aws-solutions
diff --git a/‎CHANGELOG.md‎
Lines changed: 11 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 11 additions & 0 deletions
diff --git a/‎VERSION.txt‎
Lines changed: 1 addition & 1 deletion b/‎VERSION.txt‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎architecture.png‎
-50.1 KB b/‎architecture.png‎
-50.1 KB
diff --git a/‎deployment/build-s3-dist.sh‎
Lines changed: 10 additions & 1 deletion b/‎deployment/build-s3-dist.sh‎
Lines changed: 10 additions & 1 deletion
diff --git a/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/Dockerfile‎
Lines changed: 4 additions & 0 deletions b/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/Dockerfile‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/jar_updater.py‎
Lines changed: 2 additions & 0 deletions b/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/jar_updater.py‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/load-test.sh‎
Lines changed: 10 additions & 5 deletions b/‎deployment/ecr/distributed-load-testing-on-aws-load-tester/load-test.sh‎
Lines changed: 10 additions & 5 deletions
diff --git a/‎solution-manifest.yaml‎
Lines changed: 1 addition & 1 deletion b/‎solution-manifest.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎source/api-services/package-lock.json‎
Lines changed: 2 additions & 2 deletions b/‎source/api-services/package-lock.json‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎source/api-services/package.json‎
Lines changed: 1 addition & 1 deletion b/‎source/api-services/package.json‎
Lines changed: 1 addition & 1 deletion
@@ -5,6 +5,17 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [4.0.3] - 2025-12-18
+
+### Changed
+
+- Allow parenthesis in test scenario names
+
+### Security
+
+- Update to address vulnerability in [CVE-2025-66221](https://nvd.nist.gov/vuln/detail/CVE-2025-66221)
+- Update rhino to v1.7.14.1 to address vulnerability in [CVE-2025-66453](https://nvd.nist.gov/vuln/detail/CVE-2025-66453)
+
 ## [4.0.2] - 2025-12-09
 
 ### Changed
 
@@ -1 +1 @@
-4.0.2
+4.0.3
@@ -42,6 +42,10 @@ main() {
     local source_dir="$project_root"/source
     local cdk_out_dir="$source_dir"/infrastructure/cdk.out
 
+    # Launch Wizard directory
+    version_without_v="${3#v}"
+    local launch_wizard_dist_dir="$deployment_dir/launch-wizard-assets/Default/${version_without_v}"
+
     header "[Init] Remove any old dist files from previous runs"
 
     rm -rf "$global_dist_dir"
@@ -116,6 +120,11 @@ main() {
       fi
     done
     popd
+
+    header "[Packing] Launch Wizard Assets"
+    cd "${launch_wizard_dist_dir}/helpPanels"
+    zip -q -r9 "${launch_wizard_dist_dir}/helpPanels.zip" .
+    cd "${deployment_dir}"
 }
 
-main "$@"
+main "$@"
@@ -41,5 +41,9 @@ RUN mkdir -p /etc/bzt.d && echo '{"settings": {"artifacts-dir": "/tmp/artifacts"
 # https://github.com/Blazemeter/taurus/blob/647dd34ab318b5d3060a8c6ce2e5b047a0efddd2/requirements.txt
 RUN $PIP_INSTALL 'urllib3>=2.6.0'
 
+# Temporary fix for CVE-2025-66221 in Werkzeug < 3.1.4
+# This must be upgraded after bzt setup to satisfy bzt requirements.txt
+RUN $PIP_INSTALL 'werkzeug>=3.1.4'
+
 WORKDIR /bzt-configs
 ENTRYPOINT ["./load-test.sh"]
@@ -24,6 +24,7 @@
     * http2-common will be replaced with v11.0.26
     * kotlin-stdlib will be replaced with v2.1.0
     * commons-lang3 will be replaced with v3.18.0
+    * rhino v1.7.14 will be replaced with v1.7.14.1 (fixes CVE-2025-66453)
     * commons-lang v2.5 - no fix available for CVE-2025-48924
 
 Also jmeter plugins manager will be updated to v1.11 to address CVEs and 
@@ -72,6 +73,7 @@
     "http2-common": "org/eclipse/jetty/http2/http2-common/11.0.26/http2-common-11.0.26.jar",
     "kotlin-stdlib": "org/jetbrains/kotlin/kotlin-stdlib/2.1.0/kotlin-stdlib-2.1.0.jar",
     "commons-lang3": "org/apache/commons/commons-lang3/3.18.0/commons-lang3-3.18.0.jar",
+    "rhino": "org/mozilla/rhino/1.7.14.1/rhino-1.7.14.1.jar", # NOSONAR
 }
 
 # Jars to remove from the container
 
@@ -76,13 +76,18 @@ if [ "$TEST_TYPE" != "simple" ]; then
     echo "UNZIPPED to temp directory"
     ls -l $TEMP_DIR
 
-    # Find the parent folder and copy its contents
-    PARENT_FOLDER=$(find $TEMP_DIR -mindepth 1 -maxdepth 1 -type d | head -n 1)
-    if [ -n "$PARENT_FOLDER" ]; then
-      echo "Copying contents from parent folder: $PARENT_FOLDER"
+    # Check if there's exactly one directory and no files at root level
+    ROOT_DIRS=$(find $TEMP_DIR -mindepth 1 -maxdepth 1 -type d)
+    ROOT_FILES=$(find $TEMP_DIR -mindepth 1 -maxdepth 1 -type f)
+    
+    # Only unwrap if there's exactly one directory and zero files at root
+    if [ $(echo "$ROOT_DIRS" | wc -l) -eq 1 ] && [ -z "$ROOT_FILES" ]; then
+      PARENT_FOLDER=$(echo "$ROOT_DIRS")
+      echo "Single parent folder detected with no sibling files: $PARENT_FOLDER"
+      echo "Unwrapping contents from parent folder"
       cp -r $PARENT_FOLDER/* ./
     else
-      echo "No parent folder found, copying all contents from temp directory"
+      echo "Multiple items or files at root level detected, copying all contents from temp directory"
       cp -r $TEMP_DIR/* ./
     fi
 
 
@@ -1,6 +1,6 @@
 id: SO0062 
 name: distributed-load-testing-on-aws
-version: v4.0.2
+version: v4.0.3
 cloudformation_templates:
   - template: distributed-load-testing-on-aws.template
     main_template: true 
 
@@ -1,6 +1,6 @@
 {
   "name": "api-services",
-  "version": "4.0.2",
+  "version": "4.0.3",
   "description": "REST API micro services",
   "repository": {
     "type": "git",
Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "api-services",`
`3`		`- "version": "4.0.2",`
	`3`	`+ "version": "4.0.3",`
`4`	`4`	`"description": "REST API micro services",`
`5`	`5`	`"repository": {`
`6`	`6`	`"type": "git",`