build(deps-dev): bump software.amazon.awscdk:aws-cdk-lib from 2.162.1 to 2.207.0

[dependabot]

Bumps software.amazon.awscdk:aws-cdk-lib from 2.162.1 to 2.207.0.

Release notes

Sourced from software.amazon.awscdk:aws-cdk-lib's releases.

v2.207.0

Features

• core: allow validation report multi-write based on context keys (#34927) (9571599)
• update L1 CloudFormation resource definitions (#35020) (3f695b3)
• bedrockprompt: add prompt management to bedrock agents (#34754) (c0d27ee)
• cloudwatch: add search expression to graph widget in cloudwatch dashboard (#34933) (e3f505e), closes #7237
• core: addInfoV2 method for suppressible info Annotations (#34872) (fb1792c), closes #34871
• logs: support ADC regions for infrequent access log class (#34999) (1c57d69)
• rds: support Database Insights for RDS instances (#34854) (304e2db), closes #34743 #32851
• cloudwatch logs transformer support (#34996) (ba61463), closes #34861

Bug Fixes

• autoscaling: add an option to run validation when migrating to launch template (#34832) (c8d62f3), closes #34283
• core: fix asset bundling for nested stack with exclusive flag (#30983) (992b0a5), closes #30967 #30967
• kinesisfirehose: can't call grantPrincipal multiple times (#34682) (ea226b5)
• s3-deployment: broken cross stack reference when using Source.data (#34916) (0591c44), closes #22843 #22843

---

Alpha modules (2.207.0-alpha.0)

v2.206.0

Features

• custom-resource: Added async custom resource provider framework logging off by default (1302e3d)
• ecs: add L1 native blue/green deployment support for ECS services (3ef87e4)

---

Alpha modules (2.206.0-alpha.0)

v2.205.0

Features

• kinesisfirehose: support custom time zone settings for S3 destination (#34738) (2bbe762), closes #34737
• update L1 CloudFormation resource definitions (#34979) (2e0e536)
• codebuild: cache sharing of CodeBuild projects (#34257) (21e2d1e), closes /docs.aws.amazon.com/codebuild/latest/userguide/caching-s3.html#caching-s3
• update L1 CloudFormation resource definitions (#34915) (748d03c)
• cloudwatch-dashboards: add support for queryLanguage property (#34547) (8a77828), closes #34482 aws/aws-cdk#34482
• ec2: add c8gn instance class (#34866) (aaf442b)
• events: add arnForPolicy attribute for api destination (#34315) (e0ac9f8)
• rds: add fromLookup method for Amazon Aurora Database Cluster (#34849) (23ca6fc), closes #34848 #33258
• synthetics: add maxRetries prop to configure automatic retries on canary runs (#34541) (54d8a84), closes #34511
• synthetics: add support for tag replication for aws synthetics (#34830) (5ff59d9)
• core: report feature flag info into Cloud Assembly (#34919) (72733ea)

Bug Fixes

• codecov: update codecov-upload.yml with a git checkout step (#34929) (0a0adf7)
• lambda: handle token resolution issues in addToRolePolicy (#34904) (6cd1802), closes #34894

... (truncated)

Changelog

Sourced from software.amazon.awscdk:aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.207.0-alpha.0 (2025-07-24)

2.206.0-alpha.0 (2025-07-16)

2.205.0-alpha.0 (2025-07-15)

2.204.0-alpha.0 (2025-07-04)

Features

• lambda-python-alpha: support uv (#33880) (ac6f136), closes #31238 #32413

2.203.1-alpha.0 (2025-07-02)

2.203.0-alpha.0 (2025-07-01)

Features

• ec2: support for client route enforcement for client VPN endpoint (#34405) (063f4e7)

Bug Fixes

• ec2: don't use inferenceAccellerators in the constructors if not needed (#34618) (054c6c5), closes #33505 aws/aws-cdk#33505 #34610

2.202.0-alpha.0 (2025-06-20)

Features

• amplify: add compute role support for Amplify branches (#34708) (817a21a)
• amplify-alpha: support custom response headers in monorepo structures (#31771) (aea1372), closes #31758

2.201.0-alpha.0 (2025-06-12)

Features

• amplify: add skew protection feature for Amplify branches (#34656) (8808998)
• bedrock: adding bedrock l2 construct features (#34065) (a028927)
• ec2: add interface VPC endpoint for DSQL (#34487) (3e53c2c)
• ec2: support Firehose IDeliveryStream as flow log destination (#34596) (cdfe6e7), closes #33883 #33757
• ec2: volume initialization rate for EBS volume (#34570) (527d483)

... (truncated)

Commits

• 259837f chore(release): 2.207.0 (#35053)
• ce8c79f chore: update analytics metadata blueprints
• 31dd979 chore(release): 2.207.0
• 89bd724 chore: run the Codebuild build on every PR, no matter the target branch (#35042)
• b553fb8 chore(enum-updater): fix pr close command (#35038)
• 9571599 feat(core): allow validation report multi-write based on context keys (#34927)
• 3f695b3 feat: update L1 CloudFormation resource definitions (#35020)
• baa880a chore(kinesisfirehose): ap-east-2 (#34657)
• 1c57d69 feat(logs): support ADC regions for infrequent access log class (#34999)
• 992b0a5 fix(core): fix asset bundling for nested stack with exclusive flag (#30983)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[dependabot]

Superseded by #1990.