fix(deps) Update all non-major dependencies

[renovate[bot]]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence	Type	Update
@semantic-release/npm	11.0.2 -> 11.0.3					devDependencies	patch
Flask (changelog)	2.2.5 -> 2.3.3					dependencies	minor
Flask-SQLAlchemy (changelog)	3.0.5 -> 3.1.1					dev-dependencies	minor
asottile/pyupgrade	v3.15.0 -> v3.17.0					repository	minor
bandit (source, changelog)	1.7.5 -> 1.7.10					dev-dependencies	patch
boto3	1.33.13 -> 1.35.37					dev-dependencies	minor
cachelib (changelog)	^0.10.0 -> ^0.13.0					dependencies	minor
coverage	7.2.7 -> 7.6.2					dev-dependencies	minor
elasticsearch	8.12.0 -> 8.15.1					dev-dependencies	minor
google-cloud-datastore	2.19.0 -> 2.20.1					dev-dependencies	minor
google-cloud-firestore	2.14.0 -> 2.19.0					dev-dependencies	minor
isort (source, changelog)	5.11.5 -> 5.13.2					dev-dependencies	minor
macisamuele/language-formatters-pre-commit-hooks	v2.12.0 -> v2.14.0					repository	minor
myint/autoflake	v2.2.1 -> v2.3.1					repository	minor
mypy (source, changelog)	1.4.1 -> 1.11.2					dev-dependencies	minor
peewee	3.17.0 -> 3.17.6					dev-dependencies	patch
pre-commit/pre-commit-hooks	v4.5.0 -> v4.6.0					repository	minor
pymongo	4.7.3 -> 4.10.1					dev-dependencies	minor
redis (changelog)	5.0.1 -> 5.1.1					dev-dependencies	minor
semantic-release	23.0.0 -> 23.1.1					devDependencies	minor
supercharge/mongodb-github-action	v1.10.0 -> 1.11.0					action	minor
tox (changelog)	4.8.0 -> 4.21.2					dev-dependencies	minor

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

---

Release Notes

semantic-release/npm (@​semantic-release/npm)

v11.0.3

Compare Source

Bug Fixes

• deps: raised the minimum accepted range of npm to v10.5.0 (#​759) (a0313f8), closes semantic-release/semantic-release#3202

even though our existing range allowed anyone to update as soon as the new npm version was available, this will encourage being on a version that does not report the ip vulnerability a bit more forcefully

pallets/flask (Flask)

v2.3.3

Compare Source

Released 2023-08-21

• Python 3.12 compatibility.
• Require Werkzeug >= 2.3.7.
• Use flit_core instead of setuptools as build backend.
• Refactor how an app's root and instance paths are determined. :issue:5160

v2.3.2

Compare Source

Released 2023-05-01

• Set Vary: Cookie header when the session is accessed, modified, or refreshed.
• Update Werkzeug requirement to >=2.3.3 to apply recent bug fixes.

v2.3.1

Compare Source

Released 2023-04-25

• Restore deprecated from flask import Markup. :issue:5084

v2.3.0

Compare Source

Released 2023-04-25

• Drop support for Python 3.7. :pr:5072

• Update minimum requirements to the latest versions: Werkzeug>=2.3.0, Jinja2>3.1.2, itsdangerous>=2.1.2, click>=8.1.3.

• Remove previously deprecated code. :pr:4995

  • The push and pop methods of the deprecated _app_ctx_stack and _request_ctx_stack objects are removed. top still exists to give extensions more time to update, but it will be removed.
  • The FLASK_ENV environment variable, ENV config key, and app.env property are removed.
  • The session_cookie_name, send_file_max_age_default, use_x_sendfile, propagate_exceptions, and templates_auto_reload properties on app are removed.
  • The JSON_AS_ASCII, JSON_SORT_KEYS, JSONIFY_MIMETYPE, and JSONIFY_PRETTYPRINT_REGULAR config keys are removed.
  • The app.before_first_request and bp.before_app_first_request decorators are removed.
  • json_encoder and json_decoder attributes on app and blueprint, and the corresponding json.JSONEncoder and JSONDecoder classes, are removed.
  • The json.htmlsafe_dumps and htmlsafe_dump functions are removed.
  • Calling setup methods on blueprints after registration is an error instead of a warning. :pr:4997

• Importing escape and Markup from flask is deprecated. Import them directly from markupsafe instead. :pr:4996

• The app.got_first_request property is deprecated. :pr:4997

• The locked_cached_property decorator is deprecated. Use a lock inside the decorated function if locking is needed. :issue:4993

• Signals are always available. blinker>=1.6.2 is a required dependency. The signals_available attribute is deprecated. :issue:5056

• Signals support async subscriber functions. :pr:5049

• Remove uses of locks that could cause requests to block each other very briefly. :issue:4993

• Use modern packaging metadata with pyproject.toml instead of setup.cfg. :pr:4947

• Ensure subdomains are applied with nested blueprints. :issue:4834

• config.from_file can use text=False to indicate that the parser wants a binary file instead. :issue:4989

• If a blueprint is created with an empty name it raises a ValueError. :issue:5010

• SESSION_COOKIE_DOMAIN does not fall back to SERVER_NAME. The default is not to set the domain, which modern browsers interpret as an exact match rather than a subdomain match. Warnings about localhost and IP addresses are also removed. :issue:5051

• The routes command shows each rule's subdomain or host when domain matching is in use. :issue:5004

• Use postponed evaluation of annotations. :pr:5071

asottile/pyupgrade (asottile/pyupgrade)

v3.17.0

Compare Source

v3.16.0

Compare Source

v3.15.2

Compare Source

v3.15.1

Compare Source

PyCQA/bandit (bandit)

v1.7.10

Compare Source

What's Changed

• Bump docker/build-push-action from 5.4.0 to 6.0.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1147
• Suggested small refactors in assignments by @​ericwb in https://github.com/PyCQA/bandit/pull/1150
• Performance improvement in blacklist function by @​ericwb in https://github.com/PyCQA/bandit/pull/1148
• Add test for usage of FTP_TLS by @​ericwb in https://github.com/PyCQA/bandit/pull/1149
• New check: B113: TrojanSource - Bidirectional control characters by @​Lucas-C in https://github.com/PyCQA/bandit/pull/757
• Bump docker/build-push-action from 6.0.0 to 6.1.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1152
• feat(plugins): add support for httpx in B113 by @​mkniewallner in https://github.com/PyCQA/bandit/pull/1060
• Nit: remove unused variable by @​ericwb in https://github.com/PyCQA/bandit/pull/1153
• Add recent releases to version choice in bug report by @​ericwb in https://github.com/PyCQA/bandit/pull/1151
• Bump docker/build-push-action from 6.1.0 to 6.2.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1155
• Bump docker/build-push-action from 6.2.0 to 6.3.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1157
• Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1156
• Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1158
• Bump docker/login-action from 3.2.0 to 3.3.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1159
• Bump docker/build-push-action from 6.3.0 to 6.5.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1160
• Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 by @​dependabot in https://github.com/PyCQA/bandit/pull/1163
• Bump docker/build-push-action from 6.5.0 to 6.6.1 by @​dependabot in https://github.com/PyCQA/bandit/pull/1166
• Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1165
• Bump docker/build-push-action from 6.6.1 to 6.7.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1168
• Use consistent file naming of docs by @​ericwb in https://github.com/PyCQA/bandit/pull/1170
• Pytorch Load / Save Plugin by @​lukehinds in https://github.com/PyCQA/bandit/pull/1114

New Contributors

• @​Lucas-C made their first contribution in https://github.com/PyCQA/bandit/pull/757

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.9...1.7.10

v1.7.9

Compare Source

What's Changed

• Bump docker/build-push-action from 5.1.0 to 5.2.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1117
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1119
• New logo for Bandit based on raccoon by @​ericwb in https://github.com/PyCQA/bandit/pull/1121
• Start testing on Python 3.13 by @​ericwb in https://github.com/PyCQA/bandit/pull/1122
• Bump docker/build-push-action from 5.2.0 to 5.3.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1123
• Bump docker/setup-buildx-action from 3.1.0 to 3.2.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1124
• Bump docker/login-action from 3.0.0 to 3.1.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1125
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1126
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1127
• Bump docker/setup-buildx-action from 3.2.0 to 3.3.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1130
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1131
• Bump sigstore/cosign-installer from 3.4.0 to 3.5.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1132
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1133
• Updates banner logo so it renders well in dark mode by @​ericwb in https://github.com/PyCQA/bandit/pull/1134
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1135
• Add a sponsor section to README by @​ericwb in https://github.com/PyCQA/bandit/pull/1137
• Ensure sarif extra is included as part of doc build by @​ericwb in https://github.com/PyCQA/bandit/pull/1139
• Bump docker/login-action from 3.1.0 to 3.2.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1142
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1143
• [pre-commit.ci] pre-commit autoupdate by @​pre-commit-ci in https://github.com/PyCQA/bandit/pull/1145
• Guard against empty call argument list by @​ericwb in https://github.com/PyCQA/bandit/pull/1146
• Bump docker/build-push-action from 5.3.0 to 5.4.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1144
• Support configfile in .bandit file by @​bersbersbers in https://github.com/PyCQA/bandit/pull/1052

New Contributors

• @​pre-commit-ci made their first contribution in https://github.com/PyCQA/bandit/pull/1119
• @​bersbersbers made their first contribution in https://github.com/PyCQA/bandit/pull/1052

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.8...1.7.9

v1.7.8

Compare Source

What's Changed

• Incorrect tag naming in readme by @​lukehinds in https://github.com/PyCQA/bandit/pull/1105
• Utilize PyPI's trusted publishing by @​ericwb in https://github.com/PyCQA/bandit/pull/1107
• Bump sigstore/cosign-installer from 3.3.0 to 3.4.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1109
• Add 1.7.7 to versions of bug template by @​ericwb in https://github.com/PyCQA/bandit/pull/1110
• Use datetime to avoid updating copyright year by @​ericwb in https://github.com/PyCQA/bandit/pull/1112
• filter data is safe for tarfile extractall by @​etienneschalk in https://github.com/PyCQA/bandit/pull/1111
• Bump docker/setup-buildx-action from 3.0.0 to 3.1.0 by @​dependabot in https://github.com/PyCQA/bandit/pull/1115
• [B605] Add functions that are vulnerable to shell injection. by @​shihai1991 in https://github.com/PyCQA/bandit/pull/1116
• Add a SARIF output formatter by @​ericwb in https://github.com/PyCQA/bandit/pull/1113

New Contributors

• @​etienneschalk made their first contribution in https://github.com/PyCQA/bandit/pull/1111
• @​shihai1991 made their first contribution in https://github.com/PyCQA/bandit/pull/1116

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.7...1.7.8

v1.7.7

Compare Source

What's Changed

• Add the new release to bandit versions of bug template by @​ericwb in https://github.com/PyCQA/bandit/pull/1075
• Bump actions/setup-python from 4 to 5 by @​dependabot in https://github.com/PyCQA/bandit/pull/1076
• Handle variant in how policy is passed in paramiko by @​ericwb in https://github.com/PyCQA/bandit/pull/1078
• Flag str.replace as possible sql injection by @​costaparas in https://github.com/PyCQA/bandit/pull/1044
• defusedxml: Show correct module name by @​kajinamit in https://github.com/PyCQA/bandit/pull/1081
• Add tidelift to the sponsor funding list by @​ericwb in https://github.com/PyCQA/bandit/pull/1089
• Create a security policy by @​ericwb in https://github.com/PyCQA/bandit/pull/1091
• Fix up issues found running Bandit on itself by @​ericwb in https://github.com/PyCQA/bandit/pull/1093
• Add random.randbytes to blacklist calls by @​ericwb in https://github.com/PyCQA/bandit/pull/1096
• Prepend ./ for files specified as CLI args by @​ericwb in https://github.com/PyCQA/bandit/pull/1094
• Rework GitPython dependency to be an extra for bandit-baseline by @​ericwb in https://github.com/PyCQA/bandit/pull/1099
• Bump actions/dependency-review-action from 3 to 4 by @​dependabot in https://github.com/PyCQA/bandit/pull/1101
• Introduce Official Bandit Images by @​lukehinds in https://github.com/PyCQA/bandit/pull/1088
• Remove markdown formatting in reStructuredText formatted README by @​ericwb in https://github.com/PyCQA/bandit/pull/1103
• Downsize the org:repo name by @​lukehinds in https://github.com/PyCQA/bandit/pull/1104

New Contributors

• @​kajinamit made their first contribution in https://github.com/PyCQA/bandit/pull/1081

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.6...1.7.7

v1.7.6

Compare Source

What's Changed

• Update bug report to include version 1.7.5 by @​ericwb in https://github.com/PyCQA/bandit/pull/993
• Render Python 3.10 in drop down correctly by @​ericwb in https://github.com/PyCQA/bandit/pull/997
• Remove checks for Python2 urllib by @​ericwb in https://github.com/PyCQA/bandit/pull/999
• Improper detection of non-requests module by @​ericwb in https://github.com/PyCQA/bandit/pull/1011
• xmlrpclib replaced with xmlrpc in Python3 by @​ericwb in https://github.com/PyCQA/bandit/pull/1012
• language and linting updates by @​marksmayo in https://github.com/PyCQA/bandit/pull/1015
• Adds check for crypt module usage as weak hash by @​ericwb in https://github.com/PyCQA/bandit/pull/1018
• Switch to tox 4 by @​mportesdev in https://github.com/PyCQA/bandit/pull/1020
• Skip unnecessary pip install commands in the pythonpackage.yml workflow by @​mportesdev in https://github.com/PyCQA/bandit/pull/1021
• Update versions of used GitHub Actions by @​mportesdev in https://github.com/PyCQA/bandit/pull/1024
• Update pre-commit hooks by @​mportesdev in https://github.com/PyCQA/bandit/pull/1026
• Add random.Random to B311 checks by @​shiftinv in https://github.com/PyCQA/bandit/pull/940
• Add a copy button to all code snippets in docs by @​ericwb in https://github.com/PyCQA/bandit/pull/1030
• Replace pbr in favor of importlib by @​ericwb in https://github.com/PyCQA/bandit/pull/1016
• Switch from open collective to PSF by @​ericwb in https://github.com/PyCQA/bandit/pull/1031
• Make pre-commit run Bandit hook using a single process by @​Klavionik in https://github.com/PyCQA/bandit/pull/1029
• Remove support for Python 3.7 due to end-of-life by @​ericwb in https://github.com/PyCQA/bandit/pull/1034
• Update asserts.py documentation by @​deronnax in https://github.com/PyCQA/bandit/pull/1036
• Simplify wrap_file_object by @​mportesdev in https://github.com/PyCQA/bandit/pull/1037
• django_rawsql_used: support keyword arguments used in RawSQL by @​kevinmarsh in https://github.com/PyCQA/bandit/pull/765
• Avoid gitpyhon CVE-2022-24439 by @​carlosduelo in https://github.com/PyCQA/bandit/pull/1048
• Update blacklist call documentation by @​costaparas in https://github.com/PyCQA/bandit/pull/1045
• Support ignoring blacklists by name by @​costaparas in https://github.com/PyCQA/bandit/pull/1046
• Fix dependabot to update github actions by @​ericwb in https://github.com/PyCQA/bandit/pull/1057
• Bump actions/checkout from 3 to 4 by @​dependabot in https://github.com/PyCQA/bandit/pull/1058
• Fix for ReadtheDocs build by @​ericwb in https://github.com/PyCQA/bandit/pull/1061
• fix(plugins/B507): also detect class instances by @​mkniewallner in https://github.com/PyCQA/bandit/pull/1064
• Use mirror repository for black pre-commit hook by @​mportesdev in https://github.com/PyCQA/bandit/pull/1070
• Add official support of Python 3.12 by @​ericwb in https://github.com/PyCQA/bandit/pull/1068
• Fix crash on pyproject.toml without bandit config by @​javajawa in https://github.com/PyCQA/bandit/pull/1073
• refactor: remove importlib-metadata fallback by @​mkniewallner in https://github.com/PyCQA/bandit/pull/1066
• Fixes for sphinx build by @​ericwb in https://github.com/PyCQA/bandit/pull/1063

New Contributors

• @​marksmayo made their first contribution in https://github.com/PyCQA/bandit/pull/1015
• @​shiftinv made their first contribution in https://github.com/PyCQA/bandit/pull/940
• @​Klavionik made their first contribution in https://github.com/PyCQA/bandit/pull/1029
• @​deronnax made their first contribution in https://github.com/PyCQA/bandit/pull/1036
• @​kevinmarsh made their first contribution in https://github.com/PyCQA/bandit/pull/765
• @​carlosduelo made their first contribution in https://github.com/PyCQA/bandit/pull/1048
• @​costaparas made their first contribution in https://github.com/PyCQA/bandit/pull/1045
• @​dependabot made their first contribution in https://github.com/PyCQA/bandit/pull/1058
• @​javajawa made their first contribution in https://github.com/PyCQA/bandit/pull/1073

Full Changelog: https://github.com/PyCQA/bandit/compare/1.7.5...1.7.6

boto/boto3 (boto3)

v1.35.37

Compare Source

=======

• api-change:codepipeline: [botocore] AWS CodePipeline introduces a Compute category

v1.35.36

Compare Source

=======

• api-change:elasticache: [botocore] AWS ElastiCache SDK now supports using APIs with newly launched Valkey engine. Please refer to updated AWS ElastiCache public documentation for detailed information on API usage.
• api-change:memorydb: [botocore] Amazon MemoryDB SDK now supports all APIs for newly launched Valkey engine. Please refer to the updated Amazon MemoryDB public documentation for detailed information on API usage.
• enhancement:Python: [botocore] Added provisional Python 3.13 support to Botocore
• enhancement:Python: Added provisional Python 3.13 support to Boto3

v1.35.35

Compare Source

=======

• api-change:deadline: [botocore] Add support for using the template from a previous job during job creation and listing parameter definitions for a job.
• api-change:marketplace-reporting: [botocore] Documentation-only update for AWS Marketplace Reporting API.
• api-change:qconnect: [botocore] This release adds support for the following capabilities: Configuration of the Gen AI system via AIAgent and AIPrompts. Integration support for Bedrock Knowledge Base.
• api-change:redshift: [botocore] Add validation pattern to S3KeyPrefix on the EnableLogging API

v1.35.34

Compare Source

=======

• api-change:ec2: [botocore] Documentation updates for Amazon EC2.
• api-change:iot-data: [botocore] Add v2 smoke tests and smithy smokeTests trait for SDK testing.

v1.35.33

Compare Source

=======

• api-change:codepipeline: [botocore] AWS CodePipeline introduces Commands action that enables you to easily run shell commands as part of your pipeline execution.
• api-change:connect: [botocore] Public GetMetricDataV2 Grouping increase from 3 to 4
• api-change:ec2: [botocore] This release includes a new API for modifying instance cpu-options after launch.
• api-change:iot: [botocore] This release adds support for Custom Authentication with X.509 Client Certificates, support for Custom Client Certificate validation, and support for selecting application protocol and authentication type without requiring TLS ALPN for customer's AWS IoT Domain Configurations.
• api-change:marketplace-reporting: [botocore] The AWS Marketplace Reporting service introduces the GetBuyerDashboard API. This API returns a dashboard that provides visibility into your organization's AWS Marketplace agreements and associated spend across the AWS accounts in your organization.
• api-change:mediapackagev2: [botocore] Added support for ClipStartTime on the FilterConfiguration object on OriginEndpoint manifest settings objects. Added support for EXT-X-START tags on produced HLS child playlists.
• api-change:quicksight: [botocore] QuickSight: Add support for exporting and importing folders in AssetBundle APIs
• enhancement:AWSCRT: [botocore] Update awscrt version to 0.22.0

v1.35.32

Compare Source

=======

• api-change:appstream: [botocore] Added support for Automatic Time Zone Redirection on Amazon AppStream 2.0
• api-change:b2bi: [botocore] Added and updated APIs to support outbound EDI transformations
• api-change:bedrock-agent-runtime: [botocore] Added raw model response and usage metrics to PreProcessing and PostProcessing Trace
• api-change:bedrock-runtime: [botocore] Added new fields to Amazon Bedrock Guardrails trace
• api-change:iotdeviceadvisor: [botocore] Add clientToken attribute and implement idempotency for CreateSuiteDefinition.
• api-change:ivs-realtime: [botocore] Adds new Stage Health EventErrorCodes applicable to RTMP(S) broadcasts. Bug Fix: Enforces that EncoderConfiguration Video height and width must be even-number values.
• api-change:s3: [botocore] This release introduces a header representing the minimum object size limit for Lifecycle transitions.
• api-change:sagemaker: [botocore] releasing builtinlcc to public
• api-change:workspaces: [botocore] WSP is being rebranded to become DCV.

v1.35.31

Compare Source

=======

• api-change:bedrock-agent: [botocore] This release adds support to stop an ongoing ingestion job using the StopIngestionJob API in Agents for Amazon Bedrock.
• api-change:codeartifact: [botocore] Add support for the dual stack endpoints.
• api-change:rds: [botocore] This release provides additional support for enabling Aurora Limitless Database DB clusters.

v1.35.30

Compare Source

=======

• api-change:bedrock: [botocore] Add support for custom models via provisioned throughput for Bedrock Model Evaluation
• api-change:clouddirectory: [botocore] Add examples for API operations in model.
• api-change:connect: [botocore] Amazon Connect introduces StartOutboundChatContact API allowing customers to initiate outbound chat contacts
• api-change:pricing: [botocore] Add examples for API operations in model.
• api-change:resource-groups: [botocore] This update includes new APIs to support application groups and to allow users to manage resource tag-sync tasks in applications.
• api-change:supplychain: [botocore] Release DataLakeDataset, DataIntegrationFlow and ResourceTagging APIs for AWS Supply Chain
• api-change:timestream-influxdb: [botocore] Timestream for InfluxDB now supports port configuration and additional customer-modifiable InfluxDB v2 parameters. This release adds Port to the CreateDbInstance and UpdateDbInstance API, and additional InfluxDB v2 parameters to the CreateDbParameterGroup API.
• api-change:verifiedpermissions: [botocore] Add examples for API operations in model.

v1.35.29

Compare Source

=======

• api-change:customer-profiles: [botocore] Introduces optional RoleArn parameter for PutIntegration request and includes RoleArn in the response of PutIntegration, GetIntegration and ListIntegrations
• api-change:quicksight: [botocore] Adding personalization in QuickSight data stories. Admins can enable or disable personalization through QuickSight settings.
• api-change:securityhub: [botocore] Documentation updates for AWS Security Hub
• api-change:sesv2: [botocore] This release adds support for engagement tracking over Https using custom domains.

v1.35.28

Compare Source

=======

• api-change:chatbot: [botocore] Return State and StateReason fields for Chatbot Channel Configurations.
• api-change:lambda: [botocore] Reverting Lambda resource-based policy and block public access APIs.
• api-change:organizations: [botocore] Add support for policy operations on the CHATBOT_POLICY policy type.
• api-change:pcs: [botocore] AWS PCS API documentation - Edited the description of the iamInstanceProfileArn parameter of the CreateComputeNodeGroup and UpdateComputeNodeGroup actions; edited the description of the SlurmCustomSetting data type to list the supported parameters for clusters and compute node groups.
• api-change:rds-data: [botocore] Documentation update for RDS Data API to reflect support for Aurora MySQL Serverless v2 and Provisioned DB clusters.
• api-change:sagemaker: [botocore] Adding TagPropagation attribute to Sagemaker API

v1.35.27

Compare Source

=======

• api-change:cloudtrail: [botocore] Doc-only update for CloudTrail network activity events release (in preview)
• api-change:ec2: [botocore] Updates to documentation for the transit gateway security group referencing feature.
• api-change:fsx: [botocore] Doc-only update to address Lustre S3 hard-coded names.
• api-change:worklink: [botocore] The worklink client has been removed following the deprecation of the service.

v1.35.26

Compare Source

=======

• api-change:bedrock: [botocore] Add support for Cross Region Inference in Bedrock Model Evaluations.
• api-change:budgets: [botocore] Releasing minor partitional endpoint updates
• api-change:kinesis: [botocore] This release includes support to add tags when creating a stream
• api-change:pinpoint-sms-voice-v2: [botocore] AWS End User Messaging SMS-Voice V2 has added support for resource policies. Use the three new APIs to create, view, edit, and delete resource policies.
• api-change:sagemaker: [botocore] Adding HiddenInstanceTypes and HiddenSageMakerImageVersionAliases attribute to SageMaker API

v1.35.25

Compare Source

=======

• api-change:apigateway: [botocore] Documentation updates for Amazon API Gateway
• api-change:athena: [botocore] List/Get/Update/Delete/CreateDataCatalog now integrate with AWS Glue connections. Users can create a Glue connection through

---

Configuration

📅 Schedule: Branch creation - "before 10pm on Sunday" in timezone America/Chicago, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• [ ] If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.