chore(deps-dev): bump the all-dependencies group across 1 directory with 7 updates

[dependabot]

Bumps the all-dependencies group with 7 updates in the / directory:

Package	From	To
@types/node	24.9.1	24.10.0
aws-cdk-lib	2.221.0	2.223.0
constructs	10.4.2	10.4.3
jsii	5.9.10	5.9.13
jsii-docgen	10.11.0	10.11.2
jsii-pacmak	1.117.0	1.119.0
semantic-release	25.0.1	25.0.2

Updates @types/node from 24.9.1 to 24.10.0

Commits

• See full diff in compare view

Updates aws-cdk-lib from 2.221.0 to 2.223.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.223.0

⚠ BREAKING CHANGES

L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

• aws-dynamodb: AWS::DynamoDB::GlobalTable: GlobalTableSettingsReplicationMode property removed.
• aws-dynamodb: AWS::DynamoDB::GlobalTable: GlobalTableSourceArn property removed.
• aws-dynamodb: AWS::DynamoDB::Table: GlobalTableSettingsReplicationMode property removed.
• aws-events: AWS::Events::EventBusPolicy: Id attribute removed.

Features

• update L1 CloudFormation resource definitions (#35926) (3f4d585)
• ec2: support for Cloud Wan Core Network routes (#35008) (fba027b)
• s3-deployment: support securityGroups in BucketDeploymentProps (#33233) (f2a3166), closes #33229

Bug Fixes

• stepfunctions: DistributedMap ResultWriter correct query language selection (#35834) (75b8ead), closes #35403
• onEvent function to pass all the options to rule resource (#35829) (3d7023d)

---

Alpha modules (2.223.0-alpha.0)

v2.222.0

⚠ BREAKING CHANGES

• bedrock-agentcore: The signature of RuntimeAuthorizerConfiguration.usingCognito() has changed to accept IUserPool and IUserPoolClient constructs instead of string parameters, and now supports multiple clients.

Features

• apigateway: add binaryMediaTypes property to SpecRestApi (#35502) (bf10d94), closes #35498
• apigatewayv2: WebSocketStage support accessLogSettings (#34766) (dad112e), closes #21935
• bedrock-agentcore: use IUserPool and IUserPoolClient interfaces instead of string identifiers (#35860) (a38afc9), closes #35854
• core: IEnvironmentAware interface to retrieve a construct's environment (#35817) (8ee5d4b)
• elasticloadbalancingv2: create security group settings for NLB by default (under feature flag) (#34675) (ff83cfd), closes #34606 aws/aws-cdk#34606
• events-targets: support Amazon Data Firehose target using Firehose's IDeliveryStream (#33798) (a374b6b), closes #33757 #33758
• kinesisfirehose: add built-in data processors to decompress CloudWatch logs and extract messages (#33749) (5dec21e), closes #33691 #20242 aws/aws-cdk#33691
• lambda: add Java25 runtime for Lambda (#35867) (db71fac)
• lambda: add Python 3.14 runtime for Lambda (#35869) (ebef303)
• memory: add agentcore memory l2 construct (#35757) (6a2e17e)
• msk: support Express brokers (#34741) (0a69e5f), closes #32923

Bug Fixes

• agentcore: addToRolePolicy for runtime with imported role destroys and recreates policies on every deployment (#35842) (92525e4), closes #35844 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime-base.ts#L253
• agentcore: custom execution role policy for runtime lacks proper permissions (#35849) (ee94b63), closes #35852 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime-artifact.ts#L65 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime.ts#L252-L259 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-codepipeline/lib/pipeline.ts#L693 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-lambda/lib/function.ts#L1468 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-ecs/lib/base/base-service.ts#L1161
• dynamodb: addToResourcePolicy has no effect (#35554) (94d7e34), closes #35062
• ecs: remove empty CfnClusterCapacityProviderAssociations resource (#35783) (c8a131b), closes #35699 #35742

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.223.0-alpha.0 (2025-11-10)

2.222.0-alpha.0 (2025-11-04)

Features

• eks-v2-alpha: eks-v2-alpha is now in developer preview (#35801) (32afc0f)

Bug Fixes

• bedrock-alpha: apply permission dependency to existing and non-existing roles (#35123) (b39ccf3), closes #35120
• eks-v2-alpha: remove hyphen from Go package name (#35927) (2cdfc8a)

2.221.1-alpha.0 (2025-10-29)

2.221.0-alpha.0 (2025-10-24)

Features

• msk-alpha: support Kafka 4.1 (#35759) (67539de)

Bug Fixes

• elasticache-alpha: cannot import Redis 7 serverless cache (#35629) (2bde1a0)

2.220.0-alpha.0 (2025-10-14)

Bug Fixes

• amplify-alpha: handle empty customResponseHeaders array (#35700) (57f9068), closes #35693

2.219.0-alpha.0 (2025-10-01)

2.218.0-alpha.0 (2025-09-29)

• elasticache-alpha: implement Serverless ElastiCache L2 Construct (#35424) (0e08c8c)

2.217.0-alpha.0 (2025-09-25)

2.216.0-alpha.0 (2025-09-22)

2.215.0-alpha.0 (2025-09-15)

... (truncated)

Commits

• 3f4d585 feat: update L1 CloudFormation resource definitions (#35926)
• 75b8ead fix(stepfunctions): DistributedMap ResultWriter correct query language sele...
• 93af887 chore(ec2): add r8a instance class (#35964)
• fda6e13 chore(spec2cdk): ensure strings are passed to attributes (#35911)
• 23caef9 chore(codebuild): add new enum values for codebuild (#35861)
• f2a3166 feat(s3-deployment): support securityGroups in BucketDeploymentProps (#33233)
• af1868c chore(events-targets): correct typos in comments (#35954)
• b61923c chore(codebuild): remove unnecessary line from README (#35942)
• fba027b feat(ec2): support for Cloud Wan Core Network routes (#35008)
• 4763a76 chore: update analytics metadata blueprints
• Additional commits viewable in compare view

Updates constructs from 10.4.2 to 10.4.3

Release notes

Sourced from constructs's releases.

v10.4.3

10.4.3 (2025-11-06)

Bug Fixes

• deps: upgrade to jsii & typescript 5.9 (#2823) (02796b2)

Commits

• 02796b2 fix(deps): upgrade to jsii & typescript 5.9 (#2823)
• f62df72 chore(deps): upgrade dev dependencies (#2822)
• 56d6cbf chore(deps): upgrade dev dependencies (#2821)
• a37b483 chore(deps): upgrade cdklabs-projen-project-types (#2819)
• 7826d73 chore(deps): upgrade dev dependencies (#2820)
• bbbf608 chore(deps): upgrade dev dependencies (#2818)
• 7c1b1ad chore(deps): upgrade dev dependencies (#2817)
• 27ec512 chore(deps): upgrade dev dependencies (#2816)
• 6e7e0a2 chore(deps): upgrade dev dependencies (#2815)
• e71d235 chore(deps): upgrade dev dependencies (#2814)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for constructs since your current version.

Updates jsii from 5.9.10 to 5.9.13

Release notes

Sourced from jsii's releases.

v5.9.13

What's Changed

• feat: allow configuring jsii namespaces for files-as-submodules (in addition to directories) by @​rix0rrr in aws/jsii-compiler#2407

Full Changelog: aws/jsii-compiler@v5.9.12...v5.9.13

v5.9.12

What's Changed

• fix: invalid jsii target parameters are not validated by @​rix0rrr in aws/jsii-compiler#2398
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2400
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2402
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2404
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2406
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2409
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2411

Full Changelog: aws/jsii-compiler@v5.9.11...v5.9.12

v5.9.11

What's Changed

• chore: add guidance for adding new jsii features by @​mrgrain in aws/jsii-compiler#2368
• chore: extract type analysis and resolver utilities by @​mrgrain in aws/jsii-compiler#2369
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2371
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2373
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2375
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2377
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2379
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2381
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2383
• chore: remove noise from test output by @​mrgrain in aws/jsii-compiler#2386
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2390
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2393
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2395
• chore(deps): upgrade dependencies by @​aws-cdk-automation in aws/jsii-compiler#2397

Full Changelog: aws/jsii-compiler@v5.9.10...v5.9.11

Commits

• cc3e9a8 feat: allow configuring jsii namespaces for files-as-submodules (in addition ...
• 6d2440c chore(deps): upgrade dependencies (#2411)
• 731b5cc chore(deps): upgrade dependencies (#2409)
• c3f2cb3 chore(deps): upgrade dependencies (#2406)
• af94bf4 chore(deps): upgrade dependencies (#2404)
• 15ece88 chore(deps): upgrade dependencies (#2402)
• b87cd67 chore(deps): upgrade dependencies (#2400)
• 08a499a fix: invalid jsii target parameters are not validated (#2398)
• e3d2007 chore(deps): upgrade dependencies (#2397)
• 96d04b0 chore(deps): upgrade dependencies (#2395)
• Additional commits viewable in compare view

Updates jsii-docgen from 10.11.0 to 10.11.2

Release notes

Sourced from jsii-docgen's releases.

v10.11.2

10.11.2 (2025-11-03)

Bug Fixes

• deps: upgrade dependencies (#1859) (3ef7222)

v10.11.1

10.11.1 (2025-10-28)

Bug Fixes

• error when trying to load unrelated assemblies (#1854) (a37b903)
• release to npm is failing (#1857) (f8e06b7)

Commits

• 3ef7222 fix(deps): upgrade dependencies (#1859)
• f8e06b7 fix: release to npm is failing (#1857)
• cc0d400 chore(deps): upgrade dev dependencies (#1856)
• a37b903 fix: error when trying to load unrelated assemblies (#1854)
• 20ae77c chore(deps): upgrade dev dependencies (#1853)
• 22435ba chore(deps): upgrade cdklabs-projen-project-types (#1852)
• See full diff in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for jsii-docgen since your current version.

Updates jsii-pacmak from 1.117.0 to 1.119.0

Release notes

Sourced from jsii-pacmak's releases.

v1.119.0

Features

• jsii-diff: remap old to new FQNs (#4976) (d7c083d)
• jsii-reflect: can jqii-query on fqn field (#4975) (86995e5)

Bug Fixes

• jsii-pacmak: Python interfaces sometimes violate MRO (#4973) (cfb6580)
• jsii-reflect: advertise jsii-query via bin entry of package.json (#4974) (b6c0a35)

v1.118.0

Features

• jsii-reflect: add a jsii-query tool (#4952) (f040d3e)

Bug Fixes

• covariant method overrides break Go compilation (#4967) (2c39079)
• type intersections are missing dependencies in Go (#4965) (ee67cc9)

Changelog

Sourced from jsii-pacmak's changelog.

1.119.0 (2025-11-10)

Features

• jsii-diff: remap old to new FQNs (#4976) (d7c083d)
• jsii-reflect: can jqii-query on fqn field (#4975) (86995e5)

Bug Fixes

• jsii-pacmak: Python interfaces sometimes violate MRO (#4973) (cfb6580)
• jsii-reflect: advertise jsii-query via bin entry of package.json (#4974) (b6c0a35)

1.118.0 (2025-10-29)

Features

• jsii-reflect: add a jsii-query tool (#4952) (f040d3e)

Bug Fixes

• covariant method overrides break Go compilation (#4967) (2c39079)
• type intersections are missing dependencies in Go (#4965) (ee67cc9)

Commits

• cfb6580 fix(jsii-pacmak): Python interfaces sometimes violate MRO (#4973)
• 2c39079 fix: covariant method overrides break Go compilation (#4967)
• ee67cc9 fix: type intersections are missing dependencies in Go (#4965)
• 0111272 chore(deps-dev): Bump pip from 25.2 to 25.3 in /packages/jsii-pacmak/test/gen...
• See full diff in compare view

Updates semantic-release from 25.0.1 to 25.0.2

Release notes

Sourced from semantic-release's releases.

v25.0.2

25.0.2 (2025-11-07)

Bug Fixes

• deps: update dependency read-package-up to v12 (#3935) (1494cb9)

Commits

• 1494cb9 fix(deps): update dependency read-package-up to v12 (#3935)
• b79ff4c Merge pull request #3931 from Simek/patch-1
• ddfe3cb Merge pull request #3932 from Deltamir/docs-add-semantic-release-uv-community...
• adac0b7 Merge pull request #3920 from semantic-release/installation
• 8b68108 update Node version in npx command example
• 15293df docs(plugins): add semantic-release-uv community plugin in plugins list
• bfc6d4d docs: Update minimal required Node version
• 8d7d8ed chore(deps): update dependency @​types/node to v24.10.0 (#3929)
• 809126c chore(deps): lock file maintenance (#3928)
• d1affd3 chore(deps): update dependency got to v14.6.2 (#3927)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for semantic-release since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions