Bumps node modules

Author: poad

.github/workflows/ci.yml

@@ -20,6 +20,8 @@ jobs:
 
     steps:
     - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+      with:
+        persist-credentials: false
 
     - name: Use Node.js
       uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0

.github/workflows/enable-auto-merge.yml

@@ -14,10 +14,10 @@ jobs:
     if: ${{ github.event.pull_request.draft == false && (github.actor == 'dependabot[bot]' || github.repository_owner == github.actor) }}
 
     steps:
-      - name: Enable auto-merge for Pull Request
-        run: |
-          gh pr review --approve "$PR_URL"
-          gh pr merge --auto --squash "$PR_URL"
-        env:
-          PR_URL: ${{github.event.pull_request.html_url}}
-          GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
+    - name: Enable auto-merge for Pull Request
+      run: |
+        gh pr review --approve "$PR_URL"
+        gh pr merge --auto --squash "$PR_URL"
+      env:
+        PR_URL: ${{github.event.pull_request.html_url}}
+        GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}

.github/workflows/scorecard.yml

@@ -35,46 +35,46 @@ jobs:
       # actions: read
 
     steps:
-      - name: "Checkout code"
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-        with:
-          persist-credentials: false
+    - name: "Checkout code"
+      uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+      with:
+        persist-credentials: false
 
-      - name: "Run analysis"
-        uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3
-        with:
-          results_file: results.sarif
-          results_format: sarif
-          # (Optional) "write" PAT token. Uncomment the `repo_token` line below if:
-          # - you want to enable the Branch-Protection check on a *public* repository, or
-          # - you are installing Scorecard on a *private* repository
-          # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action?tab=readme-ov-file#authentication-with-fine-grained-pat-optional.
-          # repo_token: ${{ secrets.SCORECARD_TOKEN }}
+    - name: "Run analysis"
+      uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3
+      with:
+        results_file: results.sarif
+        results_format: sarif
+        # (Optional) "write" PAT token. Uncomment the `repo_token` line below if:
+        # - you want to enable the Branch-Protection check on a *public* repository, or
+        # - you are installing Scorecard on a *private* repository
+        # To create the PAT, follow the steps in https://github.com/ossf/scorecard-action?tab=readme-ov-file#authentication-with-fine-grained-pat-optional.
+        # repo_token: ${{ secrets.SCORECARD_TOKEN }}
 
-          # Public repositories:
-          #   - Publish results to OpenSSF REST API for easy access by consumers
-          #   - Allows the repository to include the Scorecard badge.
-          #   - See https://github.com/ossf/scorecard-action#publishing-results.
-          # For private repositories:
-          #   - `publish_results` will always be set to `false`, regardless
-          #     of the value entered here.
-          publish_results: true
+        # Public repositories:
+        #   - Publish results to OpenSSF REST API for easy access by consumers
+        #   - Allows the repository to include the Scorecard badge.
+        #   - See https://github.com/ossf/scorecard-action#publishing-results.
+        # For private repositories:
+        #   - `publish_results` will always be set to `false`, regardless
+        #     of the value entered here.
+        publish_results: true
 
-          # (Optional) Uncomment file_mode if you have a .gitattributes with files marked export-ignore
-          # file_mode: git
+        # (Optional) Uncomment file_mode if you have a .gitattributes with files marked export-ignore
+        # file_mode: git
 
-      # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
-      # format to the repository Actions tab.
-      - name: "Upload artifact"
-        uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
-        with:
-          name: SARIF file
-          path: results.sarif
-          retention-days: 5
+    # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
+    # format to the repository Actions tab.
+    - name: "Upload artifact"
+      uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
+      with:
+        name: SARIF file
+        path: results.sarif
+        retention-days: 5
 
-      # Upload the results to GitHub's code scanning dashboard (optional).
-      # Commenting out will disable upload of results to your repo's Code Scanning dashboard
-      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
-        with:
-          sarif_file: results.sarif
+    # Upload the results to GitHub's code scanning dashboard (optional).
+    # Commenting out will disable upload of results to your repo's Code Scanning dashboard
+    - name: "Upload to code-scanning"
+      uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
+      with:
+        sarif_file: results.sarif

amplify/amplify-cdk/app/package.json

@@ -21,7 +21,7 @@
     "@mui/material": "^9.0.1",
     "autoprefixer": "^10.5.0",
     "next": "^16.2.6",
-    "postcss": "^8.5.14",
+    "postcss": "^8.5.15",
     "react": "^19.2.6",
     "react-dom": "^19.2.6",
     "tailwindcss": "^4.3.0",
@@ -44,6 +44,6 @@
     "rimraf": "^6.1.3",
     "styled-jsx": "^5.1.7",
     "typescript": "^6.0.3",
-    "typescript-eslint": "^8.59.3"
+    "typescript-eslint": "^8.59.4"
   }
 }

amplify/amplify-cdk/infra/package.json

@@ -10,12 +10,12 @@
   "devDependencies": {
     "@types/node": "^24.12.4",
     "aws-cdk": "^2.1122.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3"
   },
   "dependencies": {
     "@aws-cdk/aws-amplify-alpha": "2.250.0-alpha.0",
-    "aws-cdk-lib": "^2.254.0",
+    "aws-cdk-lib": "^2.255.0",
     "constructs": "^10.6.0"
   }
 }

bedrock/agentcore-runtime-agent-example/app/package.json

@@ -22,7 +22,7 @@
     "@hono/node-server": "^1.19.14",
     "@modelcontextprotocol/sdk": "^1.29.0",
     "@strands-agents/sdk": "^1.2.0",
-    "hono": "^4.12.19",
+    "hono": "^4.12.21",
     "zod": "^4.4.3"
   },
   "devDependencies": {
@@ -35,8 +35,8 @@
     "eslint-plugin-import-x": "^4.16.2",
     "eslint-plugin-promise": "^7.3.0",
     "jiti": "^2.7.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3",
-    "typescript-eslint": "^8.59.3"
+    "typescript-eslint": "^8.59.4"
   }
 }

bedrock/agentcore-runtime-agent-example/package.json

@@ -26,15 +26,15 @@
     "eslint-plugin-import-x": "^4.16.2",
     "eslint-plugin-promise": "^7.3.0",
     "jiti": "^2.7.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3",
-    "typescript-eslint": "^8.59.3",
+    "typescript-eslint": "^8.59.4",
     "vite": "^8.0.13",
     "vitest": "^4.1.6"
   },
   "dependencies": {
     "@aws/aws-distro-opentelemetry-node-autoinstrumentation": "^0.11.0",
-    "aws-cdk-lib": "^2.254.0",
+    "aws-cdk-lib": "^2.255.0",
     "cdk-ecr-deployment": "^4.2.2",
     "constructs": "^10.6.0"
   }

bedrock/agentcore-runtime-mcp-example/mcp-server/package.json

@@ -22,14 +22,14 @@
     "eslint-plugin-import-x": "^4.16.2",
     "eslint-plugin-promise": "^7.3.0",
     "jiti": "^2.7.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3",
-    "typescript-eslint": "^8.59.3"
+    "typescript-eslint": "^8.59.4"
   },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.29.0",
     "fastmcp": "^3.35.0",
-    "hono": "^4.12.19",
+    "hono": "^4.12.21",
     "zod": "^4.4.3"
   }
 }

bedrock/agentcore-runtime-mcp-example/package.json

@@ -25,13 +25,13 @@
     "eslint-plugin-import-x": "^4.16.2",
     "eslint-plugin-promise": "^7.3.0",
     "jiti": "^2.7.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3",
-    "typescript-eslint": "^8.59.3",
+    "typescript-eslint": "^8.59.4",
     "vitest": "^4.1.6"
   },
   "dependencies": {
-    "aws-cdk-lib": "^2.254.0",
+    "aws-cdk-lib": "^2.255.0",
     "cdk-ecr-deployment": "^4.2.2",
     "constructs": "^10.6.0"
   }

codebuild/codebuild-gha-lambda-runner-example/package.json

@@ -19,13 +19,13 @@
     "aws-cdk": "^2.1122.0",
     "esbuild": "^0.28.0",
     "jiti": "^2.7.0",
-    "tsx": "^4.22.2",
+    "tsx": "^4.22.3",
     "typescript": "^6.0.3",
     "vite": "^8.0.13",
     "vitest": "^4.1.6"
   },
   "dependencies": {
-    "aws-cdk-lib": "^2.254.0",
+    "aws-cdk-lib": "^2.255.0",
     "constructs": "^10.6.0"
   }
 }