Bump the all-npm group with 8 updates

[dependabot]

Bumps the all-npm group with 8 updates:

Package	From	To
@aws-sdk/client-cloudwatch	3.927.0	3.932.0
@aws-sdk/client-eventbridge	3.927.0	3.932.0
@aws-sdk/client-sns	3.927.0	3.932.0
@aws-sdk/client-sts	3.927.0	3.932.0
@smithy/util-retry	4.2.4	4.2.5
@biomejs/biome	2.3.4	2.3.6
@types/aws-lambda	8.10.157	8.10.158
@types/node	24.10.0	24.10.1

Updates @aws-sdk/client-cloudwatch from 3.927.0 to 3.932.0

Release notes

Sourced from @​aws-sdk/client-cloudwatch's releases.

v3.932.0

3.932.0(2025-11-14)

New Features

• clients: update client endpoints as of 2025-11-14 (87473bd2)
• client-ec2: This release adds AvailabilityZoneId support for CreateInstanceConnectEndpoint, DescribeInstanceConnectEndpoints, and DeleteInstanceConnectEndpoint APIs. (5ba1cf64)
• client-datazone: Adds support for granting read and write access to Amazon S3 general purpose buckets using CreateSubscriptionRequest and AcceptSubscriptionRequest APIs. Also adds search filters for SSOUser and SSOGroup to ListSubscriptions APIs and deprecates "sortBy" parameter for ListSubscriptions APIs. (77488e77)
• client-medialive: Removed all the value constraint (min/max) for the shape definitions (e.g. integerMin0Max3600) on the C2j models to get rid of the need to request an exemption from the SDK team whenever a shape definition (e.g. integerMin0Max3600) is changed. (9bcaeef4)
• client-imagebuilder: EC2 Image Builder now supports invoking Lambda functions and executing Step Functions state machine through image workflows. (f8fe9d73)

Bug Fixes

• core/protocols: decorate service exceptions with unmodeled fields (#7504) (6de803d7)

---

For list of updated packages, view updated-packages.md in assets-3.932.0.zip

v3.931.0

3.931.0(2025-11-13)

Chores

• add pkg api shape validation (#7498) (e501b6cf)

New Features

• client-sagemaker: Added support for minor version upgrades and AWS Identity Center integration for SageMaker Hadron Partner Apps, enabling automated version management and IdC group-based access control. (99fbf1f1)
• client-elastic-load-balancing-v2: QUIC and TCP_QUIC protocol support for Network Load Balancer (NLB). This capability enables customers to forward QUIC traffic to their targets with ultra-low latency while maintaining session stickiness using QUIC Connection IDs. (555b55de)
• client-ecr: Add Amazon ECR FIPS PrivateLink endpoint support (b2a1603e)
• client-cloudformation: CloudFormation now supports GetHookResult API with annotations to retrieve structured compliance check results and remediation guidance for each evaluated resource, replacing the previous single-message limitation with detailed validation outcomes. (326e5dda)
• client-rds: Updated endpoint and service metadata (b075f0ff)
• client-mediaconvert: Lowers minimum duration for black video generator. Adds support for embedding and signing C2PA content credentials in DASH and CMAF HLS outputs. (dc04e020)
• client-workspaces-web: Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings. (36de0dee)
• client-controlcatalog: Added support for related control mappings with new RELATED_CONTROL mapping type in ListControlMappings API. (1333cd34)
• client-iot-wireless: Integration of Device Location with Amazon Sidewalk network for Amazon Sidewalk enabled devices (bcf811ef)
• client-ec2: Added support for new accelerator types ("media") and accelerator names ("L4", "L40s", "GAUDI_HL_205", "INFERENTIA2", "TRAINIUM", "TRAINIUM2", "U30") in Attributes Based Instance Type Selection for launched instance types. (69871860)
• clients: use schema-serde in AWS REST XML clients (#7499) (f806a2b9)

Bug Fixes

• core/protocols: rest-json default request body conditions (#7501) (37e8b0dd)

---

For list of updated packages, view updated-packages.md in assets-3.931.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-cloudwatch's changelog.

3.932.0 (2025-11-14)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.931.0 (2025-11-13)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.930.0 (2025-11-12)

Features

• clients: use schema-serde in AWS Query & EC2 Query clients (#7489) (e9b6da8)

3.929.0 (2025-11-11)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

3.928.0 (2025-11-10)

Note: Version bump only for package @​aws-sdk/client-cloudwatch

Commits

• c28f46d Publish v3.932.0
• 99f5f06 Publish v3.931.0
• 2a1737e Publish v3.930.0
• 6362fe2 chore(codegen): sync for idempotencyToken fix in http binding protocols (#7495)
• bb14b54 test(client-cloudwatch): e2e test of protocol selection (#7491)
• e9b6da8 feat(clients): use schema-serde in AWS Query & EC2 Query clients (#7489)
• e0c0a7c Publish v3.929.0
• cbdbdf8 Publish v3.928.0
• See full diff in compare view

Updates @aws-sdk/client-eventbridge from 3.927.0 to 3.932.0

Release notes

Sourced from @​aws-sdk/client-eventbridge's releases.

v3.932.0

3.932.0(2025-11-14)

New Features

• clients: update client endpoints as of 2025-11-14 (87473bd2)
• client-ec2: This release adds AvailabilityZoneId support for CreateInstanceConnectEndpoint, DescribeInstanceConnectEndpoints, and DeleteInstanceConnectEndpoint APIs. (5ba1cf64)
• client-datazone: Adds support for granting read and write access to Amazon S3 general purpose buckets using CreateSubscriptionRequest and AcceptSubscriptionRequest APIs. Also adds search filters for SSOUser and SSOGroup to ListSubscriptions APIs and deprecates "sortBy" parameter for ListSubscriptions APIs. (77488e77)
• client-medialive: Removed all the value constraint (min/max) for the shape definitions (e.g. integerMin0Max3600) on the C2j models to get rid of the need to request an exemption from the SDK team whenever a shape definition (e.g. integerMin0Max3600) is changed. (9bcaeef4)
• client-imagebuilder: EC2 Image Builder now supports invoking Lambda functions and executing Step Functions state machine through image workflows. (f8fe9d73)

Bug Fixes

• core/protocols: decorate service exceptions with unmodeled fields (#7504) (6de803d7)

---

For list of updated packages, view updated-packages.md in assets-3.932.0.zip

v3.931.0

3.931.0(2025-11-13)

Chores

• add pkg api shape validation (#7498) (e501b6cf)

New Features

• client-sagemaker: Added support for minor version upgrades and AWS Identity Center integration for SageMaker Hadron Partner Apps, enabling automated version management and IdC group-based access control. (99fbf1f1)
• client-elastic-load-balancing-v2: QUIC and TCP_QUIC protocol support for Network Load Balancer (NLB). This capability enables customers to forward QUIC traffic to their targets with ultra-low latency while maintaining session stickiness using QUIC Connection IDs. (555b55de)
• client-ecr: Add Amazon ECR FIPS PrivateLink endpoint support (b2a1603e)
• client-cloudformation: CloudFormation now supports GetHookResult API with annotations to retrieve structured compliance check results and remediation guidance for each evaluated resource, replacing the previous single-message limitation with detailed validation outcomes. (326e5dda)
• client-rds: Updated endpoint and service metadata (b075f0ff)
• client-mediaconvert: Lowers minimum duration for black video generator. Adds support for embedding and signing C2PA content credentials in DASH and CMAF HLS outputs. (dc04e020)
• client-workspaces-web: Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings. (36de0dee)
• client-controlcatalog: Added support for related control mappings with new RELATED_CONTROL mapping type in ListControlMappings API. (1333cd34)
• client-iot-wireless: Integration of Device Location with Amazon Sidewalk network for Amazon Sidewalk enabled devices (bcf811ef)
• client-ec2: Added support for new accelerator types ("media") and accelerator names ("L4", "L40s", "GAUDI_HL_205", "INFERENTIA2", "TRAINIUM", "TRAINIUM2", "U30") in Attributes Based Instance Type Selection for launched instance types. (69871860)
• clients: use schema-serde in AWS REST XML clients (#7499) (f806a2b9)

Bug Fixes

• core/protocols: rest-json default request body conditions (#7501) (37e8b0dd)

---

For list of updated packages, view updated-packages.md in assets-3.931.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-eventbridge's changelog.

