build(deps-dev): bump the nodejs-other group across 2 directories with 4 updates

[dependabot]

Bumps the nodejs-other group with 4 updates in the /nodejs directory: @types/aws-lambda, @aws-sdk/client-sts, @types/node and aws-cdk-lib.
Bumps the nodejs-other group with 1 update in the /nodejs/sample-apps/aws-sdk directory: @types/node.

Updates @types/aws-lambda from 8.10.161 to 8.10.162

Commits

• See full diff in compare view

Updates @aws-sdk/client-sts from 3.1058.0 to 3.1063.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.1063.0

3.1063.0(2026-06-05)

Chores

• update author URL in package.json (#8080) (9bd1a86b)
• crt-loader: update to latest aws-crt (#8079) (8c2bdabd)

New Features

• clients: update client endpoints as of 2026-06-05 (fe9a398f)
• client-sagemaker: This release adds support for MLflow experiment tracking in SageMaker inference optimization. CreateAIRecommendationJob and CreateAIBenchmarkJob now accept an optional OutputConfig.MlflowConfig (MLflow App ARN, experiment, run name) to stream benchmark metrics and artifacts to your own MLflow App. (39430442)
• client-emr-serverless: Adds support for updating max capacity and custom fields while application is started (6c9cce08)
• client-dynamodb: Adding new BDD representation of endpoint ruleset (416005d4)
• client-mediaconvert: Adds support for configurable number of Clear Lead segments at the beginning of encrypted output. Adds support for multiple trickplay variants. (40eb4c6b)
• client-payment-cryptography: Adds CloudFormation support for resource-based policies on AWS Payment Cryptography keys. (c32019a8)
• client-quicksight: Adds support for Knowledge Base APIs and Index Capacity API (8205152f)

Bug Fixes

• core/httpAuthSchemes: fix concurrent skew correction (#8078) (83e48928)

Tests

• middleware-endpoint-discovery: remove integration tests (#8077) (02363831)
• clients: add client error deserialization tests (#8075) (0dfa4ad1)

---

For list of updated packages, view updated-packages.md in assets-3.1063.0.zip

v3.1062.0

3.1062.0(2026-06-04)

Chores

• scripts: include generated packages when validating declared imports 1-1 with used imports (#8072) (291ad366)

Documentation Changes

• client-guardduty: Remove unsupported RDS field for filter (5815da7f)

New Features

• client-interconnect: Adding new BDD representation of endpoint ruleset (34e23ef2)
• client-ec2-instance-connect: Adding new BDD representation of endpoint ruleset (c2a4981e)
• client-mq: BDD bulk update change rollout (e058b8fd)
• client-workspaces: Adding new BDD representation of endpoint ruleset (6b1e3602)
• client-connectparticipant: Adding new BDD representation of endpoint ruleset (22db2a6a)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.1063.0 (2026-06-05)

Note: Version bump only for package @​aws-sdk/client-sts

3.1062.0 (2026-06-04)

Note: Version bump only for package @​aws-sdk/client-sts

3.1061.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-sts

3.1060.0 (2026-06-03)

Note: Version bump only for package @​aws-sdk/client-sts

3.1059.0 (2026-06-02)

Note: Version bump only for package @​aws-sdk/client-sts

Commits

• 85dabf4 Publish v3.1063.0
• 9bd1a86 chore: update author URL in package.json (#8080)
• f5235bb Publish v3.1062.0
• 71df2cc Publish v3.1061.0
• 8aeb92d Publish v3.1060.0
• 75bb4fc Publish v3.1059.0
• 6b082a6 chore(codegen): sync for adaptive retry fix, EAI_AGAIN transient error (#8067)
• See full diff in compare view

Updates @types/node from 25.9.1 to 25.9.2

Commits

• See full diff in compare view

Updates aws-cdk-lib from 2.257.0 to 2.258.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.258.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

• aws-pcaconnectorad: AWS::PCAConnectorAD::ServicePrincipalName: ConnectorArn property is now required.
• aws-pcaconnectorad: AWS::PCAConnectorAD::ServicePrincipalName: DirectoryRegistrationArn property is now required.
• aws-pcaconnectorad: AWS::PCAConnectorAD::TemplateGroupAccessControlEntry: GroupSecurityIdentifier property is now required.
• aws-pcaconnectorad: AWS::PCAConnectorAD::TemplateGroupAccessControlEntry: TemplateArn property is now required.

Features

• core: trace property assignments in CfnResource.addPropertyOverride (#38072) (a226372)
• update L1 CloudFormation resource definitions (#37993) (664a878)
• aws-cdk-lib: emits performance counters if synthesis is slow (#38004) (cb03794), closes #37919 #37843
• bedrockagentcore: expose default endpoint application log group on Runtime (#37812) (8e25d78), closes #37796
• core: add scope to IPolicyValidationContext (#38006) (cae7456)
• core: allow validation plugins to create new files in cloud assembly (#38007) (d9f38a9)
• core: fine-grained control over cross-stack reference strength (#37840) (bddcd44)
• core: include suppressed violations in validation-report.json (#38009) (f396892)
• core: new validation report schema (#37970) (4e09b52), closes aws/aws-cdk-cli#1515
• eks: add AlbControllerVersion support for v2.8.3 through v3.2.2 (#37752) (20abc6a), closes #37414
• eks: add deletionProtection property to Cluster construct (#36474) (5b19ac5), closes #36460
• elasticache: replace CacheEngine/UserEngine enums with enum-like classes (#37816) (6ad84b3), closes #37813

Bug Fixes

• autoscaling: use of ScheduledAction.endTime is dangerous (#38014) (109fae7)
• aws-cdk-lib: make token resolution ~25% faster (#37920) (87483dc)
• bedrockagentcore: relax allowlistedHeaders pattern to match CFN schema (#37969) (e0d6c8a), closes #37964
• cloudwatch: metric math validation reports quoted strings as unknown identifiers (#37977) (59bae38)
• core: cross-region SSM writer orphans parameters when resource is replaced during stack update (#38059) (f130388)
• core: handle string "false" for boolean context values in validation (#37989) (a26ed73)
• integ-tests: responseURL logged in onTimeout (#37972) (b9259dd)
• lambda-nodejs: bundling rejects entry paths containing ".." (#38022) (a7cc53c), closes #38017 #37572 #37572
• lambda-nodejs: perf counters e2e test uses incorrect filename (#38033) (d88637f)

---

Alpha modules (2.258.0-alpha.0)

Features

• integ-tests-alpha: add option to set the provider log level (#38005) (c634a79)

Bug Fixes

• custom-resource-handlers: deterministic asset hashes for generated lambdas (#37634) (6c3d5bc), closes #34307
• glue-alpha: deprecate Ray Jobs (#38055) (3fa428b)
• glue-alpha: restore notifyDelayAfter to PySpark and Scala Spark ETL jobs (#37815) (05be88a), closes #33839
• integ-tests-alpha: assertion failures print too much unnecessary information (#37974) (bc0de1d)

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.258.0-alpha.0 (2026-06-04)

Features

• integ-tests-alpha: add option to set the provider log level (#38005) (c634a79)

Bug Fixes

• custom-resource-handlers: deterministic asset hashes for generated lambdas (#37634) (6c3d5bc), closes #34307
• glue-alpha: deprecate Ray Jobs (#38055) (3fa428b)
• glue-alpha: restore notifyDelayAfter to PySpark and Scala Spark ETL jobs (#37815) (05be88a), closes #33839
• integ-tests-alpha: assertion failures print too much unnecessary information (#37974) (bc0de1d)
• mediapackagev2-alpha: cdnAuth on OriginEndpoint now generates the required policy (#38013) (1d56b46)

2.257.0-alpha.0 (2026-05-21)

2.256.1-alpha.0 (2026-05-20)

2.256.0-alpha.0 (2026-05-19)

2.255.0-alpha.0 (2026-05-18)

Features

• bedrock-agentcore-alpha: Graduation of the library to stable. The Policy submodule is the only submodule that remains in alpha. All other constructs have graduated to stable in aws-cdk-lib/aws-bedrockagentcore and we recommend migrating to the stable versions (#37876) (00cf601)

2.254.0-alpha.0 (2026-05-13)

Features

• bedrock-agentcore-alpha: add tags support to Evaluator and OnlineEvaluationConfig (#37804) (adbf88f)
• bedrock-agentcore-alpha: add identity L2 constructs (#37610) (67c3af2)
• mediapackagev2-alpha: add OAC integration between CloudFront and MediaPackageV2 (#37701) (654f59c)

Bug Fixes

• bedrock-agentcore-alpha: fix cedar policy bug (#37782) (e678d5c), closes #37828
• custom-resource-handlers: deployment fails when parameter already exists (#37852) (025c38c)

2.253.1-alpha.0 (2026-05-08)

... (truncated)

Commits

• c331663 Revert "chore: update analytics metadata blueprints"
• ca23898 chore: update analytics metadata blueprints
• 6b00479 chore(deps): upgrade @​aws-cdk/cloud-assembly-schema to ^54.0.0 (#38074)
• 41a35d2 chore: yarn upgrade dependencies requiring intervention (#37551)
• 81d5b03 chore: npm-check-updates && yarn upgrade (#38076)
• d368e21 chore: prepare repo for TypeScript/JSII 6.0 (#38058)
• a226372 feat(core): trace property assignments in CfnResource.addPropertyOverride (#3...
• 581ebc1 chore(rds): add MySQL versions 5.7.44-rds.20260212, 8.0.46 and 8.4.9 (#38039)
• 2726f06 chore(rds): add Aurora PostgreSQL 16.13 limitless (#38053)
• 664a878 feat: update L1 CloudFormation resource definitions (#37993)
• Additional commits viewable in compare view

Updates @types/node from 25.9.1 to 25.9.2

Commits

• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
@types/aws-lambda	[>= 8.10.155.a, < 8.10.156]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions