chore(deps-dev): bump boto3 from 1.12.1 to 1.17.53

[dependabot-preview]

Bumps boto3 from 1.12.1 to 1.17.53.

Changelog

Sourced from boto3's changelog.

1.17.53

• api-change:sts: [botocore] STS now supports assume role with Web Identity using JWT token length upto 20000 characters
• api-change:dms: [botocore] AWS DMS added support of TLS for Kafka endpoint. Added Describe endpoint setting API for DMS endpoints.

1.17.52

• api-change:mediaconnect: [botocore] For flows that use Listener protocols, you can now easily locate an output's outbound IP address for a private internet. Additionally, MediaConnect now supports the Waiters feature that makes it easier to poll for the status of a flow until it reaches its desired state.
• api-change:config: [botocore] Add exception for DeleteRemediationConfiguration and DescribeRemediationExecutionStatus
• api-change:route53: [botocore] Documentation updates for route53
• api-change:codestar-connections: [botocore] This release adds tagging support for CodeStar Connections Host resources

1.17.51

• api-change:lightsail: [botocore] Documentation updates for Amazon Lightsail.
• api-change:sts: [botocore] This release adds the SourceIdentity parameter that can be set when assuming a role.
• api-change:comprehendmedical: [botocore] The InferICD10CM API now returns TIME_EXPRESSION entities that refer to medical conditions.
• api-change:rds: [botocore] Clarify that enabling or disabling automated backups causes a brief downtime, not an outage.
• api-change:redshift: [botocore] Added support to enable AQUA in Amazon Redshift clusters.

1.17.50

• api-change:fsx: [botocore] Support for cross-region and cross-account backup copies
• api-change:codebuild: [botocore] AWS CodeBuild now allows you to set the access permissions for build artifacts, project artifacts, and log files that are uploaded to an Amazon S3 bucket that is owned by another account.

1.17.49

• api-change:redshift: [botocore] Add support for case sensitive table level restore
• api-change:ec2: [botocore] Add paginator support to DescribeStoreImageTasks and update documentation.
• api-change:shield: [botocore] CreateProtection now throws InvalidParameterException instead of InternalErrorException when system tags (tag with keys prefixed with "aws:") are passed in.

1.17.48

• api-change:lookoutequipment: [botocore] This release introduces support for Amazon Lookout for Equipment.
• api-change:kinesis-video-archived-media: [botocore] Documentation updates for archived.kinesisvideo
• api-change:robomaker: [botocore] This release allows RoboMaker customers to specify custom tools to run with their simulation job
• api-change:appstream: [botocore] This release provides support for image updates
• api-change:ram: [botocore] Documentation updates for AWS RAM resource sharing
• api-change:customer-profiles: [botocore] Documentation updates for Put-Integration API
• api-change:autoscaling: [botocore] Amazon EC2 Auto Scaling announces Warm Pools that help applications to scale out faster by pre-initializing EC2 instances and save money by requiring fewer continuously running instances

1.17.47

... (truncated)

Commits

• a8d226b Merge branch 'release-1.17.53'
• 63e5728 Bumping version to 1.17.53
• 169f2a0 Add changelog entries from botocore
• 7989164 Merge branch 'release-1.17.52'
• 0b82bf9 Merge branch 'release-1.17.52' into develop
• acafc87 Bumping version to 1.17.52
• 3ea0047 Add changelog entries from botocore
• a40200f Merge branch 'release-1.17.51'
• 4b2ff0f Merge branch 'release-1.17.51' into develop
• e34bb2c Bumping version to 1.17.51
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[aviary2-wf]

Security Insights

(1) Vulnerable direct dependencies were detected

1 vulns in pyyaml < 5.4 via requirements.txt

Action Items

• Review dependencies for available updates
• See this Splunk dashboard for more CVE details
• Review PR for security impact; comment "security review required" if needed or unsure
• Verify aviary.yaml coverage of security relevant code

---

Questions or Comments? Reach out on Slack: #support-infosec.

[dependabot-preview]

Superseded by #149.