3.932.0 (2025-11-14)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.931.0 (2025-11-13)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.930.0 (2025-11-12)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.929.0 (2025-11-11)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.928.0 (2025-11-10)

Features

• clients: use schema-serde in AWS JSON RPC clients (#7483) (b0f07b4)

Commits

• c28f46d Publish v3.932.0
• 99f5f06 Publish v3.931.0
• 2a1737e Publish v3.930.0
• 6362fe2 chore(codegen): sync for idempotencyToken fix in http binding protocols (#7495)
• e0c0a7c Publish v3.929.0
• cbdbdf8 Publish v3.928.0
• b0f07b4 feat(clients): use schema-serde in AWS JSON RPC clients (#7483)
• See full diff in compare view

Updates @aws-sdk/client-sns from 3.927.0 to 3.932.0

Release notes

Sourced from @​aws-sdk/client-sns's releases.

v3.932.0

3.932.0(2025-11-14)

New Features

• clients: update client endpoints as of 2025-11-14 (87473bd2)
• client-ec2: This release adds AvailabilityZoneId support for CreateInstanceConnectEndpoint, DescribeInstanceConnectEndpoints, and DeleteInstanceConnectEndpoint APIs. (5ba1cf64)
• client-datazone: Adds support for granting read and write access to Amazon S3 general purpose buckets using CreateSubscriptionRequest and AcceptSubscriptionRequest APIs. Also adds search filters for SSOUser and SSOGroup to ListSubscriptions APIs and deprecates "sortBy" parameter for ListSubscriptions APIs. (77488e77)
• client-medialive: Removed all the value constraint (min/max) for the shape definitions (e.g. integerMin0Max3600) on the C2j models to get rid of the need to request an exemption from the SDK team whenever a shape definition (e.g. integerMin0Max3600) is changed. (9bcaeef4)
• client-imagebuilder: EC2 Image Builder now supports invoking Lambda functions and executing Step Functions state machine through image workflows. (f8fe9d73)

Bug Fixes

• core/protocols: decorate service exceptions with unmodeled fields (#7504) (6de803d7)

---

For list of updated packages, view updated-packages.md in assets-3.932.0.zip

v3.931.0

3.931.0(2025-11-13)

Chores

• add pkg api shape validation (#7498) (e501b6cf)

New Features

• client-sagemaker: Added support for minor version upgrades and AWS Identity Center integration for SageMaker Hadron Partner Apps, enabling automated version management and IdC group-based access control. (99fbf1f1)
• client-elastic-load-balancing-v2: QUIC and TCP_QUIC protocol support for Network Load Balancer (NLB). This capability enables customers to forward QUIC traffic to their targets with ultra-low latency while maintaining session stickiness using QUIC Connection IDs. (555b55de)
• client-ecr: Add Amazon ECR FIPS PrivateLink endpoint support (b2a1603e)
• client-cloudformation: CloudFormation now supports GetHookResult API with annotations to retrieve structured compliance check results and remediation guidance for each evaluated resource, replacing the previous single-message limitation with detailed validation outcomes. (326e5dda)
• client-rds: Updated endpoint and service metadata (b075f0ff)
• client-mediaconvert: Lowers minimum duration for black video generator. Adds support for embedding and signing C2PA content credentials in DASH and CMAF HLS outputs. (dc04e020)
• client-workspaces-web: Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings. (36de0dee)
• client-controlcatalog: Added support for related control mappings with new RELATED_CONTROL mapping type in ListControlMappings API. (1333cd34)
• client-iot-wireless: Integration of Device Location with Amazon Sidewalk network for Amazon Sidewalk enabled devices (bcf811ef)
• client-ec2: Added support for new accelerator types ("media") and accelerator names ("L4", "L40s", "GAUDI_HL_205", "INFERENTIA2", "TRAINIUM", "TRAINIUM2", "U30") in Attributes Based Instance Type Selection for launched instance types. (69871860)
• clients: use schema-serde in AWS REST XML clients (#7499) (f806a2b9)

Bug Fixes

• core/protocols: rest-json default request body conditions (#7501) (37e8b0dd)

---

For list of updated packages, view updated-packages.md in assets-3.931.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sns's changelog.

3.932.0 (2025-11-14)

Note: Version bump only for package @​aws-sdk/client-sns

3.931.0 (2025-11-13)

Note: Version bump only for package @​aws-sdk/client-sns

3.930.0 (2025-11-12)

Features

• clients: use schema-serde in AWS Query & EC2 Query clients (#7489) (e9b6da8)

3.929.0 (2025-11-11)

Note: Version bump only for package @​aws-sdk/client-sns

3.928.0 (2025-11-10)

Note: Version bump only for package @​aws-sdk/client-sns

Commits

• c28f46d Publish v3.932.0
• 99f5f06 Publish v3.931.0
• 2a1737e Publish v3.930.0
• 6362fe2 chore(codegen): sync for idempotencyToken fix in http binding protocols (#7495)
• e9b6da8 feat(clients): use schema-serde in AWS Query & EC2 Query clients (#7489)
• e0c0a7c Publish v3.929.0
• cbdbdf8 Publish v3.928.0
• See full diff in compare view

Updates @aws-sdk/client-sts from 3.927.0 to 3.932.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.932.0

3.932.0(2025-11-14)

New Features

• clients: update client endpoints as of 2025-11-14 (87473bd2)
• client-ec2: This release adds AvailabilityZoneId support for CreateInstanceConnectEndpoint, DescribeInstanceConnectEndpoints, and DeleteInstanceConnectEndpoint APIs. (5ba1cf64)
• client-datazone: Adds support for granting read and write access to Amazon S3 general purpose buckets using CreateSubscriptionRequest and AcceptSubscriptionRequest APIs. Also adds search filters for SSOUser and SSOGroup to ListSubscriptions APIs and deprecates "sortBy" parameter for ListSubscriptions APIs. (77488e77)
• client-medialive: Removed all the value constraint (min/max) for the shape definitions (e.g. integerMin0Max3600) on the C2j models to get rid of the need to request an exemption from the SDK team whenever a shape definition (e.g. integerMin0Max3600) is changed. (9bcaeef4)
• client-imagebuilder: EC2 Image Builder now supports invoking Lambda functions and executing Step Functions state machine through image workflows. (f8fe9d73)

Bug Fixes

• core/protocols: decorate service exceptions with unmodeled fields (#7504) (6de803d7)

---

For list of updated packages, view updated-packages.md in assets-3.932.0.zip

v3.931.0

3.931.0(2025-11-13)

Chores

• add pkg api shape validation (#7498) (e501b6cf)

New Features

• client-sagemaker: Added support for minor version upgrades and AWS Identity Center integration for SageMaker Hadron Partner Apps, enabling automated version management and IdC group-based access control. (99fbf1f1)
• client-elastic-load-balancing-v2: QUIC and TCP_QUIC protocol support for Network Load Balancer (NLB). This capability enables customers to forward QUIC traffic to their targets with ultra-low latency while maintaining session stickiness using QUIC Connection IDs. (555b55de)
• client-ecr: Add Amazon ECR FIPS PrivateLink endpoint support (b2a1603e)
• client-cloudformation: CloudFormation now supports GetHookResult API with annotations to retrieve structured compliance check results and remediation guidance for each evaluated resource, replacing the previous single-message limitation with detailed validation outcomes. (326e5dda)
• client-rds: Updated endpoint and service metadata (b075f0ff)
• client-mediaconvert: Lowers minimum duration for black video generator. Adds support for embedding and signing C2PA content credentials in DASH and CMAF HLS outputs. (dc04e020)
• client-workspaces-web: Support for managing web content filtering for defining, tracking and regulating type of content accessed with WorkSpaces Secure Browser as part of browser settings. (36de0dee)
• client-controlcatalog: Added support for related control mappings with new RELATED_CONTROL mapping type in ListControlMappings API. (1333cd34)
• client-iot-wireless: Integration of Device Location with Amazon Sidewalk network for Amazon Sidewalk enabled devices (bcf811ef)
• client-ec2: Added support for new accelerator types ("media") and accelerator names ("L4", "L40s", "GAUDI_HL_205", "INFERENTIA2", "TRAINIUM", "TRAINIUM2", "U30") in Attributes Based Instance Type Selection for launched instance types. (69871860)
• clients: use schema-serde in AWS REST XML clients (#7499) (f806a2b9)

Bug Fixes

• core/protocols: rest-json default request body conditions (#7501) (37e8b0dd)

---

For list of updated packages, view updated-packages.md in assets-3.931.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.932.0 (2025-11-14)

Note: Version bump only for package @​aws-sdk/client-sts

3.931.0 (2025-11-13)

Note: Version bump only for package @​aws-sdk/client-sts

3.930.0 (2025-11-12)

Features

• clients: use schema-serde in AWS Query & EC2 Query clients (#7489) (e9b6da8)

3.929.0 (2025-11-11)

Note: Version bump only for package @​aws-sdk/client-sts

3.928.0 (2025-11-10)

Features

• client-sts: Added GetDelegatedAccessToken API, which is not available for general use at this time. (41552ed)

Commits

• c28f46d Publish v3.932.0
• 99f5f06 Publish v3.931.0
• 2a1737e Publish v3.930.0
• 6362fe2 chore(codegen): sync for idempotencyToken fix in http binding protocols (#7495)
• e9b6da8 feat(clients): use schema-serde in AWS Query & EC2 Query clients (#7489)
• e0c0a7c Publish v3.929.0
• cbdbdf8 Publish v3.928.0
• 41552ed feat(client-sts): Added GetDelegatedAccessToken API, which is not available f...
• See full diff in compare view

Updates @smithy/util-retry from 4.2.4 to 4.2.5

Release notes

Sourced from @​smithy/util-retry's releases.

@​smithy/util-retry@​4.2.5

Patch Changes

• Updated dependencies [3926fd7]
  • @​smithy/types@​4.9.0
  • @​smithy/service-error-classification@​4.2.5

Changelog

Sourced from @​smithy/util-retry's changelog.

4.2.5

Patch Changes

• Updated dependencies [3926fd7]
  • @​smithy/types@​4.9.0
  • @​smithy/service-error-classification@​4.2.5

Commits

• cc0124e Version NPM packages
• See full diff in compare view

Updates @biomejs/biome from 2.3.4 to 2.3.6

Release notes

Sourced from @​biomejs/biome's releases.

Biome CLI v2.3.6

2.3.6

Patch Changes

• #8100 82b9a8e Thanks @​Netail! - Added the nursery rule useFind. Enforce the use of Array.prototype.find() over Array.prototype.filter() followed by [0] when looking for a single result.

  Invalid:

  [1, 2, 3].filter((x) => x > 1)[0];
  [1, 2, 3].filter((x) => x > 1).at(0);

• #8118 dbc7021 Thanks @​hirokiokada77! - Fixed #8117: useValidLang now accepts valid BCP 47 language tags with script subtags.

  Valid:

  <html lang="zh-Hans-CN"></html>

• #7672 f1d5725 Thanks @​Netail! - Added the nursery rule useConsistentGraphqlDescriptions, requiring all descriptions to follow the same style (either block or inline) inside GraphQL files.

  Invalid:

  enum EnumValue {
    "this is a description"
    DEFAULT
  }

  Valid:

  enum EnumValue {
    """
    this is a description
    """
    DEFAULT
  }

• #8026 f102661 Thanks @​matanshavit! - Fixed #8004: noParametersOnlyUsedInRecursion now correctly detects recursion by comparing function bindings instead of just names.

  Previously, the rule incorrectly flagged parameters when a method had the same name as an outer function but called the outer function (not itself):

... (truncated)

Changelog

Sourced from @​biomejs/biome's changelog.

2.3.6

Patch Changes

• #8100 82b9a8e Thanks @​Netail! - Added the nursery rule useFind. Enforce the use of Array.prototype.find() over Array.prototype.filter() followed by [0] when looking for a single result.

  Invalid:

  [1, 2, 3].filter((x) => x > 1)[0];
  [1, 2, 3].filter((x) => x > 1).at(0);

• #8118 dbc7021 Thanks @​hirokiokada77! - Fixed #8117: useValidLang now accepts valid BCP 47 language tags with script subtags.

  Valid:

  <html lang="zh-Hans-CN"></html>

• #7672 f1d5725 Thanks @​Netail! - Added the nursery rule useConsistentGraphqlDescriptions, requiring all descriptions to follow the same style (either block or inline) inside GraphQL files.

  Invalid:

  enum EnumValue {
    "this is a description"
    DEFAULT
  }

  Valid:

  enum EnumValue {
    """
    this is a description
    """
    DEFAULT
  }

• #8026 f102661 Thanks @​matanshavit! - Fixed #8004: noParametersOnlyUsedInRecursion now correctly detects recursion by comparing function bindings instead of just names.

  Previously, the rule incorrectly flagged parameters when a method had the same name as an outer function but called the outer function (not itself):

  function notRecursive(arg) {

... (truncated)

Commits

• 166d95b ci: release (#8076)
• 6976d03 chore: schema regression rule domains (#8133)
• 5fc5416 feat(lint/vue): add noVueVIfWithVFor, useVueHyphenatedAttributes (#8097)
• fb8e3e7 fix(noInvalidUseBeforeDeclaration): handle class, enum, import-equals (#8113)
• 0f0a658 feat(analyze): implement noSyncScripts (#8108)
• 82b9a8e feat(js_analyze): implement useFind (#8100)
• 1fdcaf0 feat(schema): add docs URLs to rule description (#8098)
• b406db6 feat: add useSpread rule (#7681)
• 6bcc9d2 chore: regression schemars v1 (#8092)
• 0c0edd4 feat(graphql_analyze): add useUniqueGraphqlOperationName (#8013)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @​biomejs/biome since your current version.

Updates @types/aws-lambda from 8.10.157 to 8.10.158

Commits

• See full diff in compare view

Updates @types/node from 24.10.0 to 24.10.1

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions