From b701e6ddfaad763cadf18b7fb98fc97fde865bdd Mon Sep 17 00:00:00 2001 From: Jim Wild Date: Thu, 17 Oct 2024 13:31:17 +0000 Subject: [PATCH 1/5] Move to communal QC --- .github/workflows/ci.yml | 2 +- .github/workflows/pull_request.yml | 2 +- .github/workflows/quality_checks.yml | 143 --------------------------- .github/workflows/release.yml | 2 +- 4 files changed, 3 insertions(+), 146 deletions(-) delete mode 100644 .github/workflows/quality_checks.yml diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index ca9eb4409..2b6174684 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -9,7 +9,7 @@ env: jobs: quality_checks: - uses: ./.github/workflows/quality_checks.yml + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml index 5e5fdbbd5..287a5740c 100644 --- a/.github/workflows/pull_request.yml +++ b/.github/workflows/pull_request.yml @@ -9,7 +9,7 @@ env: jobs: quality_checks: - uses: ./.github/workflows/quality_checks.yml + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/quality_checks.yml b/.github/workflows/quality_checks.yml deleted file mode 100644 index 345bcb036..000000000 --- a/.github/workflows/quality_checks.yml +++ /dev/null @@ -1,143 +0,0 @@ -name: quality checks - -on: - workflow_call: - secrets: - SONAR_TOKEN: - required: true - -jobs: - quality_checks: - runs-on: ubuntu-latest - steps: - - name: Checkout code - uses: actions/checkout@v4 - with: - ref: ${{ env.BRANCH_NAME }} - fetch-depth: 0 - - # using git commit sha for version of action to ensure we have stable version - - name: Install asdf - uses: asdf-vm/actions/setup@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 - with: - asdf_branch: v0.11.3 - - - name: Cache asdf - uses: actions/cache@v4 - with: - path: | - ~/.asdf - key: ${{ runner.os }}-asdf-${{ hashFiles('**/.tool-versions') }} - restore-keys: | - ${{ runner.os }}-asdf- - - - name: Install asdf dependencies in .tool-versions - uses: asdf-vm/actions/install@05e0d2ed97b598bfce82fd30daf324ae0c4570e6 - with: - asdf_branch: v0.11.3 - env: - PYTHON_CONFIGURE_OPTS: --enable-shared - - - name: Setting up .npmrc - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - run: | - echo "//npm.pkg.github.com/:_authToken=${NODE_AUTH_TOKEN}" >> ~/.npmrc - echo "@NHSDigital:registry=https://npm.pkg.github.com" >> ~/.npmrc - - - name: make install - run: | - make install - - - name: Install Python SBOM generator - run: pip install cyclonedx-bom - - - name: Generate Python SBOM - run: | - cyclonedx-py poetry > sbom-python.json - - - name: Install Node.js SBOM generator - run: npm install -g @cyclonedx/cyclonedx-npm - - - name: Generate Node.js SBOM - run: | - cyclonedx-npm --output-format json --output-file sbom-node.json - - - name: Upload SBOMs as artifacts - uses: actions/upload-artifact@v4 - with: - name: SBOMs - path: | - sbom-python.json - sbom-node.json - - - name: Scan Node SBOM - id: node-sbom-scan - uses: anchore/scan-action@v5 - with: - sbom: sbom-node.json - output-format: json - fail-build: false - severity-cutoff: critical - - - name: Rename scan results - run: | - if [ -f results.json ]; then - mv results.json sbom-node-scan-results.json - else - echo '{}' > sbom-node-scan-results.json - fi - - - name: Scan Python SBOM - id: python-sbom-scan - uses: anchore/scan-action@v5 - with: - sbom: sbom-python.json - output-format: table - fail-build: false - severity-cutoff: critical - - - name: Rename scan results - run: | - if [ -f results.json ]; then - mv results.json sbom-python-scan-results.json - else - echo '{}' > sbom-python-scan-results.json - fi - - - name: Check scan results against ignored issues - run: | - ./.github/scripts/check-sbom-issues-against-ignores.sh ./.github/ignored_security_issues.json sbom-node-scan-results.json - - - name: Check scan results against ignored issues - run: | - ./.github/scripts/check-sbom-issues-against-ignores.sh ./.github/ignored_security_issues.json sbom-python-scan-results.json - - - name: run check-licenses - run: make check-licenses - - - name: run lint - run: make lint - - - name: run unit tests - run: make test - - - name: Run cfn-guard - run: make cfn-guard - - - name: show cfn-guard output - if: failure() - run: find cfn_guard_output -type f -print0 | xargs -0 cat - - - uses: actions/upload-artifact@v4 - name: upload cfn_guard_output - if: failure() - with: - name: cfn_guard_output - path: cfn_guard_output - - - name: SonarCloud Scan - uses: SonarSource/sonarcloud-github-action@master - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 93ea95ec2..9658880e3 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: jobs: quality_checks: - uses: ./.github/workflows/quality_checks.yml + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} From 86b5eb957fd282f7e51c1ca0169e8c32d7a78aaf Mon Sep 17 00:00:00 2001 From: Jim Wild Date: Thu, 17 Oct 2024 13:49:40 +0000 Subject: [PATCH 2/5] Fix PR ticket linking? --- .github/workflows/pr-link.yml | 21 ++++++++++++++++++--- README.md | 1 - 2 files changed, 18 insertions(+), 4 deletions(-) diff --git a/.github/workflows/pr-link.yml b/.github/workflows/pr-link.yml index 8d8421237..fc8adc5ef 100644 --- a/.github/workflows/pr-link.yml +++ b/.github/workflows/pr-link.yml @@ -14,10 +14,25 @@ jobs: - name: Grab ticket name if: contains(github.event.pull_request.head.ref, 'aea-') || contains(github.event.pull_request.head.ref, 'AEA-') || contains(github.event.pull_request.head.ref, 'apm-') || contains(github.event.pull_request.head.ref, 'APM-') || contains(github.event.pull_request.head.ref, 'apmspii-') || contains(github.event.pull_request.head.ref, 'APMSPII-') || contains(github.event.pull_request.head.ref, 'adz-') || contains(github.event.pull_request.head.ref, 'ADZ-') || contains(github.event.pull_request.head.ref, 'amb-') || contains(github.event.pull_request.head.ref, 'AMB-') - run: echo name=TICKET_NAME::"$(echo "$REF" | grep -i -o '\(aea-[0-9]\+\)\|\(apm-[0-9]\+\)\|\(apmspii-[0-9]\+\)\|\(adz-[0-9]\+\)|\(amb-[0-9]\+\)' | tr '[:lower:]' '[:upper:]')" >> "$GITHUB_ENV" continue-on-error: true - env: - ACTIONS_ALLOW_UNSECURE_COMMANDS: true + run: | + # Match ticket name patterns + REGEX=" + (aea-[0-9]+)| + (apm-[0-9]+)| + (apmspii-[0-9]+)| + (adz-[0-9]+)| + (amb-[0-9]+) + " + + # Remove whitespace and newlines from the regex + REGEX=$(echo "$REGEX" | tr -d "[:space:]") + + # Extract the ticket name and convert to uppercase + TICKET_NAME=$(echo "$REF" | grep -i -E -o "$REGEX" | tr "[:lower:]" "[:upper:]") + + # Set the environment variable + echo "TICKET_NAME=$TICKET_NAME" >> "$GITHUB_ENV" - name: Comment on PR with link to JIRA ticket if: contains(github.event.pull_request.head.ref, 'aea-') || contains(github.event.pull_request.head.ref, 'AEA-') || contains(github.event.pull_request.head.ref, 'apm-') || contains(github.event.pull_request.head.ref, 'APM-') || contains(github.event.pull_request.head.ref, 'apmspii-') || contains(github.event.pull_request.head.ref, 'APMSPII-') || contains(github.event.pull_request.head.ref, 'adz-') || contains(github.event.pull_request.head.ref, 'ADZ-') || contains(github.event.pull_request.head.ref, 'amb-') || contains(github.event.pull_request.head.ref, 'AMB-') diff --git a/README.md b/README.md index da704f0e2..c623b0f07 100644 --- a/README.md +++ b/README.md @@ -266,7 +266,6 @@ Workflows are in the .github/workflows folder - `combine-dependabot-prs.yml`: Workflow for combining dependabot pull requests. Runs on demand - `delete_old_cloudformation_stacks.yml`: Workflow for deleting old cloud formation stacks. Runs daily - `pull_request.yml`: Called when pull request is opened or updated. Calls sam_package_code and sam_release_code to build and deploy the code. Deploys to dev AWS account. The main and sandbox stacks deployed have PR- in the name -- `quality_checks.yml`: Runs check-licenses, lint, test and sonarcloud scan against the repo. Called from pull_request.yml and release.yml - `release.yml`: Runs on demand to create a release and deploy to all environments. - `sam_package_code.yml`: Packages code and uploads to a github artifact for later deployment - `sam_release_code.yml`: Release code built by sam_package_code.yml to an environment From 505cceb70f32505569cfea4186e0be1cd6065f2e Mon Sep 17 00:00:00 2001 From: Jim Wild Date: Thu, 17 Oct 2024 13:50:11 +0000 Subject: [PATCH 3/5] Fiddling linter --- .github/workflows/pr-link.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/pr-link.yml b/.github/workflows/pr-link.yml index fc8adc5ef..0346e27b5 100644 --- a/.github/workflows/pr-link.yml +++ b/.github/workflows/pr-link.yml @@ -17,19 +17,19 @@ jobs: continue-on-error: true run: | # Match ticket name patterns - REGEX=" + REGEX=' (aea-[0-9]+)| (apm-[0-9]+)| (apmspii-[0-9]+)| (adz-[0-9]+)| (amb-[0-9]+) - " + ' # Remove whitespace and newlines from the regex - REGEX=$(echo "$REGEX" | tr -d "[:space:]") + REGEX=$(echo "$REGEX" | tr -d '[:space:]') # Extract the ticket name and convert to uppercase - TICKET_NAME=$(echo "$REF" | grep -i -E -o "$REGEX" | tr "[:lower:]" "[:upper:]") + TICKET_NAME=$(echo "$REF" | grep -i -E -o "$REGEX" | tr '[:lower:]' '[:upper:]') # Set the environment variable echo "TICKET_NAME=$TICKET_NAME" >> "$GITHUB_ENV" From 90517a5c872031acd638fa5a54342866d7903cca Mon Sep 17 00:00:00 2001 From: Jim Wild Date: Fri, 18 Oct 2024 10:00:44 +0000 Subject: [PATCH 4/5] use correct branch --- .github/workflows/ci.yml | 2 +- .github/workflows/pr-link.yml | 2 +- .github/workflows/pull_request.yml | 2 +- .github/workflows/release.yml | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 2b6174684..c2cfc7e3c 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -9,7 +9,7 @@ env: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/pr-link.yml b/.github/workflows/pr-link.yml index 0346e27b5..51432f890 100644 --- a/.github/workflows/pr-link.yml +++ b/.github/workflows/pr-link.yml @@ -42,5 +42,5 @@ jobs: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: msg: | - This branch is work on a ticket in the NHS Digital APM JIRA Project. Here's a handy link to the ticket: + This branch is work on a ticket in an NHS Digital JIRA Project. Here's a handy link to the ticket: # [${{ env.TICKET_NAME }}](https://nhsd-jira.digital.nhs.uk/browse/${{ env.TICKET_NAME }}) diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml index 287a5740c..cc2212329 100644 --- a/.github/workflows/pull_request.yml +++ b/.github/workflows/pull_request.yml @@ -9,7 +9,7 @@ env: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 9658880e3..ed62bc099 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@aea-4506-update-sbom + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} From 4461c017c8ed1f6e8be531d55dd15c0a2036cf4a Mon Sep 17 00:00:00 2001 From: Jim Wild Date: Fri, 18 Oct 2024 13:55:18 +0000 Subject: [PATCH 5/5] Lint the create_certs script MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Upgrade: [dependabot] - bump @typescript-eslint/eslint-plugin from 8.9.0 to 8.10.0 (#1385) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.9.0 to 8.10.0.
Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.10.0

8.10.0 (2024-10-17)

🚀 Features

  • support TypeScript 5.6 (#9972)

🩹 Fixes

  • typescript-eslint: propagate name field to extended configs in config helper (#10094)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.10.0 (2024-10-17)

🚀 Features

  • support TypeScript 5.6 (#9972)

❤️ Thank You

  • Josh Goldberg ✨

You can read about our versioning strategy and releases on our website.

Commits
  • 7effdea chore(release): publish 8.10.0
  • f9c49e3 feat: support TypeScript 5.6 (#9972)
  • d09d36d docs: inject option descriptions into rule docs when possible (#9925)
  • 373c63a chore(eslint-plugin): [no-unnecessary-condition] remove dead suggestion id (#...
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=8.9.0&new-version=8.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.670.0 to 3.674.0 (#1387) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.670.0 to 3.674.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.674.0

3.674.0(2024-10-17)

Chores
  • middleware-sdk-s3: add status code 400 for S3 region redirects (#6572) (1f02a268)
  • smithy update for smithyVersion=1.51.0 (#6569) (398b45cc)
Documentation Changes
  • client-rds: Updates Amazon RDS documentation for TAZ IAM support (e0b3fe43)
  • client-ecs: This is an Amazon ECS documentation only update to address tickets. (5933d692)
New Features
  • client-bedrock-agent: Removing support for topK property in PromptModelInferenceConfiguration object, Making PromptTemplateConfiguration property as required, Limiting the maximum PromptVariant to 1 (d4d3af5d)
  • client-workspaces: Updated the DomainName pattern for Active Directory (f4c52671)
  • client-pinpoint-sms-voice-v2: Added the registrations status of REQUIRES_AUTHENTICATION (ba96169c)
  • client-dataexchange: This release adds Data Grant support, through which customers can programmatically create data grants to share with other AWS accounts and accept data grants from other AWS accounts. (5180c332)
  • client-pipes: This release adds validation to require specifying a SecurityGroup and Subnets in the Vpc object under PipesSourceSelfManagedKafkaParameters. It also adds support for iso-e, iso-f, and other non-commercial partitions in ARN parameters. (98a52823)
  • client-quicksight: Add StartDashboardSnapshotJobSchedule API. RestoreAnalysis now supports restoring analysis to folders. (0bfe6e25)

For list of updated packages, view updated-packages.md in assets-3.674.0.zip

v3.673.0

3.673.0(2024-10-16)

New Features
  • client-s3: Add support for the new optional bucket-region and prefix query parameters in the ListBuckets API. For ListBuckets requests that express pagination, Amazon S3 will now return both the bucket names and associated AWS regions in the response. (e7f10a29)

For list of updated packages, view updated-packages.md in assets-3.673.0.zip

v3.672.0

3.672.0(2024-10-15)

Documentation Changes
  • client-cloudformation: Documentation update for AWS CloudFormation API Reference. (bc971c98)
New Features
  • clients: update client endpoints as of 2024-10-15 (18d2184f)
  • client-transcribe-streaming: We are expanding support for 40 new locales in AWS Transcribe Streaming. (73471ab2)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.674.0 (2024-10-17)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.670.0&new-version=3.674.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/parser from 8.9.0 to 8.10.0 (#1386) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.9.0 to 8.10.0.
Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.10.0

8.10.0 (2024-10-17)

🚀 Features

  • support TypeScript 5.6 (#9972)

🩹 Fixes

  • typescript-eslint: propagate name field to extended configs in config helper (#10094)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.10.0 (2024-10-17)

🚀 Features

  • support TypeScript 5.6 (#9972)

❤️ Thank You

  • Josh Goldberg ✨

You can read about our versioning strategy and releases on our website.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=8.9.0&new-version=8.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Move to fixed version Move to fixed version Upgrade: [dependabot] - bump boto3 from 1.35.42 to 1.35.43 (#1389) Bumps [boto3](https://github.com/boto/boto3) from 1.35.42 to 1.35.43.
Commits
  • 3664a8d Merge branch 'release-1.35.43'
  • aab8f82 Bumping version to 1.35.43
  • 9190082 Add changelog entries from botocore
  • 0e2fdc3 Merge branch 'release-1.35.42' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.42&new-version=1.35.43)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump cfn-lint from 1.16.1 to 1.17.2 (#1390) Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.16.1 to 1.17.2.
Release notes

Sourced from cfn-lint's releases.

Release v1.17.2

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.1...v1.17.2

Release v1.17.1

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.0...v1.17.1

Release v1.17.0

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.16.1...v1.17.0

Changelog

Sourced from cfn-lint's changelog.

v1.17.2

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.1...v1.17.2

v1.17.1

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.0...v1.17.1

v1.17.0

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.16.1...v1.17.0

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cfn-lint&package-manager=pip&previous-version=1.16.1&new-version=1.17.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump semantic-release from 24.1.2 to 24.1.3 (#1392) Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 24.1.2 to 24.1.3.
Release notes

Sourced from semantic-release's releases.

v24.1.3

24.1.3 (2024-10-18)

Bug Fixes

  • branch-naming: prevent non-range versions from being identified as maintenance branches (07f2672)
Commits
  • 9d4e47f Merge pull request #3479 from abichinger/fix/maintenance-filter
  • 07f2672 fix(branch-naming): prevent non-range versions from being identified as maint...
  • f0ceaa7 chore(deps): update dependency npm-run-all2 to v6.2.4 (#3480)
  • c87596e chore(deps): lock file maintenance (#3477)
  • 45bf9d6 ci(action): update actions/upload-artifact action to v4.4.3 (#3474)
  • e1bebc3 chore(deps): update dependency got to v14.4.3 (#3473)
  • b7f35bd ci(action): update actions/upload-artifact action to v4.4.2 (#3472)
  • f937ed1 ci(action): update actions/upload-artifact action to v4.4.1 (#3469)
  • b466dbc ci(action): update actions/checkout action to v4.2.1 (#3468)
  • 1a88cc0 chore(deps): lock file maintenance (#3467)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=semantic-release&package-manager=npm_and_yarn&previous-version=24.1.2&new-version=24.1.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.674.0 to 3.675.0 (#1393) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.674.0 to 3.675.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.675.0

3.675.0(2024-10-18)

New Features
  • client-datazone: Adding the following project member designations: PROJECT_CATALOG_VIEWER, PROJECT_CATALOG_CONSUMER and PROJECT_CATALOG_STEWARD in the CreateProjectMembership API and PROJECT_CATALOG_STEWARD designation in the AddPolicyGrant API. (678f17d8)
  • client-athena: Removing FEDERATED from Create/List/Delete/GetDataCatalog API (ca03f0c2)
  • client-bedrock: Adding converse support to CMI API's (46406aea)
  • client-ec2: RequestSpotInstances and RequestSpotFleet feature release. (a4c04943)
  • client-bedrock-runtime: Added converse support for custom imported models (ae2b967a)
Bug Fixes
  • util-user-agent-browser: make native interface consistent with browser (#6575) (c03c9a6c)

For list of updated packages, view updated-packages.md in assets-3.675.0.zip

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.675.0 (2024-10-18)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.674.0&new-version=3.675.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump eslint from 9.12.0 to 9.13.0 (#1394) Bumps [eslint](https://github.com/eslint/eslint) from 9.12.0 to 9.13.0.
Release notes

Sourced from eslint's releases.

v9.13.0

Features

  • 381c32b feat: Allow languages to provide defaultLanguageOptions (#19003) (Milos Djermanovic)
  • bf723bd feat: Improve eslintrc warning message (#19023) (Milos Djermanovic)
  • 1def4cd feat: drop support for jiti v1.21 (#18996) (Francesco Trotta)
  • f879be2 feat: export ESLint.defaultConfig (#18983) (Nitin Kumar)

Bug Fixes

Documentation

  • abdbfa8 docs: mark LintMessage#nodeType as deprecated (#19019) (Nitin Kumar)
  • 19e68d3 docs: update deprecated rules type definitions (#19018) (Nitin Kumar)
  • 7dd402d docs: Update examples of passing multiple values to a CLI option (#19006) (Milos Djermanovic)
  • 5dcbc51 docs: Add example with side-effect imports to no-restricted-imports (#18997) (Milos Djermanovic)
  • 1ee87ca docs: Update README (GitHub Actions Bot)
  • 2c3dbdc docs: Use prerendered sponsors for README (#18988) (Milos Djermanovic)

Chores

  • 68d2d9d chore: upgrade to @eslint/js@9.13.0 and @eslint/core@^0.7.0 (#19034) (Francesco Trotta)
  • 2211f0a chore: package.json update for @​eslint/js release (Jenkins)
  • c7abaef perf: using Node.js compile cache (#19012) (唯然)
  • 1d7c077 chore: add pkg.type "commonjs" (#19011) (唯然)
  • 468e3bd test: fix ESLint tests (#19021) (Francesco Trotta)
  • ed4635f ci: upgrade knip@5.32.0 (#18992) (Milos Djermanovic)
  • efad767 chore: remove unused ignore dependency (#18993) (Amaresh S M)
Changelog

Sourced from eslint's changelog.

v9.13.0 - October 18, 2024

  • 68d2d9d chore: upgrade to @eslint/js@9.13.0 and @eslint/core@^0.7.0 (#19034) (Francesco Trotta)
  • 2211f0a chore: package.json update for @​eslint/js release (Jenkins)
  • 381c32b feat: Allow languages to provide defaultLanguageOptions (#19003) (Milos Djermanovic)
  • 78836d4 fix: update the complexity rule type (#19027) (Nitin Kumar)
  • c7abaef perf: using Node.js compile cache (#19012) (唯然)
  • bf723bd feat: Improve eslintrc warning message (#19023) (Milos Djermanovic)
  • 1d7c077 chore: add pkg.type "commonjs" (#19011) (唯然)
  • abdbfa8 docs: mark LintMessage#nodeType as deprecated (#19019) (Nitin Kumar)
  • 468e3bd test: fix ESLint tests (#19021) (Francesco Trotta)
  • 19e68d3 docs: update deprecated rules type definitions (#19018) (Nitin Kumar)
  • 1def4cd feat: drop support for jiti v1.21 (#18996) (Francesco Trotta)
  • 7dd402d docs: Update examples of passing multiple values to a CLI option (#19006) (Milos Djermanovic)
  • 064c8b6 fix: update rule types (#18925) (Nitin Kumar)
  • f879be2 feat: export ESLint.defaultConfig (#18983) (Nitin Kumar)
  • 5dcbc51 docs: Add example with side-effect imports to no-restricted-imports (#18997) (Milos Djermanovic)
  • ed4635f ci: upgrade knip@5.32.0 (#18992) (Milos Djermanovic)
  • efad767 chore: remove unused ignore dependency (#18993) (Amaresh S M)
  • 1ee87ca docs: Update README (GitHub Actions Bot)
  • 2c3dbdc docs: Use prerendered sponsors for README (#18988) (Milos Djermanovic)
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint&package-manager=npm_and_yarn&previous-version=9.12.0&new-version=9.13.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.7.6 to 22.7.7 (#1391) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.7.6 to 22.7.7.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.7.6&new-version=22.7.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.43 to 1.35.44 (#1395) Bumps [boto3](https://github.com/boto/boto3) from 1.35.43 to 1.35.44.
Commits
  • 1631e47 Merge branch 'release-1.35.44'
  • b209875 Bumping version to 1.35.44
  • 27e92f9 Add changelog entries from botocore
  • b5395f4 Merge branch 'release-1.35.43' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.43&new-version=1.35.44)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Kris Szlapa Upgrade: [dependabot] - bump @types/node from 22.7.7 to 22.7.8 (#1396) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.7.7 to 22.7.8.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.7.7&new-version=22.7.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/parser from 8.10.0 to 8.11.0 (#1397) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.10.0 to 8.11.0.
Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.11.0

8.11.0 (2024-10-21)

🚀 Features

  • eslint-plugin: [no-base-to-string] add support for catching toLocaleString (#10138)
  • eslint-plugin: [no-unnecessary-type-parameters] add suggestion fixer (#10149)

🩹 Fixes

  • eslint-plugin: [class-literal-property-style] don't report nodes with override keyword (#10135)
  • rule-tester: allow custom filename outside directory (#10147)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.11.0 (2024-10-21)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits
  • 79c27a8 chore(release): publish 8.11.0
  • 8d35958 chore: enable eslint-plugin-perfectionist on typescript-estree package (#9852)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=8.10.0&new-version=8.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/eslint-plugin from 8.10.0 to 8.11.0 (#1398) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.10.0 to 8.11.0.
Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.11.0

8.11.0 (2024-10-21)

🚀 Features

  • eslint-plugin: [no-base-to-string] add support for catching toLocaleString (#10138)
  • eslint-plugin: [no-unnecessary-type-parameters] add suggestion fixer (#10149)

🩹 Fixes

  • eslint-plugin: [class-literal-property-style] don't report nodes with override keyword (#10135)
  • rule-tester: allow custom filename outside directory (#10147)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.11.0 (2024-10-21)

🚀 Features

  • eslint-plugin: [no-unnecessary-type-parameters] add suggestion fixer (#10149)
  • eslint-plugin: [no-base-to-string] add support for catching toLocaleString (#10138)

🩹 Fixes

  • eslint-plugin: [class-literal-property-style] don't report nodes with override keyword (#10135)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Commits
  • 79c27a8 chore(release): publish 8.11.0
  • c8e7c27 feat(eslint-plugin): [no-unnecessary-type-parameters] add suggestion fixer (#...
  • 9a182d0 feat(eslint-plugin): [no-base-to-string] add support for catching toLocaleStr...
  • 8d35958 chore: enable eslint-plugin-perfectionist on typescript-estree package (#9852)
  • 0cbd4cd fix(eslint-plugin): [class-literal-property-style] don't report nodes with `o...
  • 127066a chore: coverage issues caused by using export assignments (#10151)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=8.10.0&new-version=8.11.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump cfn-lint from 1.17.2 to 1.18.1 (#1399) Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.17.2 to 1.18.1.
Release notes

Sourced from cfn-lint's releases.

Release v1.18.1

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.0...v1.18.1

Release v1.18.0

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.2...v1.18.0

Changelog

Sourced from cfn-lint's changelog.

v1.18.1

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.0...v1.18.1

v1.18.0

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.17.2...v1.18.0

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cfn-lint&package-manager=pip&previous-version=1.17.2&new-version=1.18.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.44 to 1.35.45 (#1400) Bumps [boto3](https://github.com/boto/boto3) from 1.35.44 to 1.35.45.
Commits
  • 59cba2a Merge branch 'release-1.35.45'
  • 81cf608 Bumping version to 1.35.45
  • 976dad2 Add changelog entries from botocore
  • 15c3dbc Merge branch 'release-1.35.44' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.44&new-version=1.35.45)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Demo secret scanning Add necessary file for secret scanning Remove file. Use tweaked dockerfile Meaningless commit to trigger action Build: [AEA-4506] - Move to communal QC (#1402) - :robot: Operational or Infrastructure Change Replace the `quality-checks.yml` file in the repo with the communal one shared across all EPS projects Also removes the unused `create_certs.sh` script add empty gitallowed Add ignore list Bump Bump Bump Bump Update gitallowed Upgrade: [dependabot] - bump @aws-lambda-powertools/logger from 2.9.0 to 2.10.0 (#1409) Bumps [@aws-lambda-powertools/logger](https://github.com/aws-powertools/powertools-lambda-typescript) from 2.9.0 to 2.10.0.
Changelog

Sourced from @​aws-lambda-powertools/logger's changelog.

2.10.0 (2024-10-22)

Features

  • logger: include enumerable properties in formatted errors (#3195) (4b80d9f)
Commits
  • cded5ec chore(ci): add input type to the publish package workflow (#3236)
  • 8a85ca2 chore(ci): add workflow to publish a single package (#3234)
  • e308143 chore(parser): bump parser to 2.10.0 (#3230)
  • 3f2c300 chore(ci): bump version to 2.10.0 (#3228)
  • a3dd654 chore(deps): bump squidfunk/mkdocs-material from 0d4e687 to 31eb7f7 in /d...
  • cc98e2e chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0...
  • 9a9656f chore(deps): bump the aws-sdk-v3 group across 1 directory with 9 updates (#3220)
  • a5e8712 chore(deps): bump @​types/node from 22.7.6 to 22.7.7 (#3221)
  • 3968f52 chore(deps): bump vscode/devcontainers/javascript-node from 61c3428 to `d49...
  • b536bda chore(deps): bump the aws-sdk-v3 group across 1 directory with 5 updates (#3218)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-lambda-powertools/logger&package-manager=npm_and_yarn&previous-version=2.9.0&new-version=2.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.7.8 to 22.7.9 (#1407) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.7.8 to 22.7.9.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.7.8&new-version=22.7.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-lambda-powertools/parameters from 2.9.0 to 2.10.0 (#1405) Bumps [@aws-lambda-powertools/parameters](https://github.com/aws-powertools/powertools-lambda-typescript) from 2.9.0 to 2.10.0.
Changelog

Sourced from @​aws-lambda-powertools/parameters's changelog.

2.10.0 (2024-10-22)

Features

  • logger: include enumerable properties in formatted errors (#3195) (4b80d9f)
Commits
  • cded5ec chore(ci): add input type to the publish package workflow (#3236)
  • 8a85ca2 chore(ci): add workflow to publish a single package (#3234)
  • e308143 chore(parser): bump parser to 2.10.0 (#3230)
  • 3f2c300 chore(ci): bump version to 2.10.0 (#3228)
  • a3dd654 chore(deps): bump squidfunk/mkdocs-material from 0d4e687 to 31eb7f7 in /d...
  • cc98e2e chore(deps): bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0...
  • 9a9656f chore(deps): bump the aws-sdk-v3 group across 1 directory with 9 updates (#3220)
  • a5e8712 chore(deps): bump @​types/node from 22.7.6 to 22.7.7 (#3221)
  • 3968f52 chore(deps): bump vscode/devcontainers/javascript-node from 61c3428 to `d49...
  • b536bda chore(deps): bump the aws-sdk-v3 group across 1 directory with 5 updates (#3218)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-lambda-powertools/parameters&package-manager=npm_and_yarn&previous-version=2.9.0&new-version=2.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.675.0 to 3.677.0 (#1404) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.675.0 to 3.677.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.677.0

3.677.0(2024-10-22)

Documentation Changes
New Features
  • clients: update client endpoints as of 2024-10-22 (0958ca6b)
  • client-rds: Global clusters now expose the Endpoint attribute as one of its fields. It is a Read/Write endpoint for the global cluster which resolves to the Global Cluster writer instance. (03416814)
  • client-m2: Add AuthSecretsManagerArn optional parameter to batch job APIs, expand batch parameter limits, and introduce clientToken constraints. (e2fcaab9)
  • client-timestream-query: This release adds support for Query Insights, a feature that provides details of query execution, enabling users to identify areas for improvement to optimize their queries, resulting in improved query performance and lower query costs. (2caa0462)
  • client-repostspace: Adds the BatchAddRole and BatchRemoveRole APIs. (fa3d3d02)
  • client-bedrock-runtime: Updating invoke regex to support imported models for converse API (eae7a3ee)
  • client-imagebuilder: Add macOS platform and instance placement options (df4c455f)
Tests

For list of updated packages, view updated-packages.md in assets-3.677.0.zip

v3.676.0

3.676.0(2024-10-21)

Chores
New Features
  • client-wafv2: Add a property to WebACL to indicate whether it's been retrofitted by Firewall Manager. (474281ea)
  • client-payment-cryptography-data: Adding new API to generate authenticated scripts for EMV pin change use cases. (573b4e27)
  • client-eks: This release adds support for Amazon Application Recovery Controller (ARC) zonal shift and zonal autoshift with EKS that enhances the resiliency of multi-AZ cluster environments (c046f870)
  • client-ec2: Amazon EC2 now allows you to create network interfaces with just the EFA driver and no ENA driver by specifying the network interface type as efa-only. (67509d43)
  • client-bedrock-agent-runtime: Knowledge Bases for Amazon Bedrock now supports custom prompts and model parameters in the orchestrationConfiguration of the RetrieveAndGenerate API. The modelArn field accepts Custom Models and Imported Models ARNs. (f3c2a2c1)
  • client-database-migration-service: Added support for tagging in StartReplicationTaskAssessmentRun API and introduced IsLatestTaskAssessmentRun and ResultStatistic fields for enhanced tracking and assessment result statistics. (9588015c)
  • client-fms: Update AWS WAF policy - add the option to retrofit existing web ACLs instead of creating all new web ACLs. (e4411e67)
  • client-auto-scaling: Adds support for removing the PlacementGroup setting on an Auto Scaling Group through the UpdateAutoScalingGroup API. (52c2bba0)
  • client-application-insights: This feature enables customers to specify SNS Topic ARN. CloudWatch Application Insights (CWAI) will utilize this ARN to send problem notifications. (1a73a2c6)
Tests
  • scripts: skip preview legacy:e2e tests if client is not found (#6576) (3f84c756)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.677.0 (2024-10-22)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.675.0&new-version=3.677.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/jest from 29.5.13 to 29.5.14 (#1408) Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 29.5.13 to 29.5.14.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/jest&package-manager=npm_and_yarn&previous-version=29.5.13&new-version=29.5.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.45 to 1.35.46 (#1403) Bumps [boto3](https://github.com/boto/boto3) from 1.35.45 to 1.35.46.
Commits
  • 2d37d8f Merge branch 'release-1.35.46'
  • 910ed70 Bumping version to 1.35.46
  • 6ffc999 Add changelog entries from botocore
  • 82b03d9 Merge branch 'release-1.35.45' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.45&new-version=1.35.46)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump @NHSDigital/eps-spine-client from 2.1.5 to 2.1.6 (#1410) Bumps [@NHSDigital/eps-spine-client](https://github.com/NHSDigital/nhs-eps-spine-client) from 2.1.5 to 2.1.6.
Release notes

Sourced from @​NHSDigital/eps-spine-client's releases.

v2.1.6

2.1.6 (2024-10-23)

Upgrade

  • [dependabot] - bump @​aws-lambda-powertools/logger from 2.9.0 to 2.10.0 (#251) (62bcb63)
  • [dependabot] - bump @​types/node from 22.7.5 to 22.7.6 (#241) (37d53d3)
  • [dependabot] - bump @​types/node from 22.7.6 to 22.7.7 (#246) (f558f40)
  • [dependabot] - bump @​types/node from 22.7.7 to 22.7.8 (#250) (525e074)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.10.0 to 8.11.0 (#249) (57e92cc)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.9.0 to 8.10.0 (#243) (197e1bc)
  • [dependabot] - bump @​typescript-eslint/parser from 8.10.0 to 8.11.0 (#248) (9e4e23d)
  • [dependabot] - bump @​typescript-eslint/parser from 8.9.0 to 8.10.0 (#242) (c47e82a)
  • [dependabot] - bump eslint from 9.12.0 to 9.13.0 (#245) (680a4dd)
  • [dependabot] - bump semantic-release from 24.1.2 to 24.1.3 (#247) (97772c1)
Commits
  • 62bcb63 Upgrade: [dependabot] - bump @​aws-lambda-powertools/logger from 2.9.0 to 2.10...
  • 525e074 Upgrade: [dependabot] - bump @​types/node from 22.7.7 to 22.7.8 (#250)
  • 9e4e23d Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.10.0 to 8.11.0 ...
  • 57e92cc Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.10.0 to ...
  • 97772c1 Upgrade: [dependabot] - bump semantic-release from 24.1.2 to 24.1.3 (#247)
  • f558f40 Upgrade: [dependabot] - bump @​types/node from 22.7.6 to 22.7.7 (#246)
  • 680a4dd Upgrade: [dependabot] - bump eslint from 9.12.0 to 9.13.0 (#245)
  • 197e1bc Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.9.0 to 8...
  • c47e82a Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.9.0 to 8.10.0 (...
  • 37d53d3 Upgrade: [dependabot] - bump @​types/node from 22.7.5 to 22.7.6 (#241)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@NHSDigital/eps-spine-client&package-manager=npm_and_yarn&previous-version=2.1.5&new-version=2.1.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @nhs/fhir-middy-error-handler from 2.1.8 to 2.1.9 (#1412) Bumps [@nhs/fhir-middy-error-handler](https://github.com/NHSDigital/nhs-fhir-middy-error-handler) from 2.1.8 to 2.1.9.
Release notes

Sourced from @​nhs/fhir-middy-error-handler's releases.

v2.1.9

2.1.9 (2024-10-23)

Build

  • [AEA-4506] - Move to communal QC. Fix pr link (#221) (c0cc50f)

Upgrade

  • [dependabot] - bump @​aws-lambda-powertools/logger from 2.9.0 to 2.10.0 (#228) (dfa1d60)
  • [dependabot] - bump @​middy/core from 5.5.0 to 5.5.1 (#220) (500909c)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.10.0 to 8.11.0 (#227) (851f87a)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.9.0 to 8.10.0 (#223) (7998bed)
  • [dependabot] - bump @​typescript-eslint/parser from 8.10.0 to 8.11.0 (#226) (3babb85)
  • [dependabot] - bump @​typescript-eslint/parser from 8.9.0 to 8.10.0 (#222) (e300c9d)
  • [dependabot] - bump eslint from 9.12.0 to 9.13.0 (#225) (40fe179)
  • [dependabot] - bump semantic-release from 24.1.2 to 24.1.3 (#224) (138b390)
Commits
  • c0cc50f Build: [AEA-4506] - Move to communal QC. Fix pr link (#221)
  • 851f87a Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.10.0 to ...
  • dfa1d60 Upgrade: [dependabot] - bump @​aws-lambda-powertools/logger from 2.9.0 to 2.10...
  • 3babb85 Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.10.0 to 8.11.0 ...
  • 138b390 Upgrade: [dependabot] - bump semantic-release from 24.1.2 to 24.1.3 (#224)
  • 40fe179 Upgrade: [dependabot] - bump eslint from 9.12.0 to 9.13.0 (#225)
  • 7998bed Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.9.0 to 8...
  • e300c9d Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.9.0 to 8.10.0 (...
  • 500909c Upgrade: [dependabot] - bump @​middy/core from 5.5.0 to 5.5.1 (#220)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@nhs/fhir-middy-error-handler&package-manager=npm_and_yarn&previous-version=2.1.8&new-version=2.1.9)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.677.0 to 3.678.0 (#1411) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.677.0 to 3.678.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.678.0

3.678.0(2024-10-23)

Documentation Changes
  • client-bedrock: Doc updates for supporting converse (6a255980)
New Features
  • clients: update client endpoints as of 2024-10-23 (a03b3eec)
  • client-mwaa: Introducing InvokeRestApi which allows users to invoke the Apache Airflow REST API on the webserver with the specified inputs. (180dd234)
  • client-connect: Amazon Connect Service Feature: Add support to start screen sharing for a web calling contact. (aa538867)
  • client-ec2: Amazon EC2 X8g, C8g and M8g instances are powered by AWS Graviton4 processors. X8g provide the lowest cost per GiB of memory among Graviton4 instances. C8g provide the best price performance for compute-intensive workloads. M8g provide the best price performance in for general purpose workloads. (fe1251ec)
  • client-payment-cryptography: Add support for ECC P-256 and P-384 Keys. (e4119ab1)
  • client-payment-cryptography-data: Add ECDH support on PIN operations. (2f74e23b)
Bug Fixes
Tests
  • convert some packages unit and e2e tests to vitest (#6584) (3435c992)

For list of updated packages, view updated-packages.md in assets-3.678.0.zip

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.678.0 (2024-10-23)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.677.0&new-version=3.678.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.46 to 1.35.47 (#1413) Bumps [boto3](https://github.com/boto/boto3) from 1.35.46 to 1.35.47.
Commits
  • 02e0a38 Merge branch 'release-1.35.47'
  • 2e3f5f1 Bumping version to 1.35.47
  • a87c3d4 Add changelog entries from botocore
  • d1d55ca Merge branch 'release-1.35.46' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.46&new-version=1.35.47)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.678.0 to 3.679.0 (#1414) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.678.0 to 3.679.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.679.0

3.679.0(2024-10-24)

Chores
  • client-nimble: deprecate nimble (#6583) (9a56eba2)
  • client-athena: update release notes for athena breaking change (#6586) (9f45574f)
Documentation Changes
  • client-pcs: Documentation update: added the default value of the Slurm configuration parameter scaleDownIdleTimeInSeconds to its description. (568714e5)
New Features
  • clients: update client endpoints as of 2024-10-24 (c296fb57)
  • client-qbusiness: Add a new field in chat response. This field can be used to support nested schemas in array fields (e7c6ed54)
  • client-ec2: This release includes a new API to describe some details of the Amazon Machine Images (AMIs) that were used to launch EC2 instances, even if those AMIs are no longer available for use. (f6246389)
  • client-ecs: This release adds support for EBS volumes attached to Amazon ECS Windows tasks running on EC2 instances. (eba29d1e)
  • client-appconfig: This release improves deployment safety by granting customers the ability to REVERT completed deployments, to the last known good state.In the StopDeployment API revert case the status of a COMPLETE deployment will be REVERTED. AppConfig only allows a revert within 72 hours of deployment completion. (9c9494a6)
Tests

For list of updated packages, view updated-packages.md in assets-3.679.0.zip

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.679.0 (2024-10-24)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.678.0&new-version=3.679.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.47 to 1.35.48 (#1415) Bumps [boto3](https://github.com/boto/boto3) from 1.35.47 to 1.35.48.
Commits
  • f09e886 Merge branch 'release-1.35.48'
  • 1a09a31 Bumping version to 1.35.48
  • 8909aad Add changelog entries from botocore
  • a0011b8 Merge branch 'release-1.35.47' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.47&new-version=1.35.48)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Update to use QC version 3 Upgrade: [dependabot] - bump semantic-release from 24.1.3 to 24.2.0 (#1418) Bumps [semantic-release](https://github.com/semantic-release/semantic-release) from 24.1.3 to 24.2.0.
Release notes

Sourced from semantic-release's releases.

v24.2.0

24.2.0 (2024-10-25)

Features

  • clarify branch existence requirement in error messages (#3462) (05a2ea9)
Commits
  • 05a2ea9 feat: clarify branch existence requirement in error messages (#3462)
  • 8940f32 ci(action): update actions/setup-node action to v4.1.0 (#3489)
  • 789ac43 chore(deps): update dependency publint to v0.2.12 (#3488)
  • 3ba76ae ci(action): update actions/checkout action to v4.2.2 (#3486)
  • 8612ff1 chore(deps): update dependency npm-run-all2 to v7.0.1 (#3487)
  • e29a892 ci(action): update github/codeql-action action to v3.27.0 (#3485)
  • 98d606e chore(deps): update dependency npm-run-all2 to v7 (#3483)
  • 55938c3 docs(plugins): community plugin semantic-release-kaniko (#3450)
  • 2b4c86c chore(deps): lock file maintenance (#3481)
  • 41c9502 ci(action): update github/codeql-action action to v3.26.13 (#3424)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=semantic-release&package-manager=npm_and_yarn&previous-version=24.1.3&new-version=24.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.7.9 to 22.8.1 (#1417) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.7.9 to 22.8.1.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.7.9&new-version=22.8.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.48 to 1.35.49 (#1419) Bumps [boto3](https://github.com/boto/boto3) from 1.35.48 to 1.35.49.
Commits
  • d39929b Merge branch 'release-1.35.49'
  • bb191f2 Bumping version to 1.35.49
  • e3ad6b5 Add changelog entries from botocore
  • 83074ae Merge branch 'release-1.35.48' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.48&new-version=1.35.49)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.49 to 1.35.50 (#1421) Bumps [boto3](https://github.com/boto/boto3) from 1.35.49 to 1.35.50.
Commits
  • ab1c5a9 Merge branch 'release-1.35.50'
  • 743bcbd Bumping version to 1.35.50
  • 9902766 Add changelog entries from botocore
  • 9f80f5a Merge pull request #4319 from boto/dependabot/github_actions/actions/setup-py...
  • 27def47 Merge pull request #4318 from boto/dependabot/github_actions/github/codeql-ac...
  • ad10feb Bump actions/setup-python from 5.2.0 to 5.3.0
  • 5f884ac Bump github/codeql-action from 3.26.0 to 3.27.0
  • 7610e03 Merge branch 'release-1.35.49' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.49&new-version=1.35.50)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump cfn-lint from 1.18.1 to 1.18.2 (#1420) Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.18.1 to 1.18.2.
Release notes

Sourced from cfn-lint's releases.

Release v1.18.2

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.1...v1.18.2

Changelog

Sourced from cfn-lint's changelog.

v1.18.2

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.1...v1.18.2

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cfn-lint&package-manager=pip&previous-version=1.18.1&new-version=1.18.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/eslint-plugin from 8.11.0 to 8.12.1 (#1422) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.11.0 to 8.12.1.
Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.12.1

8.12.1 (2024-10-28)

🚀 Features

  • eslint-plugin: [prefer-nullish-coalescing] add support for assignment expressions (#10152)
  • eslint-plugin: [consistent-indexed-object-style] report mapped types (#10160)
  • eslint-plugin: [switch-exhaustiveness-check] add considerDefaultExhaustiveForUnions option (#9954)
  • eslint-plugin: [no-base-to-string] handle String() (#10005)
  • typescript-eslint: improve undefined extension handling (#10177)

🩹 Fixes

  • eslint-plugin: [no-unsafe-return] don't reiterate through all type parts for each part (#10203)
  • website: enable noImplicitAny (#10175)
  • rule-tester: use cwd option to set base path for tests with file name (#10201)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.12.0

See https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.12.1

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.12.1 (2024-10-28)

This was a version bump only for eslint-plugin to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.12.0 (2024-10-28)

🚀 Features

  • eslint-plugin: [no-base-to-string] handle String() (#10005)
  • eslint-plugin: [switch-exhaustiveness-check] add allowDefaultCaseMatchUnionMember option (#9954)
  • eslint-plugin: [consistent-indexed-object-style] report mapped types (#10160)
  • eslint-plugin: [prefer-nullish-coalescing] add support for assignment expressions (#10152)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Commits
  • 1edec1d chore(release): publish 8.12.1
  • 3413a2d chore(release): publish 8.12.0
  • ac18749 feat(eslint-plugin): [no-base-to-string] handle String() (#10005)
  • 3c8978d feat(eslint-plugin): [switch-exhaustiveness-check] add allowDefaultCaseMatchU...
  • af4743f test(eslint-plugin): fix a typo in a test, causing it to test the error typ...
  • 9c956ee feat(eslint-plugin): [consistent-indexed-object-style] report mapped types (#...
  • e765033 feat(eslint-plugin): [prefer-nullish-coalescing] add support for assignment e...
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=8.11.0&new-version=8.12.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/parser from 8.11.0 to 8.12.1 (#1423) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.11.0 to 8.12.1.
Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.12.1

8.12.1 (2024-10-28)

🚀 Features

  • eslint-plugin: [prefer-nullish-coalescing] add support for assignment expressions (#10152)
  • eslint-plugin: [consistent-indexed-object-style] report mapped types (#10160)
  • eslint-plugin: [switch-exhaustiveness-check] add considerDefaultExhaustiveForUnions option (#9954)
  • eslint-plugin: [no-base-to-string] handle String() (#10005)
  • typescript-eslint: improve undefined extension handling (#10177)

🩹 Fixes

  • eslint-plugin: [no-unsafe-return] don't reiterate through all type parts for each part (#10203)
  • website: enable noImplicitAny (#10175)
  • rule-tester: use cwd option to set base path for tests with file name (#10201)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

v8.12.0

See https://github.com/typescript-eslint/typescript-eslint/releases/tag/v8.12.1

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.12.1 (2024-10-28)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

8.12.0 (2024-10-28)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=8.11.0&new-version=8.12.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.8.1 to 22.8.2 (#1424) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.8.1 to 22.8.2.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.8.1&new-version=22.8.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.50 to 1.35.51 (#1425) Bumps [boto3](https://github.com/boto/boto3) from 1.35.50 to 1.35.51.
Commits
  • 62dc1fd Merge branch 'release-1.35.51'
  • 174ce87 Bumping version to 1.35.51
  • 85523ea Add changelog entries from botocore
  • 960efc1 Merge branch 'release-1.35.50' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.50&new-version=1.35.51)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/parser from 8.12.1 to 8.12.2 (#1429) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.12.1 to 8.12.2.
Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.12.2

8.12.2 (2024-10-29)

🩹 Fixes

  • eslint-plugin: [switch-exhaustiveness-check] invert considerDefaultExhaustiveForUnions (#10223)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.12.2 (2024-10-29)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=8.12.1&new-version=8.12.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.8.2 to 22.8.4 (#1428) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.8.2 to 22.8.4.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.8.2&new-version=22.8.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.679.0 to 3.682.0 (#1426) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.679.0 to 3.682.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.682.0

3.682.0(2024-10-29)

New Features
  • clients: update client endpoints as of 2024-10-29 (d7b891c8)
  • client-cloudwatch-logs: Added support for new optional baseline parameter in the UpdateAnomaly API. For UpdateAnomaly requests with baseline set to True, The anomaly behavior is then treated as baseline behavior. However, more severe occurrences of this behavior will still be reported as anomalies. (da1de11c)
  • client-bedrock: Update Application Inference Profile (cd3a5ec8)
  • client-iotfleetwise: Updated BatchCreateVehicle and BatchUpdateVehicle APIs: LimitExceededException has been added and the maximum number of vehicles in a batch has been set to 10 explicitly (820ad6d3)
  • client-sagemaker: Adding notebook-al2-v3 as allowed value to SageMaker NotebookInstance PlatformIdentifier attribute (8c8cce53)
  • client-redshift-data: Adding a new API GetStatementResultV2 that supports CSV formatted results from ExecuteStatement and BatchExecuteStatement calls. (5943dd5e)
  • client-cleanrooms: This release adds the option for customers to configure analytics engine when creating a collaboration, and introduces the new SPARK analytics engine type in addition to maintaining the legacy CLEAN_ROOMS_SQL engine type. (2ccb11c7)
  • client-bedrock-runtime: Update Application Inference Profile (aae686f9)
Tests

For list of updated packages, view updated-packages.md in assets-3.682.0.zip

v3.681.0

3.681.0(2024-10-28)

Documentation Changes
  • client-storage-gateway: Documentation update: Amazon FSx File Gateway will no longer be available to new customers. (1eadcc80)
New Features
  • clients: update client endpoints as of 2024-10-28 (de48f9d1)
  • client-opensearch: Adds support for provisioning dedicated coordinator nodes. Coordinator nodes can be specified using the new NodeOptions parameter in ClusterConfig. (81e60f67)
  • client-mediapackagev2: MediaPackage V2 Live to VOD Harvester is a MediaPackage V2 feature, which is used to export content from an origin endpoint to a S3 bucket. (5755a320)
  • client-rds: This release adds support for Enhanced Monitoring and Performance Insights when restoring Aurora Limitless Database DB clusters. It also adds support for the os-upgrade pending maintenance action. (02407f89)

For list of updated packages, view updated-packages.md in assets-3.681.0.zip

v3.680.0

3.680.0(2024-10-25)

New Features
  • clients: update client endpoints as of 2024-10-25 (20cc81f3)
  • client-cloudwatch-logs: Adding inferred token name for dynamic tokens in Anomalies. (1429c432)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.682.0 (2024-10-29)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.679.0&new-version=3.682.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/eslint-plugin from 8.12.1 to 8.12.2 (#1427) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.12.1 to 8.12.2.
Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.12.2

8.12.2 (2024-10-29)

🩹 Fixes

  • eslint-plugin: [switch-exhaustiveness-check] invert considerDefaultExhaustiveForUnions (#10223)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.12.2 (2024-10-29)

🩹 Fixes

  • eslint-plugin: [switch-exhaustiveness-check] invert considerDefaultExhaustiveForUnions (#10223)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Commits
  • 4af866a chore(release): publish 8.12.2
  • cc7177c fix(eslint-plugin): [switch-exhaustiveness-check] invert `considerDefaultExha...
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=8.12.1&new-version=8.12.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump axios-mock-adapter from 2.0.0 to 2.1.0 (#1363) Bumps [axios-mock-adapter](https://github.com/ctimmerm/axios-mock-adapter) from 2.0.0 to 2.1.0.
Release notes

Sourced from axios-mock-adapter's releases.

v2.1.0

  • Migrate to modern js ctimmerm/axios-mock-adapter#393
    • ♻️ Migrate internal handler to an object
    • ♻️ Migrate to ES2022
    • ♻️ Migrate to Class
    • ♻️ Migrate to async/await
    • 🎁 Migrate handlers and history to a flat array. That way one only needs to check the history array to see all requests. The verbs on the array are still exposed, so there's no downside.
    • 🎁 Add MockResponse types
Commits
  • 64d25b3 2.1.0
  • 533d3d9 chore: Upgrade axios, as there was a security issue, they fixed the url behavior
  • c958a54 Migrate to class
  • cf3d881 Add MockResponse types
  • 47db995 Migrate handle_request.js to async/await
  • c1b4a0f Upgrade eslint and rewrite to modern js
  • 6acbf99 Migrate handlers and history to a flat array
  • 1291950 Migrate handler to an object
  • 2554141 Use AxiosMockAdapter throughout README
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios-mock-adapter&package-manager=npm_and_yarn&previous-version=2.0.0&new-version=2.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
--------- Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Co-authored-by: Kris Szlapa Upgrade: [dependabot] - bump boto3 from 1.35.51 to 1.35.52 (#1431) Bumps [boto3](https://github.com/boto/boto3) from 1.35.51 to 1.35.52.
Commits
  • 93b71d0 Merge branch 'release-1.35.52'
  • d61432d Bumping version to 1.35.52
  • cba8e22 Add changelog entries from botocore
  • d557327 Merge branch 'release-1.35.51' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.51&new-version=1.35.52)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump cfn-lint from 1.18.2 to 1.18.3 (#1430) Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.18.2 to 1.18.3.
Release notes

Sourced from cfn-lint's releases.

Release v1.18.3

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.2...v1.18.3

Changelog

Sourced from cfn-lint's changelog.

v1.18.3

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.2...v1.18.3

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cfn-lint&package-manager=pip&previous-version=1.18.2&new-version=1.18.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @nhs/fhir-middy-error-handler from 2.1.9 to 2.1.10 (#1433) Bumps [@nhs/fhir-middy-error-handler](https://github.com/NHSDigital/nhs-fhir-middy-error-handler) from 2.1.9 to 2.1.10.
Release notes

Sourced from @​nhs/fhir-middy-error-handler's releases.

v2.1.10

2.1.10 (2024-10-30)

Upgrade

  • [dependabot] - bump @​types/jest from 29.5.13 to 29.5.14 (#229) (64e9246)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.11.0 to 8.12.1 (#232) (9ed45c7)
  • [dependabot] - bump @​typescript-eslint/parser from 8.11.0 to 8.12.1 (#231) (0962e62)
  • [dependabot] - bump semantic-release from 24.1.3 to 24.2.0 (#230) (0c5da20)
Commits
  • 9ed45c7 Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.11.0 to ...
  • 0962e62 Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.11.0 to 8.12.1 ...
  • 0c5da20 Upgrade: [dependabot] - bump semantic-release from 24.1.3 to 24.2.0 (#230)
  • 64e9246 Upgrade: [dependabot] - bump @​types/jest from 29.5.13 to 29.5.14 (#229)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@nhs/fhir-middy-error-handler&package-manager=npm_and_yarn&previous-version=2.1.9&new-version=2.1.10)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump @NHSDigital/eps-spine-client from 2.1.6 to 2.1.7 (#1432) Bumps [@NHSDigital/eps-spine-client](https://github.com/NHSDigital/nhs-eps-spine-client) from 2.1.6 to 2.1.7.
Release notes

Sourced from @​NHSDigital/eps-spine-client's releases.

v2.1.7

2.1.7 (2024-10-30)

Build

  • [AEA-4506] - Move to communal qc. Fix pr link (#244) (638598a)

Upgrade

  • [dependabot] - bump @​types/jest from 29.5.13 to 29.5.14 (#252) (359fa2c)
  • [dependabot] - bump @​types/node from 22.7.8 to 22.7.9 (#253) (94d6728)
  • [dependabot] - bump @​types/node from 22.7.9 to 22.8.1 (#254) (ad8f43d)
  • [dependabot] - bump @​types/node from 22.8.1 to 22.8.2 (#258) (92baeb0)
  • [dependabot] - bump @​types/node from 22.8.2 to 22.8.4 (#260) (04eb6a8)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.11.0 to 8.12.1 (#257) (d434ccb)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.12.1 to 8.12.2 (#261) (d4b3531)
  • [dependabot] - bump @​typescript-eslint/parser from 8.11.0 to 8.12.1 (#256) (dd1298f)
  • [dependabot] - bump @​typescript-eslint/parser from 8.12.1 to 8.12.2 (#259) (7f608a6)
  • [dependabot] - bump semantic-release from 24.1.3 to 24.2.0 (#255) (7dad0eb)
Commits
  • 04eb6a8 Upgrade: [dependabot] - bump @​types/node from 22.8.2 to 22.8.4 (#260)
  • d4b3531 Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.12.1 to ...
  • 7f608a6 Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.12.1 to 8.12.2 ...
  • 92baeb0 Upgrade: [dependabot] - bump @​types/node from 22.8.1 to 22.8.2 (#258)
  • dd1298f Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.11.0 to 8.12.1 ...
  • d434ccb Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.11.0 to ...
  • 7dad0eb Upgrade: [dependabot] - bump semantic-release from 24.1.3 to 24.2.0 (#255)
  • ad8f43d Upgrade: [dependabot] - bump @​types/node from 22.7.9 to 22.8.1 (#254)
  • 359fa2c Upgrade: [dependabot] - bump @​types/jest from 29.5.13 to 29.5.14 (#252)
  • 94d6728 Upgrade: [dependabot] - bump @​types/node from 22.7.8 to 22.7.9 (#253)
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@NHSDigital/eps-spine-client&package-manager=npm_and_yarn&previous-version=2.1.6&new-version=2.1.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.52 to 1.35.53 (#1434) Bumps [boto3](https://github.com/boto/boto3) from 1.35.52 to 1.35.53.
Commits
  • 7fda69a Merge branch 'release-1.35.53'
  • d6e1a82 Bumping version to 1.35.53
  • 88bbcd4 Add changelog entries from botocore
  • e980e72 Merge branch 'release-1.35.52' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.52&new-version=1.35.53)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.53 to 1.35.54 (#1436) Bumps [boto3](https://github.com/boto/boto3) from 1.35.53 to 1.35.54.
Commits
  • fdb78d3 Merge branch 'release-1.35.54'
  • 3b67876 Bumping version to 1.35.54
  • 6494499 Add changelog entries from botocore
  • 923c9e4 Merge branch 'release-1.35.53' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.53&new-version=1.35.54)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump eslint from 9.13.0 to 9.14.0 (#1437) Bumps [eslint](https://github.com/eslint/eslint) from 9.13.0 to 9.14.0.
Release notes

Sourced from eslint's releases.

v9.14.0

Features

  • 3fa009f feat: add support for Import Attributes and RegExp Modifiers (#19076) (Milos Djermanovic)
  • b0faee3 feat: add types for the @eslint/js package (#19010) (Nitin Kumar)

Bug Fixes

  • 24d0172 fix: enable retry concurrency limit for readFile() (#19077) (Nicholas C. Zakas)
  • b442067 fix: Don't crash when directory is deleted during traversal. (#19067) (Nicholas C. Zakas)
  • d474443 fix: avoid call stack overflow while processing globs (#19035) (Livia Medeiros)

Documentation

  • 151c965 docs: update context.languageOptions.parser description (#19084) (Nitin Kumar)
  • dc34f94 docs: Update README (GitHub Actions Bot)
  • f16e846 docs: Update README (GitHub Actions Bot)
  • ee0a77e docs: change link from @​types/eslint to lib/types (#19049) (Karl Horky)
  • 50f03a1 docs: Clarify global ignores in config migration guide (#19032) (Milos Djermanovic)

Build Related

  • 37c9177 build: update @wdio/* dependencies (#19068) (Francesco Trotta)
  • 35a8858 build: exclude flawed dendency versions (#19065) (Francesco Trotta)

Chores

  • f36cb16 chore: upgrade @​eslint/js@​9.14.0 (#19086) (Milos Djermanovic)
  • 28be447 chore: package.json update for @​eslint/js release (Jenkins)
  • f48a2a0 test: add no-invalid-regexp tests with RegExp Modifiers (#19075) (Milos Djermanovic)
  • 425202e perf: Fix caching in config loaders (#19042) (Milos Djermanovic)
  • 3d44b3c ci: run tests in Node.js 23 (#19055) (Francesco Trotta)
  • 7259627 test: ensure tmp directory cleanup in check-emfile-handling.js (#19036) (Livia Medeiros)
Changelog

Sourced from eslint's changelog.

v9.14.0 - November 1, 2024

  • f36cb16 chore: upgrade @​eslint/js@​9.14.0 (#19086) (Milos Djermanovic)
  • 28be447 chore: package.json update for @​eslint/js release (Jenkins)
  • 24d0172 fix: enable retry concurrency limit for readFile() (#19077) (Nicholas C. Zakas)
  • 3fa009f feat: add support for Import Attributes and RegExp Modifiers (#19076) (Milos Djermanovic)
  • b0faee3 feat: add types for the @eslint/js package (#19010) (Nitin Kumar)
  • 151c965 docs: update context.languageOptions.parser description (#19084) (Nitin Kumar)
  • dc34f94 docs: Update README (GitHub Actions Bot)
  • f48a2a0 test: add no-invalid-regexp tests with RegExp Modifiers (#19075) (Milos Djermanovic)
  • 37c9177 build: update @wdio/* dependencies (#19068) (Francesco Trotta)
  • b442067 fix: Don't crash when directory is deleted during traversal. (#19067) (Nicholas C. Zakas)
  • 35a8858 build: exclude flawed dendency versions (#19065) (Francesco Trotta)
  • 425202e perf: Fix caching in config loaders (#19042) (Milos Djermanovic)
  • 3d44b3c ci: run tests in Node.js 23 (#19055) (Francesco Trotta)
  • f16e846 docs: Update README (GitHub Actions Bot)
  • ee0a77e docs: change link from @​types/eslint to lib/types (#19049) (Karl Horky)
  • d474443 fix: avoid call stack overflow while processing globs (#19035) (Livia Medeiros)
  • 7259627 test: ensure tmp directory cleanup in check-emfile-handling.js (#19036) (Livia Medeiros)
  • 50f03a1 docs: Clarify global ignores in config migration guide (#19032) (Milos Djermanovic)
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=eslint&package-manager=npm_and_yarn&previous-version=9.13.0&new-version=9.14.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.8.4 to 22.8.7 (#1438) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.8.4 to 22.8.7.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.8.4&new-version=22.8.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump cfn-lint from 1.18.3 to 1.18.4 (#1439) Bumps [cfn-lint](https://github.com/aws-cloudformation/cfn-lint) from 1.18.3 to 1.18.4.
Release notes

Sourced from cfn-lint's releases.

Release v1.18.4

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.3...v1.18.4

Changelog

Sourced from cfn-lint's changelog.

v1.18.4

What's Changed

Full Changelog: https://github.com/aws-cloudformation/cfn-lint/compare/v1.18.3...v1.18.4

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cfn-lint&package-manager=pip&previous-version=1.18.3&new-version=1.18.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/parser from 8.12.2 to 8.13.0 (#1441) Bumps [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) from 8.12.2 to 8.13.0.
Release notes

Sourced from @​typescript-eslint/parser's releases.

v8.13.0

8.13.0 (2024-11-04)

🚀 Features

  • add options property to ImportExpression node (#10255)
  • eslint-plugin: disable no-class-assign rule in eslint-recommended config (#10250)
  • eslint-plugin: [prefer-nullish-coalescing] add option ignoreBooleanCoercion (#9924)
  • eslint-plugin: [only-throw-error] add allow option (#10221)

🩹 Fixes

  • deps: update dependency @​eslint-community/regexpp to v4.12.1 (#10269)
  • eslint-plugin: [no-unnecessary-condition] falsey bigint should be falsey (#10205)
  • eslint-plugin: [no-deprecated] report on deprecated variables used inside dynamic imports (#10261)
  • eslint-plugin: [no-deprecated] report when exported class implements/extends deprecated entity (#10259)
  • eslint-plugin: [consistent-type-definitions] don't leave trailing parens when fixing type to interface (#10235)
  • eslint-plugin: [switch-exhaustiveness-check] add support for covering a missing property with undefined (#10232)
  • types: parent property type annotation in the ImportAttribute node (#10258)
  • utils: allow an array for the values of SharedConfig (#10217)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/parser's changelog.

8.13.0 (2024-11-04)

This was a version bump only for parser to align it with other projects, there were no code changes.

You can read about our versioning strategy and releases on our website.

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/parser&package-manager=npm_and_yarn&previous-version=8.12.2&new-version=8.13.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @typescript-eslint/eslint-plugin from 8.12.2 to 8.13.0 (#1442) Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.12.2 to 8.13.0.
Release notes

Sourced from @​typescript-eslint/eslint-plugin's releases.

v8.13.0

8.13.0 (2024-11-04)

🚀 Features

  • add options property to ImportExpression node (#10255)
  • eslint-plugin: disable no-class-assign rule in eslint-recommended config (#10250)
  • eslint-plugin: [prefer-nullish-coalescing] add option ignoreBooleanCoercion (#9924)
  • eslint-plugin: [only-throw-error] add allow option (#10221)

🩹 Fixes

  • deps: update dependency @​eslint-community/regexpp to v4.12.1 (#10269)
  • eslint-plugin: [no-unnecessary-condition] falsey bigint should be falsey (#10205)
  • eslint-plugin: [no-deprecated] report on deprecated variables used inside dynamic imports (#10261)
  • eslint-plugin: [no-deprecated] report when exported class implements/extends deprecated entity (#10259)
  • eslint-plugin: [consistent-type-definitions] don't leave trailing parens when fixing type to interface (#10235)
  • eslint-plugin: [switch-exhaustiveness-check] add support for covering a missing property with undefined (#10232)
  • types: parent property type annotation in the ImportAttribute node (#10258)
  • utils: allow an array for the values of SharedConfig (#10217)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from @​typescript-eslint/eslint-plugin's changelog.

8.13.0 (2024-11-04)

🚀 Features

  • eslint-plugin: [only-throw-error] add allow option (#10221)
  • eslint-plugin: [prefer-nullish-coalescing] add option ignoreBooleanCoercion (#9924)
  • eslint-plugin: disable no-class-assign rule in eslint-recommended config (#10250)

🩹 Fixes

  • eslint-plugin: [switch-exhaustiveness-check] add support for covering a missing property with undefined (#10232)
  • eslint-plugin: [consistent-type-definitions] don't leave trailing parens when fixing type to interface (#10235)
  • eslint-plugin: [no-deprecated] report when exported class implements/extends deprecated entity (#10259)
  • eslint-plugin: [no-deprecated] report on deprecated variables used inside dynamic imports (#10261)
  • eslint-plugin: [no-unnecessary-condition] falsey bigint should be falsey (#10205)

❤️ Thank You

You can read about our versioning strategy and releases on our website.

Commits
  • ac1f632 chore(release): publish 8.13.0
  • f83a591 fix(eslint-plugin): [switch-exhaustiveness-check] add support for covering a ...
  • 3b97b55 chore: enable eslint-plugin-perfectionist on the rest of the repo (#10189)
  • c1fe3ea feat(eslint-plugin): [only-throw-error] add allow option (#10221)
  • d90cc59 chore: update eslint version internally to latest (#10244)
  • 5bd4c0a fix(eslint-plugin): [consistent-type-definitions] don't leave trailing parens...
  • d9e5da1 fix(eslint-plugin): [no-deprecated] report when exported class implements/ext...
  • 1e633c7 fix(eslint-plugin): [no-deprecated] report on deprecated variables used insid...
  • 05ed7e6 docs: fix prefer-nullish-coalescing.mdx
  • be3a224 feat(eslint-plugin): [prefer-nullish-coalescing] add option `ignoreBooleanCoe...
  • Additional commits viewable in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@typescript-eslint/eslint-plugin&package-manager=npm_and_yarn&previous-version=8.12.2&new-version=8.13.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @types/node from 22.8.7 to 22.9.0 (#1440) Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 22.8.7 to 22.9.0.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@types/node&package-manager=npm_and_yarn&previous-version=22.8.7&new-version=22.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.54 to 1.35.55 (#1443) Bumps [boto3](https://github.com/boto/boto3) from 1.35.54 to 1.35.55.
Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.54&new-version=1.35.55)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @NHSDigital/eps-spine-client from 2.1.7 to 2.1.8 (#1445) Bumps [@NHSDigital/eps-spine-client](https://github.com/NHSDigital/nhs-eps-spine-client) from 2.1.7 to 2.1.8.
Release notes

Sourced from @​NHSDigital/eps-spine-client's releases.

v2.1.8

2.1.8 (2024-11-06)

Upgrade

  • [dependabot] - bump @​types/node from 22.8.4 to 22.8.6 (#262) (821b3a1)
  • [dependabot] - bump @​types/node from 22.8.6 to 22.8.7 (#263) (d343b9b)
  • [dependabot] - bump @​types/node from 22.8.7 to 22.9.0 (#266) (e4f7368)
  • [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.12.2 to 8.13.0 (#265) (e905563)
  • [dependabot] - bump @​typescript-eslint/parser from 8.12.2 to 8.13.0 (#267) (bd33568)
  • [dependabot] - bump eslint from 9.13.0 to 9.14.0 (#264) (3742bbf)
Commits
  • bd33568 Upgrade: [dependabot] - bump @​typescript-eslint/parser from 8.12.2 to 8.13.0 ...
  • e4f7368 Upgrade: [dependabot] - bump @​types/node from 22.8.7 to 22.9.0 (#266)
  • e905563 Upgrade: [dependabot] - bump @​typescript-eslint/eslint-plugin from 8.12.2 to ...
  • 3742bbf Upgrade: [dependabot] - bump eslint from 9.13.0 to 9.14.0 (#264)
  • d343b9b Upgrade: [dependabot] - bump @​types/node from 22.8.6 to 22.8.7 (#263)
  • 821b3a1 Upgrade: [dependabot] - bump @​types/node from 22.8.4 to 22.8.6 (#262)
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@NHSDigital/eps-spine-client&package-manager=npm_and_yarn&previous-version=2.1.7&new-version=2.1.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.682.0 to 3.686.0 (#1446) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.682.0 to 3.686.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.686.0

3.686.0(2024-11-06)

Chores
New Features
  • client-qapps: Introduces category apis in AmazonQApps. Web experience users use Categories to tag and filter library items. (9e3e6fb6)
  • client-verifiedpermissions: Adding BatchGetPolicy API which supports the retrieval of multiple policies across multiple policy stores within a single request. (6860b355)
  • client-codebuild: AWS CodeBuild now adds additional compute types for reserved capacity fleet. (73be6196)
  • client-lakeformation: API changes for new named tag expressions feature. (85aa63fd)
  • client-s3-control: Fix ListStorageLensConfigurations and ListStorageLensGroups deserialization for Smithy SDKs. (14cff2e0)
  • client-guardduty: GuardDuty RDS Protection expands support for Amazon Aurora PostgreSQL Limitless Databases. (4c78745a)
Tests
  • client-ec2: convert cucumber tests to vitest for ec2 (#6625) (6ee85c57)
  • client-s3: convert some read ops to waiters (#6622) (396fc77e)
  • credential-provider-node: remove sts and sso client mocks (#6619) (62ae71a8)
  • remove turbo from test orchestration (#6615) (36006687)

For list of updated packages, view updated-packages.md in assets-3.686.0.zip

v3.685.0

3.685.0(2024-11-01)

New Features
  • clients: update client endpoints as of 2024-11-01 (daef7c12)
  • client-taxsettings: Add support for supplemental tax registrations via these new APIs: PutSupplementalTaxRegistration, ListSupplementalTaxRegistrations, and DeleteSupplementalTaxRegistration. (23a1507e)
  • client-cloudwatch-logs: This release introduces an improvement in PutLogEvents (3fc175fd)
  • client-bedrock-agent: Amazon Bedrock Knowledge Bases now supports using application inference profiles to increase throughput and improve resilience. (2601df45)
  • client-docdb-elastic: Amazon DocumentDB Elastic Clusters adds support for pending maintenance actions feature with APIs GetPendingMaintenanceAction, ListPendingMaintenanceActions and ApplyPendingMaintenanceAction (3bbb1c52)
Tests

For list of updated packages, view updated-packages.md in assets-3.685.0.zip

v3.684.0

... (truncated)

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.686.0 (2024-11-06)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.682.0&new-version=3.686.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.55 to 1.35.56 (#1447) Bumps [boto3](https://github.com/boto/boto3) from 1.35.55 to 1.35.56.
Commits
  • 7376423 Merge branch 'release-1.35.56'
  • aa17d21 Bumping version to 1.35.56
  • 7d746c6 Add changelog entries from botocore
  • 90f444e Merge branch 'release-1.35.55' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.55&new-version=1.35.56)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Upgrade: [dependabot] - bump @aws-sdk/client-secrets-manager from 3.686.0 to 3.687.0 (#1448) Bumps [@aws-sdk/client-secrets-manager](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-secrets-manager) from 3.686.0 to 3.687.0.
Release notes

Sourced from @​aws-sdk/client-secrets-manager's releases.

v3.687.0

3.687.0(2024-11-07)

Chores
  • middleware-flexible-checksums: delay checksum validation until stream read (#6629) (43ee3c1e)
New Features
  • clients: update client endpoints as of 2024-11-07 (dbf853a1)
  • client-auto-scaling: Auto Scaling groups now support the ability to strictly balance instances across Availability Zones by configuring the AvailabilityZoneDistribution parameter. If balanced-only is configured for a group, launches will always be attempted in the under scaled Availability Zone even if it is unhealthy. (3589a0fe)
  • client-bedrock-runtime: Add Prompt management support to Bedrock runtime APIs: Converse, ConverseStream, InvokeModel, InvokeModelWithStreamingResponse (66072530)
  • client-quicksight: Add Client Credentials based OAuth support for Snowflake and Starburst (3d8d0bb1)
  • client-cleanroomsml: This release introduces support for Custom Models in AWS Clean Rooms ML. (188d6019)
  • client-synthetics: Add support to toggle if a canary will automatically delete provisioned canary resources such as Lambda functions and layers when a canary is deleted. This behavior can be controlled via the new ProvisionedResourceCleanup property exposed in the CreateCanary and UpdateCanary APIs. (b06511c0)
  • client-cleanrooms: This release introduces support for Custom Models in AWS Clean Rooms ML. (ef8b2588)
  • client-bedrock-agent: Add prompt support for chat template configuration and agent generative AI resource. Add support for configuring an optional guardrail in Prompt and Knowledge Base nodes in Prompt Flows. Add API to validate flow definition (7f72a17e)
  • client-resource-explorer-2: Add GetManagedView, ListManagedViews APIs. (362a7bd2)
Tests

For list of updated packages, view updated-packages.md in assets-3.687.0.zip

Changelog

Sourced from @​aws-sdk/client-secrets-manager's changelog.

