/connector/ ghcr.io/hasura/ndc-open-api-lambda:v1.7.1 update --open-api ${url to open API document} --base-url http://demoapi.com/
+docker run --rm -v ./:/etc/connector/ ghcr.io/hasura/ndc-open-api-lambda:v1.8.0 update --open-api ${url to open API document} --base-url http://demoapi.com/
 ```
 
 ## Build and Run