chore(deps): bump the all-dependencies group with 5 updates

[dependabot]

Bumps the all-dependencies group with 5 updates:

Package	From	To
@aws-sdk/client-kms	3.1041.0	3.1045.0
@aws-sdk/credential-providers	3.1041.0	3.1045.0
debug-fabulous	2.0.68	2.0.69
through2	4.0.2	5.0.0
commit-and-tag-version	12.7.1	12.7.3

Updates @aws-sdk/client-kms from 3.1041.0 to 3.1045.0

Release notes

Sourced from @​aws-sdk/client-kms's releases.

v3.1045.0

3.1045.0(2026-05-07)

Documentation Changes

• client-guardduty: This is a documentation update (1484574c)

New Features

• clients: update client endpoints as of 2026-05-07 (81310767)
• client-bcm-data-exports: With this release, customers can configure their data exports to generate additional integration artifacts for Athena and Redshift. (238da2c1)
• client-invoicing: Updated ListInvoiceSummaries API to add new ReceiverRole filter in Request and Response (60a448cb)
• client-bedrock-agentcore: Launching AgentCore payments - a capability that provides secure, instant microtransaction payments for AI agents to access paid APIs, MCP servers, and content. It handles payment processing for x402 protocol, payment limits, and 3P wallet integrations with Coinbase CDP and Stripe (Privy). (1e1031a7)
• client-ec2: DescribeInstanceTypes now accepts an IncludeUnsupportedInRegion parameter. When set, the response also lists instance types that are not available in the current Region. Each instance type includes a SupportedInRegion field indicating its regional availability. (70262433)
• client-bedrock-agentcore-control: Launching AgentCore payments - a capability that provides secure, instant microtransaction payments for AI agents to access paid APIs, MCP servers, and content. It handles payment processing for x402 protocol, payment limits, and 3P wallet integrations with Coinbase CDP and Stripe (Privy). (fe5861ae)
• client-route53resolver: Adds supports for DNS64 on inbound endpoints and IPv6 forwarding through the internet gateway (IGW) on outbound endpoints, making it easier to manage hybrid DNS across IPv4 and IPv6 networks. (8e6e18c6)

---

For list of updated packages, view updated-packages.md in assets-3.1045.0.zip

v3.1044.0

3.1044.0(2026-05-06)

New Features

• client-securityhub: Release GenerateRecommendedPolicyV2 and GetRecommendedPolicyV2 APIs. This supports generating and retrieving policy recommendations to remediate unused permissions findings that are now being supported on Security Hub. (772b8629)
• client-sagemaker: Amazon SageMaker HyperPod now returns ImageVersionStatus in DescribeCluster, DescribeClusterNode, and ListClusterNodes responses, indicating whether cluster instances are running the latest available image version. (2be7e6b4)
• client-glue: Adds support for a CustomLogGroupPrefix parameter in StartDataQualityRulesetEvaluationRun to specify custom CloudWatch log group paths, and a RulesetName filter in ListDataQualityRulesetEvaluationRuns to filter evaluation runs by ruleset name. (b95d850b)
• client-lex-models-v2: Amazon Lex V2 introduces audio filler support for speech-to-speech bots. Configure melody or typing sounds that play during backend processing to reduce perceived latency and maintain a natural conversational experience for callers. (01426f8e)
• client-bedrock-agentcore-control: Adds support for bring-your-own file system in AgentCore Runtime. Developers can mount Amazon S3 Files and Amazon EFS access points directly into agent sessions using filesystemConfigurations. (e20f24d9)
• client-s3: Validate outpost access point resource name (bee88a56)
• client-mwaa: Amazon MWAA now supports a PublicAndPrivate webserver access mode. The Airflow web server is accessible over both public and private endpoints, enabling workers in VPCs without internet access to reach the Task API privately while retaining public access to the Airflow UI. (3a6054ef)
• client-imagebuilder: The ImportDiskImage API now enforces a maximum character limit of 128 characters on the image name field. (7fc2565c)

Tests

• scripts: include type symbols in api snapshot test (#7985) (02f86176)

---

For list of updated packages, view updated-packages.md in assets-3.1044.0.zip

v3.1043.0

3.1043.0(2026-05-05)

New Features

... (truncated)

Changelog

Sourced from @​aws-sdk/client-kms's changelog.

3.1045.0 (2026-05-07)

Note: Version bump only for package @​aws-sdk/client-kms

3.1044.0 (2026-05-06)

Note: Version bump only for package @​aws-sdk/client-kms

3.1043.0 (2026-05-05)

Note: Version bump only for package @​aws-sdk/client-kms

3.1042.0 (2026-05-04)

Note: Version bump only for package @​aws-sdk/client-kms

Commits

• b329def Publish v3.1045.0
• 1ccd438 Publish v3.1044.0
• 96baad9 Publish v3.1043.0
• d942e31 Publish v3.1042.0
• See full diff in compare view

Updates @aws-sdk/credential-providers from 3.1041.0 to 3.1045.0

Release notes

Sourced from @​aws-sdk/credential-providers's releases.

v3.1045.0

3.1045.0(2026-05-07)

Documentation Changes

• client-guardduty: This is a documentation update (1484574c)

New Features

• clients: update client endpoints as of 2026-05-07 (81310767)
• client-bcm-data-exports: With this release, customers can configure their data exports to generate additional integration artifacts for Athena and Redshift. (238da2c1)
• client-invoicing: Updated ListInvoiceSummaries API to add new ReceiverRole filter in Request and Response (60a448cb)
• client-bedrock-agentcore: Launching AgentCore payments - a capability that provides secure, instant microtransaction payments for AI agents to access paid APIs, MCP servers, and content. It handles payment processing for x402 protocol, payment limits, and 3P wallet integrations with Coinbase CDP and Stripe (Privy). (1e1031a7)
• client-ec2: DescribeInstanceTypes now accepts an IncludeUnsupportedInRegion parameter. When set, the response also lists instance types that are not available in the current Region. Each instance type includes a SupportedInRegion field indicating its regional availability. (70262433)
• client-bedrock-agentcore-control: Launching AgentCore payments - a capability that provides secure, instant microtransaction payments for AI agents to access paid APIs, MCP servers, and content. It handles payment processing for x402 protocol, payment limits, and 3P wallet integrations with Coinbase CDP and Stripe (Privy). (fe5861ae)
• client-route53resolver: Adds supports for DNS64 on inbound endpoints and IPv6 forwarding through the internet gateway (IGW) on outbound endpoints, making it easier to manage hybrid DNS across IPv4 and IPv6 networks. (8e6e18c6)

---

For list of updated packages, view updated-packages.md in assets-3.1045.0.zip

v3.1044.0

3.1044.0(2026-05-06)

New Features

• client-securityhub: Release GenerateRecommendedPolicyV2 and GetRecommendedPolicyV2 APIs. This supports generating and retrieving policy recommendations to remediate unused permissions findings that are now being supported on Security Hub. (772b8629)
• client-sagemaker: Amazon SageMaker HyperPod now returns ImageVersionStatus in DescribeCluster, DescribeClusterNode, and ListClusterNodes responses, indicating whether cluster instances are running the latest available image version. (2be7e6b4)
• client-glue: Adds support for a CustomLogGroupPrefix parameter in StartDataQualityRulesetEvaluationRun to specify custom CloudWatch log group paths, and a RulesetName filter in ListDataQualityRulesetEvaluationRuns to filter evaluation runs by ruleset name. (b95d850b)
• client-lex-models-v2: Amazon Lex V2 introduces audio filler support for speech-to-speech bots. Configure melody or typing sounds that play during backend processing to reduce perceived latency and maintain a natural conversational experience for callers. (01426f8e)
• client-bedrock-agentcore-control: Adds support for bring-your-own file system in AgentCore Runtime. Developers can mount Amazon S3 Files and Amazon EFS access points directly into agent sessions using filesystemConfigurations. (e20f24d9)
• client-s3: Validate outpost access point resource name (bee88a56)
• client-mwaa: Amazon MWAA now supports a PublicAndPrivate webserver access mode. The Airflow web server is accessible over both public and private endpoints, enabling workers in VPCs without internet access to reach the Task API privately while retaining public access to the Airflow UI. (3a6054ef)
• client-imagebuilder: The ImportDiskImage API now enforces a maximum character limit of 128 characters on the image name field. (7fc2565c)

Tests

• scripts: include type symbols in api snapshot test (#7985) (02f86176)

---

For list of updated packages, view updated-packages.md in assets-3.1044.0.zip

v3.1043.0

3.1043.0(2026-05-05)

New Features

... (truncated)

Changelog

Sourced from @​aws-sdk/credential-providers's changelog.

