v3.1.7

• Security: bump urllib3 floor to >=2.7.0 in boto3.in (distributed from
  canonical Installer/templates/boto3.in) to remediate CVE-2026-44431 and
  CVE-2026-44432 (both affect urllib3 ≤ 2.6.3, fixed in 2.7.0). The pinned
  boto3==1.42.94 previously resolved urllib3 transitively to 2.6.3 across all
  76 Lambda lockfiles; the new floor forces resolution to 2.7.0 fleet-wide.
  Locks recompiled with --upgrade; other transitive deps refreshed to their
  latest in-range versions as a side effect (no code or behaviour change).

Full Changelog: v3.1.6...v3.1.7