3.687.0 (2024-11-07)

Note: Version bump only for package @​aws-sdk/client-secrets-manager

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@aws-sdk/client-secrets-manager&package-manager=npm_and_yarn&previous-version=3.686.0&new-version=3.687.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: anthony-nhs <121869075+anthony-nhs@users.noreply.github.com> Upgrade: [dependabot] - bump boto3 from 1.35.56 to 1.35.57 (#1449) Bumps [boto3](https://github.com/boto/boto3) from 1.35.56 to 1.35.57.
Commits
  • be729ae Merge branch 'release-1.35.57'
  • 3dbc942 Bumping version to 1.35.57
  • bdfdd00 Add changelog entries from botocore
  • 9b22d5a Merge branch 'release-1.35.56' into develop
  • See full diff in compare view

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=boto3&package-manager=pip&previous-version=1.35.56&new-version=1.35.57)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Trigger build --- .devcontainer/devcontainer.json | 3 +- .gitallowed | 16 + .github/workflows/ci.yml | 2 +- .github/workflows/pull_request.yml | 4 +- .github/workflows/release.yml | 2 +- .pre-commit-config.yaml | 11 + package-lock.json | 1242 +++++++++-------- package.json | 12 +- packages/capabilityStatement/package.json | 4 +- packages/distanceSelling/package.json | 4 +- packages/enrichPrescriptions/package.json | 6 +- packages/getMyPrescriptions/package.json | 12 +- .../tests/test-handler.test.ts | 17 +- packages/sandbox/package.json | 4 +- packages/serviceSearchClient/package.json | 4 +- packages/statusLambda/package.json | 8 +- poetry.lock | 22 +- privateCA/.gitignore | 6 - privateCA/README.md | 14 - privateCA/create_certs.sh | 257 ---- privateCA/openssl-ca.conf | 92 -- pyproject.toml | 4 +- 22 files changed, 712 insertions(+), 1034 deletions(-) create mode 100644 .gitallowed delete mode 100644 privateCA/.gitignore delete mode 100644 privateCA/README.md delete mode 100755 privateCA/create_certs.sh delete mode 100644 privateCA/openssl-ca.conf diff --git a/.devcontainer/devcontainer.json b/.devcontainer/devcontainer.json index 4293eea6b..cc47bc8fd 100644 --- a/.devcontainer/devcontainer.json +++ b/.devcontainer/devcontainer.json @@ -66,7 +66,8 @@ } } }, - "postCreateCommand": "rm -f ~/.docker/config.json; git config --global --add safe.directory /workspaces/prescriptionsforpatients; make install; direnv allow ." + "remoteEnv": { "LOCAL_WORKSPACE_FOLDER": "${localWorkspaceFolder}" }, + "postCreateCommand": "rm -f ~/.docker/config.json; git config --global --add safe.directory /workspaces/prescriptionsforpatients; make install; direnv allow .; docker build -f /workspaces/eps-workflow-quality-checks/dockerfiles/nhsd-git-secrets.dockerfile -t git-secrets ." // "features": {}, // Use 'forwardPorts' to make a list of ports inside the container available locally. // "forwardPorts": [], diff --git a/.gitallowed b/.gitallowed new file mode 100644 index 000000000..49086f83e --- /dev/null +++ b/.gitallowed @@ -0,0 +1,16 @@ +token: ?"?\$\{\{\s*secrets\.GITHUB_TOKEN\s*\}\}"? +github-token: ?"?\$\{\{\s*secrets\.GITHUB_TOKEN\s*\}\}"? +token: ?"?\$\{\{\s*secrets\.DEPENDABOT_TOKEN\s*\}\}"? +id-token: write +--token=\$\{\{\s*steps\.generate-token\.outputs\.token\s*\}\} +--token=\$GITHUB-TOKEN +--token="\$GITHUB-TOKEN" +"accountId": "123456789012" +accountId: "123456789012" +console\.log\(`access token : \${access_token}`\) +.*CidrBlock.* +.*Gemfile\.lock.* +.*\.gitallowed.* +.*nhsd-rules-deny.txt.* +.*\.venv.* +.*node_modules.* diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index c2cfc7e3c..44da1367b 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -9,7 +9,7 @@ env: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@v4.0.2 secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml index cc2212329..426fa7c49 100644 --- a/.github/workflows/pull_request.yml +++ b/.github/workflows/pull_request.yml @@ -9,8 +9,8 @@ env: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main - secrets: + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@v4.0.2 + secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} pr_title_format_check: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ed62bc099..83fa51858 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: jobs: quality_checks: - uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@main + uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@v4.0.2 secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml index 4f9faa97f..74da0190e 100644 --- a/.pre-commit-config.yaml +++ b/.pre-commit-config.yaml @@ -137,5 +137,16 @@ repos: types_or: [sh, shell] pass_filenames: false + - repo: local + hooks: + - id: git-secrets + name: Git Secrets + description: git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories. + entry: bash + args: + - -c + - 'docker run -v "$LOCAL_WORKSPACE_FOLDER:/src" git-secrets --pre_commit_hook' + language: system + fail_fast: true default_stages: [commit] diff --git a/package-lock.json b/package-lock.json index 91155945c..f66997ba0 100644 --- a/package-lock.json +++ b/package-lock.json @@ -25,18 +25,18 @@ "@semantic-release/changelog": "^6.0.3", "@semantic-release/release-notes-generator": "^14.0.1", "@types/aws-lambda": "^8.10.145", - "@types/jest": "^29.5.13", - "@types/node": "^22.7.6", - "@typescript-eslint/eslint-plugin": "^8.9.0", - "@typescript-eslint/parser": "^8.9.0", + "@types/jest": "^29.5.14", + "@types/node": "^22.9.0", + "@typescript-eslint/eslint-plugin": "^8.13.0", + "@typescript-eslint/parser": "^8.13.0", "aws-lambda": "^1.0.7", "conventional-changelog-eslint": "^6.0.0", - "eslint": "^9.12.0", + "eslint": "^9.14.0", "eslint-plugin-import-newlines": "^1.4.0", "jest": "^29.7.0", "jest-junit": "^16.0.0", "license-checker": "^25.0.1", - "semantic-release": "^24.1.2", + "semantic-release": "^24.2.0", "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.6.3" @@ -172,16 +172,16 @@ } }, "node_modules/@aws-lambda-powertools/commons": { - "version": "2.9.0", - "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/commons/-/commons-2.9.0.tgz", - "integrity": "sha512-01RHHCDyAHp5uK0jjUxxh2P89lqLEvaP39bxAI4FTuL9ZGbvFnmmzA8MFXtBH/R/oxZgk/+XxzvoNtb46dhVoA==" + "version": "2.10.0", + "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/commons/-/commons-2.10.0.tgz", + "integrity": "sha512-XHC0FW/k33JWc2SZ9pbOJQPzNCMoRGnRuX/Cx1CYXRvRnaLYkPNRPrPYvGWy1OInAS3GSK6zxP1Asx0k4uaqSw==" }, "node_modules/@aws-lambda-powertools/logger": { - "version": "2.9.0", - "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/logger/-/logger-2.9.0.tgz", - "integrity": "sha512-1LvpOu1NhjfNh9GEoYW+vsuaD71j9Mh34sSDCF+mX8jSHoaI3b4GMQ1HSJ5UX0GJiZkBl1wfQz4wSRQFzUXZNw==", + "version": "2.10.0", + "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/logger/-/logger-2.10.0.tgz", + "integrity": "sha512-QsVnoCBf6gKneGmSrIj1nxf34jWWOyDu4PO3I+VwkaH60lph2dIVcF1pP1zZagxUoYt9WWiddHcGQ7ORo0z5iw==", "dependencies": { - "@aws-lambda-powertools/commons": "^2.9.0", + "@aws-lambda-powertools/commons": "^2.10.0", "lodash.merge": "^4.6.2" }, "peerDependencies": { @@ -194,11 +194,11 @@ } }, "node_modules/@aws-lambda-powertools/parameters": { - "version": "2.9.0", - "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/parameters/-/parameters-2.9.0.tgz", - "integrity": "sha512-dgoH3ahp5VDPGIcsHrT+xPcKV8CvxjoFq8w21Yjy5JYoi9s4NaM3ve4DgdVzeQplfpIP85b/yPpoJsl4bjmDuA==", + "version": "2.10.0", + "resolved": "https://registry.npmjs.org/@aws-lambda-powertools/parameters/-/parameters-2.10.0.tgz", + "integrity": "sha512-/S/vIlkASu7ZUUph69tOKOoDynEEdHLVPVr5X6zK/jtKJ5Nu2hAoeeWUFIwDBwm2w0pCDfErkQ9miiQ74BoVVg==", "dependencies": { - "@aws-lambda-powertools/commons": "^2.9.0" + "@aws-lambda-powertools/commons": "^2.10.0" }, "peerDependencies": { "@aws-sdk/client-appconfigdata": ">=3.x", @@ -230,50 +230,51 @@ } }, "node_modules/@aws-sdk/client-secrets-manager": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/client-secrets-manager/-/client-secrets-manager-3.670.0.tgz", - "integrity": "sha512-O5M94wRBqvGuD2+atCTWPFZfCvsRAMOV96ftw6Mje/Ug375dC4aLc/FvsG9YQGiuGbzhzu02hOIOiGvnJqxj4A==", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/client-secrets-manager/-/client-secrets-manager-3.687.0.tgz", + "integrity": "sha512-/fCUosMm+CJyLHGM/aDZw6OGQNOkifP7M/bvMH7TED8evQzFGMyyQwUF8PNvYHxEaqSchR1l+N+QKEZM0UfP8w==", "dependencies": { "@aws-crypto/sha256-browser": "5.2.0", "@aws-crypto/sha256-js": "5.2.0", - "@aws-sdk/client-sso-oidc": "3.670.0", - "@aws-sdk/client-sts": "3.670.0", - "@aws-sdk/core": "3.667.0", - "@aws-sdk/credential-provider-node": "3.670.0", - "@aws-sdk/middleware-host-header": "3.667.0", - "@aws-sdk/middleware-logger": "3.667.0", - "@aws-sdk/middleware-recursion-detection": "3.667.0", - "@aws-sdk/middleware-user-agent": "3.669.0", - "@aws-sdk/region-config-resolver": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@aws-sdk/util-endpoints": "3.667.0", - "@aws-sdk/util-user-agent-browser": "3.670.0", - "@aws-sdk/util-user-agent-node": "3.669.0", - "@smithy/config-resolver": "^3.0.9", - "@smithy/core": "^2.4.8", - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/hash-node": "^3.0.7", - "@smithy/invalid-dependency": "^3.0.7", - "@smithy/middleware-content-length": "^3.0.9", - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-retry": "^3.0.23", - "@smithy/middleware-serde": "^3.0.7", - "@smithy/middleware-stack": "^3.0.7", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/node-http-handler": "^3.2.4", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", + "@aws-sdk/client-sso-oidc": "3.687.0", + "@aws-sdk/client-sts": "3.687.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/credential-provider-node": "3.687.0", + "@aws-sdk/middleware-host-header": "3.686.0", + "@aws-sdk/middleware-logger": "3.686.0", + "@aws-sdk/middleware-recursion-detection": "3.686.0", + "@aws-sdk/middleware-user-agent": "3.687.0", + "@aws-sdk/region-config-resolver": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@aws-sdk/util-endpoints": "3.686.0", + "@aws-sdk/util-user-agent-browser": "3.686.0", + "@aws-sdk/util-user-agent-node": "3.687.0", + "@smithy/config-resolver": "^3.0.10", + "@smithy/core": "^2.5.1", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/hash-node": "^3.0.8", + "@smithy/invalid-dependency": "^3.0.8", + "@smithy/middleware-content-length": "^3.0.10", + "@smithy/middleware-endpoint": "^3.2.1", + "@smithy/middleware-retry": "^3.0.25", + "@smithy/middleware-serde": "^3.0.8", + "@smithy/middleware-stack": "^3.0.8", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/node-http-handler": "^3.2.5", + "@smithy/protocol-http": "^4.1.5", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", "@smithy/util-base64": "^3.0.0", "@smithy/util-body-length-browser": "^3.0.0", "@smithy/util-body-length-node": "^3.0.0", - "@smithy/util-defaults-mode-browser": "^3.0.23", - "@smithy/util-defaults-mode-node": "^3.0.23", - "@smithy/util-endpoints": "^2.1.3", - "@smithy/util-middleware": "^3.0.7", - "@smithy/util-retry": "^3.0.7", + "@smithy/util-defaults-mode-browser": "^3.0.25", + "@smithy/util-defaults-mode-node": "^3.0.25", + "@smithy/util-endpoints": "^2.1.4", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-retry": "^3.0.8", "@smithy/util-utf8": "^3.0.0", + "@types/uuid": "^9.0.1", "tslib": "^2.6.2", "uuid": "^9.0.1" }, @@ -295,46 +296,46 @@ } }, "node_modules/@aws-sdk/client-sso": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/client-sso/-/client-sso-3.670.0.tgz", - "integrity": "sha512-J+oz6uSsDvk4pimMDnKJb1wsV216zTrejvMTIL4RhUD1QPIVVOpteTdUShcjZUIZnkcJZGI+cym/SFK0kuzTpg==", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/client-sso/-/client-sso-3.687.0.tgz", + "integrity": "sha512-dfj0y9fQyX4kFill/ZG0BqBTLQILKlL7+O5M4F9xlsh2WNuV2St6WtcOg14Y1j5UODPJiJs//pO+mD1lihT5Kw==", "dependencies": { "@aws-crypto/sha256-browser": "5.2.0", "@aws-crypto/sha256-js": "5.2.0", - "@aws-sdk/core": "3.667.0", - "@aws-sdk/middleware-host-header": "3.667.0", - "@aws-sdk/middleware-logger": "3.667.0", - "@aws-sdk/middleware-recursion-detection": "3.667.0", - "@aws-sdk/middleware-user-agent": "3.669.0", - "@aws-sdk/region-config-resolver": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@aws-sdk/util-endpoints": "3.667.0", - "@aws-sdk/util-user-agent-browser": "3.670.0", - "@aws-sdk/util-user-agent-node": "3.669.0", - "@smithy/config-resolver": "^3.0.9", - "@smithy/core": "^2.4.8", - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/hash-node": "^3.0.7", - "@smithy/invalid-dependency": "^3.0.7", - "@smithy/middleware-content-length": "^3.0.9", - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-retry": "^3.0.23", - "@smithy/middleware-serde": "^3.0.7", - "@smithy/middleware-stack": "^3.0.7", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/node-http-handler": "^3.2.4", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/middleware-host-header": "3.686.0", + "@aws-sdk/middleware-logger": "3.686.0", + "@aws-sdk/middleware-recursion-detection": "3.686.0", + "@aws-sdk/middleware-user-agent": "3.687.0", + "@aws-sdk/region-config-resolver": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@aws-sdk/util-endpoints": "3.686.0", + "@aws-sdk/util-user-agent-browser": "3.686.0", + "@aws-sdk/util-user-agent-node": "3.687.0", + "@smithy/config-resolver": "^3.0.10", + "@smithy/core": "^2.5.1", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/hash-node": "^3.0.8", + "@smithy/invalid-dependency": "^3.0.8", + "@smithy/middleware-content-length": "^3.0.10", + "@smithy/middleware-endpoint": "^3.2.1", + "@smithy/middleware-retry": "^3.0.25", + "@smithy/middleware-serde": "^3.0.8", + "@smithy/middleware-stack": "^3.0.8", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/node-http-handler": "^3.2.5", + "@smithy/protocol-http": "^4.1.5", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", "@smithy/util-base64": "^3.0.0", "@smithy/util-body-length-browser": "^3.0.0", "@smithy/util-body-length-node": "^3.0.0", - "@smithy/util-defaults-mode-browser": "^3.0.23", - "@smithy/util-defaults-mode-node": "^3.0.23", - "@smithy/util-endpoints": "^2.1.3", - "@smithy/util-middleware": "^3.0.7", - "@smithy/util-retry": "^3.0.7", + "@smithy/util-defaults-mode-browser": "^3.0.25", + "@smithy/util-defaults-mode-node": "^3.0.25", + "@smithy/util-endpoints": "^2.1.4", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-retry": "^3.0.8", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" }, @@ -343,47 +344,47 @@ } }, "node_modules/@aws-sdk/client-sso-oidc": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/client-sso-oidc/-/client-sso-oidc-3.670.0.tgz", - "integrity": "sha512-4qDK2L36Q4J1lfemaHHd9ZxqKRaos3STp44qPAHf/8QyX6Uk5sXgZNVO2yWM7SIEtVKwwBh/fZAsdBkGPBfZcw==", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/client-sso-oidc/-/client-sso-oidc-3.687.0.tgz", + "integrity": "sha512-Rdd8kLeTeh+L5ZuG4WQnWgYgdv7NorytKdZsGjiag1D8Wv3PcJvPqqWdgnI0Og717BSXVoaTYaN34FyqFYSx6Q==", "dependencies": { "@aws-crypto/sha256-browser": "5.2.0", "@aws-crypto/sha256-js": "5.2.0", - "@aws-sdk/core": "3.667.0", - "@aws-sdk/credential-provider-node": "3.670.0", - "@aws-sdk/middleware-host-header": "3.667.0", - "@aws-sdk/middleware-logger": "3.667.0", - "@aws-sdk/middleware-recursion-detection": "3.667.0", - "@aws-sdk/middleware-user-agent": "3.669.0", - "@aws-sdk/region-config-resolver": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@aws-sdk/util-endpoints": "3.667.0", - "@aws-sdk/util-user-agent-browser": "3.670.0", - "@aws-sdk/util-user-agent-node": "3.669.0", - "@smithy/config-resolver": "^3.0.9", - "@smithy/core": "^2.4.8", - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/hash-node": "^3.0.7", - "@smithy/invalid-dependency": "^3.0.7", - "@smithy/middleware-content-length": "^3.0.9", - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-retry": "^3.0.23", - "@smithy/middleware-serde": "^3.0.7", - "@smithy/middleware-stack": "^3.0.7", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/node-http-handler": "^3.2.4", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/credential-provider-node": "3.687.0", + "@aws-sdk/middleware-host-header": "3.686.0", + "@aws-sdk/middleware-logger": "3.686.0", + "@aws-sdk/middleware-recursion-detection": "3.686.0", + "@aws-sdk/middleware-user-agent": "3.687.0", + "@aws-sdk/region-config-resolver": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@aws-sdk/util-endpoints": "3.686.0", + "@aws-sdk/util-user-agent-browser": "3.686.0", + "@aws-sdk/util-user-agent-node": "3.687.0", + "@smithy/config-resolver": "^3.0.10", + "@smithy/core": "^2.5.1", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/hash-node": "^3.0.8", + "@smithy/invalid-dependency": "^3.0.8", + "@smithy/middleware-content-length": "^3.0.10", + "@smithy/middleware-endpoint": "^3.2.1", + "@smithy/middleware-retry": "^3.0.25", + "@smithy/middleware-serde": "^3.0.8", + "@smithy/middleware-stack": "^3.0.8", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/node-http-handler": "^3.2.5", + "@smithy/protocol-http": "^4.1.5", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", "@smithy/util-base64": "^3.0.0", "@smithy/util-body-length-browser": "^3.0.0", "@smithy/util-body-length-node": "^3.0.0", - "@smithy/util-defaults-mode-browser": "^3.0.23", - "@smithy/util-defaults-mode-node": "^3.0.23", - "@smithy/util-endpoints": "^2.1.3", - "@smithy/util-middleware": "^3.0.7", - "@smithy/util-retry": "^3.0.7", + "@smithy/util-defaults-mode-browser": "^3.0.25", + "@smithy/util-defaults-mode-node": "^3.0.25", + "@smithy/util-endpoints": "^2.1.4", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-retry": "^3.0.8", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" }, @@ -391,52 +392,52 @@ "node": ">=16.0.0" }, "peerDependencies": { - "@aws-sdk/client-sts": "^3.670.0" + "@aws-sdk/client-sts": "^3.687.0" } }, "node_modules/@aws-sdk/client-sts": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/client-sts/-/client-sts-3.670.0.tgz", - "integrity": "sha512-bExrNo8ZVWorS3cjMZKQnA2HWqDmAzcZoSN/cPVoPFNkHwdl1lzPxvcLzmhpIr48JHgKfybBjrbluDZfIYeEog==", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/client-sts/-/client-sts-3.687.0.tgz", + "integrity": "sha512-SQjDH8O4XCTtouuCVYggB0cCCrIaTzUZIkgJUpOsIEJBLlTbNOb/BZqUShAQw2o9vxr2rCeOGjAQOYPysW/Pmg==", "dependencies": { "@aws-crypto/sha256-browser": "5.2.0", "@aws-crypto/sha256-js": "5.2.0", - "@aws-sdk/client-sso-oidc": "3.670.0", - "@aws-sdk/core": "3.667.0", - "@aws-sdk/credential-provider-node": "3.670.0", - "@aws-sdk/middleware-host-header": "3.667.0", - "@aws-sdk/middleware-logger": "3.667.0", - "@aws-sdk/middleware-recursion-detection": "3.667.0", - "@aws-sdk/middleware-user-agent": "3.669.0", - "@aws-sdk/region-config-resolver": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@aws-sdk/util-endpoints": "3.667.0", - "@aws-sdk/util-user-agent-browser": "3.670.0", - "@aws-sdk/util-user-agent-node": "3.669.0", - "@smithy/config-resolver": "^3.0.9", - "@smithy/core": "^2.4.8", - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/hash-node": "^3.0.7", - "@smithy/invalid-dependency": "^3.0.7", - "@smithy/middleware-content-length": "^3.0.9", - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-retry": "^3.0.23", - "@smithy/middleware-serde": "^3.0.7", - "@smithy/middleware-stack": "^3.0.7", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/node-http-handler": "^3.2.4", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", + "@aws-sdk/client-sso-oidc": "3.687.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/credential-provider-node": "3.687.0", + "@aws-sdk/middleware-host-header": "3.686.0", + "@aws-sdk/middleware-logger": "3.686.0", + "@aws-sdk/middleware-recursion-detection": "3.686.0", + "@aws-sdk/middleware-user-agent": "3.687.0", + "@aws-sdk/region-config-resolver": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@aws-sdk/util-endpoints": "3.686.0", + "@aws-sdk/util-user-agent-browser": "3.686.0", + "@aws-sdk/util-user-agent-node": "3.687.0", + "@smithy/config-resolver": "^3.0.10", + "@smithy/core": "^2.5.1", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/hash-node": "^3.0.8", + "@smithy/invalid-dependency": "^3.0.8", + "@smithy/middleware-content-length": "^3.0.10", + "@smithy/middleware-endpoint": "^3.2.1", + "@smithy/middleware-retry": "^3.0.25", + "@smithy/middleware-serde": "^3.0.8", + "@smithy/middleware-stack": "^3.0.8", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/node-http-handler": "^3.2.5", + "@smithy/protocol-http": "^4.1.5", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", "@smithy/util-base64": "^3.0.0", "@smithy/util-body-length-browser": "^3.0.0", "@smithy/util-body-length-node": "^3.0.0", - "@smithy/util-defaults-mode-browser": "^3.0.23", - "@smithy/util-defaults-mode-node": "^3.0.23", - "@smithy/util-endpoints": "^2.1.3", - "@smithy/util-middleware": "^3.0.7", - "@smithy/util-retry": "^3.0.7", + "@smithy/util-defaults-mode-browser": "^3.0.25", + "@smithy/util-defaults-mode-node": "^3.0.25", + "@smithy/util-endpoints": "^2.1.4", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-retry": "^3.0.8", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" }, @@ -445,19 +446,19 @@ } }, "node_modules/@aws-sdk/core": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/core/-/core-3.667.0.tgz", - "integrity": "sha512-pMcDVI7Tmdsc8R3sDv0Omj/4iRParGY+uJtAfF669WnZfDfaBQaix2Mq7+Mu08vdjqO9K3gicFvjk9S1VLmOKA==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/core/-/core-3.686.0.tgz", + "integrity": "sha512-Xt3DV4DnAT3v2WURwzTxWQK34Ew+iiLzoUoguvLaZrVMFOqMMrwVjP+sizqIaHp1j7rGmFcN5I8saXnsDLuQLA==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/core": "^2.4.8", - "@smithy/node-config-provider": "^3.1.8", + "@aws-sdk/types": "3.686.0", + "@smithy/core": "^2.5.1", + "@smithy/node-config-provider": "^3.1.9", "@smithy/property-provider": "^3.1.7", - "@smithy/protocol-http": "^4.1.4", + "@smithy/protocol-http": "^4.1.5", "@smithy/signature-v4": "^4.2.0", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/util-middleware": "^3.0.7", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/util-middleware": "^3.0.8", "fast-xml-parser": "4.4.1", "tslib": "^2.6.2" }, @@ -466,14 +467,14 @@ } }, "node_modules/@aws-sdk/credential-provider-env": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-env/-/credential-provider-env-3.667.0.tgz", - "integrity": "sha512-zZbrkkaPc54WXm+QAnpuv0LPNfsts0HPPd+oCECGs7IQRaFsGj187cwvPg9RMWDFZqpm64MdBDoA8OQHsqzYCw==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-env/-/credential-provider-env-3.686.0.tgz", + "integrity": "sha512-osD7lPO8OREkgxPiTWmA1i6XEmOth1uW9HWWj/+A2YGCj1G/t2sHu931w4Qj9NWHYZtbTTXQYVRg+TErALV7nQ==", "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/types": "3.667.