3.1045.0 (2026-05-07)

Note: Version bump only for package @​aws-sdk/credential-providers

3.1044.0 (2026-05-06)

Note: Version bump only for package @​aws-sdk/credential-providers

3.1043.0 (2026-05-05)

Note: Version bump only for package @​aws-sdk/credential-providers

3.1042.0 (2026-05-04)

Note: Version bump only for package @​aws-sdk/credential-providers

Commits

• b329def Publish v3.1045.0
• 1ccd438 Publish v3.1044.0
• 96baad9 Publish v3.1043.0
• d942e31 Publish v3.1042.0
• See full diff in compare view

Updates debug-fabulous from 2.0.68 to 2.0.69

Release notes

Sourced from debug-fabulous's releases.

v2.0.69

What's Changed

• chore(deps-dev): bump the all-dependencies group across 1 directory with 4 updates by @​dependabot[bot] in brickhouse-tech/debug-fabulous#122

Full Changelog: brickhouse-tech/debug-fabulous@v2.0.68...v2.0.69

Changelog

Sourced from debug-fabulous's changelog.

2.0.69 (2026-05-07)

Commits

• 3ef2de1 chore(release): 2.0.69
• 2003c79 Merge pull request #122 from brickhouse-tech/dependabot/npm_and_yarn/all-depe...
• a7dede1 chore(deps-dev): bump the all-dependencies group across 1 directory with 4 up...
• See full diff in compare view

Updates through2 from 4.0.2 to 5.0.0

Release notes

Sourced from through2's releases.

v5.0.0

5.0.0 (2026-05-07)

⚠ BREAKING CHANGES

• ESM rewrite, named exports, async + async-generator transforms, /web subpath (#118)

Features

• ESM rewrite, named exports, async + async-generator transforms, /web subpath (#118) (dd40259)

Changelog

Sourced from through2's changelog.

5.0.0 (2026-05-07)

⚠ BREAKING CHANGES

• ESM rewrite, named exports, async + async-generator transforms, /web subpath (#118)

Features

• ESM rewrite, named exports, async + async-generator transforms, /web subpath (#118) (dd40259)

Commits

• ec5688d chore(release): 5.0.0 [skip ci]
• dd40259 feat!: ESM rewrite, named exports, async + async-generator transforms, /web s...
• See full diff in compare view

Maintainer changes

This version was pushed to npm by GitHub Actions, a new releaser for through2 since your current version.

Updates commit-and-tag-version from 12.7.1 to 12.7.3

Release notes

Sourced from commit-and-tag-version's releases.

v12.7.3

12.7.3 (2026-03-18)

Bug Fixes

• update release workflow for npm OIDC trusted publishing (#281) (d0e3408)

v12.7.2

12.7.2 (2026-03-18)

Bug Fixes

• maven: Preserve XML attributes when updating pom.xml files (#279) (81b4f98)

Changelog

Sourced from commit-and-tag-version's changelog.

12.7.3 (2026-03-18)

Bug Fixes

• update release workflow for npm OIDC trusted publishing (#281) (d0e3408)

12.7.2 (2026-03-18)

Bug Fixes

• maven: Preserve XML attributes when updating pom.xml files (#279) (81b4f98)

Commits

• 67051d7 chore(master): release 12.7.3 (#282)
• d0e3408 fix: update release workflow for npm OIDC trusted publishing (#281)
• 71b71f7 chore(master): release 12.7.2 (#280)
• 81b4f98 fix(maven): Preserve XML attributes when updating pom.xml files (#279)
• 29264ae chore: Fix npm package so it doesn't autofix every time
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions