Skip to content

build(deps-dev): bump the nodejs-other group across 1 directory with 8 updates #2032

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
wpessers merged 1 commit into from
Nov 27, 2025
Merged

build(deps-dev): bump the nodejs-other group across 1 directory with 8 updates #2032

wpessers merged 1 commit into from
Nov 27, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 24, 2025
edited
Loading

Bumps the nodejs-other group with 8 updates in the /nodejs directory:

Package From To
lerna 9.0.0 9.0.1
rimraf 6.0.1 6.1.2
@types/sinon 17.0.4 21.0.0
mocha 11.7.4 11.7.5
webpack 5.102.1 5.103.0
@aws-sdk/client-sts 3.917.0 3.936.0
@types/node 24.5.2 24.10.1
aws-cdk-lib 2.221.0 2.227.0

Updates lerna from 9.0.0 to 9.0.1

Release notes

Sourced from lerna's releases.

v9.0.1

9.0.1 (2025-11-14)

Bug Fixes

  • expand version range to include nx v22.x (#4242) (0cca286)
Changelog

Sourced from lerna's changelog.

9.0.1 (2025-11-14)

Bug Fixes

  • expand version range to include nx v22.x (#4242) (0cca286)
Commits

Updates rimraf from 6.0.1 to 6.1.2

Changelog

Sourced from rimraf's changelog.

6.1

  • Move to native fs/promises usage instead of promisifying manually.

6.0

  • Drop support for nodes before v20
  • Add --version to CLI

5.0

  • No default export, only named exports

4.4

  • Provide Dirent or Stats object as second argument to filter

4.3

  • Return boolean indicating whether the path was fully removed
  • Add filter option
  • bin: add --verbose, -v to print files as they are deleted
  • bin: add --no-verbose, -V to not print files as they are deleted
  • bin: add -i --interactive to be prompted on each deletion
  • bin: add -I --no-interactive to not be prompted on each deletion
  • 4.3.1 Fixed inappropriately following symbolic links to directories

v4.2

  • Brought back glob support, using the new and improved glob v9

v4.1

  • Improved hybrid module with no need to look at the .default dangly bit. .default preserved as a reference to rimraf for compatibility with anyone who came to rely on it in v4.0.
  • Accept and ignore -rf and -fr arguments to the bin.

v4.0

  • Remove glob dependency entirely. This library now only accepts actual file and folder names to delete.
  • Accept array of paths or single path.
  • Windows performance and reliability improved.
  • All strategies separated into explicitly exported methods.
  • Drop support for Node.js below version 14
  • rewrite in TypeScript

... (truncated)

Commits

Updates @types/sinon from 17.0.4 to 21.0.0

Commits

Updates mocha from 11.7.4 to 11.7.5

Release notes

Sourced from mocha's releases.

v11.7.5

11.7.5 (2025-11-04)

🩹 Fixes

  • swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

Changelog

Sourced from mocha's changelog.

11.7.5 (2025-11-04)

🩹 Fixes

  • swallow more require errors from *ts files (#5498) (d89dbaf)

🧹 Chores

Commits

Updates webpack from 5.102.1 to 5.103.0

Release notes

Sourced from webpack's releases.

v5.103.0

Features

  • Added DotenvPlugin and top level dotenv option to enable this plugin
  • Added WebpackManifestPlugin
  • Added support the ignoreList option in devtool plugins
  • Allow to use custom javascript parse function
  • Added import.meta.env support for environment variables
  • Added support for import.meta.dirname and import.meta.filename
  • Added support import.defer() for statistical path
  • Handle import.meta.main
  • Added suport to setup named exports for JSON modules and disable usage named export for import file from "./file.json" with { type: "json" }
  • Added support __dirname/__filename/import.meta.dirname/import.meta.filename for universal target
  • [CSS] Added the exportType option with link (by default), "text" and css-style-sheet values
  • [CSS] Added support for composes properties

Fixes

  • The dependOn chunk must be loaded before the common chunk
  • Return to namespace import when the external request includes a specific export
  • No runtime extra runtime code for module libraries
  • Delay HMR accept dependencies to preserve import attributes
  • Properly handle external presets for universal target
  • Fixed incorrect identifier of import binding for module externals
  • Fixed when defer import and dynamic default export mixed
  • Reduce generated output when globalThis supported
  • Fixed loading async modules in defer import
  • Reexport module for default import when no used exports for systemjs library
  • Rename HarmonyExportDependencyParserPlugin exported id to CompatibilityPlugin tagged id
  • Handle __dirname and __filename for ES modules
  • Rename single nested __webpack_export__ and __webpack_require__ in already bundled code
  • [Types] webpack function type
  • [Types] NormalModule type
  • [Types] Multi compiler configuration type
  • [Types] Fixed regression in custom hashDigest type
  • [CSS] No extra runtime for initial chunk
  • [CSS] Fixed a lot of CSS modules bugs
Commits
  • e021948 chore(release): 5.103.0
  • 1dc6967 chore(deps): bump actions/checkout from 5.0.0 to 5.0.1 (#20130)
  • 077417f fix(css): many css modules bugs (#20129)
  • 7722518 chore: fix script (#20128)
  • 688a7f9 test: no runtime requirements for module library (#20127)
  • 04fe5a1 refactor: pkg.pr.new publish (#20093)
  • 27c05c7 fix: return to namespace import when the external request includes a specific...
  • 067cc60 refactor: no runtime requirements for module library (#20096)
  • d4208ba fix: delay HMR accept dependencies to preserve import attributes (#20124)
  • 102e1a4 feat(css): added css-style-sheet to exportType for CSSStyleSheet return (#20104)
  • Additional commits viewable in compare view

Updates @aws-sdk/client-sts from 3.917.0 to 3.936.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.936.0

3.936.0(2025-11-19)

New Features
  • credential-provider-login: add login credential provider (#7512) (2c08b1e0)

For list of updated packages, view updated-packages.md in assets-3.936.0.zip

v3.935.0

3.935.0(2025-11-19)

Chores
New Features
  • clients: update client endpoints as of 2025-11-19 (d7b51c49)
  • client-sts: IAM now supports outbound identity federation via the STS GetWebIdentityToken API, enabling AWS workloads to securely authenticate with external services using short-lived JSON Web Tokens. (f9fed01c)
  • client-dynamodb: Extended Global Secondary Index (GSI) composite keys to support up to 8 attributes. (622ef038)
  • client-medialive: MediaLive is adding support for MediaConnect Router by supporting a new input type called MEDIACONNECT_ROUTER. This new input type will provide seamless encrypted transport between MediaConnect Router and your MediaLive channel. (1667189e)
  • client-bcm-pricing-calculator: Add GroupSharingPreference, CostCategoryGroupSharingPreferenceArn, and CostCategoryGroupSharingPreferenceEffectiveDate to Bill Estimate. Add GroupSharingPreference and CostCategoryGroupSharingPreferenceArn to Bill Scenario. (e0dc140c)
  • client-backup: Amazon GuardDuty Malware Protection now supports AWS Backup, extending malware detection capabilities to EC2, EBS, and S3 backups. (498dcf3d)
  • client-connectcampaignsv2: This release added support for ring timer configuration for campaign calls. (1155c3c4)
  • client-ecs: Added support for Amazon ECS Managed Instances infrastructure optimization configuration. (2ee0c3f3)
  • client-ecr: Add support for ECR archival storage class and Inspector org policy for scanning (ed5e232d)
  • client-sagemaker: Added support for enhanced metrics for SageMaker AI Endpoints. This features provides Utilization Metrics at instance and container granularity and also provides easy configuration of metric publish frequency from 10 sec -> 5 mins (ad2587c7)
  • client-apigatewayv2: Support for API Gateway portals and portal products. (fc064256)
  • client-billingconductor: This release adds support for Billing Transfers, enabling management of billing transfers with billing groups on AWS Billing Conductor. (4e32b65d)
  • client-cloudwatch-logs: Adding support for ocsf version 1.5, add optional parameter MappingVersion (2a15be86)
  • client-api-gateway: API Gateway now supports response streaming and new security policies for REST APIs and custom domain names. (e1d2d6b1)
  • client-cost-optimization-hub: Release ListEfficiencyMetrics API (2b031582)
  • client-bedrock-runtime: This release includes support for Search Results. (40ffa77a)
  • client-cloudtrail: AWS CloudTrail now supports Insights for data events, expanding beyond management events to automatically detect unusual activity on data plane operations. (f8570665)
  • client-health: Adds actionability and personas properties to Health events exposed through DescribeEvents, DescribeEventsForOrganization, DescribeEventDetails, and DescribeEventTypes APIs. Adds filtering by actionabilities and personas in EventFilter, OrganizationEventFilter, EventTypeFilter. (c754b242)
  • client-networkflowmonitor: Added new enum value (AWS::EKS::Cluster) for type field under MonitorLocalResource (66729787)
  • client-invoicing: Add support for adding Billing transfers in Invoice configuration (2e493490)
  • client-s3: Adds support for blocking SSE-C writes to general purpose buckets. (cee2e72f)
  • client-network-firewall: Partner Managed Rulegroup feature support (2e8472d6)
  • client-emr: Add CloudWatch Logs integration for Spark driver, executor and step logs (7e6e1684)
  • client-fsx: Adding File Server Resource Manager configuration to FSx Windows (2e3c0c96)
  • client-guardduty: Add support for scanning and viewing scan results for backup resource types (231cf06b)
  • client-sfn: Adds support to TestState for mocked results and exceptions, along with additional inspection data. (1b18be75)
  • client-partnercentral-channel: Initial GA launch of Partner Central Channel (b77d1682)
  • client-secrets-manager: Adds support to create, update, retrieve, rotate, and delete managed external secrets. (c13b6f97)
  • client-iam: Added the EnableOutboundWebIdentityFederation, DisableOutboundWebIdentityFederation and GetOutboundWebIdentityFederationInfo APIs for the IAM outbound federation feature. (5774faa2)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.936.0 (2025-11-19)

Note: Version bump only for package @​aws-sdk/client-sts

3.935.0 (2025-11-19)

Features

  • client-sts: IAM now supports outbound identity federation via the STS GetWebIdentityToken API, enabling AWS workloads to securely authenticate with external services using short-lived JSON Web Tokens. (f9fed01)

3.934.0 (2025-11-18)

Note: Version bump only for package @​aws-sdk/client-sts

3.933.0 (2025-11-17)

Note: Version bump only for package @​aws-sdk/client-sts

3.932.0 (2025-11-14)

Note: Version bump only for package @​aws-sdk/client-sts

3.931.0 (2025-11-13)

Note: Version bump only for package @​aws-sdk/client-sts

... (truncated)

Commits
  • a180cc7 Publish v3.936.0
  • c31b14b Publish v3.935.0
  • f9fed01 feat(client-sts): IAM now supports outbound identity federation via the STS G...
  • ac2be51 chore(codegen): update for smithy/core serde fixes (#7511)
  • 3b6a4d9 Publish v3.934.0
  • 674fae6 Publish v3.933.0
  • c28f46d Publish v3.932.0
  • 99f5f06 Publish v3.931.0
  • 2a1737e Publish v3.930.0
  • 6362fe2 chore(codegen): sync for idempotencyToken fix in http binding protocols (#7495)
  • Additional commits viewable in compare view

Updates @types/node from 24.5.2 to 24.10.1

Commits

Updates aws-cdk-lib from 2.221.0 to 2.227.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.227.0

CHANGES TO L1 RESOURCES: L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

  • aws-backup: AWS::Backup::LogicallyAirGappedBackupVault: EncryptionKeyArn attribute removed.

Features

  • stepfunctions: add StateMachineGrants (#36094) (59ef00d)
  • update L1 CloudFormation resource definitions (#36122) (51d805e)
  • core: cfn constructs (L1s) can now accept constructs as parameters for known resource relationships (#35838) (6be7b4b)
  • factory methods for Grants made public (#36123) (f9a894f)
  • dynamodb: add TableGrants and StreamGrants (#36093) (d0b074a)
  • rds: support instance and iam-db-auth-error CloudWatch log exports (#35058) (e71a8b1), closes #35018
  • s3: add BucketGrants (#36102) (5891172)
  • grants are now available through a separate class (#35782) (21fd959)

Alpha modules (2.227.0-alpha.0)

Features

Bug Fixes

  • bedrock-agentcore-alpha: fix unexpected validation error when properties are Token (#35978) (084b736)

v2.226.0

Features

  • dynamodb: compound keys for global secondary indexes (046b06d)
  • lambda: add multi-tenancy support with TenancyConfig (5f384db)

Alpha modules (2.226.0-alpha.0)

v2.225.0

⚠ BREAKING CHANGES

  • ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

    • aws-dynamodb: AWS::DynamoDB::GlobalTable: ResourcePolicy property is now required.

Features

  • update L1 CloudFormation resource definitions (#36082) (3df1d81)
  • custom-resource: add External ID support for AwsCustomResource (#35252) (9f6c02b), closes #34018
  • route53: support restricting delegated zone names when using grantDelegation (#35129) (d832aca)

Bug Fixes

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.227.0-alpha.0 (2025-11-20)

Features

Bug Fixes

  • bedrock-agentcore-alpha: fix unexpected validation error when properties are Token (#35978) (084b736)

2.226.0-alpha.0 (2025-11-20)

2.225.0-alpha.0 (2025-11-17)

2.224.0-alpha.0 (2025-11-13)

Features

2.223.0-alpha.0 (2025-11-10)

2.222.0-alpha.0 (2025-11-04)

Features

  • eks-v2-alpha: eks-v2-alpha is now in developer preview (#35801) (32afc0f)

Bug Fixes

  • bedrock-alpha: apply permission dependency to existing and non-existing roles (#35123) (b39ccf3), closes #35120
  • eks-v2-alpha: remove hyphen from Go package name (#35927) (2cdfc8a)

2.221.1-alpha.0 (2025-10-29)

2.221.0-alpha.0 (2025-10-24)

Features

... (truncated)

Commits
  • 73ba451 chore: resolve merge conflict
  • 59ef00d feat(stepfunctions): add StateMachineGrants (#36094)
  • 5ba3e7c chore: update analytics metadata blueprints
  • 51d805e feat: update L1 CloudFormation resource definitions (#36122)
  • 9d20e8d Merge branch 'main' into merge-back/2.226.0
  • 6be7b4b feat(core): cfn constructs (L1s) can now accept constructs as parameters for ...
  • f9a894f feat: factory methods for Grants made public (#36123)
  • 8df9b06 chore(core): add parseAnalytics function for debugging (#36125)
  • 5f384db feat(lambda): add multi-tenancy support with TenancyConfig
  • 046b06d feat(dynamodb): compound keys for global secondary indexes
  • Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request
Dependency Name Ignore Conditions
lerna [>= 7.a, < 8]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 24, 2025
@dependabot dependabot bot requested a review from a team as a code owner November 24, 2025 13:03
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Nov 24, 2025
@wpessers
Copy link
Contributor

wpessers commented Nov 27, 2025

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/nodejs/nodejs-other-4b5cd5467a branch from 7b30ccf to 6a1e995 Compare November 27, 2025 13:32
@dependabot
build(deps-dev): bump the nodejs-other group across 1 directory with …
b375b8c 
…8 updates

Bumps the nodejs-other group with 8 updates in the /nodejs directory:

| Package | From | To |
| --- | --- | --- |
| [lerna](https://github.com/lerna/lerna/tree/HEAD/packages/lerna) | `9.0.0` | `9.0.1` |
| [rimraf](https://github.com/isaacs/rimraf) | `6.0.1` | `6.1.2` |
| [@types/sinon](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/sinon) | `17.0.4` | `21.0.0` |
| [mocha](https://github.com/mochajs/mocha) | `11.7.4` | `11.7.5` |
| [webpack](https://github.com/webpack/webpack) | `5.102.1` | `5.103.0` |
| [@aws-sdk/client-sts](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-sts) | `3.917.0` | `3.936.0` |
| [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) | `24.5.2` | `24.10.1` |
| [aws-cdk-lib](https://github.com/aws/aws-cdk/tree/HEAD/packages/aws-cdk-lib) | `2.221.0` | `2.227.0` |



Updates `lerna` from 9.0.0 to 9.0.1
- [Release notes](https://github.com/lerna/lerna/releases)
- [Changelog](https://github.com/lerna/lerna/blob/main/packages/lerna/CHANGELOG.md)
- [Commits](https://github.com/lerna/lerna/commits/v9.0.1/packages/lerna)

Updates `rimraf` from 6.0.1 to 6.1.2
- [Changelog](https://github.com/isaacs/rimraf/blob/main/CHANGELOG.md)
- [Commits](isaacs/rimraf@v6.0.1...v6.1.2)

Updates `@types/sinon` from 17.0.4 to 21.0.0
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/sinon)

Updates `mocha` from 11.7.4 to 11.7.5
- [Release notes](https://github.com/mochajs/mocha/releases)
- [Changelog](https://github.com/mochajs/mocha/blob/v11.7.5/CHANGELOG.md)
- [Commits](mochajs/mocha@v11.7.4...v11.7.5)

Updates `webpack` from 5.102.1 to 5.103.0
- [Release notes](https://github.com/webpack/webpack/releases)
- [Commits](webpack/webpack@v5.102.1...v5.103.0)

Updates `@aws-sdk/client-sts` from 3.917.0 to 3.936.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-sts/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.936.0/clients/client-sts)

Updates `@types/node` from 24.5.2 to 24.10.1
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Updates `aws-cdk-lib` from 2.221.0 to 2.227.0
- [Release notes](https://github.com/aws/aws-cdk/releases)
- [Changelog](https://github.com/aws/aws-cdk/blob/main/CHANGELOG.v2.alpha.md)
- [Commits](https://github.com/aws/aws-cdk/commits/v2.227.0/packages/aws-cdk-lib)

---
updated-dependencies:
- dependency-name: lerna
  dependency-version: 9.0.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: nodejs-other
- dependency-name: rimraf
  dependency-version: 6.1.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: nodejs-other
- dependency-name: "@types/sinon"
  dependency-version: 21.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: nodejs-other
- dependency-name: mocha
  dependency-version: 11.7.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: nodejs-other
- dependency-name: webpack
  dependency-version: 5.103.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: nodejs-other
- dependency-name: "@aws-sdk/client-sts"
  dependency-version: 3.936.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: nodejs-other
- dependency-name: "@types/node"
  dependency-version: 24.10.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: nodejs-other
- dependency-name: aws-cdk-lib
  dependency-version: 2.227.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: nodejs-other
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/npm_and_yarn/nodejs/nodejs-other-4b5cd5467a branch from 6a1e995 to b375b8c Compare November 27, 2025 15:22
@wpessers wpessers merged commit b422db8 into main Nov 27, 2025
13 checks passed
@wpessers wpessers deleted the dependabot/npm_and_yarn/nodejs/nodejs-other-4b5cd5467a branch November 27, 2025 15:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wpessers wpessers wpessers approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wpessers