Skip to content

refactor: Upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0 #363

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 1, 2025
Merged

refactor: Upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0 #363

merged 1 commit into from
Nov 1, 2025

Conversation

@parseplatformorg
Copy link
Contributor

@parseplatformorg parseplatformorg commented Oct 31, 2025
edited by coderabbitai bot
Loading

snyk-top-banner

Snyk has created this PR to upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 12 versions ahead of your current version.

  • The recommended version was released 22 days ago.

Release notes
Package name: @aws-sdk/s3-request-presigner
  • 3.907.0 - 2025-10-09

    3.907.0(2025-10-09)

    Chores
    • util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
    • ci: run publish for codegen (#7415) (b2f1ac0c)
    New Features
    • clients: update client endpoints as of 2025-10-09 (98148915)
    • client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
    • client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)
    Tests
    • core: modify request compression threshold values (#7414) (6b45d720)

    For list of updated packages, view updated-packages.md in assets-3.907.0.zip

  • 3.906.0 - 2025-10-08

    3.906.0(2025-10-08)

    Chores
    New Features
    • clients: update client endpoints as of 2025-10-08 (9f44c29c)
    • client-license-manager-user-subscriptions: Released support for IPv6 and dual-stack active directories (288c63a8)
    • client-outposts: This release adds the new StartOutpostDecommission API, which starts the decommission process to return Outposts racks or servers. (2bfac290)
    • client-bedrock-agentcore-control: Adding support for authorizer type AWS_IAM to AgentCore Control Gateway. (c3b83d46)
    • client-service-quotas: introduces Service Quotas Automatic Management. Users can opt-in to monitoring and managing service quotas, receive notifications when quota usage reaches thresholds, configure notification channels, subscribe to EventBridge events for automation, and view notifications in the AWS Health dashboard. (136894bf)

    For list of updated packages, view updated-packages.md in assets-3.906.0.zip

  • 3.901.0 - 2025-10-01

    3.901.0(2025-10-01)

    Chores
    Documentation Changes
    • client-ecs: This is a documentation only Amazon ECS release that adds additional information for health checks. (a5652334)
    • client-database-migration-service: This is a doc-only update, revising text for kms-key-arns. (629c6306)
    New Features
    • client-chime-sdk-meetings: Add support to receive dual stack MediaPlacement URLs in Chime Meetings SDK (c32ced42)
    • client-cleanroomsml: This release introduces data access budgets to view how many times an input channel can be used for ML jobs in a collaboration. (a6cc054b)
    • client-cleanrooms: This release introduces data access budgets to control how many times a table can be used for queries and jobs in a collaboration. (783dbc10)
    • client-pcs: Added the UpdateCluster API action to modify cluster configurations, and Slurm custom settings for queues. (3b9d480e)
    • client-ivs-realtime: Remove incorrect ReadOnly trait on IVS RealTime ImportPublicKey API (8b79cdc1)

    For list of updated packages, view updated-packages.md in assets-3.901.0.zip

  • 3.899.0 - 2025-09-29

    3.899.0(2025-09-29)

    Chores
    New Features
    • clients: update client endpoints as of 2025-09-29 (341145bf)
    • client-imagebuilder: This release introduces several new features and improvements to enhance pipeline management, logging, and resource configuration. (3659afe3)
    • client-bedrock: Release for fixing GetFoundationModel API behavior. Imported and custom models have their own exclusive API and GetFM should not accept those ARNS as input (e8e4a5d6)
    • client-vpc-lattice: Adds support for specifying the number of IPv4 addresses in each ENI for the resource gateway for VPC Lattice. (7baea902)
    • client-bedrock-runtime: New stop reason for Converse and ConverseStream (323c12bd)
    Bug Fixes
    • lib-storage: respect user-provided partSize option for Upload (#7381) (31fc9967)

    For list of updated packages, view updated-packages.md in assets-3.899.0.zip

  • 3.896.0 - 2025-09-24
  • 3.895.0 - 2025-09-23
  • 3.894.0 - 2025-09-22
  • 3.893.0 - 2025-09-19
  • 3.892.0 - 2025-09-18
  • 3.891.0 - 2025-09-17
  • 3.890.0 - 2025-09-16
  • 3.888.0 - 2025-09-12
  • 3.887.0 - 2025-09-11
from @aws-sdk/s3-request-presigner GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Summary by CodeRabbit

  • Chores
    • Updated AWS SDK dependencies to the latest stable version for improved performance and security.

@snyk-bot
fix: upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0
a651b93 
Snyk has created this PR to upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0.

See this package in npm:
@aws-sdk/s3-request-presigner

See this project in Snyk:
https://app.snyk.io/org/acinader/project/3364151b-9c9a-4458-9afd-809dc5309438?utm_source=github&utm_medium=referral&page=upgrade-pr
@parse-github-assistant
Copy link

I will reformat the title to use the proper commit message syntax.

@parse-github-assistant parse-github-assistant bot changed the title [Snyk] Upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0 refactor: Upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0 Oct 31, 2025
@parse-github-assistant
Copy link

🚀 Thanks for opening this pull request!

@coderabbitai
Copy link

coderabbitai bot commented Oct 31, 2025
edited
Loading

📝 Walkthrough

Walkthrough

Updated @aws-sdk/s3-request-presigner from version 3.887.0 to 3.907.0 in package.json. This is a straightforward dependency version bump with no logic or structural modifications.

Changes

Cohort / File(s) Change Summary
Dependency Update
package.json		 Bumped @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

  • Verify the version bump is intentional and compatible with the project's AWS SDK usage patterns
  • Confirm no breaking changes between the two versions if this is not a routine maintenance bump

Possibly related PRs

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)
Check name Status Explanation Resolution
Docstring Coverage ⚠️ Warning Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%. You can run @coderabbitai generate docstrings to improve docstring coverage.
✅ Passed checks (2 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check ✅ Passed The title "refactor: Upgrade @aws-sdk/s3-request-presigner from 3.887.0 to 3.907.0" directly and clearly describes the main change in the pull request. It specifies the exact package being upgraded, the specific versions involved, and the action being taken. The title is fully related to the changeset, which consists solely of a dependency version bump in package.json from 3.887.0 to 3.907.0. While "refactor" is a slightly unconventional conventional commit prefix for a dependency upgrade (which would typically be labeled "chore" or "deps"), this does not affect the clarity or accuracy of the title itself. The title is specific, descriptive, and would allow a teammate scanning history to immediately understand the primary change.
✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch snyk-upgrade-50c3de52b40f074a5d11ee231aef9bc2
📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 1d5a766 and a651b93.

⛔ Files ignored due to path filters (1)
  • package-lock.json is excluded by !**/package-lock.json
📒 Files selected for processing (1)
  • package.json (1 hunks)
🔇 Additional comments (1)
package.json (1)

22-23: Update @aws-sdk/client-s3 to maintain version alignment with presigner.

The presigner (3.907.0) and client-s3 (3.858.0) are both v3 packages and technically compatible, but AWS best practices recommend keeping them reasonably aligned. The 49-version gap is suboptimal and should be closed by updating @aws-sdk/client-s3 to version 3.900.0 or later.

The code in index.js uses the standard pattern (getSignedUrl with S3Client + Commands), which is compatible across v3 minor versions. However, watch the release notes between these versions for any signature or credential handling changes before merging.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@parseplatformorg
Copy link
Contributor Author

Snyk checks have passed. No issues have been found so far.

Status Scanner Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@codecov
Copy link

codecov bot commented Oct 31, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 97.19%. Comparing base (1d5a766) to head (a651b93).
⚠️ Report is 1 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master     #363   +/-   ##
=======================================
  Coverage   97.19%   97.19%           
=======================================
  Files           2        2           
  Lines         214      214           
=======================================
  Hits          208      208           
  Misses          6        6

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@mtrezza mtrezza merged commit 091ef75 into master Nov 1, 2025
13 checks passed
@mtrezza mtrezza deleted the snyk-upgrade-50c3de52b40f074a5d11ee231aef9bc2 branch November 1, 2025 17:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@parseplatformorg @mtrezza @snyk-bot