diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 4d8c060f6a..c1861ce182 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -20,7 +20,7 @@ jobs:
     steps:
       - name: Get auth token
         id: token
-        uses: actions/create-github-app-token@0d564482f06ca65fa9e77e2510873638c82206f2 # v1.11.5
+        uses: actions/create-github-app-token@21cfef2b496dd8ef5b904c159339626a10ad380e # v1.11.6
         with:
           app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }}
           private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }}
diff --git a/.github/workflows/test-integrations-aws.yml b/.github/workflows/test-integrations-aws.yml
deleted file mode 100644
index 9d9994dcfb..0000000000
--- a/.github/workflows/test-integrations-aws.yml
+++ /dev/null
@@ -1,126 +0,0 @@
-# Do not edit this YAML file. This file is generated automatically by executing
-# python scripts/split_tox_gh_actions/split_tox_gh_actions.py
-# The template responsible for it is in
-# scripts/split_tox_gh_actions/templates/base.jinja
-name: Test AWS
-on:
-  push:
-    branches:
-      - master
-      - release/**
-      - potel-base
-  # XXX: We are using `pull_request_target` instead of `pull_request` because we want
-  # this to run on forks with access to the secrets necessary to run the test suite.
-  # Prefer to use `pull_request` when possible.
-  pull_request_target:
-    types: [labeled, opened, reopened, synchronize]
-# Cancel in progress workflows on pull_requests.
-# https://docs.github.com/en/actions/using-jobs/using-concurrency#example-using-a-fallback-value
-concurrency:
-  group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
-  cancel-in-progress: true
-permissions:
-  contents: read
-  # `write` is needed to remove the `Trigger: tests using secrets` label
-  pull-requests: write
-env:
-  SENTRY_PYTHON_TEST_AWS_ACCESS_KEY_ID: ${{ secrets.SENTRY_PYTHON_TEST_AWS_ACCESS_KEY_ID }}
-  SENTRY_PYTHON_TEST_AWS_SECRET_ACCESS_KEY: ${{ secrets.SENTRY_PYTHON_TEST_AWS_SECRET_ACCESS_KEY }}
-  BUILD_CACHE_KEY: ${{ github.sha }}
-  CACHED_BUILD_PATHS: |
-    ${{ github.workspace }}/dist-serverless
-jobs:
-  check-permissions:
-    name: permissions check
-    runs-on: ubuntu-20.04
-    steps:
-      - uses: actions/checkout@v4.2.2
-        with:
-          persist-credentials: false
-      - name: Check permissions on PR
-        if: github.event_name == 'pull_request_target'
-        run: |
-          python3 -uS .github/workflows/scripts/trigger_tests_on_label.py \
-              --repo-id ${{ github.event.repository.id }} \
-              --pr ${{ github.event.number }} \
-              --event ${{ github.event.action }} \
-              --username "$ARG_USERNAME" \
-              --label-names "$ARG_LABEL_NAMES"
-        env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          # these can contain special characters
-          ARG_USERNAME: ${{ github.event.pull_request.user.login }}
-          ARG_LABEL_NAMES: ${{ toJSON(github.event.pull_request.labels.*.name) }}
-      - name: Check permissions on repo branch
-        if: github.event_name == 'push'
-        run: true
-  test-aws-pinned:
-    name: AWS (pinned)
-    timeout-minutes: 30
-    runs-on: ${{ matrix.os }}
-    strategy:
-      fail-fast: false
-      matrix:
-        python-version: ["3.9"]
-        # python3.6 reached EOL and is no longer being supported on
-        # new versions of hosted runners on Github Actions
-        # ubuntu-20.04 is the last version that supported python3.6
-        # see https://github.com/actions/setup-python/issues/544#issuecomment-1332535877
-        os: [ubuntu-20.04]
-    needs: check-permissions
-    steps:
-      - uses: actions/checkout@v4.2.2
-        with:
-          ref: ${{ github.event.pull_request.head.sha || github.ref }}
-      - uses: actions/setup-python@v5
-        with:
-          python-version: ${{ matrix.python-version }}
-          allow-prereleases: true
-      - name: Setup Test Env
-        run: |
-          pip install "coverage[toml]" tox
-      - name: Erase coverage
-        run: |
-          coverage erase
-      - name: Test aws_lambda pinned
-        run: |
-          set -x # print commands that are executed
-          ./scripts/runtox.sh --exclude-latest "py${{ matrix.python-version }}-aws_lambda"
-      - name: Generate coverage XML (Python 3.6)
-        if: ${{ !cancelled() && matrix.python-version == '3.6' }}
-        run: |
-          export COVERAGE_RCFILE=.coveragerc36
-          coverage combine .coverage-sentry-*
-          coverage xml --ignore-errors
-      - name: Generate coverage XML
-        if: ${{ !cancelled() && matrix.python-version != '3.6' }}
-        run: |
-          coverage combine .coverage-sentry-*
-          coverage xml
-      - name: Upload coverage to Codecov
-        if: ${{ !cancelled() }}
-        uses: codecov/codecov-action@v5.4.0
-        with:
-          token: ${{ secrets.CODECOV_TOKEN }}
-          files: coverage.xml
-          # make sure no plugins alter our coverage reports
-          plugin: noop
-          verbose: true
-      - name: Upload test results to Codecov
-        if: ${{ !cancelled() }}
-        uses: codecov/test-results-action@v1
-        with:
-          token: ${{ secrets.CODECOV_TOKEN }}
-          files: .junitxml
-          verbose: true
-  check_required_tests:
-    name: All pinned AWS tests passed
-    needs: test-aws-pinned
-    # Always run this, even if a dependent job failed
-    if: always()
-    runs-on: ubuntu-20.04
-    steps:
-      - name: Check for failures
-        if: contains(needs.test-aws-pinned.result, 'failure') || contains(needs.test-aws-pinned.result, 'skipped')
-        run: |
-          echo "One of the dependent jobs has failed. You may need to re-run it." && exit 1