Skip to content

chore(deps): bump the npm-production group across 1 directory with 9 updates#7

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-production-46acd43fef
Open

chore(deps): bump the npm-production group across 1 directory with 9 updates#7
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/npm_and_yarn/npm-production-46acd43fef

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 16, 2026

Copy link
Copy Markdown

Bumps the npm-production group with 9 updates in the / directory:

Package From To
@aws-sdk/client-s3 3.1045.0 3.1082.0
@aws-sdk/s3-request-presigner 3.1045.0 3.1082.0
@coinbase/cdp-sdk 1.49.0 1.51.2
@x402/core 2.11.0 2.17.0
@x402/evm 2.11.0 2.17.0
@x402/express 2.11.0 2.17.0
dotenv 16.6.1 17.4.2
uuid 11.1.1 14.0.1
viem 2.48.11 2.54.6

Updates @aws-sdk/client-s3 from 3.1045.0 to 3.1082.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.1082.0

3.1082.0(2026-07-08)

Chores
New Features
  • client-ecs: Amazon ECS now automatically detects the correct CPU architecture for Express Mode services. (a273b757)
  • client-appconfig: Update ExperimentRun APIs to support ConflictExceptions. (d985124f)
  • client-resiliencehubv2: Next Generation Resilience Hub now supports filtering and sorting failure mode assessments, resource type filtering in ListResources, cross-region and cross-account topology edges, data recovery achievability status, and more granular dependency discovery progress tracking. (572ad2cf)
  • client-ec2: Replace Root Volume now supports a VolumeId parameter. This allows the customer to pass in a pre-prepared volume as the target root volume for an RRV workflow. (76859d48)
  • client-bedrock-agentcore-control: AgentCore Gateway now supports mapping allowed scopes to separate advertised scopes on the inbound authorizer. (bde793c8)
  • client-iot-wireless: Default session downlink transmission parameters have been added to the existing Multicast Group APIs. Explicit transmission parameters are no longer required when starting a multicast session during the FUOTA procedure. (a2e26503)
  • client-geo-places: Added AddressNamesMode, AddressNameTranslations, MobilityMode, PostalCodeMode, SecondaryAddresses, and DriveThrough features across Places V2 APIs to support address name formatting, multilingual translations, travel-aware search, multi-city postal codes, and unit-level address resolution. (81bbd677)
  • core/client: propagate w3c trace headers (#8156) (e5f383c7)
  • credential-providers: deferred loading for credential providers aggregation package (#8129) (d0f426cb)
  • undici-http-handler: bump version to 3.0.0 (#8168) (6c243a15)
Bug Fixes
  • lib-transfer-manager: destroy orphaned response streams on abort (#8165) (8a5e590c)
Tests
  • bundlers: switch vite canary output format to es (#8169) (f5bb9094)
  • checksums: pass buffer in flexible checksums integ test (#8166) (22281e39)

For list of updated packages, view updated-packages.md in assets-3.1082.0.zip

v3.1081.0

3.1081.0(2026-07-07)

Chores
Documentation Changes

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.1082.0 (2026-07-08)

Note: Version bump only for package @​aws-sdk/client-s3

3.1081.0 (2026-07-07)

Note: Version bump only for package @​aws-sdk/client-s3

3.1080.0 (2026-07-06)

Note: Version bump only for package @​aws-sdk/client-s3

3.1079.0 (2026-07-02)

Note: Version bump only for package @​aws-sdk/client-s3

3.1078.0 (2026-07-01)

Note: Version bump only for package @​aws-sdk/client-s3

3.1077.0 (2026-06-30)

Note: Version bump only for package @​aws-sdk/client-s3

3.1076.0 (2026-06-29)

... (truncated)

Commits
  • afc3740 Publish v3.1082.0
  • f8b4987 chore(codegen): sync for isolatedModules tsconfig and server metrics recorder...
  • 8f43c79 chore(deps): bump '@​smithy/core' to ^3.29.1 (#8167)
  • 02d5abf Publish v3.1081.0
  • be034d9 Publish v3.1080.0
  • 74dc940 Publish v3.1079.0
  • 661087f Publish v3.1078.0
  • c39b676 chore(codegen): sync for thinner command classes, endpoint parameter type fix...
  • 5c490b6 Publish v3.1077.0
  • c4b42a4 chore(codegen): sync for internal checksum impls and IMDSv2 region fallback (...
  • Additional commits viewable in compare view

Updates @aws-sdk/s3-request-presigner from 3.1045.0 to 3.1082.0

Release notes

Sourced from @​aws-sdk/s3-request-presigner's releases.

v3.1082.0

3.1082.0(2026-07-08)

Chores
New Features
  • client-ecs: Amazon ECS now automatically detects the correct CPU architecture for Express Mode services. (a273b757)
  • client-appconfig: Update ExperimentRun APIs to support ConflictExceptions. (d985124f)
  • client-resiliencehubv2: Next Generation Resilience Hub now supports filtering and sorting failure mode assessments, resource type filtering in ListResources, cross-region and cross-account topology edges, data recovery achievability status, and more granular dependency discovery progress tracking. (572ad2cf)
  • client-ec2: Replace Root Volume now supports a VolumeId parameter. This allows the customer to pass in a pre-prepared volume as the target root volume for an RRV workflow. (76859d48)
  • client-bedrock-agentcore-control: AgentCore Gateway now supports mapping allowed scopes to separate advertised scopes on the inbound authorizer. (bde793c8)
  • client-iot-wireless: Default session downlink transmission parameters have been added to the existing Multicast Group APIs. Explicit transmission parameters are no longer required when starting a multicast session during the FUOTA procedure. (a2e26503)
  • client-geo-places: Added AddressNamesMode, AddressNameTranslations, MobilityMode, PostalCodeMode, SecondaryAddresses, and DriveThrough features across Places V2 APIs to support address name formatting, multilingual translations, travel-aware search, multi-city postal codes, and unit-level address resolution. (81bbd677)
  • core/client: propagate w3c trace headers (#8156) (e5f383c7)
  • credential-providers: deferred loading for credential providers aggregation package (#8129) (d0f426cb)
  • undici-http-handler: bump version to 3.0.0 (#8168) (6c243a15)
Bug Fixes
  • lib-transfer-manager: destroy orphaned response streams on abort (#8165) (8a5e590c)
Tests
  • bundlers: switch vite canary output format to es (#8169) (f5bb9094)
  • checksums: pass buffer in flexible checksums integ test (#8166) (22281e39)

For list of updated packages, view updated-packages.md in assets-3.1082.0.zip

v3.1081.0

3.1081.0(2026-07-07)

Chores
Documentation Changes

... (truncated)

Changelog

Sourced from @​aws-sdk/s3-request-presigner's changelog.

3.1082.0 (2026-07-08)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1081.0 (2026-07-07)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1080.0 (2026-07-06)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1079.0 (2026-07-02)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1078.0 (2026-07-01)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1077.0 (2026-06-30)

Note: Version bump only for package @​aws-sdk/s3-request-presigner

3.1076.0 (2026-06-29)

... (truncated)

Commits
  • afc3740 Publish v3.1082.0
  • f8b4987 chore(codegen): sync for isolatedModules tsconfig and server metrics recorder...
  • f274899 chore: use isolatedModules for types (#8164)
  • 8f43c79 chore(deps): bump '@​smithy/core' to ^3.29.1 (#8167)
  • 02d5abf Publish v3.1081.0
  • be034d9 Publish v3.1080.0
  • 74dc940 Publish v3.1079.0
  • 661087f Publish v3.1078.0
  • c39b676 chore(codegen): sync for thinner command classes, endpoint parameter type fix...
  • 5c490b6 Publish v3.1077.0
  • Additional commits viewable in compare view

Updates @coinbase/cdp-sdk from 1.49.0 to 1.51.2

Commits
  • c377f30 chore: bump @​coinbase/cdp-sdk to 1.51.2 (#733)
  • d0dd488 Update OpenAPI specification and generated code (#730)
  • 59b6f4f fix(docs): point typedoc configs to package tsconfig (#732)
  • cf5e637 docs(typescript): custom doc generation router with semantic structure and MD...
  • c22aeb1 chore: bump @​coinbase/cdp-sdk to 1.51.1 (#731)
  • 4cdbf7b fix(typescript): remove spurious approve() before ERC-20 transfer (#729)
  • d7788cb chore: fix rust build for latest openapi spec (#727)
  • 76a73d8 chore: fix ts publish (#721)
  • e622675 chore: fix ts publish (#720)
  • 0e840d1 chore: bump all SDKs — TS 1.51.0, Python 1.47.0, Rust 0.7.0, Java 0.6.0 (#719)
  • Additional commits viewable in compare view
Install script changes

This version adds prepublish script that runs during installation. Review the package contents before updating.


Updates @x402/core from 2.11.0 to 2.17.0

Commits

Updates @x402/evm from 2.11.0 to 2.17.0

Commits

Updates @x402/express from 2.11.0 to 2.17.0

Commits

Updates dotenv from 16.6.1 to 17.4.2

Changelog

Sourced from dotenv's changelog.

17.4.2 (2026-04-12)

Changed

  • Improved skill files - tightened up details (#1009)

17.4.1 (2026-04-05)

Changed

  • Change text injecting to injected (#1005)

17.4.0 (2026-04-01)

Added

  • Add skills/ folder with focused agent skills: skills/dotenv/SKILL.md (core usage) and skills/dotenvx/SKILL.md (encryption, multiple environments, variable expansion) for AI coding agent discovery via the skills.sh ecosystem (npx skills add motdotla/dotenv)

Changed

  • Tighten up logs: ◇ injecting env (14) from .env (#1003)

17.3.1 (2026-02-12)

Changed

  • Fix as2 example command in README and update spanish README

17.3.0 (2026-02-12)

Added

  • Add a new README section on dotenv’s approach to the agentic future.

Changed

  • Rewrite README to get humans started more quickly with less noise while simultaneously making more accessible for llms and agents to go deeper into details.

17.2.4 (2026-02-05)

Changed

  • Make DotenvPopulateInput accept NodeJS.ProcessEnv type (#915)
  • Give back to dotenv by checking out my newest project vestauth. It is auth for agents. Thank you for using my software.

17.2.3 (2025-09-29)

Changed

  • Fixed typescript error definition (#912)

... (truncated)

Commits

Updates uuid from 11.1.1 to 14.0.1

Release notes

Sourced from uuid's releases.

v14.0.1

14.0.1 (2026-06-20)

Bug Fixes

  • add types condition to node export for moduleResolution bundler (#961) (27ffae5)

v14.0.0

14.0.0 (2026-04-19)

⚠ BREAKING CHANGES

  • expect crypto to be global everywhere (requires node@20+) (#935)
  • drop node@18 support (#934)

Features

Bug Fixes

  • expect crypto to be global everywhere (requires node@20+) (#935) (f2c235f)
  • Use GITHUB_TOKEN for release-please and enable npm provenance (#925) (ffa3138)

v13.0.2

13.0.2 (2026-05-04)

Bug Fixes

  • rerelease to fix provenance. (49ccb35)

v13.0.1

13.0.1 (2026-04-27)

Bug Fixes

v13.0.0

13.0.0 (2025-09-08)

⚠ BREAKING CHANGES

  • make browser exports the default (#901)

... (truncated)

Changelog

Sourced from uuid's changelog.

14.0.1 (2026-06-20)

Bug Fixes

  • add types condition to node export for moduleResolution bundler (#961) (27ffae5)

14.0.0 (2026-04-19)

Security

  • Fixes GHSA-w5hq-g745-h8pq: v3(), v5(), and v6() did not validate that writes would remain within the bounds of a caller-supplied buffer, allowing out-of-bounds writes when an invalid offset was provided. A RangeError is now thrown if offset < 0 or offset + 16 > buf.length.

⚠ BREAKING CHANGES

  • crypto is now expected to be globally defined (requires node@20+) (#935)
  • drop node@18 support (#934)
  • upgrade minimum supported TypeScript version to 5.4.3, in keeping with the project's policy of supporting TypeScript versions released within the last two years

13.0.0 (2025-09-08)

⚠ BREAKING CHANGES

  • make browser exports the default (#901)

Bug Fixes

12.0.0 (2025-09-05)

⚠ BREAKING CHANGES

  • update to typescript@5.2 (#887)
  • remove CommonJS support (#886)
  • drop node@16 support (#883)

Features

Bug Fixes

... (truncated)

Commits
Install script changes

This version modifies prepare script that runs during installation. Review the package contents before updating.


Updates viem from 2.48.11 to 2.54.6

Release notes

Sourced from viem's releases.

viem@2.54.6

Patch Changes

  • #4807 f1ac4480d0c1c6f29bf709f116068e903643ecad Thanks @​jxom! - viem/tempo: Supported calling token .call builders without a Client (restores the pre-2.54 call signature). When the Client is omitted, token must be a TIP20 token id or contract address, and formatted amounts require explicit decimals.

viem@2.54.5

Patch Changes

viem@2.54.4

Patch Changes

viem@2.54.3

Patch Changes

viem@2.54.2

Patch Changes

viem@2.54.1

Patch Changes

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels May 16, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-production-46acd43fef branch from c9f3aae to b356f45 Compare May 20, 2026 23:25
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-production-46acd43fef branch from b356f45 to 3225b68 Compare June 24, 2026 20:25
…updates

Bumps the npm-production group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3) | `3.1045.0` | `3.1082.0` |
| [@aws-sdk/s3-request-presigner](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/packages/s3-request-presigner) | `3.1045.0` | `3.1082.0` |
| [@coinbase/cdp-sdk](https://github.com/coinbase/cdp-sdk) | `1.49.0` | `1.51.2` |
| [@x402/core](https://github.com/x402-foundation/x402) | `2.11.0` | `2.17.0` |
| [@x402/evm](https://github.com/x402-foundation/x402) | `2.11.0` | `2.17.0` |
| [@x402/express](https://github.com/x402-foundation/x402) | `2.11.0` | `2.17.0` |
| [dotenv](https://github.com/motdotla/dotenv) | `16.6.1` | `17.4.2` |
| [uuid](https://github.com/uuidjs/uuid) | `11.1.1` | `14.0.1` |
| [viem](https://github.com/wevm/viem) | `2.48.11` | `2.54.6` |



Updates `@aws-sdk/client-s3` from 3.1045.0 to 3.1082.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1082.0/clients/client-s3)

Updates `@aws-sdk/s3-request-presigner` from 3.1045.0 to 3.1082.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/packages/s3-request-presigner/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.1082.0/packages/s3-request-presigner)

Updates `@coinbase/cdp-sdk` from 1.49.0 to 1.51.2
- [Changelog](https://github.com/coinbase/cdp-sdk/blob/main/RELEASE.md)
- [Commits](https://github.com/coinbase/cdp-sdk/compare/@coinbase/cdp-sdk@v1.49.0...@coinbase/cdp-sdk@v1.51.2)

Updates `@x402/core` from 2.11.0 to 2.17.0
- [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/core@v2.11.0...npm-@x402/core@v2.17.0)

Updates `@x402/evm` from 2.11.0 to 2.17.0
- [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/evm@v2.11.0...npm-@x402/evm@v2.17.0)

Updates `@x402/express` from 2.11.0 to 2.17.0
- [Commits](https://github.com/x402-foundation/x402/compare/npm-@x402/express@v2.11.0...npm-@x402/express@v2.17.0)

Updates `dotenv` from 16.6.1 to 17.4.2
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](motdotla/dotenv@v16.6.1...v17.4.2)

Updates `uuid` from 11.1.1 to 14.0.1
- [Release notes](https://github.com/uuidjs/uuid/releases)
- [Changelog](https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md)
- [Commits](uuidjs/uuid@v11.1.1...v14.0.1)

Updates `viem` from 2.48.11 to 2.54.6
- [Release notes](https://github.com/wevm/viem/releases)
- [Commits](https://github.com/wevm/viem/compare/viem@2.48.11...viem@2.54.6)

---
updated-dependencies:
- dependency-name: "@aws-sdk/client-s3"
  dependency-version: 3.1048.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
- dependency-name: "@aws-sdk/s3-request-presigner"
  dependency-version: 3.1048.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
- dependency-name: "@coinbase/cdp-sdk"
  dependency-version: 1.49.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm-production
- dependency-name: "@x402/core"
  dependency-version: 2.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
- dependency-name: "@x402/evm"
  dependency-version: 2.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
- dependency-name: "@x402/express"
  dependency-version: 2.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
- dependency-name: dotenv
  dependency-version: 17.4.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: npm-production
- dependency-name: uuid
  dependency-version: 14.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: npm-production
- dependency-name: viem
  dependency-version: 2.49.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm-production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title Bump the npm-production group across 1 directory with 9 updates chore(deps): bump the npm-production group across 1 directory with 9 updates Jul 8, 2026
@dependabot
dependabot Bot force-pushed the dependabot/npm_and_yarn/npm-production-46acd43fef branch from 3225b68 to f81235b Compare July 8, 2026 20:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants