Upgrade: [dependabot] - bump @aws-lambda-powertools/parameters from 2.23.0 to 2.24.0

[dependabot]

Bumps @aws-lambda-powertools/parameters from 2.23.0 to 2.24.0.

Release notes

Sourced from @​aws-lambda-powertools/parameters's releases.

v2.24.0

Summary

We’ve listened to your feedback and starting from this release of Parser we support only Zod v4 for all our built-in schemas and envelopes. Additionally the utility got a power up and it now supports schemas written using Standard Schema 🔥.

We’ve also fixed a bug in Tracer that prevented requests made via proxies to be traced correctly and another bug in Metrics that caused dimension sets to be added correctly to the metrics data object..

🌟 Congratulations to @​chetan9518, @​sdangol, and @​matteofigus for their first PRs merged in the project 🎉

Using Parser with Standard Schema

Docs

You can now use schemas written using Valibot or other Standard Schema-compatible parsing library to parse incoming events using the parser Middy.js middleware or TypeScript class method decorator. This is useful if your codebase is already relying on one of these libraries or you want to have full control over the bundle size.

Note that our built-in schemas and envelopes are still defined only using Zod. If you would like us to support other libraries like Valibot please open an issue and we will consider it based on the community's feedback.

If you are using Zod v3 and need more time to migrate, you can continue using Parser v2.23.0 as long as needed.

import { Logger } from '@aws-lambda-powertools/logger';
import { parser } from '@aws-lambda-powertools/parser/middleware';
import middy from '@middy/core';
import {
  array,
  number,
  object,
  optional,
  pipe,
  string,
  toMinValue,
} from 'valibot';
const logger = new Logger();
const orderSchema = object({
id: pipe(number(), toMinValue(0)),
description: string(),
items: array(
object({
id: pipe(number(), toMinValue(0)),
quantity: pipe(number(), toMinValue(1)),
description: string(),
})
),
optionalField: optional(string()),
});
export const handler = middy()
.use(parser({ schema: orderSchema }))
</tr></table>

... (truncated)

Changelog

Sourced from @​aws-lambda-powertools/parameters's changelog.

2.24.0 (2025-07-15)

Improvements

• metrics optimize addDimensions method to avoid O(n²) complexity (#4156) (3982b4a)
• tracer replace class-based env access with functional helpers (#4146) (51d9b98)

Bug Fixes

• metrics addDimensions() documentation and tests (#3964) (a801636)
• tracer skip tracing CONNECT requests (#4148) (a147c3b)
• parser remove nullable from md5OfMessageAttributes in SqsRecordSchema (#4165) (d6cbde0)

Maintenance

• batch exclude deprecated code from coverage (#4152) (30bbf5a)
• parser remove deprecated parser type (#4154) (a59db36)

Features

• parser support Standard Schema and upgrade to Zod v4 (#4164) (67549f6)

Commits

• 501dc17 chore: bump to 2.24.0 (#4172)
• 57902be chore(deps): bump @​types/node from 24.0.12 to 24.0.13 (#4167)
• c7ebae6 chore(deps): bump esbuild from 0.25.5 to 0.25.6 (#4166)
• d6cbde0 fix(parser): remove nullable from md5OfMessageAttributes in SqsRecordSchema (...
• 67549f6 feat(parser): support Standard Schema and upgrade to Zod v4 (#4164)
• 191c846 chore(deps-dev): bump @​redis/client from 5.5.6 to 5.6.0 (#4162)
• 9472471 chore(deps): bump the aws-sdk-v3 group across 1 directory with 9 updates (#4159)
• 06622c3 chore(deps): bump vscode/devcontainers/javascript-node from 0d29e5f to `eac...
• af44b7c chore(deps-dev): bump zod from 3.25.67 to 3.25.76 (#4158)
• c9a1f7b chore(deps): bump @​types/node from 24.0.10 to 24.0.12 (#4157)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[anthony-nhs]

@dependabot recreate

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud