build(deps-dev): bump the nodejs-other group across 1 directory with 9 updates

[dependabot]

Bumps the nodejs-other group with 9 updates in the /nodejs directory:

Package	From	To
eslint	8.57.1	10.0.3
gts	6.0.2	7.0.0
lerna	9.0.3	9.0.5
rimraf	6.1.2	6.1.3
sinon	21.0.0	21.0.2
webpack	5.104.1	5.105.4
@aws-sdk/client-sts	3.948.0	3.1004.0
@types/node	24.5.2	25.3.5
aws-cdk-lib	2.232.2	2.241.0

Updates eslint from 8.57.1 to 10.0.3

Release notes

Sourced from eslint's releases.

v10.0.3

Bug Fixes

• e511b58 fix: update eslint (#20595) (renovate[bot])
• f4c9cf9 fix: include variable name in no-useless-assignment message (#20581) (sethamus)
• ee9ff31 fix: update dependency minimatch to ^10.2.4 (#20562) (Milos Djermanovic)

Documentation

• 9fc31b0 docs: Update README (GitHub Actions Bot)
• 4efaa36 docs: add info box for eslint-plugin-eslint-comments (#20570) (DesselBane)
• 23b2759 docs: add v10 migration guide link to Use docs index (#20577) (Pixel998)
• 80259a9 docs: Remove deprecated eslintrc documentation files (#20472) (Copilot)
• 9b9b4ba docs: fix typo in no-await-in-loop documentation (#20575) (Pixel998)
• e7d72a7 docs: document TypeScript 5.3 minimum supported version (#20547) (sethamus)

Chores

• ef8fb92 chore: package.json update for eslint-config-eslint release (Jenkins)
• e8f2104 chore: updates for v9.39.4 release (Jenkins)
• 5cd1604 refactor: simplify isCombiningCharacter helper (#20524) (Huáng Jùnliàng)
• 70ff1d0 chore: eslint-config-eslint require Node ^20.19.0 || ^22.13.0 || >=24 (#20586) (Milos Djermanovic)
• e32df71 chore: update eslint-plugin-eslint-comments, remove legacy-peer-deps (#20576) (Milos Djermanovic)
• 53ca6ee chore: disable eslint-comments/no-unused-disable rule (#20578) (Milos Djermanovic)
• e121895 ci: pin Node.js 25.6.1 (#20559) (Milos Djermanovic)
• efc5aef chore: update tsconfig.json in eslint-config-eslint (#20551) (Francesco Trotta)

v10.0.2

Bug Fixes

• 2b72361 fix: update ajv to 6.14.0 to address security vulnerabilities (#20537) (루밀LuMir)

Documentation

• 13eeedb docs: link rule type explanation to CLI option --fix-type (#20548) (Mike McCready)
• 98cbf6b docs: update migration guide per Program range change (#20534) (Huáng Jùnliàng)
• 61a2405 docs: add missing semicolon in vars-on-top rule example (#20533) (Abilash)

Chores

• 951223b chore: update dependency @​eslint/eslintrc to ^3.3.4 (#20553) (renovate[bot])
• 6aa1afe chore: update dependency eslint-plugin-jsdoc to ^62.7.0 (#20536) (Milos Djermanovic)

v10.0.1

Bug Fixes

• c87d5bd fix: update eslint (#20531) (renovate[bot])
• d841001 fix: update minimatch to 10.2.1 to address security vulnerabilities (#20519) (루밀LuMir)
• 04c2147 fix: update error message for unused suppressions (#20496) (fnx)
• 38b089c fix: update dependency @​eslint/config-array to ^0.23.1 (#20484) (renovate[bot])

Documentation

• 5b3dbce docs: add AI acknowledgement section to templates (#20431) (루밀LuMir)
• 6f23076 docs: toggle nav in no-JS mode (#20476) (Tanuj Kanti)
• b69cfb3 docs: Update README (GitHub Actions Bot)

Chores

... (truncated)

Commits

• bfce7ea 10.0.3
• d44ced8 Build: changelog update for 10.0.3
• e511b58 fix: update eslint (#20595)
• ef8fb92 chore: package.json update for eslint-config-eslint release
• e8f2104 chore: updates for v9.39.4 release
• 5cd1604 refactor: simplify isCombiningCharacter helper (#20524)
• 9fc31b0 docs: Update README
• 70ff1d0 chore: eslint-config-eslint require Node ^20.19.0 || ^22.13.0 || >=24 (#20586)
• f4c9cf9 fix: include variable name in no-useless-assignment message (#20581)
• 4efaa36 docs: add info box for eslint-plugin-eslint-comments (#20570)
• Additional commits viewable in compare view

Updates gts from 6.0.2 to 7.0.0

Release notes

Sourced from gts's releases.

v7.0.0

7.0.0 (2025-12-04)

⚠ BREAKING CHANGES

• eslint use new config format (plus update deps) (#935)

Features

• eslint use new config format (plus update deps) (#935) (625836a)

Changelog

Sourced from gts's changelog.

7.0.0 (2025-12-04)

⚠ BREAKING CHANGES

• eslint use new config format (plus update deps) (#935)

Features

• eslint use new config format (plus update deps) (#935) (625836a)

Commits

• e0486de chore(main): release 7.0.0 (#936)
• 625836a feat!: eslint use new config format (plus update deps) (#935)
• See full diff in compare view

Updates lerna from 9.0.3 to 9.0.5

Release notes

Sourced from lerna's releases.

v9.0.5

9.0.5 (2026-02-28)

Bug Fixes

• bump minimatch from 3.0.5 to 3.1.4 (#4285) (2e3f99e)
• bump tar from 7.5.7 to 7.5.8 (#4273) (bdffd1d)

v9.0.4

9.0.4 (2026-02-10)

Bug Fixes

• bump tar to 7.5.7, rimraf to 6.1.2, @​npmcli/run-script to 10.0.3 (#4267) (43e3d46)

Changelog

Sourced from lerna's changelog.

9.0.5 (2026-02-28)

Bug Fixes

• bump minimatch from 3.0.5 to 3.1.4 (#4285) (2e3f99e)
• bump tar from 7.5.7 to 7.5.8 (#4273) (bdffd1d)

9.0.4 (2026-02-10)

Bug Fixes

• bump tar to 7.5.7, rimraf to 6.1.2, @​npmcli/run-script to 10.0.3 (#4267) (43e3d46)

Commits

• 85b9d95 chore(misc): publish 9.0.5
• 2e3f99e fix: bump minimatch from 3.0.5 to 3.1.4 (#4285)
• bdffd1d fix: bump tar from 7.5.7 to 7.5.8 (#4273)
• 5f3669c chore(misc): publish 9.0.4
• 43e3d46 fix: bump tar to 7.5.7, rimraf to 6.1.2, @​npmcli/run-script to 10.0.3 (#4267)
• See full diff in compare view

Updates rimraf from 6.1.2 to 6.1.3

Commits

• f738c78 6.1.3
• a164a85 update deps
• 4635ba7 update deps
• 509c53f limit ci workflow permissions
• 68ce04f formatting
• 37680c5 add warning to not pass untrusted input to this method ever
• 786563d remove contributing doc, already covered by .github repo
• dbeef73 contributing
• 84d27af update workflows and standard project junk
• See full diff in compare view

Updates sinon from 21.0.0 to 21.0.2

Changelog

Sourced from sinon's changelog.

21.0.2

• 024321c4 fix: skip Node specific tests in browser env (Carl-Erik Kopseng)
• b836fccb fix: js-yaml breaking change from v3 to v4 (Carl-Erik Kopseng)
• ebf0c431 docs: add how-to article for stubbing ES module imports (#1832) (#2676) (Eduard Barrera)

  • docs: add how-to article for stubbing ES module imports with esm package

  Adds a comprehensive How-To guide that addresses issue #1832, documenting how to configure Node.js to allow Sinon stubs to work with ES modules.

  • Explains why ES module namespace bindings are immutable by spec
  • Shows how to use the 'esm' npm package with mutableNamespace: true
  • Provides a complete working example with project layout, package.json, loader file, source modules, and a full test suite
  • Documents limitations (destructured imports, non-standard behavior)
  • Replaces the TODO comment in link-seams-commonjs.md with a cross-reference

  Closes #1832 Co-authored-by: Eduard Barrera eduardbar@users.noreply.github.com Co-authored-by: Carl-Erik Kopseng carlerik@gmail.com

• ebcd506c Fix spies not being reset properly (#2673) (simon-id)
• 3beab2ba Make doc tests pass with new jQuery (Carl-Erik Kopseng)
• 766715c6 build: reduce transitive audit findings (Carl-Erik Kopseng)
• 92aaf5c9 build: upgrade eslint config and replace dependency-check (Carl-Erik Kopseng)
• c6aaa871 chore: ignore project worktrees (Carl-Erik Kopseng)
• ef387e8e Upgrade most deps (Carl-Erik Kopseng)
• 3cf4e77d docs: improve writing of documentation (#2675) (Eduardo de la Cruz Palacios)
• 6349032f Check login status before publishing steps are performed (Carl-Erik Kopseng)

Released by Carl-Erik Kopseng on 2026-03-04.

21.0.1

• 456a65c2 Update dependencies - except @​sinonjs/samsam (#2669) (Carl-Erik Kopseng)
• f04f3eb1 Fix issue 2618 - Remove browserify in favor of esbuild (#2661) (Artur Parkhisenko)
• 48b69df2 fix(docs): remove assert.failException from documentation (#2666) (Steffen Schroeder)

... (truncated)

Commits

• 2d93d68 21.0.2
• 3af394e lint-staged -> 16.3.2
• 2948314 prettier
• 024321c fix: skip Node specific tests in browser env
• b836fcc fix: js-yaml breaking change from v3 to v4
• ebf0c43 docs: add how-to article for stubbing ES module imports (#1832) (#2676)
• ebcd506 Fix spies not being reset properly (#2673)
• 3beab2b Make doc tests pass with new jQuery
• 766715c build: reduce transitive audit findings
• 92aaf5c build: upgrade eslint config and replace dependency-check
• Additional commits viewable in compare view

Updates webpack from 5.104.1 to 5.105.4

Release notes

Sourced from webpack's releases.

v5.105.4

Patch Changes

• Add Module.getSourceBasicTypes to distinguish basic source types and clarify how modules with non-basic source types like remote still produce JavaScript output. (by @​xiaoxiaojx in #20546)

• Handle createRequire in expressions. (by @​alexander-akait in #20549)

• Fixed types for multi stats. (by @​alexander-akait in #20556)

• Remove empty needless js output for normal css module. (by @​JSerFeng in #20162)

• Update enhanced-resolve to support new features for tsconfig.json. (by @​alexander-akait in #20555)

• Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like "x" in ns. (by @​hai-x in #20561)

v5.105.3

Patch Changes

• Context modules now handle rejections correctly. (by @​alexander-akait in #20455)

• Only mark asset modules as side-effect-free when experimental.futureDefaults is set to true, so asset-copying use cases (e.g. import "./x.png") won’t break unless the option is enabled. (by @​hai-x in #20535)

• Add the missing webpack_exports declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by @​hai-x in #20463)

• Fixed HMR failure for CSS modules with @​import when exportType !== "link". When exportType is not "link", CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing @​import CSS to work correctly during hot module replacement. (by @​xiaoxiaojx in #20514)

• Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by @​xiaoxiaojx in #20454)

• Do not crash when a referenced chunk is not a runtime chunk. (by @​alexander-akait in #20461)

• Fix some types. (by @​alexander-akait in #20412)

• Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by @​hai-x in #20510)

• Added createRequire support for ECMA modules. (by @​stefanbinoj in #20497)

• Added category for CJS reexport dependency to fix issues with ECMA modules. (by @​hai-x in #20444)

• Implement immutable bytes for bytes import attribute to match tc39 spec. (by @​alexander-akait in #20481)

• Fixed deterministic search for graph roots regardless of edge order. (by @​veeceey in #20452)

v5.105.2

Patch Changes

• Fixed WebpackPluginInstance type regression. (by @​alexander-akait in #20440)

v5.105.1

Patch Changes

... (truncated)

Changelog

Sourced from webpack's changelog.

5.105.4

Patch Changes

• Add Module.getSourceBasicTypes to distinguish basic source types and clarify how modules with non-basic source types like remote still produce JavaScript output. (by @​xiaoxiaojx in #20546)

• Handle createRequire in expressions. (by @​alexander-akait in #20549)

• Fixed types for multi stats. (by @​alexander-akait in #20556)

• Remove empty needless js output for normal css module. (by @​JSerFeng in #20162)

• Update enhanced-resolve to support new features for tsconfig.json. (by @​alexander-akait in #20555)

• Narrows export presence guard detection to explicit existence checks on namespace imports only, i.e. patterns like "x" in ns. (by @​hai-x in #20561)

5.105.3

Patch Changes

• Context modules now handle rejections correctly. (by @​alexander-akait in #20455)

• Only mark asset modules as side-effect-free when experimental.futureDefaults is set to true, so asset-copying use cases (e.g. import "./x.png") won’t break unless the option is enabled. (by @​hai-x in #20535)

• Add the missing webpack_exports declaration in certain cases when bundling a JS entry together with non-JS entries (e.g., CSS entry or asset module entry). (by @​hai-x in #20463)

• Fixed HMR failure for CSS modules with @​import when exportType !== "link". When exportType is not "link", CSS modules now behave like JavaScript modules and don't require special HMR handling, allowing @​import CSS to work correctly during hot module replacement. (by @​xiaoxiaojx in #20514)

• Fixed an issue where empty JavaScript files were generated for CSS-only entry points. The code now correctly checks if entry modules have JavaScript source types before determining whether to generate a JS file. (by @​xiaoxiaojx in #20454)

• Do not crash when a referenced chunk is not a runtime chunk. (by @​alexander-akait in #20461)

• Fix some types. (by @​alexander-akait in #20412)

• Ensure that missing module error are thrown after the interception handler (if present), allowing module interception to customize the module factory. (by @​hai-x in #20510)

• Added createRequire support for ECMA modules. (by @​stefanbinoj in #20497)

• Added category for CJS reexport dependency to fix issues with ECMA modules. (by @​hai-x in #20444)

• Implement immutable bytes for bytes import attribute to match tc39 spec. (by @​alexander-akait in #20481)

• Fixed deterministic search for graph roots regardless of edge order. (by @​veeceey in #20452)

5.105.2

Patch Changes

• Fixed WebpackPluginInstance type regression. (by @​alexander-akait in #20440)

... (truncated)

Commits

• 27c13b4 chore(release): new release (#20550)
• 9b2f41e chore: bump terser plugin (#20569)
• eafe060 fix: narrow the export presence guard detection (#20561)
• 75d605c refactor: add AppendOnlyStackedSet iteration support and tests (#20560)
• afa607d refactor: remove unused code (#20562)
• 4098902 test: add source files for web-webworker and web-webworker-auto-public-path (...
• f97be67 refactor: fix duplicated word in Compilation JSDoc (#20547)
• 9d76fff refactor: add Module.getSourceBasicTypes for basic JS type detection (#20546)
• a3d7839 fix: types for multi stats (#20556)
• b8e9b05 fix: update enhanced-resolve to support new features for tsconfig.json (#...
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for webpack since your current version.

Updates @aws-sdk/client-sts from 3.948.0 to 3.1004.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.1004.0

3.1004.0(2026-03-06)

Chores

• codegen: smithy-aws-typescript-codegen 0.46.0 (#7825) (9652a4b1)

