| Changes.Watch | https://www.changes.watch/ |
AWS Route 53 DNS Firewall now supports Palo Alto Networks Advanced DNS Security (Preview). Unified protection for VPC & hybrid-cloud without a separate PANW firewall. Logs in Security Hub. Free during preview.
#AWS #PaloAltoNetworks #CloudSecurity #DevOps #CyberSecurity
Track your stack: https://www.changes.watch/updates/aws-2026-06-15-amazon-route-53-resolver-dns-firewall-now-supports-palo-alto-networks-advanced-dn
Sentry: JavaScript SDK internal packages moved to the @sentry scope
Internal packages have been renamed from @sentry‑internal/* to @sentry/*. The SDK now depends on the new names automatically, so most projects need no changes. Only code that imports the old packages directly must update the import paths.
Why it matters: May need migration review.
#Sentry #JavaScript #JS #TypeScript #WebDev #Frontend #Backend #NodeJS
Track your stack: https://www.changes.watch/updates/sentry-2026-06-15-javascript-sdk-internal-packages-moved-to-the-sentry-scope
AWS: Management Console Private Access works without internet connectivity
Console access is now available through VPC endpoints (PrivateLink), so you can use the console in air‑gapped or regulated environments. The feature respects endpoint, IAM, SCP and resource policies. It’s GA in all commercial regions; pricing follows PrivateLink usage.
Why it matters: Security‑relevant.
Track your stack: https://www.changes.watch/updates/aws-2026-06-15-aws-management-console-private-access-now-works-without-internet-connectivity
AWS: Amazon Route 53 Resolver DNS Firewall now supports Palo Alto Networks Advanced DNS Security (Preview)
The firewall can now apply Palo Alto’s DNS threat categories directly in its rules, giving VPC and hybrid‑cloud workloads unified DNS protection. Visibility is available in Security Hub and log destinations. The preview subscription is free and there’s no extra DNS Firewall charge.
Why it matters: Security‑relevant.
Track your stack: https://www.changes.watch/updates/aws-2026-06-15-amazon-route-53-resolver-dns-firewall-now-supports-palo-alto-networks-advanced-dn
Grafana: 13.0.2
Added new dashboard and provisioning features: k8s format in saved dashboards, v2 dashboard support, public root URL setting, refined folder handling, repo uniqueness by URL/branch/path, and component upgrades (Alpine, Go, nanogit).
Why it matters: Security-relevant.
Track your stack: https://www.changes.watch/updates/grafana-2026-06-09-13-0-2
Grafana: 11.6.15
Bumped Alpine‑based Docker images to 3.23.4 and updated Go runtime to 1.26.3.
Why it matters: Security-relevant.
Track your stack: https://www.changes.watch/updates/grafana-2026-06-09-11-6-15
GitHub: Upcoming breaking changes for npm v12
Introduces security‑focused default changes to npm install in upcoming v12
Why it matters: Security-relevant.
Track your stack: https://www.changes.watch/updates/github-2026-06-09-upcoming-breaking-changes-for-npm-v12
Grafana: 12.3.7
Dashboards now support annotations and include performance improvements for the dashboard endpoint.
Why it matters: Security-relevant.
Track your stack: https://www.changes.watch/updates/grafana-2026-06-09-12-3-7
GitHub: Agentic workflows no longer need a personal access token
Agentic Workflows can now authenticate with the built‑in GITHUB_TOKEN from GitHub Actions, removing the need to create, store, or manage PATs.
Why it matters: security‑relevant.
Track your stack: https://www.changes.watch/updates/github-2026-06-11-agentic-workflows-no-longer-need-a-personal-access-token
GitHub: Bot‑created pull requests can run workflows if approved
GitHub Actions bot can now open PRs, but CI/CD workflows run only after a user explicitly approves the PR – a security gate for generated code.
Why it matters: security‑relevant
Track your stack: https://www.changes.watch/updates/github-2026-06-11-bot-created-pull-requests-can-run-workflows-if-approved