fix(lambda): bump the aws group in /lambdas with 7 updates

[dependabot]

Bumps the aws group in /lambdas with 7 updates:

Package	From	To
@aws-sdk/client-ec2	3.938.0	3.940.0
@aws-sdk/client-ssm	3.936.0	3.940.0
@aws-sdk/types	3.930.0	3.936.0
@aws-sdk/client-sqs	3.936.0	3.940.0
@aws-sdk/client-s3	3.937.0	3.940.0
@aws-sdk/lib-storage	3.937.0	3.940.0
@aws-sdk/client-eventbridge	3.936.0	3.940.0

Updates @aws-sdk/client-ec2 from 3.938.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/client-ec2's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

Changelog

Sourced from @​aws-sdk/client-ec2's changelog.

3.940.0 (2025-11-25)

Features

• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b06)

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-ec2

Commits

• e9962f1 Publish v3.940.0
• 7d70b06 feat(client-ec2): This release adds support to view Network firewall proxy ap...
• 1592379 Publish v3.939.0
• See full diff in compare view

Updates @aws-sdk/client-ssm from 3.936.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/client-ssm's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-ssm's changelog.

3.940.0 (2025-11-25)

Note: Version bump only for package @​aws-sdk/client-ssm

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-ssm

Commits

• e9962f1 Publish v3.940.0
• 1592379 Publish v3.939.0
• See full diff in compare view

Updates @aws-sdk/types from 3.930.0 to 3.936.0

Release notes

Sourced from @​aws-sdk/types's releases.

v3.936.0

3.936.0(2025-11-19)

New Features

• credential-provider-login: add login credential provider (#7512) (2c08b1e0)

---

For list of updated packages, view updated-packages.md in assets-3.936.0.zip

v3.935.0

3.935.0(2025-11-19)

Chores

• codegen: update for smithy/core serde fixes (#7511) (ac2be518)

New Features

• clients: update client endpoints as of 2025-11-19 (d7b51c49)
• client-sts: IAM now supports outbound identity federation via the STS GetWebIdentityToken API, enabling AWS workloads to securely authenticate with external services using short-lived JSON Web Tokens. (f9fed01c)
• client-dynamodb: Extended Global Secondary Index (GSI) composite keys to support up to 8 attributes. (622ef038)
• client-medialive: MediaLive is adding support for MediaConnect Router by supporting a new input type called MEDIACONNECT_ROUTER. This new input type will provide seamless encrypted transport between MediaConnect Router and your MediaLive channel. (1667189e)
• client-bcm-pricing-calculator: Add GroupSharingPreference, CostCategoryGroupSharingPreferenceArn, and CostCategoryGroupSharingPreferenceEffectiveDate to Bill Estimate. Add GroupSharingPreference and CostCategoryGroupSharingPreferenceArn to Bill Scenario. (e0dc140c)
• client-backup: Amazon GuardDuty Malware Protection now supports AWS Backup, extending malware detection capabilities to EC2, EBS, and S3 backups. (498dcf3d)
• client-connectcampaignsv2: This release added support for ring timer configuration for campaign calls. (1155c3c4)
• client-ecs: Added support for Amazon ECS Managed Instances infrastructure optimization configuration. (2ee0c3f3)
• client-ecr: Add support for ECR archival storage class and Inspector org policy for scanning (ed5e232d)
• client-sagemaker: Added support for enhanced metrics for SageMaker AI Endpoints. This features provides Utilization Metrics at instance and container granularity and also provides easy configuration of metric publish frequency from 10 sec -> 5 mins (ad2587c7)
• client-apigatewayv2: Support for API Gateway portals and portal products. (fc064256)
• client-billingconductor: This release adds support for Billing Transfers, enabling management of billing transfers with billing groups on AWS Billing Conductor. (4e32b65d)
• client-cloudwatch-logs: Adding support for ocsf version 1.5, add optional parameter MappingVersion (2a15be86)
• client-api-gateway: API Gateway now supports response streaming and new security policies for REST APIs and custom domain names. (e1d2d6b1)
• client-cost-optimization-hub: Release ListEfficiencyMetrics API (2b031582)
• client-bedrock-runtime: This release includes support for Search Results. (40ffa77a)
• client-cloudtrail: AWS CloudTrail now supports Insights for data events, expanding beyond management events to automatically detect unusual activity on data plane operations. (f8570665)
• client-health: Adds actionability and personas properties to Health events exposed through DescribeEvents, DescribeEventsForOrganization, DescribeEventDetails, and DescribeEventTypes APIs. Adds filtering by actionabilities and personas in EventFilter, OrganizationEventFilter, EventTypeFilter. (c754b242)
• client-networkflowmonitor: Added new enum value (AWS::EKS::Cluster) for type field under MonitorLocalResource (66729787)
• client-invoicing: Add support for adding Billing transfers in Invoice configuration (2e493490)
• client-s3: Adds support for blocking SSE-C writes to general purpose buckets. (cee2e72f)
• client-network-firewall: Partner Managed Rulegroup feature support (2e8472d6)
• client-emr: Add CloudWatch Logs integration for Spark driver, executor and step logs (7e6e1684)
• client-fsx: Adding File Server Resource Manager configuration to FSx Windows (2e3c0c96)
• client-guardduty: Add support for scanning and viewing scan results for backup resource types (231cf06b)
• client-sfn: Adds support to TestState for mocked results and exceptions, along with additional inspection data. (1b18be75)
• client-partnercentral-channel: Initial GA launch of Partner Central Channel (b77d1682)
• client-secrets-manager: Adds support to create, update, retrieve, rotate, and delete managed external secrets. (c13b6f97)
• client-iam: Added the EnableOutboundWebIdentityFederation, DisableOutboundWebIdentityFederation and GetOutboundWebIdentityFederationInfo APIs for the IAM outbound federation feature. (5774faa2)

... (truncated)

Changelog

Sourced from @​aws-sdk/types's changelog.

3.936.0 (2025-11-19)

Features

• credential-provider-login: add login credential provider (#7512) (2c08b1e)

Commits

• a180cc7 Publish v3.936.0
• 2c08b1e feat(credential-provider-login): add login credential provider (#7512)
• See full diff in compare view

Updates @aws-sdk/client-sqs from 3.936.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/client-sqs's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sqs's changelog.

3.940.0 (2025-11-25)

Note: Version bump only for package @​aws-sdk/client-sqs

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-sqs

Commits

• e9962f1 Publish v3.940.0
• 1592379 Publish v3.939.0
• See full diff in compare view

Updates @aws-sdk/client-s3 from 3.937.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.940.0 (2025-11-25)

Note: Version bump only for package @​aws-sdk/client-s3

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-s3

Commits

• e9962f1 Publish v3.940.0
• 1592379 Publish v3.939.0
• See full diff in compare view

Updates @aws-sdk/lib-storage from 3.937.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/lib-storage's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/lib-storage's changelog.

3.940.0 (2025-11-25)

Note: Version bump only for package @​aws-sdk/lib-storage

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/lib-storage

Commits

• e9962f1 Publish v3.940.0
• 1592379 Publish v3.939.0
• See full diff in compare view

Updates @aws-sdk/client-eventbridge from 3.936.0 to 3.940.0

Release notes

Sourced from @​aws-sdk/client-eventbridge's releases.

v3.940.0

3.940.0(2025-11-25)

New Features

• clients: update client endpoints as of 2025-11-25 (e2770904)
• client-network-firewall: Network Firewall release of the Proxy feature. (0eb20e88)
• client-organizations: Add support for policy operations on the S3_POLICY and BEDROCK_POLICY policy type. (75e196ee)
• client-route-53: Adds support for new route53 feature: accelerated recovery. (dbe0a58f)
• client-ec2: This release adds support to view Network firewall proxy appliances attached to an existing NAT Gateway via DescribeNatGateways API NatGatewayAttachedAppliance structure. (7d70b063)

Bug Fixes

• core/protocols: performance improvements for shape serde traversal (#7523) (b20a25ea)

Tests

• codegen: update codegen unit tests (#7525) (e43ff44c)

---

For list of updated packages, view updated-packages.md in assets-3.940.0.zip

v3.939.0

3.939.0(2025-11-24)

Chores

• scripts: reduce api validation to packages/lib only (#7519) (eb74d6a0)

New Features

• client-cloudwatch-logs: New CloudWatch Logs feature - LogGroup Deletion Protection, a capability that allows customers to safeguard their critical CloudWatch log groups from accidental or unintended deletion. (02360329)
• client-cloudfront: Add TrustStore, ConnectionFunction APIs to CloudFront SDK (168505ee)

Bug Fixes

• clients: export enum objects for string shapes (#7521) (62f648df)
• cloudfront-signer: skip extended encoding for query parameters in the base url (#7515) (954d411e)

Tests

• increase beforeAll hook timeouts (#7518) (720ba4cd)

---

For list of updated packages, view updated-packages.md in assets-3.939.0.zip

... (truncated)

Changelog

Sourced from @​aws-sdk/client-eventbridge's changelog.

3.940.0 (2025-11-25)

Note: Version bump only for package @​aws-sdk/client-eventbridge

3.939.0 (2025-11-24)

Note: Version bump only for package @​aws-sdk/client-eventbridge

Commits

• e9962f1 Publish v3.940.0
• 1592379 Publish v3.939.0
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.