fix(lambda): bump the aws group in /lambdas with 6 updates

[dependabot]

Bumps the aws group in /lambdas with 6 updates:

Package	From	To
@aws-sdk/client-ec2	3.901.0	3.909.0
@aws-sdk/client-ssm	3.901.0	3.908.0
@aws-sdk/client-sqs	3.901.0	3.908.0
@aws-sdk/client-s3	3.901.0	3.908.0
@aws-sdk/lib-storage	3.903.0	3.908.0
@aws-sdk/client-eventbridge	3.901.0	3.908.0

Updates @aws-sdk/client-ec2 from 3.901.0 to 3.909.0

Release notes

Sourced from @​aws-sdk/client-ec2's releases.

v3.909.0

3.909.0(2025-10-13)

New Features

• client-bedrock-agentcore: Updated InvokeAgentRuntime API to accept account id optionally and added CompleteResourceTokenAuth API. (d21a5464)
• client-ec2: Release Amazon EC2 c8i, c8i-flex, m8a, and r8gb (d1cdea81)
• client-observabilityadmin: CloudWatch Observability Admin adds the ability to enable Resource tags for telemetry in a customer account. The release introduces new APIs to enable, disable and describe the status of Resource tags for telemetry feature. This new capability simplifies monitoring AWS resources using tags. (f74cc089)
• client-bedrock-agentcore-control: Updated http status code in control plane apis of agentcore runtime, tools and identity. Additional included provider types for AgentCore Identity (ef2d3c36)

---

For list of updated packages, view updated-packages.md in assets-3.909.0.zip

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

... (truncated)

Changelog

Sourced from @​aws-sdk/client-ec2's changelog.

3.909.0 (2025-10-13)

Features

• client-ec2: Release Amazon EC2 c8i, c8i-flex, m8a, and r8gb (d1cdea8)

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/client-ec2

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/client-ec2

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/client-ec2

Commits

• a3d9f52 Publish v3.909.0
• d1cdea8 feat(client-ec2): Release Amazon EC2 c8i, c8i-flex, m8a, and r8gb
• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• See full diff in compare view

Updates @aws-sdk/client-ssm from 3.901.0 to 3.908.0

Release notes

Sourced from @​aws-sdk/client-ssm's releases.

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

• util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
• ci: run publish for codegen (#7415) (b2f1ac0c)

New Features

• clients: update client endpoints as of 2025-10-09 (98148915)
• client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
• client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)

Tests

• core: modify request compression threshold values (#7414) (6b45d720)

---

... (truncated)

Changelog

Sourced from @​aws-sdk/client-ssm's changelog.

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/client-ssm

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/client-ssm

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/client-ssm

Commits

• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• See full diff in compare view

Updates @aws-sdk/client-sqs from 3.901.0 to 3.908.0

Release notes

Sourced from @​aws-sdk/client-sqs's releases.

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

• util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
• ci: run publish for codegen (#7415) (b2f1ac0c)

New Features

• clients: update client endpoints as of 2025-10-09 (98148915)
• client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
• client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)

Tests

• core: modify request compression threshold values (#7414) (6b45d720)

---

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sqs's changelog.

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/client-sqs

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/client-sqs

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/client-sqs

Commits

• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• See full diff in compare view

Updates @aws-sdk/client-s3 from 3.901.0 to 3.908.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

• util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
• ci: run publish for codegen (#7415) (b2f1ac0c)

New Features

• clients: update client endpoints as of 2025-10-09 (98148915)
• client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
• client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)

Tests

• core: modify request compression threshold values (#7414) (6b45d720)

---

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/client-s3

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/client-s3

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/client-s3

Commits

• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• See full diff in compare view

Updates @aws-sdk/lib-storage from 3.903.0 to 3.908.0

Release notes

Sourced from @​aws-sdk/lib-storage's releases.

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

• util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
• ci: run publish for codegen (#7415) (b2f1ac0c)

New Features

• clients: update client endpoints as of 2025-10-09 (98148915)
• client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
• client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)

Tests

• core: modify request compression threshold values (#7414) (6b45d720)

---

... (truncated)

Changelog

Sourced from @​aws-sdk/lib-storage's changelog.

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/lib-storage

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/lib-storage

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/lib-storage

3.905.0 (2025-10-07)

Bug Fixes

• lib-storage: restrict lstat calls to fs.ReadStream objects (#7411) (120f408)

Commits

• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• 0f28213 Publish v3.905.0
• 120f408 fix(lib-storage): restrict lstat calls to fs.ReadStream objects (#7411)
• See full diff in compare view

Updates @aws-sdk/client-eventbridge from 3.901.0 to 3.908.0

Release notes

Sourced from @​aws-sdk/client-eventbridge's releases.

v3.908.0

3.908.0(2025-10-10)

Chores

• codegen: sync for bowser removal, lstat fixes (#7418) (511167d5)

Documentation Changes

• client-rds: Updated the text in the Important section of the ModifyDBClusterParameterGroup page. (23a42361)

New Features

• clients: update client endpoints as of 2025-10-10 (b5e87b16)
• client-lambda: Add InvokedViaFunctionUrl context key to limit invocations to only FURL invokes. (cf1e3beb)
• client-bedrock-agentcore-control: Bedrock AgentCore release for Gateway, and Memory including Self-Managed Strategies support for Memory. (dd8408b9)
• client-odb: This release adds APIs that allow you to specify CIDR ranges in your ODB peering connection. (72de496b)
• client-cloudfront: Added new viewer security policy, TLSv1.2_2025, for CloudFront. (bbe5fc55)
• client-bedrock-agentcore: Bedrock AgentCore release for Runtime, and Memory. (9ad809ec)
• client-glue: Addition of AuditContext in GetTable/GetTables Request (cf3d8e19)

Bug Fixes

• codegen: apply reserved word escaping to union shape in Json serializer (#7419) (9ee6cdcd)

---

For list of updated packages, view updated-packages.md in assets-3.908.0.zip

v3.907.0

3.907.0(2025-10-09)

Chores

• util-user-agent-browser: remove bowser from default UA provider (#7413) (a94d95f7)
• ci: run publish for codegen (#7415) (b2f1ac0c)

New Features

• clients: update client endpoints as of 2025-10-09 (98148915)
• client-wafv2: This release adds the ability to throw WafLimitsExceededException when the maximum number of Application Load Balancer (ALB) associations per AWS WAF v2 WebACL is exceeded. (33438d9d)
• client-quicksight: This release adds support for ActionConnector and Flow, which are new resources associated with Amazon Quick Suite. Additional updates include expanded Data Source options, further branding customization, and new capabilities that can be restricted by Admins. (72c12a09)

Tests

• core: modify request compression threshold values (#7414) (6b45d720)

---

... (truncated)

Changelog

Sourced from @​aws-sdk/client-eventbridge's changelog.

3.908.0 (2025-10-10)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.907.0 (2025-10-09)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.906.0 (2025-10-08)

Note: Version bump only for package @​aws-sdk/client-eventbridge

Commits

• c5dbfc6 Publish v3.908.0
• 511167d chore(codegen): sync for bowser removal, lstat fixes (#7418)
• 20bfe7d Publish v3.907.0
• 8f16327 Publish v3.906.0
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.