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/property-provider": "^3.1.7", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -481,19 +482,19 @@ } }, "node_modules/@aws-sdk/credential-provider-http": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-http/-/credential-provider-http-3.667.0.tgz", - "integrity": "sha512-sjtybFfERZWiqTY7fswBxKQLvUkiCucOWyqh3IaPo/4nE1PXRnaZCVG0+kRBPrYIxWqiVwytvZzMJy8sVZcG0A==", - "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/node-http-handler": "^3.2.4", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-http/-/credential-provider-http-3.686.0.tgz", + "integrity": "sha512-xyGAD/f3vR/wssUiZrNFWQWXZvI4zRm2wpHhoHA1cC2fbRMNFYtFn365yw6dU7l00ZLcdFB1H119AYIUZS7xbw==", + "dependencies": { + "@aws-sdk/core": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/node-http-handler": "^3.2.5", "@smithy/property-provider": "^3.1.7", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/util-stream": "^3.1.9", + "@smithy/protocol-http": "^4.1.5", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/util-stream": "^3.2.1", "tslib": "^2.6.2" }, "engines": { @@ -501,46 +502,46 @@ } }, "node_modules/@aws-sdk/credential-provider-ini": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-ini/-/credential-provider-ini-3.670.0.tgz", - "integrity": "sha512-TB1gacUj75leaTt2JsCTzygDSIk4ksv9uZoR7VenlgFPRktyOeT+fapwIVBeB2Qg7b9uxAY2K5XkKstDZyBEEw==", - "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/credential-provider-env": "3.667.0", - "@aws-sdk/credential-provider-http": "3.667.0", - "@aws-sdk/credential-provider-process": "3.667.0", - "@aws-sdk/credential-provider-sso": "3.670.0", - "@aws-sdk/credential-provider-web-identity": "3.667.0", - "@aws-sdk/types": "3.667.0", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-ini/-/credential-provider-ini-3.687.0.tgz", + "integrity": "sha512-6d5ZJeZch+ZosJccksN0PuXv7OSnYEmanGCnbhUqmUSz9uaVX6knZZfHCZJRgNcfSqg9QC0zsFA/51W5HCUqSQ==", + "dependencies": { + "@aws-sdk/core": "3.686.0", + "@aws-sdk/credential-provider-env": "3.686.0", + "@aws-sdk/credential-provider-http": "3.686.0", + "@aws-sdk/credential-provider-process": "3.686.0", + "@aws-sdk/credential-provider-sso": "3.687.0", + "@aws-sdk/credential-provider-web-identity": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/credential-provider-imds": "^3.2.4", "@smithy/property-provider": "^3.1.7", "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { "node": ">=16.0.0" }, "peerDependencies": { - "@aws-sdk/client-sts": "^3.670.0" + "@aws-sdk/client-sts": "^3.687.0" } }, "node_modules/@aws-sdk/credential-provider-node": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-node/-/credential-provider-node-3.670.0.tgz", - "integrity": "sha512-zwNrRYzubk4CaZ7zebeDhxsm8QtNWkbGKopZPOaZSnd5uqUGRcmx4ccVRngWUK68XDP44aEUWC8iU5Pc7btpHQ==", - "dependencies": { - "@aws-sdk/credential-provider-env": "3.667.0", - "@aws-sdk/credential-provider-http": "3.667.0", - "@aws-sdk/credential-provider-ini": "3.670.0", - "@aws-sdk/credential-provider-process": "3.667.0", - "@aws-sdk/credential-provider-sso": "3.670.0", - "@aws-sdk/credential-provider-web-identity": "3.667.0", - "@aws-sdk/types": "3.667.0", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-node/-/credential-provider-node-3.687.0.tgz", + "integrity": "sha512-Pqld8Nx11NYaBUrVk3bYiGGpLCxkz8iTONlpQWoVWFhSOzlO7zloNOaYbD2XgFjjqhjlKzE91drs/f41uGeCTA==", + "dependencies": { + "@aws-sdk/credential-provider-env": "3.686.0", + "@aws-sdk/credential-provider-http": "3.686.0", + "@aws-sdk/credential-provider-ini": "3.687.0", + "@aws-sdk/credential-provider-process": "3.686.0", + "@aws-sdk/credential-provider-sso": "3.687.0", + "@aws-sdk/credential-provider-web-identity": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/credential-provider-imds": "^3.2.4", "@smithy/property-provider": "^3.1.7", "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -548,15 +549,15 @@ } }, "node_modules/@aws-sdk/credential-provider-process": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-process/-/credential-provider-process-3.667.0.tgz", - "integrity": "sha512-HZHnvop32fKgsNHkdhVaul7UzQ25sEc0j9yqA4bjhtbk0ECl42kj3f1pJ+ZU/YD9ut8lMJs/vVqiOdNThVdeBw==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-process/-/credential-provider-process-3.686.0.tgz", + "integrity": "sha512-sXqaAgyzMOc+dm4CnzAR5Q6S9OWVHyZjLfW6IQkmGjqeQXmZl24c4E82+w64C+CTkJrFLzH1VNOYp1Hy5gE6Qw==", "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/types": "3.667.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/property-provider": "^3.1.7", "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -564,17 +565,17 @@ } }, "node_modules/@aws-sdk/credential-provider-sso": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-sso/-/credential-provider-sso-3.670.0.tgz", - "integrity": "sha512-5PkA8BOy4q57Vhe9AESoHKZ7vjRbElNPKjXA4qC01xY+DitClRFz4O3B9sMzFp0PHlz9nDVSXXKgq0yzF/nAag==", - "dependencies": { - "@aws-sdk/client-sso": "3.670.0", - "@aws-sdk/core": "3.667.0", - "@aws-sdk/token-providers": "3.667.0", - "@aws-sdk/types": "3.667.0", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-sso/-/credential-provider-sso-3.687.0.tgz", + "integrity": "sha512-N1YCoE7DovIRF2ReyRrA4PZzF0WNi4ObPwdQQkVxhvSm7PwjbWxrfq7rpYB+6YB1Uq3QPzgVwUFONE36rdpxUQ==", + "dependencies": { + "@aws-sdk/client-sso": "3.687.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/token-providers": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/property-provider": "^3.1.7", "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -582,31 +583,31 @@ } }, "node_modules/@aws-sdk/credential-provider-web-identity": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-web-identity/-/credential-provider-web-identity-3.667.0.tgz", - "integrity": "sha512-t8CFlZMD/1p/8Cli3rvRiTJpjr/8BO64gw166AHgFZYSN2h95L2l1tcW0jpsc3PprA32nLg1iQVKYt4WGM4ugw==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/credential-provider-web-identity/-/credential-provider-web-identity-3.686.0.tgz", + "integrity": "sha512-40UqCpPxyHCXDP7CGd9JIOZDgDZf+u1OyLaGBpjQJlz1HYuEsIWnnbTe29Yg3Ah/Zc3g4NBWcUdlGVotlnpnDg==", "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/types": "3.667.0", + "@aws-sdk/core": "3.686.0", + "@aws-sdk/types": "3.686.0", "@smithy/property-provider": "^3.1.7", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { "node": ">=16.0.0" }, "peerDependencies": { - "@aws-sdk/client-sts": "^3.667.0" + "@aws-sdk/client-sts": "^3.686.0" } }, "node_modules/@aws-sdk/middleware-host-header": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-host-header/-/middleware-host-header-3.667.0.tgz", - "integrity": "sha512-Z7fIAMQnPegs7JjAQvlOeWXwpMRfegh5eCoIP6VLJIeR6DLfYKbP35JBtt98R6DXslrN2RsbTogjbxPEDQfw1w==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-host-header/-/middleware-host-header-3.686.0.tgz", + "integrity": "sha512-+Yc6rO02z+yhFbHmRZGvEw1vmzf/ifS9a4aBjJGeVVU+ZxaUvnk+IUZWrj4YQopUQ+bSujmMUzJLXSkbDq7yuw==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", + "@aws-sdk/types": "3.686.0", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -614,12 +615,12 @@ } }, "node_modules/@aws-sdk/middleware-logger": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-logger/-/middleware-logger-3.667.0.tgz", - "integrity": "sha512-PtTRNpNm/5c746jRgZCNg4X9xEJIwggkGJrF0GP9AB1ANg4pc/sF2Fvn1NtqPe9wtQ2stunJprnm5WkCHN7QiA==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-logger/-/middleware-logger-3.686.0.tgz", + "integrity": "sha512-cX43ODfA2+SPdX7VRxu6gXk4t4bdVJ9pkktbfnkE5t27OlwNfvSGGhnHrQL8xTOFeyQ+3T+oowf26gf1OI+vIg==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/types": "^3.5.0", + "@aws-sdk/types": "3.686.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -627,13 +628,13 @@ } }, "node_modules/@aws-sdk/middleware-recursion-detection": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-recursion-detection/-/middleware-recursion-detection-3.667.0.tgz", - "integrity": "sha512-U5glWD3ehFohzpUpopLtmqAlDurGWo2wRGPNgi4SwhWU7UDt6LS7E/UvJjqC0CUrjlzOw+my2A+Ncf+fisMhxQ==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-recursion-detection/-/middleware-recursion-detection-3.686.0.tgz", + "integrity": "sha512-jF9hQ162xLgp9zZ/3w5RUNhmwVnXDBlABEUX8jCgzaFpaa742qR/KKtjjZQ6jMbQnP+8fOCSXFAVNMU+s6v81w==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", + "@aws-sdk/types": "3.686.0", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -641,16 +642,16 @@ } }, "node_modules/@aws-sdk/middleware-user-agent": { - "version": "3.669.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-user-agent/-/middleware-user-agent-3.669.0.tgz", - "integrity": "sha512-K8ScPi45zjJrj5Y2gRqVsvKKQCQbvQBfYGcBw9ZOx9TTavH80bOCBjWg/GFnvs4f37tqVc1wMN2oGvcTF6HveQ==", - "dependencies": { - "@aws-sdk/core": "3.667.0", - "@aws-sdk/types": "3.667.0", - "@aws-sdk/util-endpoints": "3.667.0", - "@smithy/core": "^2.4.8", - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/middleware-user-agent/-/middleware-user-agent-3.687.0.tgz", + "integrity": "sha512-nUgsKiEinyA50CaDXojAkOasAU3Apdg7Qox6IjNUC4ZjgOu7QWsCDB5N28AYMUt06cNYeYQdfMX1aEzG85a1Mg==", + "dependencies": { + "@aws-sdk/core": "3.686.0", + "@aws-sdk/types": "3.686.0", + "@aws-sdk/util-endpoints": "3.686.0", + "@smithy/core": "^2.5.1", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -658,15 +659,15 @@ } }, "node_modules/@aws-sdk/region-config-resolver": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/region-config-resolver/-/region-config-resolver-3.667.0.tgz", - "integrity": "sha512-iNr+JhhA902JMKHG9IwT9YdaEx6KGl6vjAL5BRNeOjfj4cZYMog6Lz/IlfOAltMtT0w88DAHDEFrBd2uO0l2eg==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/region-config-resolver/-/region-config-resolver-3.686.0.tgz", + "integrity": "sha512-6zXD3bSD8tcsMAVVwO1gO7rI1uy2fCD3czgawuPGPopeLiPpo6/3FoUWCQzk2nvEhj7p9Z4BbjwZGSlRkVrXTw==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/types": "^3.5.0", + "@aws-sdk/types": "3.686.0", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/types": "^3.6.0", "@smithy/util-config-provider": "^3.0.0", - "@smithy/util-middleware": "^3.0.7", + "@smithy/util-middleware": "^3.0.8", "tslib": "^2.6.2" }, "engines": { @@ -674,29 +675,29 @@ } }, "node_modules/@aws-sdk/token-providers": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/token-providers/-/token-providers-3.667.0.tgz", - "integrity": "sha512-ZecJlG8p6D4UTYlBHwOWX6nknVtw/OBJ3yPXTSajBjhUlj9lE2xvejI8gl4rqkyLXk7z3bki+KR4tATbMaM9yg==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/token-providers/-/token-providers-3.686.0.tgz", + "integrity": "sha512-9oL4kTCSePFmyKPskibeiOXV6qavPZ63/kXM9Wh9V6dTSvBtLeNnMxqGvENGKJcTdIgtoqyqA6ET9u0PJ5IRIg==", "dependencies": { - "@aws-sdk/types": "3.667.0", + "@aws-sdk/types": "3.686.0", "@smithy/property-provider": "^3.1.7", "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { "node": ">=16.0.0" }, "peerDependencies": { - "@aws-sdk/client-sso-oidc": "^3.667.0" + "@aws-sdk/client-sso-oidc": "^3.686.0" } }, "node_modules/@aws-sdk/types": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/types/-/types-3.667.0.tgz", - "integrity": "sha512-gYq0xCsqFfQaSL/yT1Gl1vIUjtsg7d7RhnUfsXaHt8xTxOKRTdH9GjbesBjXOzgOvB0W0vfssfreSNGFlOOMJg==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/types/-/types-3.686.0.tgz", + "integrity": "sha512-xFnrb3wxOoJcW2Xrh63ZgFo5buIu9DF7bOHnwoUxHdNpUXicUh0AHw85TjXxyxIAd0d1psY/DU7QHoNI3OswgQ==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -704,13 +705,13 @@ } }, "node_modules/@aws-sdk/util-endpoints": { - "version": "3.667.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/util-endpoints/-/util-endpoints-3.667.0.tgz", - "integrity": "sha512-X22SYDAuQJWnkF1/q17pkX3nGw5XMD9YEUbmt87vUnRq7iyJ3JOpl6UKOBeUBaL838wA5yzdbinmCITJ/VZ1QA==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/util-endpoints/-/util-endpoints-3.686.0.tgz", + "integrity": "sha512-7msZE2oYl+6QYeeRBjlDgxQUhq/XRky3cXE0FqLFs2muLS7XSuQEXkpOXB3R782ygAP6JX0kmBxPTLurRTikZg==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/types": "^3.5.0", - "@smithy/util-endpoints": "^2.1.3", + "@aws-sdk/types": "3.686.0", + "@smithy/types": "^3.6.0", + "@smithy/util-endpoints": "^2.1.4", "tslib": "^2.6.2" }, "engines": { @@ -718,9 +719,9 @@ } }, "node_modules/@aws-sdk/util-locate-window": { - "version": "3.568.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/util-locate-window/-/util-locate-window-3.568.0.tgz", - "integrity": "sha512-3nh4TINkXYr+H41QaPelCceEB2FXP3fxp93YZXB/kqJvX0U9j0N0Uk45gvsjmEPzG8XxkPEeLIfT2I1M7A6Lig==", + "version": "3.679.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/util-locate-window/-/util-locate-window-3.679.0.tgz", + "integrity": "sha512-zKTd48/ZWrCplkXpYDABI74rQlbR0DNHs8nH95htfSLj9/mWRSwaGptoxwcihaq/77vi/fl2X3y0a1Bo8bt7RA==", "dependencies": { "tslib": "^2.6.2" }, @@ -729,25 +730,25 @@ } }, "node_modules/@aws-sdk/util-user-agent-browser": { - "version": "3.670.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-browser/-/util-user-agent-browser-3.670.0.tgz", - "integrity": "sha512-iRynWWazqEcCKwGMcQcywKTDLdLvqts1Yx474U64I9OKQXXwhOwhXbF5CAPSRta86lkVNAVYJa/0Bsv45pNn1A==", + "version": "3.686.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-browser/-/util-user-agent-browser-3.686.0.tgz", + "integrity": "sha512-YiQXeGYZegF1b7B2GOR61orhgv79qmI0z7+Agm3NXLO6hGfVV3kFUJbXnjtH1BgWo5hbZYW7HQ2omGb3dnb6Lg==", "dependencies": { - "@aws-sdk/types": "3.667.0", - "@smithy/types": "^3.5.0", + "@aws-sdk/types": "3.686.0", + "@smithy/types": "^3.6.0", "bowser": "^2.11.0", "tslib": "^2.6.2" } }, "node_modules/@aws-sdk/util-user-agent-node": { - "version": "3.669.0", - "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-node/-/util-user-agent-node-3.669.0.tgz", - "integrity": "sha512-9jxCYrgggy2xd44ZASqI7AMiRVaSiFp+06Kg8BQSU0ijKpBJlwcsqIS8pDT/n6LxuOw2eV5ipvM2C0r1iKzrGA==", - "dependencies": { - "@aws-sdk/middleware-user-agent": "3.669.0", - "@aws-sdk/types": "3.667.0", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/types": "^3.5.0", + "version": "3.687.0", + "resolved": "https://registry.npmjs.org/@aws-sdk/util-user-agent-node/-/util-user-agent-node-3.687.0.tgz", + "integrity": "sha512-idkP6ojSTZ4ek1pJ8wIN7r9U3KR5dn0IkJn3KQBXQ58LWjkRqLtft2vxzdsktWwhPKjjmIKl1S0kbvqLawf8XQ==", + "dependencies": { + "@aws-sdk/middleware-user-agent": "3.687.0", + "@aws-sdk/types": "3.686.0", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -1810,11 +1811,10 @@ } }, "node_modules/@eslint-community/regexpp": { - "version": "4.11.0", - "resolved": "https://registry.npmjs.org/@eslint-community/regexpp/-/regexpp-4.11.0.tgz", - "integrity": "sha512-G/M/tIiMrTAxEWRfLfQJMmGNX28IxBg4PBz8XqQhqUHLFI6TL2htpIB1iQCj144V5ee/JaKyT9/WZ0MGZWfA7A==", + "version": "4.12.1", + "resolved": "https://registry.npmjs.org/@eslint-community/regexpp/-/regexpp-4.12.1.tgz", + "integrity": "sha512-CCZCDJuduB9OUkFkY2IgppNZMi2lBQgD2qzwXkEia16cge2pijY/aXi96CJMquDMn3nJdlPV1A5KrJEXwfLNzQ==", "dev": true, - "license": "MIT", "engines": { "node": "^12.0.0 || ^14.0.0 || >=16.0.0" } @@ -1859,9 +1859,9 @@ } }, "node_modules/@eslint/core": { - "version": "0.6.0", - "resolved": "https://registry.npmjs.org/@eslint/core/-/core-0.6.0.tgz", - "integrity": "sha512-8I2Q8ykA4J0x0o7cg67FPVnehcqWTBehu/lmY+bolPFHGjh49YzGBMXTvpqVgEbBdvNCSxj6iFgiIyHzf03lzg==", + "version": "0.7.0", + "resolved": "https://registry.npmjs.org/@eslint/core/-/core-0.7.0.tgz", + "integrity": "sha512-xp5Jirz5DyPYlPiKat8jaq0EmYvDXKKpzTbxXMpT9eqlRJkRKIz9AGMdlvYjih+im+QlhWrpvVjl8IPC/lHlUw==", "dev": true, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -1936,9 +1936,9 @@ } }, "node_modules/@eslint/js": { - "version": "9.12.0", - "resolved": "https://registry.npmjs.org/@eslint/js/-/js-9.12.0.tgz", - "integrity": "sha512-eohesHH8WFRUprDNyEREgqP6beG6htMeUYeCpkEgBCieCMme5r9zFWjzAJp//9S+Kub4rqE+jXe9Cp1a7IYIIA==", + "version": "9.14.0", + "resolved": "https://registry.npmjs.org/@eslint/js/-/js-9.14.0.tgz", + "integrity": "sha512-pFoEtFWCPyDOl+C6Ift+wC7Ro89otjigCf5vcuWqWgqNSQbRrpjSvdeE6ofLz4dHmyxD5f7gIdGT4+p36L6Twg==", "dev": true, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -1967,27 +1967,40 @@ } }, "node_modules/@humanfs/core": { - "version": "0.19.0", - "resolved": "https://registry.npmjs.org/@humanfs/core/-/core-0.19.0.tgz", - "integrity": "sha512-2cbWIHbZVEweE853g8jymffCA+NCMiuqeECeBBLm8dg2oFdjuGJhgN4UAbI+6v0CKbbhvtXA4qV8YR5Ji86nmw==", + "version": "0.19.1", + "resolved": "https://registry.npmjs.org/@humanfs/core/-/core-0.19.1.tgz", + "integrity": "sha512-5DyQ4+1JEUzejeK1JGICcideyfUbGixgS9jNgex5nqkW+cY7WZhxBigmieN5Qnw9ZosSNVC9KQKyb+GUaGyKUA==", "dev": true, "engines": { "node": ">=18.18.0" } }, "node_modules/@humanfs/node": { - "version": "0.16.5", - "resolved": "https://registry.npmjs.org/@humanfs/node/-/node-0.16.5.tgz", - "integrity": "sha512-KSPA4umqSG4LHYRodq31VDwKAvaTF4xmVlzM8Aeh4PlU1JQ3IG0wiA8C25d3RQ9nJyM3mBHyI53K06VVL/oFFg==", + "version": "0.16.6", + "resolved": "https://registry.npmjs.org/@humanfs/node/-/node-0.16.6.tgz", + "integrity": "sha512-YuI2ZHQL78Q5HbhDiBA1X4LmYdXCKCMQIfw0pw7piHJwyREFebJUvrQN4cMssyES6x+vfUbx1CIpaQUKYdQZOw==", "dev": true, "dependencies": { - "@humanfs/core": "^0.19.0", + "@humanfs/core": "^0.19.1", "@humanwhocodes/retry": "^0.3.0" }, "engines": { "node": ">=18.18.0" } }, + "node_modules/@humanfs/node/node_modules/@humanwhocodes/retry": { + "version": "0.3.1", + "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.3.1.tgz", + "integrity": "sha512-JBxkERygn7Bv/GbN5Rv8Ul6LVknS+5Bp6RgDC/O8gEBU/yeH5Ui5C/OlWrTb6qct7LjjfT6Re2NxB0ln0yYybA==", + "dev": true, + "engines": { + "node": ">=18.18" + }, + "funding": { + "type": "github", + "url": "https://github.com/sponsors/nzakas" + } + }, "node_modules/@humanwhocodes/module-importer": { "version": "1.0.1", "resolved": "https://registry.npmjs.org/@humanwhocodes/module-importer/-/module-importer-1.0.1.tgz", @@ -2003,9 +2016,9 @@ } }, "node_modules/@humanwhocodes/retry": { - "version": "0.3.1", - "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.3.1.tgz", - "integrity": "sha512-JBxkERygn7Bv/GbN5Rv8Ul6LVknS+5Bp6RgDC/O8gEBU/yeH5Ui5C/OlWrTb6qct7LjjfT6Re2NxB0ln0yYybA==", + "version": "0.4.0", + "resolved": "https://registry.npmjs.org/@humanwhocodes/retry/-/retry-0.4.0.tgz", + "integrity": "sha512-xnRgu9DxZbkWak/te3fcytNyp8MTbuiZIaueg2rgEvBuN55n04nwLYLU9TX/VVlusc9L2ZNXi99nUFNkHXtr5g==", "dev": true, "engines": { "node": ">=18.18" @@ -2493,22 +2506,22 @@ } }, "node_modules/@nhs/fhir-middy-error-handler": { - "version": "2.1.8", - "resolved": "https://registry.npmjs.org/@nhs/fhir-middy-error-handler/-/fhir-middy-error-handler-2.1.8.tgz", - "integrity": "sha512-YyU4A5B7uvZL253F21NBnDtWSN8NFThiCIRrEc4pW2e6BqrhYc0Z7cIcztIi2ipA0kNGzm0fP/5nRk8nEjp6RQ==", + "version": "2.1.10", + "resolved": "https://registry.npmjs.org/@nhs/fhir-middy-error-handler/-/fhir-middy-error-handler-2.1.10.tgz", + "integrity": "sha512-S2El/ZRB1AaJAHfqvpftHzfLYm1zMTgSimBvXMTAtaMpUct9JJ4vhS02jCZwKUtlGLOnfJgjCU89TXhcDYBc/Q==", "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", - "@middy/core": "^5.5.