BAU: Bump the prod-dependencies group across 3 directories with 17 updates

[dependabot]

Bumps the prod-dependencies group with 17 updates in the / directory:

Package	From	To
@aws-sdk/client-dynamodb	3.635.0	3.723.0
@aws-sdk/client-sqs	3.635.0	3.723.0
@aws-sdk/util-dynamodb	3.635.0	3.723.0
@pact-foundation/pact	13.1.5	13.2.0
axios	1.7.4	1.7.9
esbuild	0.23.1	0.24.2
@aws-sdk/client-sfn	3.635.0	3.723.0
@aws-sdk/client-sns	3.635.0	3.723.0
@aws-lambda-powertools/logger	2.6.0	2.12.0
@aws-crypto/client-node	4.0.1	4.0.2
@aws-sdk/client-ses	3.636.0	3.723.0
@aws-sdk/client-cognito-identity-provider	3.635.0	3.723.0
connect-dynamodb	3.0.3	3.0.5
express	4.21.1	4.21.2
express-session	1.18.0	1.18.1
@types/express-session	1.18.0	1.18.1
govuk-frontend	4.8.0	4.9.0

Bumps the prod-dependencies group with 2 updates in the /backend/api directory: esbuild and @aws-lambda-powertools/logger.
Bumps the prod-dependencies group with 2 updates in the /backend/cognito directory: esbuild and @aws-lambda-powertools/logger.

Updates @aws-sdk/client-dynamodb from 3.635.0 to 3.723.0

Release notes

Sourced from @​aws-sdk/client-dynamodb's releases.

v3.723.0

3.723.0(2025-01-06)

Chores

• end support for Node.js 16.x (#6775) (997e37d8)

New Features

• clients: update client endpoints as of 2025-01-06 (db366a24)
• client-iotsecuretunneling: Adds dualstack endpoint support for IoT Secure Tunneling (513f9c4e)
• client-supplychain: Allow vanity DNS domain when creating a new ASC instance (0cdf2e3e)

---

For list of updated packages, view updated-packages.md in assets-3.723.0.zip

v3.722.0

3.722.0(2025-01-03)

Documentation Changes

• client-route-53-domains: Doc only update for Route 53 Domains that fixes several customer-reported issues (ba55985f)
• client-ecs: Adding SDK reference examples for Amazon ECS operations. (06662a30)

New Features

• clients: update client endpoints as of 2025-01-03 (726fcf5e)
• client-s3: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. (3bb74c5b)

---

For list of updated packages, view updated-packages.md in assets-3.722.0.zip

v3.721.0

3.721.0(2025-01-02)

Documentation Changes

• client-sqs: In-flight message typo fix from 20k to 120k. (6ed6c121)
• fix various tsdoc tags (#6765) (599a60f9)

New Features

• clients: update client endpoints as of 2025-01-02 (195db96a)
• client-organizations: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. (f509e1df)
• client-appsync: Modify UpdateGraphQLAPI operation and flag authenticationType as required. (66363a29)
• client-mediaconvert: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. (08f266e9)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-dynamodb's changelog.

3.723.0 (2025-01-06)

Note: Version bump only for package @​aws-sdk/client-dynamodb

3.721.0 (2025-01-02)

Note: Version bump only for package @​aws-sdk/client-dynamodb

3.716.0 (2024-12-19)

Note: Version bump only for package @​aws-sdk/client-dynamodb

3.714.0 (2024-12-17)

Features

• clients: profile setting for clients (#6728) (afd9eea)

3.713.0 (2024-12-16)

Note: Version bump only for package @​aws-sdk/client-dynamodb

3.712.0 (2024-12-13)

Note: Version bump only for package @​aws-sdk/client-dynamodb

... (truncated)

Commits

• f180424 Publish v3.723.0
• 997e37d chore: end support for Node.js 16.x (#6775)
• b72d98a Publish v3.721.0
• d032e54 Publish v3.716.0
• 8af7a02 chore(codegen): update for operationContextParams fix (#6751)
• a116e07 Publish v3.714.0
• afd9eea feat(clients): profile setting for clients (#6728)
• c2acba2 Publish v3.713.0
• 041a906 Publish v3.712.0
• fec23be Publish v3.709.0
• Additional commits viewable in compare view

Updates @aws-sdk/client-sqs from 3.635.0 to 3.723.0

Release notes

Sourced from @​aws-sdk/client-sqs's releases.

v3.723.0

3.723.0(2025-01-06)

Chores

• end support for Node.js 16.x (#6775) (997e37d8)

New Features

• clients: update client endpoints as of 2025-01-06 (db366a24)
• client-iotsecuretunneling: Adds dualstack endpoint support for IoT Secure Tunneling (513f9c4e)
• client-supplychain: Allow vanity DNS domain when creating a new ASC instance (0cdf2e3e)

---

For list of updated packages, view updated-packages.md in assets-3.723.0.zip

v3.722.0

3.722.0(2025-01-03)

Documentation Changes

• client-route-53-domains: Doc only update for Route 53 Domains that fixes several customer-reported issues (ba55985f)
• client-ecs: Adding SDK reference examples for Amazon ECS operations. (06662a30)

New Features

• clients: update client endpoints as of 2025-01-03 (726fcf5e)
• client-s3: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. (3bb74c5b)

---

For list of updated packages, view updated-packages.md in assets-3.722.0.zip

v3.721.0

3.721.0(2025-01-02)

Documentation Changes

• client-sqs: In-flight message typo fix from 20k to 120k. (6ed6c121)
• fix various tsdoc tags (#6765) (599a60f9)

New Features

• clients: update client endpoints as of 2025-01-02 (195db96a)
• client-organizations: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. (f509e1df)
• client-appsync: Modify UpdateGraphQLAPI operation and flag authenticationType as required. (66363a29)
• client-mediaconvert: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. (08f266e9)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sqs's changelog.

3.723.0 (2025-01-06)

Note: Version bump only for package @​aws-sdk/client-sqs

3.721.0 (2025-01-02)

Note: Version bump only for package @​aws-sdk/client-sqs

3.716.0 (2024-12-19)

Note: Version bump only for package @​aws-sdk/client-sqs

3.714.0 (2024-12-17)

Features

• clients: profile setting for clients (#6728) (afd9eea)

3.713.0 (2024-12-16)

Note: Version bump only for package @​aws-sdk/client-sqs

3.712.0 (2024-12-13)

Note: Version bump only for package @​aws-sdk/client-sqs

... (truncated)

Commits

• f180424 Publish v3.723.0
• 997e37d chore: end support for Node.js 16.x (#6775)
• b72d98a Publish v3.721.0
• 6ed6c12 docs(client-sqs): In-flight message typo fix from 20k to 120k.
• d032e54 Publish v3.716.0
• 8af7a02 chore(codegen): update for operationContextParams fix (#6751)
• a116e07 Publish v3.714.0
• afd9eea feat(clients): profile setting for clients (#6728)
• c2acba2 Publish v3.713.0
• 041a906 Publish v3.712.0
• Additional commits viewable in compare view

Updates @aws-sdk/util-dynamodb from 3.635.0 to 3.723.0

Release notes

Sourced from @​aws-sdk/util-dynamodb's releases.

v3.723.0

3.723.0(2025-01-06)

Chores

• end support for Node.js 16.x (#6775) (997e37d8)

New Features

• clients: update client endpoints as of 2025-01-06 (db366a24)
• client-iotsecuretunneling: Adds dualstack endpoint support for IoT Secure Tunneling (513f9c4e)
• client-supplychain: Allow vanity DNS domain when creating a new ASC instance (0cdf2e3e)

---

For list of updated packages, view updated-packages.md in assets-3.723.0.zip

v3.722.0

3.722.0(2025-01-03)

Documentation Changes

• client-route-53-domains: Doc only update for Route 53 Domains that fixes several customer-reported issues (ba55985f)
• client-ecs: Adding SDK reference examples for Amazon ECS operations. (06662a30)

New Features

• clients: update client endpoints as of 2025-01-03 (726fcf5e)
• client-s3: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. (3bb74c5b)

---

For list of updated packages, view updated-packages.md in assets-3.722.0.zip

v3.721.0

3.721.0(2025-01-02)

Documentation Changes

• client-sqs: In-flight message typo fix from 20k to 120k. (6ed6c121)
• fix various tsdoc tags (#6765) (599a60f9)

New Features

• clients: update client endpoints as of 2025-01-02 (195db96a)
• client-organizations: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. (f509e1df)
• client-appsync: Modify UpdateGraphQLAPI operation and flag authenticationType as required. (66363a29)
• client-mediaconvert: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. (08f266e9)

... (truncated)

Changelog

Sourced from @​aws-sdk/util-dynamodb's changelog.

3.723.0 (2025-01-06)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.721.0 (2025-01-02)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.716.0 (2024-12-19)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.714.0 (2024-12-17)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.713.0 (2024-12-16)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.712.0 (2024-12-13)

Note: Version bump only for package @​aws-sdk/util-dynamodb

3.709.0 (2024-12-10)

... (truncated)

Commits

• f180424 Publish v3.723.0
• 997e37d chore: end support for Node.js 16.x (#6775)
• b72d98a Publish v3.721.0
• d032e54 Publish v3.716.0
• a116e07 Publish v3.714.0
• c2acba2 Publish v3.713.0
• 041a906 Publish v3.712.0
• fec23be Publish v3.709.0
• 728fa5a Publish v3.705.0
• 868d4b0 Publish v3.704.0
• Additional commits viewable in compare view

Updates @pact-foundation/pact from 13.1.5 to 13.2.0

Release notes

Sourced from @​pact-foundation/pact's releases.

Release v13.2.0

13.2.0 (2024-11-21)

Features

• replace cli-color with chalk - sonatype-2022-2248 (2ad5e48)

Changelog

Sourced from @​pact-foundation/pact's changelog.

13.2.0 (2024-11-21)

Features

• replace cli-color with chalk - sonatype-2022-2248 (2ad5e48)

Commits

• 571c16f chore(release): 13.2.0
• 49dc2e6 Merge pull request #1254 from Roozenboom/feature/replace-cli-color-with-chalk
• 2ad5e48 feat: replace cli-color with chalk - sonatype-2022-2248
• d3e24a7 Merge pull request #1252 from pact-foundation/dependabot/npm_and_yarn/cross-s...
• 0a53de7 chore(deps-dev): bump cross-spawn from 7.0.3 to 7.0.6
• See full diff in compare view

Updates axios from 1.7.4 to 1.7.9

Release notes

Sourced from axios's releases.

Release v1.7.9

Release notes:

Reverts

• Revert "fix(types): export CJS types from ESM (#6218)" (#6729) (c44d2f2), closes #6218 #6729

Contributors to this release

• Jay

Release v1.7.8

Release notes:

Bug Fixes

• allow passing a callback as paramsSerializer to buildURL (#6680) (eac4619)
• core: fixed config merging bug (#6668) (5d99fe4)
• fixed width form to not shrink after 'Send Request' button is clicked (#6644) (7ccd5fd)
• http: add support for File objects as payload in http adapter (#6588) (#6605) (6841d8d)
• http: fixed proxy-from-env module import (#5222) (12b3295)
• http: use globalThis.TextEncoder when available (#6634) (df956d1)
• ios11 breaks when build (#6608) (7638952)
• types: add missing types for mergeConfig function (#6590) (00de614)
• types: export CJS types from ESM (#6218) (c71811b)
• updated stream aborted error message to be more clear (#6615) (cc3217a)
• use URL API instead of DOM to fix a potential vulnerability warning; (#6714) (0a8d6e1)