New Features

• clients: update client endpoints as of 2026-03-06 (8c6015c0)
• client-gameliftstreams: Added new Gen6 stream classes based on the EC2 G6f instance family. These stream classes provide cost-optimized options for streaming well-optimized or lower-fidelity games on Windows environments. (3ce882b6)
• client-bedrock: Amazon Bedrock Guardrails account-level enforcement APIs now support lists for model inclusion and exclusion from guardrail enforcement. (63b35986)
• client-connect: Amazon Connect now supports the ability to programmatically configure and run automated tests for contact center experiences for Chat. Integrate testing into CICD pipelines, run multiple tests at scale, and retrieve results via API to automate validation of chat interactions and workflows. (696614ae)
• client-bcm-data-exports: Fixed wrong endpoint resolutions in few regions. Added AWS CFN resource schema for BCM Data Exports. Added max value validation for pagination parameter. Fixed ARN format validation for BCM Data Exports resources. Updated size constraints for table properties. Added AccessDeniedException error. (23fdf994)
• client-deadline: AWS Deadline Cloud now supports cost scale factors for farms, enabling studios to adjust reported costs to reflect their actual rendering economics. Adjusted costs are reflected in Deadline Cloud's Usage Explorer and Budgets. (16f6d510)
• client-appintegrations: This release adds support for webhooks, allowing customers to create an Event Integration with a webhook source. (c86ed4e1)
• client-bedrock-agentcore-control: Adds support for streaming memory records in AgentCore Memory (17468570)
• client-sesv2: Adds support for longer email message header values, increasing the maximum length from 870 to 995 characters for RFC 5322 compliance. (3a573039)

Bug Fixes

• build: fix package release ordering (#7829) (cc6da58f)
• middleware-user-agent: use retry strategy mode property instead of legacy fallback (#7811) (db786337)

---

For list of updated packages, view updated-packages.md in assets-3.1004.0.zip

v3.1003.0

3.1003.0(2026-03-05)

Chores

• bump '@smithy/*' dependencies (#7822) (8ddd5442)
• set downlevel types to be used in typescript@'<4.5' (#7817) (03dad66b)
• clients:
  • strip trailing periods when the last character is non-alphanumeric (#7821) (6b5b50b2)
  • sort missed package.json files (#7820) (297b5643)
  • include deprecated-since in generated tsdoc (#7815) (17ecb20a)

New Features

• clients: update client endpoints as of 2026-03-05 (e9a8d8de)
• client-guardduty: Added MALICIOUS FILE to IndicatorType enum in MDC Sequence (bb9d4662)
• client-savingsplans: Added support for OpenSearch and Neptune Analytics to Database Savings Plans. (9e063913)
• client-sagemaker: Adds support for S3 Bucket Ownership validation for SageMaker Managed MLflow. (b6216564)
• client-connecthealth: Connect-Health SDK is AWS's unified SDK for the Amazon Connect Health offering. It allows healthcare developers to integrate purpose-built agents - such as patient insights, ambient documentation, and medical coding - into their existing applications, including EHRs, telehealth, and revenue cycle. (454c6cb7)
• client-mpa: Updates to multi-party approval (MPA) service to add support for approval team baseline operations. (e9581543)
• client-ec2: Added metadata field to CapacityAllocation. (d7cce1c2)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.1004.0 (2026-03-06)

Note: Version bump only for package @​aws-sdk/client-sts

3.1003.0 (2026-03-05)

Note: Version bump only for package @​aws-sdk/client-sts

3.1002.0 (2026-03-04)

Note: Version bump only for package @​aws-sdk/client-sts

3.1001.0 (2026-03-03)

Note: Version bump only for package @​aws-sdk/client-sts

3.1000.0 (2026-02-27)

Note: Version bump only for package @​aws-sdk/client-sts

3.999.0 (2026-02-26)

Note: Version bump only for package @​aws-sdk/client-sts

3.998.0 (2026-02-25)

... (truncated)

Commits

• 7c08152 Publish v3.1004.0
• 4c36ea3 Publish v3.1003.0
• 8ddd544 chore: bump '@smithy/*' dependencies (#7822)
• 03dad66 chore: set downlevel types to be used in typescript@'<4.5' (#7817)
• 1eabedb test(clients): ignore prettifying automated snapshot test code (#7819)
• 37f1adc test(clients): run client feature tests in browser mode too (#7808)
• 800431b Publish v3.1002.0
• b8467bd Publish v3.1001.0
• ab9e775 chore(codegen): upgrade smithy 1.68.0 (#7806)
• d152394 chore(util-user-agent-node): read typescript package.json version from proces...
• Additional commits viewable in compare view

Updates @types/node from 24.5.2 to 25.3.5

Commits

• See full diff in compare view

Updates aws-cdk-lib from 2.232.2 to 2.241.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.241.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-codedeploy: AWS::CodeDeploy::DeploymentGroup: Id attribute removed.

Features

• update L1 CloudFormation resource definitions (#37103) (f1ee45c)
• autoscaling: add deletionProtection property to AutoScalingGroup (#36924) (467f2b4)
• core: introducing CDK Mixins (#37055) (cda96cb)
• eks: add support for Kubernetes version 1.35 (#37065) (909fca3), closes #36920 #36016 cdklabs/awscdk-asset-kubectl#2669 #37070 #36950 #36016
• s3: attribute-based access control (#36229) (9ec4db3)

Bug Fixes

• bump minimatch to ^10.2.3 to resolve ReDoS vulnerabilities (#37127) (c359329), closes #37100
• dynamodb: fix SID for grants on multi-account global tables (#37057) (98d5e82)
• rds: correct engine version deprecation tags and add missing versions (#37080) (127b359), closes #37079 #36937

---

Alpha modules (2.241.0-alpha.0)

Features

• mixins-preview: add recordFields and outputFormat to Vended Logs Mixin (#37042) (dd94c31)
• mixins-preview: cross account delivery destinations (#36827) (a759eb6)

v2.240.0

Features

• update L1 CloudFormation resource definitions (#37039) (17b2d93)
• eks-v2: graduate to stable 🚀 (#36950) (a7de51c)
• update L1 CloudFormation resource definitions (#37034) (62d40f8)

Bug Fixes

• bump minimatch to ^10.2.1 to resolve ReDoS vulnerability (GHSA-3ppc-4f35-3m26) (#37027) (e48ea41)

---

Alpha modules (2.240.0-alpha.0)

v2.239.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-licensemanager: AWS::LicenseManager::License: Beneficiary property is now required aws-licensemanager: AWS::LicenseManager::License: ProductSKU property is now required aws-sagemaker: AWS::SageMaker::Cluster: Orchestrator.Eks property is now immutable

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.241.0-alpha.0 (2026-03-02)

Features

• mixins-preview: add recordFields and outputFormat to Vended Logs Mixin (#37042) (dd94c31)
• mixins-preview: cross account delivery destinations (#36827) (a759eb6)

2.240.0-alpha.0 (2026-02-23)

2.239.0-alpha.0 (2026-02-19)

⚠ BREAKING CHANGES

redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE

Features

• bedrock-agentcore-alpha: add fromCodeAsset method to create runtime artifact with local code assets (#36472) (c5a87e6), closes #36473
• bedrock-agentcore-alpha: added new target type (api gateway) in agentcore gateway target. (#36841) (0842754), closes #36817
• mixins-preview: add ECS ClusterSettingsMixin (#36796) (b8ab5be)
• mixins-preview: add s3 bucket mixin for publicAccessBlock (#36905) (feed4b2)
• mixins-preview: send Vended Logs to pre-created DeliveryDestination using toDestination() (#36896) (48f1fe6)

Bug Fixes

• redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE (#36516) (ea19e5c), closes #36416

2.238.0-alpha.0 (2026-02-09)

Features

• eks-v2-alpha: add support for bootstrapSelfManagedAddons (#36740) (1ffe38d)
• eks-v2-alpha: add support for EKS hybrid nodes (#36749) (48ace56)

Bug Fixes

• eks-v2-alpha: ensure kubectl provider and handler functions use the same vpc configuration (#36735) (4e02f08), closes #34878 #34877
• ivs-alpha: add region constraints to integration tests (#36851) (d55fec4)
• mixins-preview: apply mixins in order (#36847) (726060c)
• mixins-preview: apply mixins in order in MixinApplicator (#36877) (09db1c9), closes #36847

2.237.1-alpha.0 (2026-02-03)

... (truncated)

Commits

• 416eec3 chore: update analytics metadata blueprints
• c359329 fix: bump minimatch to ^10.2.3 to resolve ReDoS vulnerabilities (#37127)
• f1ee45c feat: update L1 CloudFormation resource definitions (#37103)
• d756201 docs(s3): fix addEventNotification docstring examples for correct Rosetta tra...
• 71d8f24 fix(events): correct docs on schema discovery and CMK encryption (#37102)
• cda96cb feat(core): introducing CDK Mixins (#37055)
• e22b50a chore: bump @​aws-cdk/asset-node-proxy-agent-v6 to ^2.1.1 (