build(deps-dev): bump the nodejs-other group across 2 directories with 10 updates

[dependabot]

Bumps the nodejs-other group with 9 updates in the /nodejs directory:

Package	From	To
@types/aws-lambda	8.10.156	8.10.161
bestzip	2.2.2	2.2.3
eslint	10.1.0	10.2.0
typescript	5.9.3	6.0.2
@types/sinon	21.0.0	21.0.1
ts-loader	9.5.4	9.5.7
@aws-sdk/client-sts	3.1014.0	3.1024.0
@types/node	25.5.0	25.5.2
aws-cdk-lib	2.244.0	2.248.0

Bumps the nodejs-other group with 3 updates in the /nodejs/sample-apps/aws-sdk directory: bestzip, typescript and @types/node.

Updates @types/aws-lambda from 8.10.156 to 8.10.161

Commits

• See full diff in compare view

Updates bestzip from 2.2.2 to 2.2.3

Commits

• 90150c4 2.2.3
• 7759e00 Upgrade glob and some other dependencies
• See full diff in compare view

Updates eslint from 10.1.0 to 10.2.0

Release notes

Sourced from eslint's releases.

v10.2.0

Features

• 586ec2f feat: Add meta.languages support to rules (#20571) (Copilot)
• 14207de feat: add Temporal to no-obj-calls (#20675) (Pixel998)
• bbb2c93 feat: add Temporal to ES2026 globals (#20672) (Pixel998)

Bug Fixes

• 542cb3e fix: update first-party dependencies (#20714) (Francesco Trotta)

Documentation

• a2af743 docs: add language to configuration objects (#20712) (Francesco Trotta)
• 845f23f docs: Update README (GitHub Actions Bot)
• 5fbcf59 docs: remove sourceType from ts playground link (#20477) (Tanuj Kanti)
• 8702a47 docs: Update README (GitHub Actions Bot)
• ddeaded docs: Update README (GitHub Actions Bot)
• 2b44966 docs: add Major Releases section to Manage Releases (#20269) (Milos Djermanovic)
• eab65c7 docs: update eslint versions in examples (#20664) (루밀LuMir)
• 3e4a299 docs: update ESM Dependencies policies with note for own-usage packages (#20660) (Milos Djermanovic)

Chores

• 8120e30 refactor: extract no unmodified loop condition (#20679) (kuldeep kumar)
• 46e8469 chore: update dependency markdownlint-cli2 to ^0.22.0 (#20697) (renovate[bot])
• 01ed3aa test: add unit tests for unicode utilities (#20622) (Manish chaudhary)
• 811f493 ci: remove --legacy-peer-deps from types integration tests (#20667) (Milos Djermanovic)
• 6b86fcf chore: update dependency npm-run-all2 to v8 (#20663) (renovate[bot])
• 632c4f8 chore: add prettier update commit to .git-blame-ignore-revs (#20662) (루밀LuMir)
• b0b0f21 chore: update dependency eslint-plugin-regexp to ^3.1.0 (#20659) (Milos Djermanovic)
• 228a2dd chore: update dependency eslint-plugin-eslint-plugin to ^7.3.2 (#20661) (Milos Djermanovic)
• 3ab4d7e test: Add tests for eslintrc-style keys (#20645) (kuldeep kumar)

Commits

• 000128c 10.2.0
• 1988fad Build: changelog update for 10.2.0
• 542cb3e fix: update first-party dependencies (#20714)
• a2af743 docs: add language to configuration objects (#20712)
• 845f23f docs: Update README
• 5fbcf59 docs: remove sourceType from ts playground link (#20477)
• 8702a47 docs: Update README
• ddeaded docs: Update README
• 8120e30 refactor: extract no unmodified loop condition (#20679)
• 46e8469 chore: update dependency markdownlint-cli2 to ^0.22.0 (#20697)
• Additional commits viewable in compare view

Updates typescript from 5.9.3 to 6.0.2

Release notes

Sourced from typescript's releases.

TypeScript 6.0

For release notes, check out the release announcement blog post.

• fixed issues query for TypeScript 6.0.0 (Beta).
• fixed issues query for TypeScript 6.0.1 (RC).
• fixed issues query for TypeScript 6.0.2 (Stable).

Downloads are available on:

• npm

TypeScript 6.0 Beta

For release notes, check out the release announcement.

• fixed issues query for Typescript 6.0.0 (Beta).

Downloads are available on:

• npm

Commits

• 607a22a Bump version to 6.0.2 and LKG
• 9e72ab7 🤖 Pick PR #63239 (Fix missing lib files in reused pro...) into release-6.0 (#...
• 35ff23d 🤖 Pick PR #63163 (Port anyFunctionType subtype fix an...) into release-6.0 (#...
• e175b69 Bump version to 6.0.1-rc and LKG
• af4caac Update LKG
• 8efd7e8 Merge remote-tracking branch 'origin/main' into release-6.0
• 206ed1a Deprecate assert in import() (#63172)
• e688ac8 Update dependencies (#63156)
• 29b300d Bump the github-actions group across 1 directory with 2 updates (#63205)
• 0c2c7a3 DOM update (#63183)
• Additional commits viewable in compare view

Updates typescript-eslint from 8.57.1 to 8.58.0

Release notes

Sourced from typescript-eslint's releases.

v8.58.0

8.58.0 (2026-03-30)

🚀 Features

• support TypeScript 6 (#12124)

🩹 Fixes

• eslint-plugin: crash in no-unnecessary-type-arguments (#12163)
• eslint-plugin: [no-extraneous-class] handle index signatures (#12142)
• eslint-plugin: [prefer-regexp-exec] avoid fixing unknown RegExp flags (#12161)

❤️ Thank You

• ej shafran @​ej-shafran
• Evyatar Daud @​StyleShit
• GG ZIBLAKING
• milkboy2564 @​SeolJaeHyeok
• teee32 @​teee32

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

v8.57.2

8.57.2 (2026-03-23)

🩹 Fixes

• eslint-plugin: [prefer-optional-chain] remove dangling closing parenthesis (#11865)
• eslint-plugin: [array-type] ignore Array and ReadonlyArray without type arguments (#11971)
• eslint-plugin: [no-restricted-types] flag banned generics in extends or implements (#12120)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-unsafe-return] false positive on unwrapping generic (#12125)
• eslint-plugin: [no-useless-default-assignment] skip reporting false positives for unresolved type parameters (#12127)
• eslint-plugin: [prefer-readonly-parameter-types] preserve type alias infomation (#11954)
• typescript-estree: skip createIsolatedProgram fallback for projectService (#12066, #12065)

❤️ Thank You

• Kirk Waiblinger @​kirkwaiblinger
• Konv Suu
• mdm317
• Newton Yuan @​NewtonYuan
• RyoheiYamamoto
• SungHyun627 @​SungHyun627
• Tamashoo @​Tamashoo

See GitHub Releases for more information.

... (truncated)

Changelog

Sourced from typescript-eslint's changelog.

8.58.0 (2026-03-30)

🚀 Features

• support TypeScript 6 (#12124)

❤️ Thank You

• Evyatar Daud @​StyleShit

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

8.57.2 (2026-03-23)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• 4933417 chore(release): publish 8.58.0
• 8cde2d0 feat: support TypeScript 6 (#12124)
• be4d54d chore(release): publish 8.57.2
• See full diff in compare view

Updates @types/sinon from 21.0.0 to 21.0.1

Commits

• See full diff in compare view

Updates ts-loader from 9.5.4 to 9.5.7

Release notes

Sourced from ts-loader's releases.

v9.5.7

• fix: TS5011 errors with TypeScript 6.0: transpileModule called with rootDir: undefined #1678 - thanks @​julioz and @​errorx666
• feat: migrate to trusted publishing - thanks @​johnnyreilly

Skipping 9.5.5-9.5.6 due to publishing issues

Changelog

Sourced from ts-loader's changelog.

9.5.7

• fix: TS5011 errors with TypeScript 6.0: transpileModule called with rootDir: undefined #1678 - thanks @​julioz and @​errorx666
• feat: migrate to trusted publishing - thanks @​johnnyreilly

Skipping 9.5.5-9.5.6 due to publishing issues

Commits

• 4a60de4 chore: trusted publishing attempt 3
• b03b4aa chore: version bump
• 2421dcf fix: trusted publishing by changing respository.url in package.json
• f84480f fix: TS5011 errors with TypeScript 6.0: transpileModule called with rootDir: ...
• 0cef777 feat: migrate to trusted publishing (#1680)
• a0cfb39 docs: add AGENTS.md / CLAUDE.md
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for ts-loader since your current version.

Updates @aws-sdk/client-sts from 3.1014.0 to 3.1024.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.1024.0

3.1024.0(2026-04-03)

Documentation Changes

• client-organizations: Updates close Account quota for member accounts in an Organization. (4bc933f4)
• client-bedrock-agentcore-control: Documentation Update for Adds support for three-legged (Authorization Code grant type) OAuth along with predefined MCP tool schema configuration for Amazon Bedrock AgentCore gateway MCP server targets. (96ae995b)

New Features

• client-bedrock-agent: Added strict parameter to ToolSpecification to allow users to enforce strict JSON schema adherence for tool input schemas. (2d57cd61)
• client-medialive: AWS Elemental MediaLive released a new features that allows customers to use HLG 2020 as a color space for AV1 video codec. (b9ff368c)
• client-imagebuilder: Updated pagination token validation for ListContainerRecipes API to support maximum size of 65K characters (0d392c90)
• client-cloudwatch-logs: Added queryDuration, bytesScanned, and userIdentity fields to the QueryInfo response object returned by DescribeQueries. Customers can now view detailed query cost information including who ran the query, how long it took, and the volume of data scanned. (c4b9df8e)
• client-payment-cryptography: Adds optional support to retrieve previously generated import and export tokens to simplify import and export functions (76274743)
• client-bedrock: Amazon Bedrock Guardrails enforcement configuration APIs now support selective guarding controls for system prompts as well as user and assistant messages, along with SDK support for Amazon Bedrock resource policy APIs. (4aa232cc)
• client-lightsail: Add support for tagging of Alarm resource type (ad9e0d71)

---

For list of updated packages, view updated-packages.md in assets-3.1024.0.zip

v3.1023.0

3.1023.0(2026-04-02)

Documentation Changes

• client-geo-places: This release updates API reference documentation for Amazon Location Service Places APIs to reflect regional restrictions for Grab Maps users in ReverseGeocode, Suggest, SearchText, and GetPlace operations (f60237d7)

New Features

• clients: update client endpoints as of 2026-04-02 (b5ffded0)
• client-gamelift: Amazon GameLift Servers now includes a ComputeName field in game session API responses, making it easier to identify which compute is hosting a game session without cross-referencing IP addresses. (9eb2723f)
• client-connect: Include CUSTOMER to evaluation target and participant role. Support Korean, Japanese and Simplified Chinese in evaluation forms. (69be1448)
• client-bedrock-data-automation: Data Automation Library is a BDA capability that lets you create reusable entity resources to improve extraction accuracy. Libraries support Custom Vocabulary entities that enhance speech recognition for audio and video content with domain-specific terminology shared across projects (b7560ab1)
• client-pricing: This release increases the MaxResults parameter of the GetAttributeValues API from 100 to 10000. (f3944601)
• client-cloudwatch: CloudWatch now supports OTel enrichment to make vended metrics for supported AWS resources queryable via PromQL with resource ARN and tag labels, and PromQL alarms for metrics ingested via the OTLP endpoint with multi-contributor evaluation. (c34638a1)
• client-bedrock-agentcore-control: Adds support for three-legged (Authorization Code grant type) OAuth along with predefined MCP tool schema configuration for Amazon Bedrock AgentCore gateway MCP server targets. (3bf4e650)
• client-bedrock-runtime: Relax ToolUseId pattern to allow dots and colons (2837c477)
• client-appstream: Amazon WorkSpaces Applications now supports drain mode for instances in multi-session fleets. This capability allows administrators to instruct individual fleet instances to stop accepting new user sessions while allowing existing sessions to continue uninterrupted. (3644b4c1)
• client-cloudwatch-logs: We are pleased to announce that our logs transformation csv processor now has a destination field, allowing you to specify under which parent node parsed columns be placed under. (d3d6f2bb)
• client-deadline: AWS Deadline Cloud now supports configurable scheduling on each queue. The scheduling configuration controls how workers are distributed across jobs. (522c454c)

---

For list of updated packages, view updated-packages.md in assets-3.1023.0.zip

v3.1022.0

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.1024.0 (2026-04-03)

Note: Version bump only for package @​aws-sdk/client-sts

3.1023.0 (2026-04-02)

Note: Version bump only for package @​aws-sdk/client-sts

3.1022.0 (2026-04-01)

Note: Version bump only for package @​aws-sdk/client-sts

3.1021.0 (2026-03-31)

Bug Fixes

• codegen: sync for adaptive retry throttling detection fix (#7905) (03f108d)

3.1020.0 (2026-03-30)

Note: Version bump only for package @​aws-sdk/client-sts

3.1019.0 (2026-03-27)

Note: Version bump only for package @​aws-sdk/client-sts

... (truncated)

Commits

• 99bf9fc Publish v3.1024.0
• 34e7b07 Publish v3.1023.0
• e7e636a Publish v3.1022.0
• 86db170 Publish v3.1021.0
• 03f108d fix(codegen): sync for adaptive retry throttling detection fix (#7905)
• 15cfc71 Publish v3.1020.0
• c702a75 chore(codegen): update smithy package versions (#7903)
• 7f8c031 chore(codegen): differentiate type imports (#7897)
• a84cde6 Publish v3.1019.0
• e35edfc chore(codegen): import from core submodules instead of root (#7896)
• Additional commits viewable in compare view

Updates @types/node from 25.5.0 to 25.5.2

Commits

• See full diff in compare view

Updates aws-cdk-lib from 2.244.0 to 2.248.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.248.0

Bug Fixes

• eks: downgrade isolated subnet validation from error to warning (#37500) (470856c), closes #37491

---

Alpha modules (2.248.0-alpha.0)

v2.247.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-bedrockagentcore: AWS::BedrockAgentCore::OnlineEvaluationConfig: ExecutionStatus attribute removed. aws-appstream: AWS::AppStream::ImageBuilder: Name property is now immutable. aws-eks: AWS::EKS::Capability: EKS_CAPABILITY_ACK_S3_LOGS vended log type removed.

Features

• update L1 CloudFormation resource definitions (#37410) (bd2c318)
• apigatewayv2: add role support for lambda authorizers (#35706) (2fb2f16), closes #35696
• batch: skip unregister job definition on update (#36011) (2fb2240)
• elasticloadbalancingv2: jwt verification for application load balancer (#36099) (aacd28a), closes #36096

Bug Fixes

• bump brace-expansion from 5.0.3 to 5.0.5 to address CVE-2026-33750 (#37379) (69cf4c9)
• prevent prototype pollution in 2 APIs (#37453) (1016537)
• aws-cdk-lib: condensed stack trace hides namespaced package name (#37413) (cb8e7fb)

---

Alpha modules (2.247.0-alpha.0)

Features

• mediapackagev2-alpha: new L2 construct (#37279) (7debfb9)

v2.246.0

Features

• bedrock: add MiniMax and GLM foundation model identifiers (#37348) (2015344), closes #37347

Bug Fixes

• dynamodb: throw error when grantee is an unsupported ServicePrincipal (#37335) (d12754f), closes #35817 aws/aws-cdk#37273
• lambda-nodejs: use powershell for spawn steps on Windows (#37412) (a92105c), closes #37387
• core: noisy property deprecation warnings (#37415) (4fd0002), closes #37407

Reverts

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.248.0-alpha.0 (2026-04-02)

2.247.0-alpha.0 (2026-04-02)

Features

• mediapackagev2-alpha: new L2 construct (#37279) (7debfb9)

2.246.0-alpha.0 (2026-03-31)

2.245.0-alpha.0 (2026-03-27)

Features

• s3tables-alpha: add support for partition spec, sort order, and table properties (#36811) (2696cd1)
• s3tables-alpha: add metrics configuration support for TableBucket (#37275) (e8786f5)
• s3tables-alpha: implement ITaggableV2 on TableBucket and Table L2 constructs (#37277) (69c8944), closes #33054

2.244.0-alpha.0 (2026-03-19)

Bug Fixes

• kinesisanalytics-flink-alpha: mark deprecated flink runtimes as deprecated (#37155) (0a89447)

2.243.0-alpha.0 (2026-03-11)

2.242.0-alpha.0 (2026-03-10)

Features

• mixins-preview: allow passing resource objects into properties in CFN Property mixins (#37148) (f238629)
• mixins-preview: generate EventBridge pattern for all events (#37081) (f30e836)
• mixins-preview: support custom merge strategies via IMergeStrategy (#37170) (0dec011)

2.241.0-alpha.0 (2026-03-02)

Features

• mixins-preview: add recordFields and outputFormat to Vended Logs Mixin (#37042) (dd94c31)
• mixins-preview: cross account delivery destinations (#36827) (a759eb6)

... (truncated)

Commits

• 78536e6 Merge branch 'main' into merge-back/2.247.0
• 470856c fix(eks): downgrade isolated subnet validation from error to warning (#37500)
• 7b6c66f chore: update analytics metadata blueprints
• 6fc7add chore: yarn upgrade dependencies requiring intervention (#36806)
• bd2c318 feat: update L1 CloudFormation resource definitions (#37410)
• 2fb2f16 feat(apigatewayv2): add role support for lambda authorizers (#35706)
• aacd28a feat(elasticloadbalancingv2): jwt verification for application load balancer ...
• 1016537 fix: prevent prototype pollution in 2 APIs (#37453)
• 2fb2240 feat(batch): skip unregister job definition on update (#36011)
• 372571a Merge branch 'main' into merge-back/2.246.0
• Additional commits viewable in compare view

Updates @aws-sdk/client-sts from 3.1014.0 to 3.1024.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.1024.0

3.1024.0(2026-04-03)

Documentation Changes

• client-organizations: Updates close Account quota for member accounts in an Organization. (4bc933f4)
• client-bedrock-agentcore-control: Documentation Update for Adds support for three-legged (Authorization Code grant type) OAuth along with predefined MCP tool schema configuration for Amazon Bedrock AgentCore gateway MCP server targets. (96ae995b)

New Features

• client-bedrock-agent: Added strict parameter to ToolSpecification to allow users to enforce strict JSON schema adherence for tool input schemas. (2d57cd61)
• client-medialive: AWS Elemental MediaLive released a new features that allows customers to use HLG 2020 as a color space for AV1 video codec. (b9ff368c)
• client-imagebuilder: Updated pagination token validation for ListContainerRecipes API to support maximum size of 65K characters (0d392c90)
• client-cloudwatch-logs: Added queryDuration, bytesScanned, and userIdentity fields to the QueryInfo response object returned by DescribeQueries. Customers can now view detailed query cost information including who ran the query, how long it took, and the volume of data scanned. (c4b9df8e)
• client-payment-cryptography: Adds optional support to retrieve previously generated import and export tokens to simplify import and export functions (76274743)
• client-bedrock: Amazon Bedrock Guardrails enforcement configuration APIs now support selective guarding controls for system prompts as well as user and assistant messages, along with SDK support for Amazon Bedrock resource policy APIs. (4aa232cc)
• client-lightsail: Add support for tagging of Alarm resource type (ad9e0d71)

---

For list of updated packages, view updated-packages.md in assets-3.1024.0.zip

v3.1023.0

3.1023.0(2026-04-02)

Documentation Changes

• client-geo-places: This release updates API reference documentation for Amazon Location Service Places APIs to reflect regional restrictions for Grab Maps users in ReverseGeocode, Suggest, SearchText, and GetPlace operations (f60237d7)

New Features

• clients: update client endpoints as of 2026-04-02 (b5ffded0)
• client-gamelift: Amazon GameLift Servers now includes a ComputeName field in game session API responses, making it easier to identify which compute is hosting a game session without cross-referencing IP addresses. (9eb2723f)
• client-connect: Include CUSTOMER to evaluation target and participant role. Support Korean, Japanese and Simplified Chinese in evaluation forms. (69be1448)
• client-bedrock-data-automation: Data Automation Library is a BDA capability that lets you create reusable entity resources to improve extraction accuracy. Libraries support Custom Vocabulary entities that enhance speech recognition for audio and video content with domain-specific terminology shared across projects (b7560ab1)
• client-pricing: This release increases the MaxResults parameter of the GetAttributeValues API from 100 to 10000. (f3944601)
• client-cloudwatch: CloudWatch now supports OTel enrichment to make vended metrics for supported AWS resources queryable via PromQL with resource ARN and tag labels, and PromQL alarms for metrics ingested via the OTLP endpoint with multi-contributor evaluation. (c34638a1)
• client-bedrock-agentcore-control: Adds support for three-legged (Authorization Code grant type) OAuth along with predefined MCP tool schema configuration for Amazon Bedrock AgentCore gateway MCP server targets. (3bf4e650)
• client-bedrock-runtime: Relax ToolUseId pattern to allow dots and colons (2837c477)
• client-appstream: Amazon WorkSpaces Applications now supports drain mode for instances in multi-session fleets. This capability allows administrators to instruct individual fleet instances to stop accepting new user sessions while allowing existing sessions to continue uninterrupted. (3644b4c1)
• client-cloudwatch-logs: We are pleased to announce that our logs transformation csv processor now has a destination field, allowing you to specify under which parent node parsed columns be placed under. (d3d6f2bb)
• client-deadline: AWS Deadline Cloud now supports configurable scheduling on each queue. The scheduling configuration controls how workers are distributed across jobs. (522c454c)

---

For list of updated packages, view updated-packages.md in assets-3.1023.0.zip

v3.1022.0

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.1024.0 (2026-04-03)

Note: Version bump only for package @​aws-sdk/client-sts

3.1023.0 (2026-04-02)

Note: Version bump only for package @​aws-sdk/client-sts

3.1022.0 (2026-04-01)

Note: Version bump only for package @​aws-sdk/client-sts

3.1021.0 (2026-03-31)

Bug Fixes

• codegen: sync for adaptive retry throttling detection fix (#7905) (03f108d)

3.1020.0 (2026-03-30)

Note: Version bump only for package @​aws-sdk/client-sts

3.1019.0 (2026-03-27)

Note: Version bump only for package @​aws-sdk/client-sts

... (truncated)

Commits

• 99bf9fc Publish v3.1024.0
• 34e7b07 Publish v3.1023.0
• e7e636a Publish v3.1022.0
• 86db170 Publish v3.1021.0
• 03f108d fix(codegen): sync for adaptive retry throttling detection fix (#7905)
• 15cfc71 Publish v3.1020.0
• c702a75 chore(codegen): update smithy package versions (#7903)
• 7f8c031 chore(codegen): differentiate type imports (#7897)
• a84cde6 Publish v3.1019.0
• e35edfc chore(codegen): import from core submodules instead of root (#7896)
• Additional commits viewable in compare view

Updates @types/node from 25.5.0 to 25.5.2

Commits

• See full diff in compare view

Updates aws-cdk-lib from 2.244.0 to 2.248.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.248.0

Bug Fixes

• eks: downgrade isolated subnet validation from error to warning (#37500) (470856c), closes #37491

---

Alpha modules (2.248.0-alpha.0)

v2.247.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-bedrockagentcore: AWS::BedrockAgentCore::OnlineEvaluationConfig: ExecutionStatus attribute removed. aws-appstream: AWS::AppStream::ImageBuilder: Name property is now immutable. aws-eks: AWS::EKS::Capability: EKS_CAPABILITY_ACK_S3_LOGS vended log type removed.

Features

• update L1 CloudFormation resource definitions (#37410) (bd2c318)
• apigatewayv2: add role support for lambda authorizers (#35706) (2fb2f16), closes #35696
• batch: skip unregister job definition on update (#36011) (2fb2240)
• elasticloadbalancingv2: jwt verification for application load balancer (#36099) (aacd28a), closes #36096

Bug Fixes

• bump brace-expansion from 5.0.3 to 5.0.5 to address CVE-2026-33750 (#37379) (69cf4c9)
• prevent prototype pollution in 2 APIs (#37453) (1016537)
• aws-cdk-lib: condensed stack trace hides namespaced package name (#37413) (cb8e7fb)

---

Alpha modules (2.247.0-alpha.0)

Features

• mediapackagev2-alpha: new L2 construct (#37279) (7debfb9)

v2.246.0

Features

• bedrock: add MiniMax and GLM foundation model identifiers (#37348) (2015344), closes #37347

Bug Fixes

• dynamodb: throw error when grantee is an unsupported ServicePrincipal (#37335) (d12754f), closes #35817 aws/aws-cdk#37273
• lambda-nodejs: use powershell for spawn steps on Windows (#37412) (a92105c), closes #37387
• core: noisy property deprecation warnings (#37415) (4fd0002), closes #37407

Reverts

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-ve...

Description has been truncated