Contributors to this release

• Remco Haszing
• Jay
• Aayush Yadav
• Dmitriy Mozgovoy
• Ell Bradshaw
• Amit Saini
• Tommaso Paulon
• Akki
• Sampo Silvennoinen
• Kasper Isager Dalsgarð
• Christian Clauss
• Pavan Welihinda
• Taylor Flatt
• Kenzo Wada
• Ngole Lawson
• Haven
• Shrivali Dutt
• Henco Appel

Release v1.7.7

Release notes:

Bug Fixes

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.9 (2024-12-04)

Reverts

• Revert "fix(types): export CJS types from ESM (#6218)" (#6729) (c44d2f2), closes #6218 #6729

Contributors to this release

• Jay

1.7.8 (2024-11-25)

Bug Fixes

• allow passing a callback as paramsSerializer to buildURL (#6680) (eac4619)
• core: fixed config merging bug (#6668) (5d99fe4)
• fixed width form to not shrink after 'Send Request' button is clicked (#6644) (7ccd5fd)
• http: add support for File objects as payload in http adapter (#6588) (#6605) (6841d8d)
• http: fixed proxy-from-env module import (#5222) (12b3295)
• http: use globalThis.TextEncoder when available (#6634) (df956d1)
• ios11 breaks when build (#6608) (7638952)
• types: add missing types for mergeConfig function (#6590) (00de614)
• types: export CJS types from ESM (#6218) (c71811b)
• updated stream aborted error message to be more clear (#6615) (cc3217a)
• use URL API instead of DOM to fix a potential vulnerability warning; (#6714) (0a8d6e1)

Contributors to this release

• Remco Haszing
• Jay
• Aayush Yadav
• Dmitriy Mozgovoy
• Ell Bradshaw
• Amit Saini
• Tommaso Paulon
• Akki
• Sampo Silvennoinen
• Kasper Isager Dalsgarð
• Christian Clauss
• Pavan Welihinda
• Taylor Flatt
• Kenzo Wada
• Ngole Lawson
• Haven
• Shrivali Dutt
• Henco Appel

1.7.7 (2024-08-31)

... (truncated)

Commits

• b2cb45d chore(release): v1.7.9 (#6730)
• c44d2f2 Revert "fix(types): export CJS types from ESM (#6218)" (#6729)
• 415ca94 chore(release): v1.7.8 (#6715)
• 0a8d6e1 fix: use URL API instead of DOM to fix a potential vulnerability warning; (#6...
• c71811b fix(types): export CJS types from ESM (#6218)
• 4355a6d chore(sponsor): update sponsor block (#6709)
• 5d54d22 chore(sponsor): update sponsor block (#6707)
• eac4619 fix: allow passing a callback as paramsSerializer to buildURL (#6680)
• df956d1 fix(http): use globalThis.TextEncoder when available (#6634)
• 7139ce9 chore(deps): bump cookie and socket.io (#6704)
• Additional commits viewable in compare view

Updates esbuild from 0.23.1 to 0.24.2

Release notes

Sourced from esbuild's releases.

v0.24.2

• Fix regression with --define and import.meta (#4010, #4012, #4013)

  The previous change in version 0.24.1 to use a more expression-like parser for define values to allow quoted property names introduced a regression that removed the ability to use --define:import.meta=.... Even though import is normally a keyword that can't be used as an identifier, ES modules special-case the import.meta expression to behave like an identifier anyway. This change fixes the regression.

  This fix was contributed by @​sapphi-red.

v0.24.1

• Allow es2024 as a target in tsconfig.json (#4004)

  TypeScript recently added es2024 as a compilation target, so esbuild now supports this in the target field of tsconfig.json files, such as in the following configuration file:

  {
    "compilerOptions": {
      "target": "ES2024"
    }
  }

  As a reminder, the only thing that esbuild uses this field for is determining whether or not to use legacy TypeScript behavior for class fields. You can read more in the documentation.

  This fix was contributed by @​billyjanitsch.

• Allow automatic semicolon insertion after get/set

  This change fixes a grammar bug in the parser that incorrectly treated the following code as a syntax error:

  class Foo {
    get
    *x() {}
    set
    *y() {}
  }

  The above code will be considered valid starting with this release. This change to esbuild follows a similar change to TypeScript which will allow this syntax starting with TypeScript 5.7.

• Allow quoted property names in --define and --pure (#4008)

  The define and pure API options now accept identifier expressions containing quoted property names. Previously all identifiers in the identifier expression had to be bare identifiers. This change now makes --define and --pure consistent with --global-name, which already supported quoted property names. For example, the following is now possible:

  // The following code now transforms to "return true;\n"
  console.log(esbuild.transformSync(
    `return process.env['SOME-TEST-VAR']`,
    { define: { 'process.env["SOME-TEST-VAR"]': 'true' } },
  ))

... (truncated)

Changelog

Sourced from esbuild's changelog.

0.24.2

• Fix regression with --define and import.meta (#4010, #4012, #4013)

  The previous change in version 0.24.1 to use a more expression-like parser for define values to allow quoted property names introduced a regression that removed the ability to use --define:import.meta=.... Even though import is normally a keyword that can't be used as an identifier, ES modules special-case the import.meta expression to behave like an identifier anyway. This change fixes the regression.

  This fix was contributed by @​sapphi-red.

0.24.1

• Allow es2024 as a target in tsconfig.json (#4004)

  TypeScript recently added es2024 as a compilation target, so esbuild now supports this in the target field of tsconfig.json files, such as in the following configuration file:

  {
    "compilerOptions": {
      "target": "ES2024"
    }
  }

  As a reminder, the only thing that esbuild uses this field for is determining whether or not to use legacy TypeScript behavior for class fields. You can read more in the documentation.

  This fix was contributed by @​billyjanitsch.

• Allow automatic semicolon insertion after get/set

  This change fixes a grammar bug in the parser that incorrectly treated the following code as a syntax error:

  class Foo {
    get
    *x() {}
    set
    *y() {}
  }

  The above code will be considered valid starting with this release. This change to esbuild follows a similar change to TypeScript which will allow this syntax starting with TypeScript 5.7.

• Allow quoted property names in --define and --pure (#4008)

  The define and pure API options now accept identifier expressions containing quoted property names. Previously all identifiers in the identifier expression had to be bare identifiers. This change now makes --define and --pure consistent with --global-name, which already supported quoted property names. For example, the following is now possible:

  // The following code now transforms to "return true;\n"
  console.log(esbuild.transformSync(
    `return process.env['SOME-TEST-VAR']`,
    { define: { 'process.env["SOME-TEST-VAR"]': 'true' } },

... (truncated)

Commits

• 745abd9 publish 0.24.2 to npm
• 79fd0b0 skip nulls in source map finalization (#4011)
• 4b9322f source map: avoid null entry for 0-length parts
• 199a0d3 close #4013: credit to @​sapphi-red for the fix
• 947f99f fix #4010, fix #4012: import.meta regression
• de9598f publish 0.24.1 to npm
• 15d56ca emit null source mappings for empty chunk content
• 8d98f6f fix #3985: entryPoint metadata for copy loader
• 0db1b82 fix #3998: avoid outbase in identifier names
• 7236472 close #3974: add support for netbsd on arm64
• Additional commits viewable in compare view

Updates @aws-sdk/client-sfn from 3.635.0 to 3.723.0

Release notes

Sourced from @​aws-sdk/client-sfn's releases.

v3.723.0

3.723.0(2025-01-06)

Chores

• end support for Node.js 16.x (#6775) (997e37d8)

New Features

• clients: update client endpoints as of 2025-01-06 (db366a24)
• client-iotsecuretunneling: Adds dualstack endpoint support for IoT Secure Tunneling (513f9c4e)
• client-supplychain: Allow vanity DNS domain when creating a new ASC instance (0cdf2e3e)

---

For list of updated packages, view updated-packages.md in assets-3.723.0.zip

v3.722.0

3.722.0(2025-01-03)

Documentation Changes

• client-route-53-domains: Doc only update for Route 53 Domains that fixes several customer-reported issues (ba55985f)
• client-ecs: Adding SDK reference examples for Amazon ECS operations. (06662a30)

New Features

• clients: update client endpoints as of 2025-01-03 (726fcf5e)
• client-s3: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. (3bb74c5b)

---

For list of updated packages, view updated-packages.md in assets-3.722.0.zip

v3.721.0

3.721.0(2025-01-02)

Documentation Changes

• client-sqs: In-flight message typo fix from 20k to 120k. (6ed6c121)
• fix various tsdoc tags (#6765) (599a60f9)

New Features

• clients: update client endpoints as of 2025-01-02 (195db96a)
• client-organizations: Added ALL_FEATURES_MIGRATION_ORGANIZATION_SIZE_LIMIT_EXCEEDED to ConstraintViolationException for the EnableAllFeatures operation. (f509e1df)
• client-appsync: Modify UpdateGraphQLAPI operation and flag authenticationType as required. (66363a29)
• client-mediaconvert: This release adds support for the AVC3 codec and fixes an alignment issue with Japanese vertical captions. (08f266e9)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sfn's changelog.

3.723.0 (2025-01-06)

Note: Version bump only for package @​aws-sdk/client-sfn

3.721.0 (2025-01-02)

Note: Version bump only for package @​aws-sdk/client-sfn

3.716.0 (2024-12-19)

Note: Version bump only for package @​aws-sdk/client-sfn

3.714.0 (2024-12-17)

Features

• clients: profile setting for clients (#6728) (afd9eea)

3.713.0 (2024-12-16)

Note: Version bump only for package @​aws-sdk/client-sfn

3.712.0 (2024-12-13)

Note: Version bump only for package @​aws-sdk/client-sfn

... (truncated)

Commits

• f180424 Publish v3.723.0
• 997e37d chore: end support for Node.js 16.x (#6775)
• b72d98a Publish v3.721.0
• d032e54 Publish v3.716.0
• 8af7a02 chore(codegen): update for operationContextParams fix (#6751)
• a116e07 Publish v3.714.0
• afd9eea feat(clients): profile setting for clients (#6728)
• c2acba2 Publish v3.713.0
• 041a906 Publish v3.712.0
• fec23be Publish v3.709.0
• Additional commits viewable in compare view

Updates @aws-sdk/client-sns from 3.635.0 to 3.723.0

Release notes

Sourced from @​aws-sdk/client-sns's releases.

v3.723.0

3.723.0(2025-01-06)

Chores

• end support for Node.js 16.x (#6775) (997e37d8)

New Features

• clients: update client endpoints as of 2025-01-06 (db366a24)
• client-iotsecuretunneling: Adds dualstack endpoint support for IoT Secure Tunneling (513f9c4e)
• client-supplychain: Allow vanity DNS domain when creating a new ASC instance (0cdf2e3e)

---

For list of updated packages, view updated-packages.md in assets-3.723.0.zip

v3.722.0

3.722.0(2025-01-03)

Documentation Changes

• client-route-53-domains: Doc only update for Route 53 Domains that fixes several customer-reported issues (ba55985f)
• client-ecs: Adding SDK reference examples for Amazon ECS operations. (06662a30)

New Features

• clients: update client endpoints as of 2025-01-03 (726fcf5e)
• client-s3: This change is only for updating the model regexp of CopySource which is not for validation but only for documentation and user guide change. (3bb74c5b)

---

For list of updated packages, view updated-packages.md in assets-3.722.0.zip

v3.721.0

3.721.0(2025-01-02)

Documentation Changes

• client-sqs: In-flight message typo fix from 20k to 120k. (6ed6c121)
• fix various tsdoc tags (#6765) (599a60f9)

New Features

• clients: update client endpoints as of 2025-01-02 (195db96a...

  Description has been truncated

[dependabot]

Superseded by #984.