chore(deps): upgrade @guardian/cdk to latest (8.2.0)

[akash1810]

What does this change?

Updates to @guardian/cdk v8.2.0 🎉 . This has got a number of breaking changes (full diff here).

We'd need to manually apply the CFN template as the following parameters have been renamed (hopefully for the last time!):

• AMI -> AMIPrism
• InstanceType -> InstanceTypePrism

How to test

n/a

How can we measure success?

Keeping up to date.

Have we considered potential risks?

n/a

Images

n/a

[akash1810]

This can be seen in the snapshot diff on the first commit.

[jacobwinch]

@akash1810 - I think we'll need to set existingLogicalId on the load balancer to avoid a replacement here? I'm a bit confused as to how this logical id has been kept until now, as overrideId doesn't currently appear to be set 😕

[akash1810]

Argh! Good spot! Will add existingLogicalId.

I think this is the result of guardian/cdk#440. Looking at the removed tests, it looks like if migratedFromCloudFormation was true on the GuStack, the construct's logicalId was not auto-generated; and the value passed into the constructor was used.

I think this is another +1 for guardian/cdk#364 and encapsulating this logic in one place.

I'd also have hoped to see the message in the console, but then I realised I've been using Jest locally which sets NODE_ENV to test - oops guardian/cdk#397!

[akash1810]

This will result in a replacement 😢 . I wonder if guardian/cdk could send a warning on this event? Though maybe the major version number change is enough of a signal?

[jacobwinch]

Hmm, good point. We have (at least) two different types of breaking change:

1. We've changed the API and you'll need to update some code, but it shouldn't cause any breaking changes to the underlying infrastructure
2. We've changed something which will have a significant impact on the underlying infrastructure (e.g. replacing a security group, updating load balancer version)

I think everyone will be familiar with type 1, but I wonder if a major version bump will be enough to prepare them for changes of type 2... hopefully these will be rare events once we have our production-ready version though!

[jacobwinch]

Great work 💯

[akash1810]

This change updates security groups. This is normally tricky when they are in-use by instances as the instances need to be cycled out of service.

This manifests itself like this in the CFN event log:

resource sg-0af9f2fea82e07d81 has a dependent object (Service: AmazonEC2; Status Code: 400; Error Code: DependencyViolation; Request ID: af537518-65ca-454c-b652-e2b1d11ca2c9; Proxy: null)

When this happens, I usually perform an app only deploy to cycle the current instances out and launch new ones.

I think I did this too early on CODE, which lead to a few issues. That is, I didn't wait for the DependencyViolation message to perform an app only deploy, instead I deployed earlier at a point when it looks like the IAM policy changes hadn't finished. This resulted in new instances failing to launch as they couldn't get the deb file from S3:

[ 20.646057] cloud-init[1733]: fatal error: An error occurred (403) when calling the HeadObject operation: Forbidden
[ 20.787557] cloud-init[1733]: dpkg: error: cannot access archive '/prism/prism.deb': No such file or directory

I've deployed the CFN change manually to PROD, waiting for the DependencyViolation event before cycling the instances out. This went without issue.

[jacobwinch]

I think I did this too early on CODE, which lead to a few issues. That is, I didn't wait for the DependencyViolation message to perform an app only deploy, instead I deployed earlier at a point when it looks like the IAM policy changes hadn't finished.

Ah this makes sense now! Thanks for explaining!