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@middy/core": "^5.5.1", "conventional-changelog-eslint": "^6.0.0" } }, "node_modules/@NHSDigital/eps-spine-client": { - "version": "2.1.5", - "resolved": "https://npm.pkg.github.com/download/@NHSDigital/eps-spine-client/2.1.5/ceb7cea050a855c036d9c113084065301867497d", - "integrity": "sha512-sZgQptT9JE2ynsSYZIYiAiKd14y5/4A4u2Jd9MjeGi7vqST6GDncZLUSqC5iJCJULTgRh3Rjjmv+BXuUPAFO2g==", + "version": "2.1.8", + "resolved": "https://npm.pkg.github.com/download/@NHSDigital/eps-spine-client/2.1.8/664c4b9d4c4c1c3c58b3d826590884a25179ff3e", + "integrity": "sha512-DC1vW0UTUdiDkw55pmNPqdvUMOd7IpeEe0bURntsrQHv50E1/qOGG0VgvKE0dKBrrkviwlPci5H4W3o1N/8l0w==", "license": "MIT", "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@types/mustache": "^4.2.5", "aws-lambda": "^1.0.7", "axios": "^1.7.7", @@ -3219,11 +3232,11 @@ } }, "node_modules/@smithy/abort-controller": { - "version": "3.1.5", - "resolved": "https://registry.npmjs.org/@smithy/abort-controller/-/abort-controller-3.1.5.tgz", - "integrity": "sha512-DhNPnqTqPoG8aZ5dWkFOgsuY+i0GQ3CI6hMmvCoduNsnU9gUZWZBwGfDQsTTB7NvFPkom1df7jMIJWU90kuXXg==", + "version": "3.1.6", + "resolved": "https://registry.npmjs.org/@smithy/abort-controller/-/abort-controller-3.1.6.tgz", + "integrity": "sha512-0XuhuHQlEqbNQZp7QxxrFTdVWdwxch4vjxYgfInF91hZFkPxf9QDrdQka0KfxFMPqLNzSw0b95uGTrLliQUavQ==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3231,14 +3244,14 @@ } }, "node_modules/@smithy/config-resolver": { - "version": "3.0.9", - "resolved": "https://registry.npmjs.org/@smithy/config-resolver/-/config-resolver-3.0.9.tgz", - "integrity": "sha512-5d9oBf40qC7n2xUoHmntKLdqsyTMMo/r49+eqSIjJ73eDfEtljAxEhzIQ3bkgXJtR3xiv7YzMT/3FF3ORkjWdg==", + "version": "3.0.10", + "resolved": "https://registry.npmjs.org/@smithy/config-resolver/-/config-resolver-3.0.10.tgz", + "integrity": "sha512-Uh0Sz9gdUuz538nvkPiyv1DZRX9+D15EKDtnQP5rYVAzM/dnYk3P8cg73jcxyOitPgT3mE3OVj7ky7sibzHWkw==", "dependencies": { - "@smithy/node-config-provider": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/types": "^3.6.0", "@smithy/util-config-provider": "^3.0.0", - "@smithy/util-middleware": "^3.0.7", + "@smithy/util-middleware": "^3.0.8", "tslib": "^2.6.2" }, "engines": { @@ -3246,18 +3259,16 @@ } }, "node_modules/@smithy/core": { - "version": "2.4.8", - "resolved": "https://registry.npmjs.org/@smithy/core/-/core-2.4.8.tgz", - "integrity": "sha512-x4qWk7p/a4dcf7Vxb2MODIf4OIcqNbK182WxRvZ/3oKPrf/6Fdic5sSElhO1UtXpWKBazWfqg0ZEK9xN1DsuHA==", - "dependencies": { - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-retry": "^3.0.23", - "@smithy/middleware-serde": "^3.0.7", - "@smithy/protocol-http": "^4.1.4", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", + "version": "2.5.1", + "resolved": "https://registry.npmjs.org/@smithy/core/-/core-2.5.1.tgz", + "integrity": "sha512-DujtuDA7BGEKExJ05W5OdxCoyekcKT3Rhg1ZGeiUWaz2BJIWXjZmsG/DIP4W48GHno7AQwRsaCb8NcBgH3QZpg==", + "dependencies": { + "@smithy/middleware-serde": "^3.0.8", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "@smithy/util-body-length-browser": "^3.0.0", - "@smithy/util-middleware": "^3.0.7", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-stream": "^3.2.1", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" }, @@ -3266,14 +3277,14 @@ } }, "node_modules/@smithy/credential-provider-imds": { - "version": "3.2.4", - "resolved": "https://registry.npmjs.org/@smithy/credential-provider-imds/-/credential-provider-imds-3.2.4.tgz", - "integrity": "sha512-S9bb0EIokfYEuar4kEbLta+ivlKCWOCFsLZuilkNy9i0uEUEHSi47IFLPaxqqCl+0ftKmcOTHayY5nQhAuq7+w==", - "dependencies": { - "@smithy/node-config-provider": "^3.1.8", - "@smithy/property-provider": "^3.1.7", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", + "version": "3.2.5", + "resolved": "https://registry.npmjs.org/@smithy/credential-provider-imds/-/credential-provider-imds-3.2.5.tgz", + "integrity": "sha512-4FTQGAsuwqTzVMmiRVTn0RR9GrbRfkP0wfu/tXWVHd2LgNpTY0uglQpIScXK4NaEyXbB3JmZt8gfVqO50lP8wg==", + "dependencies": { + "@smithy/node-config-provider": "^3.1.9", + "@smithy/property-provider": "^3.1.8", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", "tslib": "^2.6.2" }, "engines": { @@ -3281,23 +3292,23 @@ } }, "node_modules/@smithy/fetch-http-handler": { - "version": "3.2.9", - "resolved": "https://registry.npmjs.org/@smithy/fetch-http-handler/-/fetch-http-handler-3.2.9.tgz", - "integrity": "sha512-hYNVQOqhFQ6vOpenifFME546f0GfJn2OiQ3M0FDmuUu8V/Uiwy2wej7ZXxFBNqdx0R5DZAqWM1l6VRhGz8oE6A==", + "version": "4.0.0", + "resolved": "https://registry.npmjs.org/@smithy/fetch-http-handler/-/fetch-http-handler-4.0.0.tgz", + "integrity": "sha512-MLb1f5tbBO2X6K4lMEKJvxeLooyg7guq48C2zKr4qM7F2Gpkz4dc+hdSgu77pCJ76jVqFBjZczHYAs6dp15N+g==", "dependencies": { - "@smithy/protocol-http": "^4.1.4", - "@smithy/querystring-builder": "^3.0.7", - "@smithy/types": "^3.5.0", + "@smithy/protocol-http": "^4.1.5", + "@smithy/querystring-builder": "^3.0.8", + "@smithy/types": "^3.6.0", "@smithy/util-base64": "^3.0.0", "tslib": "^2.6.2" } }, "node_modules/@smithy/hash-node": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/hash-node/-/hash-node-3.0.7.tgz", - "integrity": "sha512-SAGHN+QkrwcHFjfWzs/czX94ZEjPJ0CrWJS3M43WswDXVEuP4AVy9gJ3+AF6JQHZD13bojmuf/Ap/ItDeZ+Qfw==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/hash-node/-/hash-node-3.0.8.tgz", + "integrity": "sha512-tlNQYbfpWXHimHqrvgo14DrMAgUBua/cNoz9fMYcDmYej7MAmUcjav/QKQbFc3NrcPxeJ7QClER4tWZmfwoPng==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "@smithy/util-buffer-from": "^3.0.0", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" @@ -3307,11 +3318,11 @@ } }, "node_modules/@smithy/invalid-dependency": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/invalid-dependency/-/invalid-dependency-3.0.7.tgz", - "integrity": "sha512-Bq00GsAhHeYSuZX8Kpu4sbI9agH2BNYnqUmmbTGWOhki9NVsWn2jFr896vvoTMH8KAjNX/ErC/8t5QHuEXG+IA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/invalid-dependency/-/invalid-dependency-3.0.8.tgz", + "integrity": "sha512-7Qynk6NWtTQhnGTTZwks++nJhQ1O54Mzi7fz4PqZOiYXb4Z1Flpb2yRvdALoggTS8xjtohWUM+RygOtB30YL3Q==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" } }, @@ -3327,12 +3338,12 @@ } }, "node_modules/@smithy/middleware-content-length": { - "version": "3.0.9", - "resolved": "https://registry.npmjs.org/@smithy/middleware-content-length/-/middleware-content-length-3.0.9.tgz", - "integrity": "sha512-t97PidoGElF9hTtLCrof32wfWMqC5g2SEJNxaVH3NjlatuNGsdxXRYO/t+RPnxA15RpYiS0f+zG7FuE2DeGgjA==", + "version": "3.0.10", + "resolved": "https://registry.npmjs.org/@smithy/middleware-content-length/-/middleware-content-length-3.0.10.tgz", + "integrity": "sha512-T4dIdCs1d/+/qMpwhJ1DzOhxCZjZHbHazEPJWdB4GDi2HjIZllVzeBEcdJUN0fomV8DURsgOyrbEUzg3vzTaOg==", "dependencies": { - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3340,16 +3351,17 @@ } }, "node_modules/@smithy/middleware-endpoint": { - "version": "3.1.4", - "resolved": "https://registry.npmjs.org/@smithy/middleware-endpoint/-/middleware-endpoint-3.1.4.tgz", - "integrity": "sha512-/ChcVHekAyzUbyPRI8CzPPLj6y8QRAfJngWcLMgsWxKVzw/RzBV69mSOzJYDD3pRwushA1+5tHtPF8fjmzBnrQ==", - "dependencies": { - "@smithy/middleware-serde": "^3.0.7", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", - "@smithy/url-parser": "^3.0.7", - "@smithy/util-middleware": "^3.0.7", + "version": "3.2.1", + "resolved": "https://registry.npmjs.org/@smithy/middleware-endpoint/-/middleware-endpoint-3.2.1.tgz", + "integrity": "sha512-wWO3xYmFm6WRW8VsEJ5oU6h7aosFXfszlz3Dj176pTij6o21oZnzkCLzShfmRaaCHDkBXWBdO0c4sQAvLFP6zA==", + "dependencies": { + "@smithy/core": "^2.5.1", + "@smithy/middleware-serde": "^3.0.8", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/shared-ini-file-loader": "^3.1.9", + "@smithy/types": "^3.6.0", + "@smithy/url-parser": "^3.0.8", + "@smithy/util-middleware": "^3.0.8", "tslib": "^2.6.2" }, "engines": { @@ -3357,17 +3369,17 @@ } }, "node_modules/@smithy/middleware-retry": { - "version": "3.0.23", - "resolved": "https://registry.npmjs.org/@smithy/middleware-retry/-/middleware-retry-3.0.23.tgz", - "integrity": "sha512-x9PbGXxkcXIpm6L26qRSCC+eaYcHwybRmqU8LO/WM2RRlW0g8lz6FIiKbKgGvHuoK3dLZRiQVSQJveiCzwnA5A==", - "dependencies": { - "@smithy/node-config-provider": "^3.1.8", - "@smithy/protocol-http": "^4.1.4", - "@smithy/service-error-classification": "^3.0.7", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", - "@smithy/util-middleware": "^3.0.7", - "@smithy/util-retry": "^3.0.7", + "version": "3.0.25", + "resolved": "https://registry.npmjs.org/@smithy/middleware-retry/-/middleware-retry-3.0.25.tgz", + "integrity": "sha512-m1F70cPaMBML4HiTgCw5I+jFNtjgz5z5UdGnUbG37vw6kh4UvizFYjqJGHvicfgKMkDL6mXwyPp5mhZg02g5sg==", + "dependencies": { + "@smithy/node-config-provider": "^3.1.9", + "@smithy/protocol-http": "^4.1.5", + "@smithy/service-error-classification": "^3.0.8", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", + "@smithy/util-middleware": "^3.0.8", + "@smithy/util-retry": "^3.0.8", "tslib": "^2.6.2", "uuid": "^9.0.1" }, @@ -3388,11 +3400,11 @@ } }, "node_modules/@smithy/middleware-serde": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/middleware-serde/-/middleware-serde-3.0.7.tgz", - "integrity": "sha512-VytaagsQqtH2OugzVTq4qvjkLNbWehHfGcGr0JLJmlDRrNCeZoWkWsSOw1nhS/4hyUUWF/TLGGml4X/OnEep5g==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/middleware-serde/-/middleware-serde-3.0.8.tgz", + "integrity": "sha512-Xg2jK9Wc/1g/MBMP/EUn2DLspN8LNt+GMe7cgF+Ty3vl+Zvu+VeZU5nmhveU+H8pxyTsjrAkci8NqY6OuvZnjA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3400,11 +3412,11 @@ } }, "node_modules/@smithy/middleware-stack": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/middleware-stack/-/middleware-stack-3.0.7.tgz", - "integrity": "sha512-EyTbMCdqS1DoeQsO4gI7z2Gzq1MoRFAeS8GkFYIwbedB7Lp5zlLHJdg+56tllIIG5Hnf9ZWX48YKSHlsKvugGA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/middleware-stack/-/middleware-stack-3.0.8.tgz", + "integrity": "sha512-d7ZuwvYgp1+3682Nx0MD3D/HtkmZd49N3JUndYWQXfRZrYEnCWYc8BHcNmVsPAp9gKvlurdg/mubE6b/rPS9MA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3412,13 +3424,13 @@ } }, "node_modules/@smithy/node-config-provider": { - "version": "3.1.8", - "resolved": "https://registry.npmjs.org/@smithy/node-config-provider/-/node-config-provider-3.1.8.tgz", - "integrity": "sha512-E0rU0DglpeJn5ge64mk8wTGEXcQwmpUTY5Zr7IzTpDLmHKiIamINERNZYrPQjg58Ck236sEKSwRSHA4CwshU6Q==", + "version": "3.1.9", + "resolved": "https://registry.npmjs.org/@smithy/node-config-provider/-/node-config-provider-3.1.9.tgz", + "integrity": "sha512-qRHoah49QJ71eemjuS/WhUXB+mpNtwHRWQr77J/m40ewBVVwvo52kYAmb7iuaECgGTTcYxHS4Wmewfwy++ueew==", "dependencies": { - "@smithy/property-provider": "^3.1.7", - "@smithy/shared-ini-file-loader": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/property-provider": "^3.1.8", + "@smithy/shared-ini-file-loader": "^3.1.9", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3426,14 +3438,14 @@ } }, "node_modules/@smithy/node-http-handler": { - "version": "3.2.4", - "resolved": "https://registry.npmjs.org/@smithy/node-http-handler/-/node-http-handler-3.2.4.tgz", - "integrity": "sha512-49reY3+JgLMFNm7uTAKBWiKCA6XSvkNp9FqhVmusm2jpVnHORYFeFZ704LShtqWfjZW/nhX+7Iexyb6zQfXYIQ==", - "dependencies": { - "@smithy/abort-controller": "^3.1.5", - "@smithy/protocol-http": "^4.1.4", - "@smithy/querystring-builder": "^3.0.7", - "@smithy/types": "^3.5.0", + "version": "3.2.5", + "resolved": "https://registry.npmjs.org/@smithy/node-http-handler/-/node-http-handler-3.2.5.tgz", + "integrity": "sha512-PkOwPNeKdvX/jCpn0A8n9/TyoxjGZB8WVoJmm9YzsnAgggTj4CrjpRHlTQw7dlLZ320n1mY1y+nTRUDViKi/3w==", + "dependencies": { + "@smithy/abort-controller": "^3.1.6", + "@smithy/protocol-http": "^4.1.5", + "@smithy/querystring-builder": "^3.0.8", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3441,11 +3453,11 @@ } }, "node_modules/@smithy/property-provider": { - "version": "3.1.7", - "resolved": "https://registry.npmjs.org/@smithy/property-provider/-/property-provider-3.1.7.tgz", - "integrity": "sha512-QfzLi1GPMisY7bAM5hOUqBdGYnY5S2JAlr201pghksrQv139f8iiiMalXtjczIP5f6owxFn3MINLNUNvUkgtPw==", + "version": "3.1.8", + "resolved": "https://registry.npmjs.org/@smithy/property-provider/-/property-provider-3.1.8.tgz", + "integrity": "sha512-ukNUyo6rHmusG64lmkjFeXemwYuKge1BJ8CtpVKmrxQxc6rhUX0vebcptFA9MmrGsnLhwnnqeH83VTU9hwOpjA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3453,11 +3465,11 @@ } }, "node_modules/@smithy/protocol-http": { - "version": "4.1.4", - "resolved": "https://registry.npmjs.org/@smithy/protocol-http/-/protocol-http-4.1.4.tgz", - "integrity": "sha512-MlWK8eqj0JlpZBnWmjQLqmFp71Ug00P+m72/1xQB3YByXD4zZ+y9N4hYrR0EDmrUCZIkyATWHOXFgtavwGDTzQ==", + "version": "4.1.5", + "resolved": "https://registry.npmjs.org/@smithy/protocol-http/-/protocol-http-4.1.5.tgz", + "integrity": "sha512-hsjtwpIemmCkm3ZV5fd/T0bPIugW1gJXwZ/hpuVubt2hEUApIoUTrf6qIdh9MAWlw0vjMrA1ztJLAwtNaZogvg==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3465,11 +3477,11 @@ } }, "node_modules/@smithy/querystring-builder": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/querystring-builder/-/querystring-builder-3.0.7.tgz", - "integrity": "sha512-65RXGZZ20rzqqxTsChdqSpbhA6tdt5IFNgG6o7e1lnPVLCe6TNWQq4rTl4N87hTDD8mV4IxJJnvyE7brbnRkQw==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/querystring-builder/-/querystring-builder-3.0.8.tgz", + "integrity": "sha512-btYxGVqFUARbUrN6VhL9c3dnSviIwBYD9Rz1jHuN1hgh28Fpv2xjU1HeCeDJX68xctz7r4l1PBnFhGg1WBBPuA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "@smithy/util-uri-escape": "^3.0.0", "tslib": "^2.6.2" }, @@ -3478,11 +3490,11 @@ } }, "node_modules/@smithy/querystring-parser": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/querystring-parser/-/querystring-parser-3.0.7.tgz", - "integrity": "sha512-Fouw4KJVWqqUVIu1gZW8BH2HakwLz6dvdrAhXeXfeymOBrZw+hcqaWs+cS1AZPVp4nlbeIujYrKA921ZW2WMPA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/querystring-parser/-/querystring-parser-3.0.8.tgz", + "integrity": "sha512-BtEk3FG7Ks64GAbt+JnKqwuobJNX8VmFLBsKIwWr1D60T426fGrV2L3YS5siOcUhhp6/Y6yhBw1PSPxA5p7qGg==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3490,22 +3502,22 @@ } }, "node_modules/@smithy/service-error-classification": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/service-error-classification/-/service-error-classification-3.0.7.tgz", - "integrity": "sha512-91PRkTfiBf9hxkIchhRKJfl1rsplRDyBnmyFca3y0Z3x/q0JJN480S83LBd8R6sBCkm2bBbqw2FHp0Mbh+ecSA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/service-error-classification/-/service-error-classification-3.0.8.tgz", + "integrity": "sha512-uEC/kCCFto83bz5ZzapcrgGqHOh/0r69sZ2ZuHlgoD5kYgXJEThCoTuw/y1Ub3cE7aaKdznb+jD9xRPIfIwD7g==", "dependencies": { - "@smithy/types": "^3.5.0" + "@smithy/types": "^3.6.0" }, "engines": { "node": ">=16.0.0" } }, "node_modules/@smithy/shared-ini-file-loader": { - "version": "3.1.8", - "resolved": "https://registry.npmjs.org/@smithy/shared-ini-file-loader/-/shared-ini-file-loader-3.1.8.tgz", - "integrity": "sha512-0NHdQiSkeGl0ICQKcJQ2lCOKH23Nb0EaAa7RDRId6ZqwXkw4LJyIyZ0t3iusD4bnKYDPLGy2/5e2rfUhrt0Acw==", + "version": "3.1.9", + "resolved": "https://registry.npmjs.org/@smithy/shared-ini-file-loader/-/shared-ini-file-loader-3.1.9.tgz", + "integrity": "sha512-/+OsJRNtoRbtsX0UpSgWVxFZLsJHo/4sTr+kBg/J78sr7iC+tHeOvOJrS5hCpVQ6sWBbhWLp1UNiuMyZhE6pmA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3513,15 +3525,15 @@ } }, "node_modules/@smithy/signature-v4": { - "version": "4.2.0", - "resolved": "https://registry.npmjs.org/@smithy/signature-v4/-/signature-v4-4.2.0.tgz", - "integrity": "sha512-LafbclHNKnsorMgUkKm7Tk7oJ7xizsZ1VwqhGKqoCIrXh4fqDDp73fK99HOEEgcsQbtemmeY/BPv0vTVYYUNEQ==", + "version": "4.2.1", + "resolved": "https://registry.npmjs.org/@smithy/signature-v4/-/signature-v4-4.2.1.tgz", + "integrity": "sha512-NsV1jF4EvmO5wqmaSzlnTVetemBS3FZHdyc5CExbDljcyJCEEkJr8ANu2JvtNbVg/9MvKAWV44kTrGS+Pi4INg==", "dependencies": { "@smithy/is-array-buffer": "^3.0.0", - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", "@smithy/util-hex-encoding": "^3.0.0", - "@smithy/util-middleware": "^3.0.7", + "@smithy/util-middleware": "^3.0.8", "@smithy/util-uri-escape": "^3.0.0", "@smithy/util-utf8": "^3.0.0", "tslib": "^2.6.2" @@ -3531,15 +3543,16 @@ } }, "node_modules/@smithy/smithy-client": { - "version": "3.4.0", - "resolved": "https://registry.npmjs.org/@smithy/smithy-client/-/smithy-client-3.4.0.tgz", - "integrity": "sha512-nOfJ1nVQsxiP6srKt43r2My0Gp5PLWCW2ASqUioxIiGmu6d32v4Nekidiv5qOmmtzIrmaD+ADX5SKHUuhReeBQ==", - "dependencies": { - "@smithy/middleware-endpoint": "^3.1.4", - "@smithy/middleware-stack": "^3.0.7", - "@smithy/protocol-http": "^4.1.4", - "@smithy/types": "^3.5.0", - "@smithy/util-stream": "^3.1.9", + "version": "3.4.2", + "resolved": "https://registry.npmjs.org/@smithy/smithy-client/-/smithy-client-3.4.2.tgz", + "integrity": "sha512-dxw1BDxJiY9/zI3cBqfVrInij6ShjpV4fmGHesGZZUiP9OSE/EVfdwdRz0PgvkEvrZHpsj2htRaHJfftE8giBA==", + "dependencies": { + "@smithy/core": "^2.5.1", + "@smithy/middleware-endpoint": "^3.2.1", + "@smithy/middleware-stack": "^3.0.8", + "@smithy/protocol-http": "^4.1.5", + "@smithy/types": "^3.6.0", + "@smithy/util-stream": "^3.2.1", "tslib": "^2.6.2" }, "engines": { @@ -3547,9 +3560,9 @@ } }, "node_modules/@smithy/types": { - "version": "3.5.0", - "resolved": "https://registry.npmjs.org/@smithy/types/-/types-3.5.0.tgz", - "integrity": "sha512-QN0twHNfe8mNJdH9unwsCK13GURU7oEAZqkBI+rsvpv1jrmserO+WnLE7jidR9W/1dxwZ0u/CB01mV2Gms/K2Q==", + "version": "3.6.0", + "resolved": "https://registry.npmjs.org/@smithy/types/-/types-3.6.0.tgz", + "integrity": "sha512-8VXK/KzOHefoC65yRgCn5vG1cysPJjHnOVt9d0ybFQSmJgQj152vMn4EkYhGuaOmnnZvCPav/KnYyE6/KsNZ2w==", "dependencies": { "tslib": "^2.6.2" }, @@ -3558,12 +3571,12 @@ } }, "node_modules/@smithy/url-parser": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/url-parser/-/url-parser-3.0.7.tgz", - "integrity": "sha512-70UbSSR8J97c1rHZOWhl+VKiZDqHWxs/iW8ZHrHp5fCCPLSBE7GcUlUvKSle3Ca+J9LLbYCj/A79BxztBvAfpA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/url-parser/-/url-parser-3.0.8.tgz", + "integrity": "sha512-4FdOhwpTW7jtSFWm7SpfLGKIBC9ZaTKG5nBF0wK24aoQKQyDIKUw3+KFWCQ9maMzrgTJIuOvOnsV2lLGW5XjTg==", "dependencies": { - "@smithy/querystring-parser": "^3.0.7", - "@smithy/types": "^3.5.0", + "@smithy/querystring-parser": "^3.0.8", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" } }, @@ -3623,13 +3636,13 @@ } }, "node_modules/@smithy/util-defaults-mode-browser": { - "version": "3.0.23", - "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-browser/-/util-defaults-mode-browser-3.0.23.tgz", - "integrity": "sha512-Y07qslyRtXDP/C5aWKqxTPBl4YxplEELG3xRrz2dnAQ6Lq/FgNrcKWmV561nNaZmFH+EzeGOX3ZRMbU8p1T6Nw==", + "version": "3.0.25", + "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-browser/-/util-defaults-mode-browser-3.0.25.tgz", + "integrity": "sha512-fRw7zymjIDt6XxIsLwfJfYUfbGoO9CmCJk6rjJ/X5cd20+d2Is7xjU5Kt/AiDt6hX8DAf5dztmfP5O82gR9emA==", "dependencies": { - "@smithy/property-provider": "^3.1.7", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", + "@smithy/property-provider": "^3.1.8", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", "bowser": "^2.11.0", "tslib": "^2.6.2" }, @@ -3638,16 +3651,16 @@ } }, "node_modules/@smithy/util-defaults-mode-node": { - "version": "3.0.23", - "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-node/-/util-defaults-mode-node-3.0.23.tgz", - "integrity": "sha512-9Y4WH7f0vnDGuHUa4lGX9e2p+sMwODibsceSV6rfkZOvMC+BY3StB2LdO1NHafpsyHJLpwAgChxQ38tFyd6vkg==", - "dependencies": { - "@smithy/config-resolver": "^3.0.9", - "@smithy/credential-provider-imds": "^3.2.4", - "@smithy/node-config-provider": "^3.1.8", - "@smithy/property-provider": "^3.1.7", - "@smithy/smithy-client": "^3.4.0", - "@smithy/types": "^3.5.0", + "version": "3.0.25", + "resolved": "https://registry.npmjs.org/@smithy/util-defaults-mode-node/-/util-defaults-mode-node-3.0.25.tgz", + "integrity": "sha512-H3BSZdBDiVZGzt8TG51Pd2FvFO0PAx/A0mJ0EH8a13KJ6iUCdYnw/Dk/MdC1kTd0eUuUGisDFaxXVXo4HHFL1g==", + "dependencies": { + "@smithy/config-resolver": "^3.0.10", + "@smithy/credential-provider-imds": "^3.2.5", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/property-provider": "^3.1.8", + "@smithy/smithy-client": "^3.4.2", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3655,12 +3668,12 @@ } }, "node_modules/@smithy/util-endpoints": { - "version": "2.1.3", - "resolved": "https://registry.npmjs.org/@smithy/util-endpoints/-/util-endpoints-2.1.3.tgz", - "integrity": "sha512-34eACeKov6jZdHqS5hxBMJ4KyWKztTMulhuQ2UdOoP6vVxMLrOKUqIXAwJe/wiWMhXhydLW664B02CNpQBQ4Aw==", + "version": "2.1.4", + "resolved": "https://registry.npmjs.org/@smithy/util-endpoints/-/util-endpoints-2.1.4.tgz", + "integrity": "sha512-kPt8j4emm7rdMWQyL0F89o92q10gvCUa6sBkBtDJ7nV2+P7wpXczzOfoDJ49CKXe5CCqb8dc1W+ZdLlrKzSAnQ==", "dependencies": { - "@smithy/node-config-provider": "^3.1.8", - "@smithy/types": "^3.5.0", + "@smithy/node-config-provider": "^3.1.9", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3679,11 +3692,11 @@ } }, "node_modules/@smithy/util-middleware": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/util-middleware/-/util-middleware-3.0.7.tgz", - "integrity": "sha512-OVA6fv/3o7TMJTpTgOi1H5OTwnuUa8hzRzhSFDtZyNxi6OZ70L/FHattSmhE212I7b6WSOJAAmbYnvcjTHOJCA==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/util-middleware/-/util-middleware-3.0.8.tgz", + "integrity": "sha512-p7iYAPaQjoeM+AKABpYWeDdtwQNxasr4aXQEA/OmbOaug9V0odRVDy3Wx4ci8soljE/JXQo+abV0qZpW8NX0yA==", "dependencies": { - "@smithy/types": "^3.5.0", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3691,12 +3704,12 @@ } }, "node_modules/@smithy/util-retry": { - "version": "3.0.7", - "resolved": "https://registry.npmjs.org/@smithy/util-retry/-/util-retry-3.0.7.tgz", - "integrity": "sha512-nh1ZO1vTeo2YX1plFPSe/OXaHkLAHza5jpokNiiKX2M5YpNUv6RxGJZhpfmiR4jSvVHCjIDmILjrxKmP+/Ghug==", + "version": "3.0.8", + "resolved": "https://registry.npmjs.org/@smithy/util-retry/-/util-retry-3.0.8.tgz", + "integrity": "sha512-TCEhLnY581YJ+g1x0hapPz13JFqzmh/pMWL2KEFASC51qCfw3+Y47MrTmea4bUE5vsdxQ4F6/KFbUeSz22Q1ow==", "dependencies": { - "@smithy/service-error-classification": "^3.0.7", - "@smithy/types": "^3.5.0", + "@smithy/service-error-classification": "^3.0.8", + "@smithy/types": "^3.6.0", "tslib": "^2.6.2" }, "engines": { @@ -3704,13 +3717,13 @@ } }, "node_modules/@smithy/util-stream": { - "version": "3.1.9", - "resolved": "https://registry.npmjs.org/@smithy/util-stream/-/util-stream-3.1.9.tgz", - "integrity": "sha512-7YAR0Ub3MwTMjDfjnup4qa6W8gygZMxikBhFMPESi6ASsl/rZJhwLpF/0k9TuezScCojsM0FryGdz4LZtjKPPQ==", + "version": "3.2.1", + "resolved": "https://registry.npmjs.org/@smithy/util-stream/-/util-stream-3.2.1.tgz", + "integrity": "sha512-R3ufuzJRxSJbE58K9AEnL/uSZyVdHzud9wLS8tIbXclxKzoe09CRohj2xV8wpx5tj7ZbiJaKYcutMm1eYgz/0A==", "dependencies": { - "@smithy/fetch-http-handler": "^3.2.9", - "@smithy/node-http-handler": "^3.2.4", - "@smithy/types": "^3.5.0", + "@smithy/fetch-http-handler": "^4.0.0", + "@smithy/node-http-handler": "^3.2.5", + "@smithy/types": "^3.6.0", "@smithy/util-base64": "^3.0.0", "@smithy/util-buffer-from": "^3.0.0", "@smithy/util-hex-encoding": "^3.0.0", @@ -3874,9 +3887,9 @@ } }, "node_modules/@types/jest": { - "version": "29.5.13", - "resolved": "https://registry.npmjs.org/@types/jest/-/jest-29.5.13.tgz", - "integrity": "sha512-wd+MVEZCHt23V0/L642O5APvspWply/rGY5BcW4SUETo2UzPU3Z26qr8jC2qxpimI2jjx9h7+2cj2FwIr01bXg==", + "version": "29.5.14", + "resolved": "https://registry.npmjs.org/@types/jest/-/jest-29.5.14.tgz", + "integrity": "sha512-ZN+4sdnLUbo8EVvVc2ao0GFW6oVrQRPn4K2lglySj7APvSrgzxHiNNK99us4WDMi57xxA2yggblIAMNhXOotLQ==", "dev": true, "dependencies": { "expect": "^29.0.0", @@ -3895,12 +3908,12 @@ "integrity": "sha512-PLwiVvTBg59tGFL/8VpcGvqOu3L4OuveNvPi0EYbWchRdEVP++yRUXJPFl+CApKEq13017/4Nf7aQ5lTtHUNsA==" }, "node_modules/@types/node": { - "version": "22.7.6", - "resolved": "https://registry.npmjs.org/@types/node/-/node-22.7.6.tgz", - "integrity": "sha512-/d7Rnj0/ExXDMcioS78/kf1lMzYk4BZV8MZGTBKzTGZ6/406ukkbYlIsZmMPhcR5KlkunDHQLrtAVmSq7r+mSw==", + "version": "22.9.0", + "resolved": "https://registry.npmjs.org/@types/node/-/node-22.9.0.tgz", + "integrity": "sha512-vuyHg81vvWA1Z1ELfvLko2c8f34gyA0zaic0+Rllc5lbCnbSyuvb2Oxpm6TAUAC/2xZN3QGqxBNggD1nNR2AfQ==", "dev": true, "dependencies": { - "undici-types": "~6.19.2" + "undici-types": "~6.19.8" } }, "node_modules/@types/normalize-package-data": { @@ -3924,6 +3937,11 @@ "dev": true, "license": "MIT" }, + "node_modules/@types/uuid": { + "version": "9.0.8", + "resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-9.0.8.tgz", + "integrity": "sha512-jg+97EGIcY9AGHJJRaaPVgetKDsrTgbRjQ5Msgjh/DQKEFl0DtyRr/VCOyD1T2R1MNeWPK/u7JoGhlDZnKBAfA==" + }, "node_modules/@types/yargs": { "version": "17.0.33", "resolved": "https://registry.npmjs.org/@types/yargs/-/yargs-17.0.33.tgz", @@ -3942,16 +3960,16 @@ "license": "MIT" }, "node_modules/@typescript-eslint/eslint-plugin": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/eslint-plugin/-/eslint-plugin-8.9.0.tgz", - "integrity": "sha512-Y1n621OCy4m7/vTXNlCbMVp87zSd7NH0L9cXD8aIpOaNlzeWxIK4+Q19A68gSmTNRZn92UjocVUWDthGxtqHFg==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/eslint-plugin/-/eslint-plugin-8.13.0.tgz", + "integrity": "sha512-nQtBLiZYMUPkclSeC3id+x4uVd1SGtHuElTxL++SfP47jR0zfkZBJHc+gL4qPsgTuypz0k8Y2GheaDYn6Gy3rg==", "dev": true, "dependencies": { "@eslint-community/regexpp": "^4.10.0", - "@typescript-eslint/scope-manager": "8.9.0", - "@typescript-eslint/type-utils": "8.9.0", - "@typescript-eslint/utils": "8.9.0", - "@typescript-eslint/visitor-keys": "8.9.0", + "@typescript-eslint/scope-manager": "8.13.0", + "@typescript-eslint/type-utils": "8.13.0", + "@typescript-eslint/utils": "8.13.0", + "@typescript-eslint/visitor-keys": "8.13.0", "graphemer": "^1.4.0", "ignore": "^5.3.1", "natural-compare": "^1.4.0", @@ -3975,15 +3993,15 @@ } }, "node_modules/@typescript-eslint/parser": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-8.9.0.tgz", - "integrity": "sha512-U+BLn2rqTTHnc4FL3FJjxaXptTxmf9sNftJK62XLz4+GxG3hLHm/SUNaaXP5Y4uTiuYoL5YLy4JBCJe3+t8awQ==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/parser/-/parser-8.13.0.tgz", + "integrity": "sha512-w0xp+xGg8u/nONcGw1UXAr6cjCPU1w0XVyBs6Zqaj5eLmxkKQAByTdV/uGgNN5tVvN/kKpoQlP2cL7R+ajZZIQ==", "dev": true, "dependencies": { - "@typescript-eslint/scope-manager": "8.9.0", - "@typescript-eslint/types": "8.9.0", - "@typescript-eslint/typescript-estree": "8.9.0", - "@typescript-eslint/visitor-keys": "8.9.0", + "@typescript-eslint/scope-manager": "8.13.0", + "@typescript-eslint/types": "8.13.0", + "@typescript-eslint/typescript-estree": "8.13.0", + "@typescript-eslint/visitor-keys": "8.13.0", "debug": "^4.3.4" }, "engines": { @@ -4003,13 +4021,13 @@ } }, "node_modules/@typescript-eslint/scope-manager": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-8.9.0.tgz", - "integrity": "sha512-bZu9bUud9ym1cabmOYH9S6TnbWRzpklVmwqICeOulTCZ9ue2/pczWzQvt/cGj2r2o1RdKoZbuEMalJJSYw3pHQ==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/scope-manager/-/scope-manager-8.13.0.tgz", + "integrity": "sha512-XsGWww0odcUT0gJoBZ1DeulY1+jkaHUciUq4jKNv4cpInbvvrtDoyBH9rE/n2V29wQJPk8iCH1wipra9BhmiMA==", "dev": true, "dependencies": { - "@typescript-eslint/types": "8.9.0", - "@typescript-eslint/visitor-keys": "8.9.0" + "@typescript-eslint/types": "8.13.0", + "@typescript-eslint/visitor-keys": "8.13.0" }, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -4020,13 +4038,13 @@ } }, "node_modules/@typescript-eslint/type-utils": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/type-utils/-/type-utils-8.9.0.tgz", - "integrity": "sha512-JD+/pCqlKqAk5961vxCluK+clkppHY07IbV3vett97KOV+8C6l+CPEPwpUuiMwgbOz/qrN3Ke4zzjqbT+ls+1Q==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/type-utils/-/type-utils-8.13.0.tgz", + "integrity": "sha512-Rqnn6xXTR316fP4D2pohZenJnp+NwQ1mo7/JM+J1LWZENSLkJI8ID8QNtlvFeb0HnFSK94D6q0cnMX6SbE5/vA==", "dev": true, "dependencies": { - "@typescript-eslint/typescript-estree": "8.9.0", - "@typescript-eslint/utils": "8.9.0", + "@typescript-eslint/typescript-estree": "8.13.0", + "@typescript-eslint/utils": "8.13.0", "debug": "^4.3.4", "ts-api-utils": "^1.3.0" }, @@ -4044,9 +4062,9 @@ } }, "node_modules/@typescript-eslint/types": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.9.0.tgz", - "integrity": "sha512-SjgkvdYyt1FAPhU9c6FiYCXrldwYYlIQLkuc+LfAhCna6ggp96ACncdtlbn8FmnG72tUkXclrDExOpEYf1nfJQ==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/types/-/types-8.13.0.tgz", + "integrity": "sha512-4cyFErJetFLckcThRUFdReWJjVsPCqyBlJTi6IDEpc1GWCIIZRFxVppjWLIMcQhNGhdWJJRYFHpHoDWvMlDzng==", "dev": true, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -4057,13 +4075,13 @@ } }, "node_modules/@typescript-eslint/typescript-estree": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-8.9.0.tgz", - "integrity": "sha512-9iJYTgKLDG6+iqegehc5+EqE6sqaee7kb8vWpmHZ86EqwDjmlqNNHeqDVqb9duh+BY6WCNHfIGvuVU3Tf9Db0g==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/typescript-estree/-/typescript-estree-8.13.0.tgz", + "integrity": "sha512-v7SCIGmVsRK2Cy/LTLGN22uea6SaUIlpBcO/gnMGT/7zPtxp90bphcGf4fyrCQl3ZtiBKqVTG32hb668oIYy1g==", "dev": true, "dependencies": { - "@typescript-eslint/types": "8.9.0", - "@typescript-eslint/visitor-keys": "8.9.0", + "@typescript-eslint/types": "8.13.0", + "@typescript-eslint/visitor-keys": "8.13.0", "debug": "^4.3.4", "fast-glob": "^3.3.2", "is-glob": "^4.0.3", @@ -4085,15 +4103,15 @@ } }, "node_modules/@typescript-eslint/utils": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/utils/-/utils-8.9.0.tgz", - "integrity": "sha512-PKgMmaSo/Yg/F7kIZvrgrWa1+Vwn036CdNUvYFEkYbPwOH4i8xvkaRlu148W3vtheWK9ckKRIz7PBP5oUlkrvQ==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/utils/-/utils-8.13.0.tgz", + "integrity": "sha512-A1EeYOND6Uv250nybnLZapeXpYMl8tkzYUxqmoKAWnI4sei3ihf2XdZVd+vVOmHGcp3t+P7yRrNsyyiXTvShFQ==", "dev": true, "dependencies": { "@eslint-community/eslint-utils": "^4.4.0", - "@typescript-eslint/scope-manager": "8.9.0", - "@typescript-eslint/types": "8.9.0", - "@typescript-eslint/typescript-estree": "8.9.0" + "@typescript-eslint/scope-manager": "8.13.0", + "@typescript-eslint/types": "8.13.0", + "@typescript-eslint/typescript-estree": "8.13.0" }, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -4107,12 +4125,12 @@ } }, "node_modules/@typescript-eslint/visitor-keys": { - "version": "8.9.0", - "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-8.9.0.tgz", - "integrity": "sha512-Ht4y38ubk4L5/U8xKUBfKNYGmvKvA1CANoxiTRMM+tOLk3lbF3DvzZCxJCRSE+2GdCMSh6zq9VZJc3asc1XuAA==", + "version": "8.13.0", + "resolved": "https://registry.npmjs.org/@typescript-eslint/visitor-keys/-/visitor-keys-8.13.0.tgz", + "integrity": "sha512-7N/+lztJqH4Mrf0lb10R/CbI1EaAMMGyF5y0oJvFoAhafwgiRA7TXyd8TFn8FC8k5y2dTsYogg238qavRGNnlw==", "dev": true, "dependencies": { - "@typescript-eslint/types": "8.9.0", + "@typescript-eslint/types": "8.13.0", "eslint-visitor-keys": "^3.4.3" }, "engines": { @@ -4143,11 +4161,10 @@ } }, "node_modules/acorn": { - "version": "8.12.1", - "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.12.1.tgz", - "integrity": "sha512-tcpGyI9zbizT9JbV6oYE477V6mTlXvvi0T0G3SNIYE2apm/G5huBa1+K89VGeovbg+jycCrfhl3ADxErOuO6Jg==", + "version": "8.14.0", + "resolved": "https://registry.npmjs.org/acorn/-/acorn-8.14.0.tgz", + "integrity": "sha512-cl669nCJTZBsL97OF4kUQm5g5hC2uihk0NxY3WENAC0TYdILVkAyHymAntgxGkl7K+t0cXIrH5siy5S4XkFycA==", "dev": true, - "license": "MIT", "bin": { "acorn": "bin/acorn" }, @@ -4408,11 +4425,10 @@ } }, "node_modules/axios-mock-adapter": { - "version": "2.0.0", - "resolved": "https://registry.npmjs.org/axios-mock-adapter/-/axios-mock-adapter-2.0.0.tgz", - "integrity": "sha512-D/K0J5Zm6KvaMTnsWrBQZWLzKN9GxUFZEa0mx2qeEHXDeTugCoplWehy8y36dj5vuSjhe1u/Dol8cZ8lzzmDew==", + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/axios-mock-adapter/-/axios-mock-adapter-2.1.0.tgz", + "integrity": "sha512-AZUe4OjECGCNNssH8SOdtneiQELsqTsat3SQQCWLPjN436/H+L9AjWfV7bF+Zg/YL9cgbhrz5671hoh+Tbn98w==", "dev": true, - "license": "MIT", "dependencies": { "fast-deep-equal": "^3.1.3", "is-buffer": "^2.0.5" @@ -5826,21 +5842,21 @@ } }, "node_modules/eslint": { - "version": "9.12.0", - "resolved": "https://registry.npmjs.org/eslint/-/eslint-9.12.0.tgz", - "integrity": "sha512-UVIOlTEWxwIopRL1wgSQYdnVDcEvs2wyaO6DGo5mXqe3r16IoCNWkR29iHhyaP4cICWjbgbmFUGAhh0GJRuGZw==", + "version": "9.14.0", + "resolved": "https://registry.npmjs.org/eslint/-/eslint-9.14.0.tgz", + "integrity": "sha512-c2FHsVBr87lnUtjP4Yhvk4yEhKrQavGafRA/Se1ouse8PfbfC/Qh9Mxa00yWsZRlqeUB9raXip0aiiUZkgnr9g==", "dev": true, "dependencies": { "@eslint-community/eslint-utils": "^4.2.0", - "@eslint-community/regexpp": "^4.11.0", + "@eslint-community/regexpp": "^4.12.1", "@eslint/config-array": "^0.18.0", - "@eslint/core": "^0.6.0", + "@eslint/core": "^0.7.0", "@eslint/eslintrc": "^3.1.0", - "@eslint/js": "9.12.0", + "@eslint/js": "9.14.0", "@eslint/plugin-kit": "^0.2.0", - "@humanfs/node": "^0.16.5", + "@humanfs/node": "^0.16.6", "@humanwhocodes/module-importer": "^1.0.1", - "@humanwhocodes/retry": "^0.3.1", + "@humanwhocodes/retry": "^0.4.0", "@types/estree": "^1.0.6", "@types/json-schema": "^7.0.15", "ajv": "^6.12.4", @@ -5848,9 +5864,9 @@ "cross-spawn": "^7.0.2", "debug": "^4.3.2", "escape-string-regexp": "^4.0.0", - "eslint-scope": "^8.1.0", - "eslint-visitor-keys": "^4.1.0", - "espree": "^10.2.0", + "eslint-scope": "^8.2.0", + "eslint-visitor-keys": "^4.2.0", + "espree": "^10.3.0", "esquery": "^1.5.0", "esutils": "^2.0.2", "fast-deep-equal": "^3.1.3", @@ -5902,9 +5918,9 @@ } }, "node_modules/eslint-scope": { - "version": "8.1.0", - "resolved": "https://registry.npmjs.org/eslint-scope/-/eslint-scope-8.1.0.tgz", - "integrity": "sha512-14dSvlhaVhKKsa9Fx1l8A17s7ah7Ef7wCakJ10LYk6+GYmP9yDti2oq2SEwcyndt6knfcZyhyxwY3i9yL78EQw==", + "version": "8.2.0", + "resolved": "https://registry.npmjs.org/eslint-scope/-/eslint-scope-8.2.0.tgz", + "integrity": "sha512-PHlWUfG6lvPc3yvP5A4PNyBL1W8fkDUccmI21JUu/+GKZBoH/W5u6usENXUrWFRsyoW5ACUjFGgAFQp5gUlb/A==", "dev": true, "dependencies": { "esrecurse": "^4.3.0", @@ -5942,9 +5958,9 @@ } }, "node_modules/eslint/node_modules/eslint-visitor-keys": { - "version": "4.1.0", - "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.1.0.tgz", - "integrity": "sha512-Q7lok0mqMUSf5a/AdAZkA5a/gHcO6snwQClVNNvFKCAVlxXucdU8pKydU5ZVZjBx5xr37vGbFFWtLQYreLzrZg==", + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.0.tgz", + "integrity": "sha512-UyLnSehNt62FFhSwjZlHmeokpRK59rcz29j+F1/aDgbkbRTk7wIc9XzdoasMUbRNKDM0qQt/+BJ4BrpFeABemw==", "dev": true, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -5967,14 +5983,14 @@ } }, "node_modules/espree": { - "version": "10.2.0", - "resolved": "https://registry.npmjs.org/espree/-/espree-10.2.0.tgz", - "integrity": "sha512-upbkBJbckcCNBDBDXEbuhjbP68n+scUd3k/U2EkyM9nw+I/jPiL4cLF/Al06CF96wRltFda16sxDFrxsI1v0/g==", + "version": "10.3.0", + "resolved": "https://registry.npmjs.org/espree/-/espree-10.3.0.tgz", + "integrity": "sha512-0QYC8b24HWY8zjRnDTL6RiHfDbAWn63qb4LMj1Z4b076A4une81+z03Kg7l7mn/48PUTqoLptSXez8oknU8Clg==", "dev": true, "dependencies": { - "acorn": "^8.12.0", + "acorn": "^8.14.0", "acorn-jsx": "^5.3.2", - "eslint-visitor-keys": "^4.1.0" + "eslint-visitor-keys": "^4.2.0" }, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -5984,9 +6000,9 @@ } }, "node_modules/espree/node_modules/eslint-visitor-keys": { - "version": "4.1.0", - "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.1.0.tgz", - "integrity": "sha512-Q7lok0mqMUSf5a/AdAZkA5a/gHcO6snwQClVNNvFKCAVlxXucdU8pKydU5ZVZjBx5xr37vGbFFWtLQYreLzrZg==", + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/eslint-visitor-keys/-/eslint-visitor-keys-4.2.0.tgz", + "integrity": "sha512-UyLnSehNt62FFhSwjZlHmeokpRK59rcz29j+F1/aDgbkbRTk7wIc9XzdoasMUbRNKDM0qQt/+BJ4BrpFeABemw==", "dev": true, "engines": { "node": "^18.18.0 || ^20.9.0 || >=21.1.0" @@ -12371,9 +12387,9 @@ "license": "ISC" }, "node_modules/semantic-release": { - "version": "24.1.2", - "resolved": "https://registry.npmjs.org/semantic-release/-/semantic-release-24.1.2.tgz", - "integrity": "sha512-hvEJ7yI97pzJuLsDZCYzJgmRxF8kiEJvNZhf0oiZQcexw+Ycjy4wbdsn/sVMURgNCu8rwbAXJdBRyIxM4pe32g==", + "version": "24.2.0", + "resolved": "https://registry.npmjs.org/semantic-release/-/semantic-release-24.2.0.tgz", + "integrity": "sha512-fQfn6e/aYToRtVJYKqneFM1Rg3KP2gh3wSWtpYsLlz6uaPKlISrTzvYAFn+mYWo07F0X1Cz5ucU89AVE8X1mbg==", "dev": true, "dependencies": { "@semantic-release/commit-analyzer": "^13.0.0-beta.1", @@ -13503,9 +13519,9 @@ } }, "node_modules/tslib": { - "version": "2.7.0", - "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.7.0.tgz", - "integrity": "sha512-gLXCKdN1/j47AiHiOkJN69hJmcbGTHI0ImLmbYLHykhgeN0jVGola9yVjFgzCUklsZQMW55o+dW7IXv3RCXDzA==" + "version": "2.8.1", + "resolved": "https://registry.npmjs.org/tslib/-/tslib-2.8.1.tgz", + "integrity": "sha512-oJFu94HQb+KVduSUQL7wnpmqnfmLsOA/nAh6b6EH0wCEoK0/mPeXU6c3wKDV83MkOuHPRHtSXKKU99IBazS/2w==" }, "node_modules/type-check": { "version": "0.4.0", @@ -14007,10 +14023,10 @@ "license": "MIT", "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8" + "@nhs/fhir-middy-error-handler": "^2.1.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" @@ -14026,13 +14042,13 @@ "version": "1.0.0", "license": "MIT", "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@prescriptionsforpatients/serviceSearchClient": "^1.0.0", "@types/fhir": "^0.0.41" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } }, "packages/enrichPrescriptions": { @@ -14040,9 +14056,9 @@ "license": "MIT", "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", - "@aws-sdk/client-secrets-manager": "^3.670.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", + "@aws-sdk/client-secrets-manager": "^3.687.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", "@types/fhir": "^0.0.41", @@ -14057,20 +14073,20 @@ "license": "MIT", "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", - "@aws-sdk/client-secrets-manager": "^3.670.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", + "@aws-sdk/client-secrets-manager": "^3.687.0", "@middy/core": "^5.5.1", "@middy/http-header-normalizer": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8", - "@NHSDigital/eps-spine-client": "^2.1.5", + "@nhs/fhir-middy-error-handler": "^2.1.10", + "@NHSDigital/eps-spine-client": "^2.1.8", "@prescriptionsforpatients/distanceSelling": "^1.0.0", "@types/fhir": "^0.0.41" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } }, "packages/sandbox": { @@ -14078,10 +14094,10 @@ "license": "MIT", "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8" + "@nhs/fhir-middy-error-handler": "^2.1.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" @@ -14092,13 +14108,13 @@ "version": "1.0.0", "license": "MIT", "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "axios": "^1.7.7", "axios-retry": "^4.5.0" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } }, "packages/statusLambda": { @@ -14106,12 +14122,12 @@ "license": "MIT", "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8", - "@NHSDigital/eps-spine-client": "^2.1.5" + "@nhs/fhir-middy-error-handler": "^2.1.10", + "@NHSDigital/eps-spine-client": "^2.1.8" } } } diff --git a/package.json b/package.json index bfad2cd26..be53862cb 100644 --- a/package.json +++ b/package.json @@ -27,18 +27,18 @@ "@semantic-release/changelog": "^6.0.3", "@semantic-release/release-notes-generator": "^14.0.1", "@types/aws-lambda": "^8.10.145", - "@types/jest": "^29.5.13", - "@types/node": "^22.7.6", - "@typescript-eslint/eslint-plugin": "^8.9.0", - "@typescript-eslint/parser": "^8.9.0", + "@types/jest": "^29.5.14", + "@types/node": "^22.9.0", + "@typescript-eslint/eslint-plugin": "^8.13.0", + "@typescript-eslint/parser": "^8.13.0", "aws-lambda": "^1.0.7", "conventional-changelog-eslint": "^6.0.0", - "eslint": "^9.12.0", + "eslint": "^9.14.0", "eslint-plugin-import-newlines": "^1.4.0", "jest": "^29.7.0", "jest-junit": "^16.0.0", "license-checker": "^25.0.1", - "semantic-release": "^24.1.2", + "semantic-release": "^24.2.0", "ts-jest": "^29.2.5", "ts-node": "^10.9.2", "typescript": "^5.6.3" diff --git a/packages/capabilityStatement/package.json b/packages/capabilityStatement/package.json index e51ac026e..d3c721018 100644 --- a/packages/capabilityStatement/package.json +++ b/packages/capabilityStatement/package.json @@ -15,10 +15,10 @@ }, "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8" + "@nhs/fhir-middy-error-handler": "^2.1.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" diff --git a/packages/distanceSelling/package.json b/packages/distanceSelling/package.json index bb0577b2d..9579e65a5 100644 --- a/packages/distanceSelling/package.json +++ b/packages/distanceSelling/package.json @@ -14,12 +14,12 @@ "check-licenses": "license-checker --failOn GPL --failOn LGPL --start ../.." }, "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@prescriptionsforpatients/serviceSearchClient": "^1.0.0", "@types/fhir": "^0.0.41" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } } diff --git a/packages/enrichPrescriptions/package.json b/packages/enrichPrescriptions/package.json index f784d6866..80bf48a65 100644 --- a/packages/enrichPrescriptions/package.json +++ b/packages/enrichPrescriptions/package.json @@ -14,9 +14,9 @@ }, "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", - "@aws-sdk/client-secrets-manager": "^3.670.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", + "@aws-sdk/client-secrets-manager": "^3.687.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", "@types/fhir": "^0.0.41", diff --git a/packages/getMyPrescriptions/package.json b/packages/getMyPrescriptions/package.json index 4c4ba7d8b..a397676d4 100644 --- a/packages/getMyPrescriptions/package.json +++ b/packages/getMyPrescriptions/package.json @@ -15,19 +15,19 @@ }, "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", - "@aws-sdk/client-secrets-manager": "^3.670.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", + "@aws-sdk/client-secrets-manager": "^3.687.0", "@middy/core": "^5.5.1", "@middy/http-header-normalizer": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8", - "@NHSDigital/eps-spine-client": "^2.1.5", + "@nhs/fhir-middy-error-handler": "^2.1.10", + "@NHSDigital/eps-spine-client": "^2.1.8", "@prescriptionsforpatients/distanceSelling": "^1.0.0", "@types/fhir": "^0.0.41" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } } diff --git a/packages/getMyPrescriptions/tests/test-handler.test.ts b/packages/getMyPrescriptions/tests/test-handler.test.ts index 4df693782..c4cabf423 100644 --- a/packages/getMyPrescriptions/tests/test-handler.test.ts +++ b/packages/getMyPrescriptions/tests/test-handler.test.ts @@ -268,10 +268,10 @@ describe("Unit test for app handler", function () { it("times-out if spine call takes too long", async () => { const mockErrorLogger = jest.spyOn(Logger.prototype, "error") - const delayedResponse: Promise> = new Promise((resolve) => setTimeout(() => resolve([]), 15_000)) // eslint-disable-next-line @typescript-eslint/no-unused-vars - mock.onGet("https://live/mm/patientfacingprescriptions").reply((_config) => delayedResponse) - + mock.onGet("https://live/mm/patientfacingprescriptions").reply(function (config) { + return new Promise((resolve) => setTimeout(() => resolve([200, {}]), 15_000)) + }) const event: GetMyPrescriptionsEvent = JSON.parse(exampleStateMachineEvent) const eventHandler: Promise = handler(event, dummyContext) @@ -300,9 +300,11 @@ describe("Unit test for app handler", function () { params: handlerParams, middleware: [] }) - const delayedResponse: Promise> = new Promise((resolve) => setTimeout(() => resolve([]), 5_000)) + // eslint-disable-next-line @typescript-eslint/no-unused-vars - mock.onGet("https://live/mm/patientfacingprescriptions").reply((_config) => delayedResponse) + mock.onGet("https://live/mm/patientfacingprescriptions").reply(function (config) { + return new Promise((resolve) => setTimeout(() => resolve([200, {}]), 5_000)) + }) const event: GetMyPrescriptionsEvent = JSON.parse(exampleStateMachineEvent) const eventHandler: Promise = handler(event, dummyContext) @@ -429,9 +431,10 @@ describe("Unit tests for app handler including service search", function () { const exampleResponse = {resourceType: "Bundle"} mock.onGet("https://spine/mm/patientfacingprescriptions").reply(200, exampleResponse) - const delayedResponse: Promise> = new Promise((resolve) => setTimeout(() => resolve([]), 15_000)) // eslint-disable-next-line @typescript-eslint/no-unused-vars - mock.onGet("https://service-search/service-search").reply((_config) => delayedResponse) + mock.onGet("https://service-search/service-search").reply(function (config) { + return new Promise((resolve) => setTimeout(() => resolve([200, {}]), 15_000)) + }) const event: GetMyPrescriptionsEvent = JSON.parse(exampleStateMachineEvent) const eventHandler: Promise = handler(event, dummyContext) diff --git a/packages/sandbox/package.json b/packages/sandbox/package.json index b18bdfc78..7a0184081 100644 --- a/packages/sandbox/package.json +++ b/packages/sandbox/package.json @@ -14,10 +14,10 @@ }, "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8" + "@nhs/fhir-middy-error-handler": "^2.1.10" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0" diff --git a/packages/serviceSearchClient/package.json b/packages/serviceSearchClient/package.json index 27f07c0c4..272be8415 100644 --- a/packages/serviceSearchClient/package.json +++ b/packages/serviceSearchClient/package.json @@ -15,12 +15,12 @@ "author": "NHS Digital", "license": "MIT", "dependencies": { - "@aws-lambda-powertools/logger": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", "axios": "^1.7.7", "axios-retry": "^4.5.0" }, "devDependencies": { "@prescriptionsforpatients_common/testing": "^1.0.0", - "axios-mock-adapter": "^2.0.0" + "axios-mock-adapter": "^2.1.0" } } diff --git a/packages/statusLambda/package.json b/packages/statusLambda/package.json index e69f5a7ab..fa1ee1951 100644 --- a/packages/statusLambda/package.json +++ b/packages/statusLambda/package.json @@ -14,11 +14,11 @@ }, "dependencies": { "@aws-lambda-powertools/commons": "^2.8.0", - "@aws-lambda-powertools/logger": "^2.9.0", - "@aws-lambda-powertools/parameters": "^2.9.0", + "@aws-lambda-powertools/logger": "^2.10.0", + "@aws-lambda-powertools/parameters": "^2.10.0", "@middy/core": "^5.5.1", "@middy/input-output-logger": "^5.5.1", - "@nhs/fhir-middy-error-handler": "^2.1.8", - "@NHSDigital/eps-spine-client": "^2.1.5" + "@nhs/fhir-middy-error-handler": "^2.1.10", + "@NHSDigital/eps-spine-client": "^2.1.8" } } diff --git a/poetry.lock b/poetry.lock index a11d834c4..b6d0ac28b 100644 --- a/poetry.lock +++ b/poetry.lock @@ -111,17 +111,17 @@ uvloop = ["uvloop (>=0.15.2)"] [[package]] name = "boto3" -version = "1.35.42" +version = "1.35.57" description = "The AWS SDK for Python" optional = false python-versions = ">=3.8" files = [ - {file = "boto3-1.35.42-py3-none-any.whl", hash = "sha256:e1f36f8be453505cebcc3da178ea081b2a06c0e5e1cdee774f1067599b8d9c3e"}, - {file = "boto3-1.35.42.tar.gz", hash = "sha256:a5b00f8b82dce62870759f04861747944da834d64a64355970120c475efdafc0"}, + {file = "boto3-1.35.57-py3-none-any.whl", hash = "sha256:9edf49640c79a05b0a72f4c2d1e24dfc164344b680535a645f455ac624dc3680"}, + {file = "boto3-1.35.57.tar.gz", hash = "sha256:db58348849a5af061f0f5ec9c3b699da5221ca83354059fdccb798e3ddb6b62a"}, ] [package.dependencies] -botocore = ">=1.35.42,<1.36.0" +botocore = ">=1.35.57,<1.36.0" jmespath = ">=0.7.1,<2.0.0" s3transfer = ">=0.10.0,<0.11.0" @@ -130,13 +130,13 @@ crt = ["botocore[crt] (>=1.21.0,<2.0a0)"] [[package]] name = "botocore" -version = "1.35.42" +version = "1.35.57" description = "Low-level, data-driven core of boto 3." optional = false python-versions = ">=3.8" files = [ - {file = "botocore-1.35.42-py3-none-any.whl", hash = "sha256:05af0bb8b9cea7ce7bc589c332348d338a21b784e9d088a588fd10ec145007ff"}, - {file = "botocore-1.35.42.tar.gz", hash = "sha256:af348636f73dc24b7e2dc760a34d08c8f2f94366e9b4c78d877307b128abecef"}, + {file = "botocore-1.35.57-py3-none-any.whl", hash = "sha256:92ddd02469213766872cb2399269dd20948f90348b42bf08379881d5e946cc34"}, + {file = "botocore-1.35.57.tar.gz", hash = "sha256:d96306558085baf0bcb3b022d7a8c39c93494f031edb376694d2b2dcd0e81327"}, ] [package.dependencies] @@ -174,13 +174,13 @@ files = [ [[package]] name = "cfn-lint" -version = "1.16.1" +version = "1.18.4" description = "Checks CloudFormation templates for practices and behaviour that could potentially be improved" optional = false python-versions = ">=3.8" files = [ - {file = "cfn_lint-1.16.1-py3-none-any.whl", hash = "sha256:071970610f227f6998e9b6f72514d3f068d24c49cb296c072be9c0d4992c405a"}, - {file = "cfn_lint-1.16.1.tar.gz", hash = "sha256:e7b6a2fbb39368974044e7ecd109bed56224cf11b9bd92ebeb5e8ae5d5754725"}, + {file = "cfn_lint-1.18.4-py3-none-any.whl", hash = "sha256:76741e76fa26f31bfacc3eb465eddd93ad535838d84fbc6dd092817d8e22d57f"}, + {file = "cfn_lint-1.18.4.tar.gz", hash = "sha256:73dadc33d6a91c69651cb08fe919138ab4e2f6cf1be1e361f7c6dcbccd1527ba"}, ] [package.dependencies] @@ -1523,4 +1523,4 @@ test = ["big-O", "jaraco.functools", "jaraco.itertools", "jaraco.test", "more-it [metadata] lock-version = "2.0" python-versions = "^3.8" -content-hash = "e750a7e2e6a30c7bd7745db3898c5cae0ade1959efe52134d595a46e571d49fb" +content-hash = "671e4414ffb46ae57ebfd1d2603fba5d08a58b793bb91609bbeb419174ce53f5" diff --git a/privateCA/.gitignore b/privateCA/.gitignore deleted file mode 100644 index 7e452ae9d..000000000 --- a/privateCA/.gitignore +++ /dev/null @@ -1,6 +0,0 @@ -private -crl -config -certs -certs_backup_* -private_backup_* diff --git a/privateCA/README.md b/privateCA/README.md deleted file mode 100644 index 9c06a02a7..000000000 --- a/privateCA/README.md +++ /dev/null @@ -1,14 +0,0 @@ -This folder contains scripts to initialize the private CA used for mutual TLS in each environment. - -The script ./create_certs.sh creates new self signed CA certificate and a client certificate. These are valid for 1 year. -The private keys and certificates for these are stored in AWS secrets manager. -The existing truststore file is downloaded from S3 and the new CA certificate is appended to the end of the existing one before uploading to enable old certificates to still to be used. -The public CA cert is uploaded to s3://TRUSTSTORE_BUCKET_NAME/truststore.pem and s3://TRUSTSTORE_BUCKET_NAME/sandbox-truststore.pem where it used by API gateway as a truststore to indicate what certificates should be trusted for mutual TLS. - -Before running the script, you should set environment variable AWS_PROFILE to indicate what environment this is being run for. -You should pass the environment name using the -e flag when calling the script. -By default the script does not upload new secrets or truststore files. If you want to do this, you must pass flag `-d false`. - -Existing certificates and keys are backed up locally before new ones are uploaded. - -To get API gateway to use the new truststore, you must do a redeploy of the cloud formation stack using github action. diff --git a/privateCA/create_certs.sh b/privateCA/create_certs.sh deleted file mode 100755 index a5110e7c9..000000000 --- a/privateCA/create_certs.sh +++ /dev/null @@ -1,257 +0,0 @@ -#!/usr/bin/env bash - -while getopts e:d: flag -do - case "$flag" in - e) environment=${OPTARG};; - d) dry_run_param=${OPTARG};; - *) echo "usage: $0 [-e] environment [-d] dry run" >&2 - exit 1 ;; - esac -done - -if [ "$dry_run_param" = "false" ]; then - DRY_RUN=false -else - DRY_RUN=true -fi - -if [ "$environment" = "" ]; then - echo "You must pass in an environment name using the e flag" - exit 1 -fi - -readonly BASE_DIR=$(pwd) -readonly CERTS_DIR="${BASE_DIR}/certs" -readonly KEYS_DIR="${BASE_DIR}/private" -readonly DATESTAMP=$(date +%Y%m%d_%H%M%S) -readonly BACKUP_CERTS_DIR="${BASE_DIR}/certs_backup_${DATESTAMP}" -readonly BACKUP_KEYS_DIR="${BASE_DIR}/private_backup_${DATESTAMP}" -readonly CRL_DIR="${BASE_DIR}/crl" -readonly CONFIG_DIR="${BASE_DIR}/config" - -# OpenSSL Configs -readonly CA_CERT_SIGNING_CONFIG="openssl-ca.conf" -readonly CERT_VALIDITY_DAYS="365" - -# CA config -readonly CA_NAME="ca" -readonly CA_CERTIFICATE_SUBJECT="/C=GB/ST=Leeds/L=Leeds/O=nhs/OU=prescriptions for patients private CA/CN=prescriptions for patients Private CA $(date +%Y%m%d_%H%M%S)" - -readonly CERT_PREFIX="${environment}-" -readonly CERT_PREFIX_CI="ci" -readonly CERT_PREFIX_SANDBOX="sandbox" - -readonly CLIENT_CERT_SUBJECT_PREFIX="/C=GB/ST=Leeds/L=Leeds/O=nhs/OU=prescriptions for patients private CA/CN=client-cert-" - -# v3 extensions -readonly V3_EXT="$BASE_DIR/v3.ext" - -function generate_crl { - openssl ca -config openssl-ca.conf -gencrl -out "$CRL_DIR/$CA_NAME.crl" -} - -function convert_cert_to_der { - local readonly cert_name="$1" - echo "@ Converting $cert_name to DER format..." - openssl x509 -outform DER -in "$CERTS_DIR/$cert_name.pem" -out "$CERTS_DIR/$cert_name.crt" -} - -function generate_key { - local readonly key_name="$1" - echo "@ Generating key '$key_name'..." - openssl genrsa -out "$KEYS_DIR/$key_name.key" 2048 -} - -function generate_ca_cert { - local readonly key_name="$1" - echo "@ Generating CA certificate..." - openssl req -new -x509 -days "$CERT_VALIDITY_DAYS" -config "$BASE_DIR/$CA_CERT_SIGNING_CONFIG" \ - -key "$KEYS_DIR/$key_name.key" \ - -out "$CERTS_DIR/$key_name.pem" -outform PEM -subj "$CA_CERTIFICATE_SUBJECT" - - convert_cert_to_der "$key_name" -} - -function create_csr { - local readonly key_name="$1" - local readonly client_description="$2" - - if [ "$key_name" = "apigee_client_cert" ] - then - echo "@ Creating CSR for '$key_name'..." - openssl req -config "$BASE_DIR/$SMARTCARD_CERT_SIGNING_CONFIG" -new \ - -key "$KEYS_DIR/$key_name.key" \ - -out "$CERTS_DIR/$key_name.csr" -outform PEM \ - -subj "${CLIENT_CERT_SUBJECT_PREFIX}${CERT_PREFIX}${CERT_PREFIX_CI}${client_description}" - elif [ "$key_name" = "apigee_client_cert_sandbox" ] - then - echo "@ Creating CSR for '$key_name'..." - openssl req -config "$BASE_DIR/$SMARTCARD_CERT_SIGNING_CONFIG" -new \ - -key "$KEYS_DIR/$key_name.key" \ - -out "$CERTS_DIR/$key_name.csr" -outform PEM \ - -subj "${CLIENT_CERT_SUBJECT_PREFIX}${CERT_PREFIX}${CERT_PREFIX_SANDBOX}${client_description}" - fi -} - -function sign_csr_with_ca { - local readonly key_name="$1" - echo "@ Using CSR to generate signed cert for '$key_name'..." - openssl ca -batch \ - -config "$BASE_DIR/$CA_CERT_SIGNING_CONFIG" -policy signing_policy -extensions signing_req \ - -keyfile "$KEYS_DIR/$CA_NAME.key" -cert "$CERTS_DIR/$CA_NAME.pem" \ - -days "$CERT_VALIDITY_DAYS" -out "$CERTS_DIR/$key_name.pem" -in "$CERTS_DIR/$key_name.csr" \ - -notext # don't output the text form of a certificate to the output file -} - - -function generate_ca_signed_cert { - local readonly key_name="$1" - local readonly cert_subject="$2" - - create_csr "$key_name" "$cert_subject" - sign_csr_with_ca "$key_name" -} - - -function generate_client_cert { - local readonly name="$1" - - local readonly description="-apigee-client-cert" - generate_key "$name" - generate_ca_signed_cert "$name" "$description" - convert_cert_to_der "$name" -} - -echo "Going to create mutual TLS certs with these details" -echo "AWS_PROFILE: ${AWS_PROFILE}" -echo "CERT_PREFIX ${CERT_PREFIX}" -echo "DRY_RUN ${DRY_RUN}" -read -p "Press any key to resume or press ctrl+c to exit ..." - -# Recreate output dirs -rm -rf "$CERTS_DIR" "$KEYS_DIR" "$CRL_DIR" "$CONFIG_DIR" -mkdir "$CERTS_DIR" "$KEYS_DIR" "$CRL_DIR" "$CONFIG_DIR" "$BACKUP_CERTS_DIR" "$BACKUP_KEYS_DIR" - - -# Create database and serial files -touch "$CONFIG_DIR/index.txt" -echo '1000' > "$CONFIG_DIR/crlnumber.txt" -echo '01' > "$CONFIG_DIR/serial.txt" - -# Generate CA key and self-signed cert -echo "Generating CA credentials..." -generate_key "$CA_NAME" -generate_ca_cert "$CA_NAME" - -generate_client_cert "apigee_client_cert" -generate_client_cert "apigee_client_cert_sandbox" - -CA_KEY_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`CAKeySecret`].OutputValue' --output text) -CA_CERT_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`CACertSecret`].OutputValue' --output text) -CLIENT_KEY_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`ClientKeySecret`].OutputValue' --output text) -CLIENT_CERT_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`ClientCertSecret`].OutputValue' --output text) -CLIENT_SANDBOX_KEY_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`ClientSandboxKeySecret`].OutputValue' --output text) -CLIENT_SANDBOX_CERT_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`ClientSandboxCertSecret`].OutputValue' --output text) -TRUSTSTORE_BUCKET_ARN=$(aws cloudformation describe-stacks \ - --stack-name account-resources \ - --query 'Stacks[0].Outputs[?OutputKey==`TrustStoreBucket`].OutputValue' --output text) -TRUSTSTORE_BUCKET_NAME=$(echo ${TRUSTSTORE_BUCKET_ARN} | cut -d ":" -f 6) - -echo "Backing up existing secrets to local file" - -aws secretsmanager get-secret-value \ - --secret-id ${CA_KEY_ARN} \ - --query SecretString \ - --output text > ${BACKUP_KEYS_DIR}/${CA_NAME}.key - -aws secretsmanager get-secret-value \ - --secret-id ${CA_CERT_ARN} \ - --query SecretString \ - --output text > ${BACKUP_CERTS_DIR}/${CA_NAME}.pem - -aws secretsmanager get-secret-value \ - --secret-id ${CLIENT_KEY_ARN} \ - --query SecretString \ - --output text > ${BACKUP_KEYS_DIR}/apigee_client_cert.key - -aws secretsmanager get-secret-value \ - --secret-id ${CLIENT_CERT_ARN} \ - --query SecretString \ - --output text > ${BACKUP_CERTS_DIR}/apigee_client_cert.pem - -aws secretsmanager get-secret-value \ - --secret-id ${CLIENT_SANDBOX_KEY_ARN} \ - --query SecretString \ - --output text > ${BACKUP_KEYS_DIR}/apigee_client_cert_sandbox.key -aws secretsmanager get-secret-value \ - --secret-id ${CLIENT_SANDBOX_CERT_ARN} \ - --query SecretString \ - --output text > ${BACKUP_CERTS_DIR}/apigee_client_cert_sandbox.pem - -echo "Creating new combined truststore files for upload" - -aws s3api head-object --bucket ${TRUSTSTORE_BUCKET_NAME} --key truststore.pem || NOT_EXIST=true -if [ $NOT_EXIST ]; then - echo "" > ${BACKUP_CERTS_DIR}/s3_truststore.pem -else - aws s3 cp s3://${TRUSTSTORE_BUCKET_NAME}/truststore.pem ${BACKUP_CERTS_DIR}/s3_truststore.pem -fi - -aws s3api head-object --bucket ${TRUSTSTORE_BUCKET_NAME} --key sandbox-truststore.pem || NOT_EXIST=true -if [ $NOT_EXIST ]; then - echo "" > ${BACKUP_CERTS_DIR}/s3_sandbox_truststore.pem -else - aws s3 cp s3://${TRUSTSTORE_BUCKET_NAME}/sandbox-truststore.pem ${BACKUP_CERTS_DIR}/s3_sandbox_truststore.pem -fi - - -cat ${BACKUP_CERTS_DIR}/s3_truststore.pem ${CERTS_DIR}/${CA_NAME}.pem > ${CERTS_DIR}/truststore.pem -cat ${BACKUP_CERTS_DIR}/s3_sandbox_truststore.pem ${CERTS_DIR}/${CA_NAME}.pem > ${CERTS_DIR}/sandbox_truststore.pem - - -if [ "$DRY_RUN" = "false" ]; then - echo "Setting new keys in secrets manager" - read -p "Press any key to resume or press ctrl+c to exit ..." - aws secretsmanager put-secret-value \ - --secret-id ${CA_KEY_ARN} \ - --secret-string file://${KEYS_DIR}/${CA_NAME}.key - aws secretsmanager put-secret-value \ - --secret-id ${CA_CERT_ARN} \ - --secret-string file://${CERTS_DIR}/${CA_NAME}.pem - - aws secretsmanager put-secret-value \ - --secret-id ${CLIENT_KEY_ARN} \ - --secret-string file://${KEYS_DIR}/apigee_client_cert.key - aws secretsmanager put-secret-value \ - --secret-id ${CLIENT_CERT_ARN} \ - --secret-string file://${CERTS_DIR}/apigee_client_cert.pem - - aws secretsmanager put-secret-value \ - --secret-id ${CLIENT_SANDBOX_KEY_ARN} \ - --secret-string file://${KEYS_DIR}/apigee_client_cert_sandbox.key - aws secretsmanager put-secret-value \ - --secret-id ${CLIENT_SANDBOX_CERT_ARN} \ - --secret-string file://${CERTS_DIR}/apigee_client_cert_sandbox.pem - - echo "Going to create new truststore files on S3" - read -p "Press any key to resume or press ctrl+c to exit ..." - - aws s3 cp ${CERTS_DIR}/truststore.pem s3://${TRUSTSTORE_BUCKET_NAME}/truststore.pem - aws s3 cp ${CERTS_DIR}/sandbox_truststore.pem s3://${TRUSTSTORE_BUCKET_NAME}/sandbox-truststore.pem - -else - echo "Not setting new secrets or upleading truststore files as dry run set to true" -fi diff --git a/privateCA/openssl-ca.conf b/privateCA/openssl-ca.conf deleted file mode 100644 index 32c9246c1..000000000 --- a/privateCA/openssl-ca.conf +++ /dev/null @@ -1,92 +0,0 @@ -HOME = . -RANDFILE = $ENV::HOME/.rnd - -#################################################################### -[ ca ] -default_ca = CA_default # The default ca section - -[ CA_default ] - -default_days = 3650 # How long to certify for -default_crl_days = 3650 # How long before next CRL -default_md = sha256 # Use public key default MD -preserve = no # Keep passed DN ordering - -x509_extensions = ca_extensions # The extensions to add to the cert - -email_in_dn = no # Don't concat the email in the DN -copy_extensions = copy # Required to copy SANs from CSR to cert - - -base_dir = . -certs = $base_dir/certs # Where the issued certs are kept -crl_dir = $base_dir/crl # Where the issued crl are kept -new_certs_dir = $base_dir/certs # default place for new certs. - -database = $base_dir/config/index.txt # Database index file -serial = $base_dir/config/serial.txt # The current serial number -certificate = $base_dir/certs/ca.pem # The CA certifcate -private_key = $base_dir/private/ca.pem # The CA private key - -crlnumber = $base_dir/config/crlnumber.txt # the current crl number -crl = $base_dir/crl.pem # The current CRL - -unique_subject = no # Set to 'no' to allow creation of - # several certificates with same subject. - -#################################################################### -[ req ] -default_bits = 4096 -default_keyfile = cakey.pem -distinguished_name = ca_distinguished_name -x509_extensions = ca_extensions -string_mask = utf8only - -#################################################################### -[ ca_distinguished_name ] -countryName = Country Name (2 letter code) -countryName_default = GB - -stateOrProvinceName = State or Province Name (full name) -stateOrProvinceName_default = Leeds - -localityName = Locality Name (eg, city) -localityName_default = Leeds - -organizationName = Organization Name (eg, company) -organizationName_default = nhs - -organizationalUnitName = Organizational Unit (eg, division) -organizationalUnitName_default = =prescriptions for patients private CA - -commonName = Common Name (e.g. server FQDN or YOUR name) -commonName_default = Prescription Signature Tests - -emailAddress = Email Address -emailAddress_default = anthony.brown8@nhs.net - -#################################################################### -[ ca_extensions ] - -subjectKeyIdentifier = hash -authorityKeyIdentifier = keyid:always, issuer -basicConstraints = critical, CA:true -keyUsage = keyCertSign, cRLSign -crlDistributionPoints = URI:http://crl.nhs.uk/int/1d/arlc3.crl - -#################################################################### -[ signing_policy ] -countryName = optional -stateOrProvinceName = optional -localityName = optional -organizationName = optional -organizationalUnitName = optional -commonName = supplied -emailAddress = optional - -#################################################################### -[ signing_req ] -subjectKeyIdentifier = hash -authorityKeyIdentifier = keyid,issuer -basicConstraints = CA:FALSE -keyUsage = digitalSignature, keyEncipherment diff --git a/pyproject.toml b/pyproject.toml index b743a6b5c..b81868905 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -30,11 +30,11 @@ jsonpath-rw = "^1.4.0" semver = "^3.0.2" gitpython = "^3.1.43" requests = "^2.32.3" -boto3 = "^1.35.42" +boto3 = "^1.35.57" argparse = "^1.4.0" pre-commit = "^3.5.0" pytest = "^8.3.3" -cfn-lint = "^1.16.1" +cfn-lint = "^1.18.4" [tool.poetry.dev-dependencies] flake8 = "^5.0.4"