Skip to content

build(deps): bump fast-xml-parser, @aws-sdk/client-s3 and @aws-sdk/client-sfn in /typescript-test-samples/step-functions-local/src#442

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/typescript-test-samples/step-functions-local/src/multi-6ee48c50ba
Open

build(deps): bump fast-xml-parser, @aws-sdk/client-s3 and @aws-sdk/client-sfn in /typescript-test-samples/step-functions-local/src#442
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/typescript-test-samples/step-functions-local/src/multi-6ee48c50ba

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 25, 2026

Bumps fast-xml-parser to 5.3.6 and updates ancestor dependencies fast-xml-parser, @aws-sdk/client-s3 and @aws-sdk/client-sfn. These dependencies need to be updated together.

Updates fast-xml-parser from 5.2.5 to 5.3.6

Release notes

Sourced from fast-xml-parser's releases.

Entity security and performance

  • Improve security and performance of entity processing
    • new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter
    • fast return when no edtity is present
    • improvement replacement logic to reduce number of calls

Full Changelog: NaturalIntelligence/fast-xml-parser@v5.3.5...v5.3.6

v5.3.5

What's Changed

New Contributors

Full Changelog: NaturalIntelligence/fast-xml-parser@v5.3.4...v5.3.5

fix: handle HTML numeric and hex entities when out of range

No release notes provided.

bug fix and performance improvements

  • fix #775: transformTagName with allowBooleanAttributes adds an unnecessary attribute
  • Performance improvement for stopNodes (By Maciek Lamberski)

Replace Buffer with Uint8Array

  • Launched Separate CLI module
  • Replace Buffer with Uint8Array
Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

5.4.1 / 2026-02-25

  • fix (#785) unpairedTag node should not have tag content

5.4.0 / 2026-02-25

  • migrate to fast-xml-builder

5.3.9 5.3.9 / 2026-02-25

  • support strictReservedNames

5.3.8 5.3.8 / 2026-02-25

  • support maxNestedTags
  • handle non-array input for XML builder when preserveOrder is true (By Angelo Coetzee)
  • save use of js properies

5.3.7 5.3.7 / 2026-02-20

5.3.6 / 2026-02-14

  • Improve security and performance of entity processing
    • new options maxEntitySize, maxExpansionDepth, maxTotalExpansions, maxExpandedLength, allowedTags,tagFilter
    • fast return when no edtity is present
    • improvement replacement logic to reduce number of calls

5.3.5 / 2026-02-08

  • fix: Escape regex char in entity name
  • update strnum to 2.1.2
  • add missing exports in CJS typings

5.3.4 / 2026-01-30

  • fix: handle HTML numeric and hex entities when out of range

5.3.3 / 2025-12-12

  • fix #775: transformTagName with allowBooleanAttributes adds an unnecessary attribute

5.3.2 / 2025-11-14

  • fix for import statement for v6

5.3.1 / 2025-11-03

... (truncated)

Commits

Updates @aws-sdk/client-s3 from 3.965.0 to 3.997.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.997.0

3.997.0(2026-02-24)

Chores
  • util-endpoints: update aws partitions.json (ba2bbcd3)
  • endpoints: update endpoints model (61dd47fe)
  • models: update API models (e3339290)
  • packages: use open version range for additional packages (#7774) (3f776c33)
  • codegen: sync for checksum stream backpressure (#7776) (14fc5717)
New Features
  • clients: update client endpoints as of 2026-02-24 (3f22faa1)
  • client-observabilityadmin: Adding a new field in the CreateCentralizationRuleForOrganization, UpdateCentralizationRuleForOrganization API and updating the GetCentralizationRuleForOrganization API response to include the new field (7025fca9)
  • client-cloudwatch: This release adds the APIs (PutAlarmMuteRule, ListAlarmMuteRules, GetAlarmMuteRule and DeleteAlarmMuteRule) to manage a new Cloudwatch resource, AlarmMuteRules. AlarmMuteRules allow customers to temporarily mute alarm notifications during expected downtime periods. (cc014d1a)
  • client-elasticsearch-service: Fixed HTTP binding for DescribeDomainAutoTunes API to correctly pass request parameters as query parameters in the HTTP request. (aff0c5eb)
  • client-ec2: Adds httpTokensEnforced property to ModifyInstanceMetadataDefaults API. Set per account or manage organization-wide using declarative policies to prevent IMDSv1-enabled instance launch and block attempts to enable IMDSv1 on existing IMDSv2-only instances. (89d8e7e9)
  • client-medialive: AWS Elemental MediaLive - Added support for Elemental Inference for Smart Cropping and Clipping features for MediaLive. (967c712b)
  • client-partnercentral-selling: Added support for filtering opportunities by target close date in the ListOpportunities API. You can now filter results to return opportunities with a target close date before or after a specified date, enabling more precise opportunity searches based on expected closure timelines. (bf803227)
  • client-opensearch: Fixed HTTP binding for DescribeDomainAutoTunes API to correctly pass request parameters as query parameters in the HTTP request. (5aaa8bc9)
  • client-elementalinference: Initial GA launch for AWS Elemental Inference including capabilities of Smart Crop and Live Event Clipping (592e5a73)

For list of updated packages, view updated-packages.md in assets-3.997.0.zip

v3.996.0

3.996.0(2026-02-23)

Chores
Documentation Changes
  • client-controlcatalog: Updated ExemptedPrincipalArns parameter documentation for improved accuracy (dd772c6d)
New Features
  • clients: update client endpoints as of 2026-02-23 (02d83401)
  • client-wickr: AWS Wickr now provides APIs to manage your Wickr OpenTDF integration. These APIs enable you to test and save your OpenTDF configuration allowing you to manage rooms based on Trusted Data Format attributes. (750b4d86)
  • client-bedrock: Automated Reasoning checks in Amazon Bedrock Guardrails now support fidelity report generation. The new workflow type assesses policy coverage and accuracy against customer documents. The GetAutomatedReasoningPolicyBuildWorkflowResultAssets API adds support for the three new asset types. (3fe66102)
  • client-dynamodb: This change supports the creation of multi-account global tables. It adds one new arguments to UpdateTable, GlobalTableSettingsReplicationMode. (8e185cb4)
  • client-quicksight: Adds support for SEMISTRUCT to InputColumn Type (581e9ea9)
  • client-connectcases: SearchCases API can now accept 25 fields in the request and response as opposed to the previous limit of 10. DeleteField's hard limit of 100 fields per domain has been lifted. (21ae04f9)
  • client-mediatailor: Updated endpoint rule set for dualstack endpoints. Added a new opt-in option to log raw ad decision server requests for Playback Configurations. (3068c8ee)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.997.0 (2026-02-24)

Note: Version bump only for package @​aws-sdk/client-s3

3.996.0 (2026-02-23)

Note: Version bump only for package @​aws-sdk/client-s3

3.995.0 (2026-02-20)

Note: Version bump only for package @​aws-sdk/client-s3

3.994.0 (2026-02-19)

Note: Version bump only for package @​aws-sdk/client-s3

3.993.0 (2026-02-18)

Note: Version bump only for package @​aws-sdk/client-s3

3.992.0 (2026-02-17)

Note: Version bump only for package @​aws-sdk/client-s3

3.991.0 (2026-02-16)

... (truncated)

Commits

Updates @aws-sdk/client-sfn from 3.965.0 to 3.997.0

Release notes

Sourced from @​aws-sdk/client-sfn's releases.

v3.997.0

3.997.0(2026-02-24)

Chores
  • util-endpoints: update aws partitions.json (ba2bbcd3)
  • endpoints: update endpoints model (61dd47fe)
  • models: update API models (e3339290)
  • packages: use open version range for additional packages (#7774) (3f776c33)
  • codegen: sync for checksum stream backpressure (#7776) (14fc5717)
New Features
  • clients: update client endpoints as of 2026-02-24 (3f22faa1)
  • client-observabilityadmin: Adding a new field in the CreateCentralizationRuleForOrganization, UpdateCentralizationRuleForOrganization API and updating the GetCentralizationRuleForOrganization API response to include the new field (7025fca9)
  • client-cloudwatch: This release adds the APIs (PutAlarmMuteRule, ListAlarmMuteRules, GetAlarmMuteRule and DeleteAlarmMuteRule) to manage a new Cloudwatch resource, AlarmMuteRules. AlarmMuteRules allow customers to temporarily mute alarm notifications during expected downtime periods. (cc014d1a)
  • client-elasticsearch-service: Fixed HTTP binding for DescribeDomainAutoTunes API to correctly pass request parameters as query parameters in the HTTP request. (aff0c5eb)
  • client-ec2: Adds httpTokensEnforced property to ModifyInstanceMetadataDefaults API. Set per account or manage organization-wide using declarative policies to prevent IMDSv1-enabled instance launch and block attempts to enable IMDSv1 on existing IMDSv2-only instances. (89d8e7e9)
  • client-medialive: AWS Elemental MediaLive - Added support for Elemental Inference for Smart Cropping and Clipping features for MediaLive. (967c712b)
  • client-partnercentral-selling: Added support for filtering opportunities by target close date in the ListOpportunities API. You can now filter results to return opportunities with a target close date before or after a specified date, enabling more precise opportunity searches based on expected closure timelines. (bf803227)
  • client-opensearch: Fixed HTTP binding for DescribeDomainAutoTunes API to correctly pass request parameters as query parameters in the HTTP request. (5aaa8bc9)
  • client-elementalinference: Initial GA launch for AWS Elemental Inference including capabilities of Smart Crop and Live Event Clipping (592e5a73)

For list of updated packages, view updated-packages.md in assets-3.997.0.zip

v3.996.0

3.996.0(2026-02-23)

Chores
Documentation Changes
  • client-controlcatalog: Updated ExemptedPrincipalArns parameter documentation for improved accuracy (dd772c6d)
New Features
  • clients: update client endpoints as of 2026-02-23 (02d83401)
  • client-wickr: AWS Wickr now provides APIs to manage your Wickr OpenTDF integration. These APIs enable you to test and save your OpenTDF configuration allowing you to manage rooms based on Trusted Data Format attributes. (750b4d86)
  • client-bedrock: Automated Reasoning checks in Amazon Bedrock Guardrails now support fidelity report generation. The new workflow type assesses policy coverage and accuracy against customer documents. The GetAutomatedReasoningPolicyBuildWorkflowResultAssets API adds support for the three new asset types. (3fe66102)
  • client-dynamodb: This change supports the creation of multi-account global tables. It adds one new arguments to UpdateTable, GlobalTableSettingsReplicationMode. (8e185cb4)
  • client-quicksight: Adds support for SEMISTRUCT to InputColumn Type (581e9ea9)
  • client-connectcases: SearchCases API can now accept 25 fields in the request and response as opposed to the previous limit of 10. DeleteField's hard limit of 100 fields per domain has been lifted. (21ae04f9)
  • client-mediatailor: Updated endpoint rule set for dualstack endpoints. Added a new opt-in option to log raw ad decision server requests for Playback Configurations. (3068c8ee)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sfn's changelog.

3.997.0 (2026-02-24)

Note: Version bump only for package @​aws-sdk/client-sfn

3.996.0 (2026-02-23)

Note: Version bump only for package @​aws-sdk/client-sfn

3.995.0 (2026-02-20)

Note: Version bump only for package @​aws-sdk/client-sfn

3.994.0 (2026-02-19)

Note: Version bump only for package @​aws-sdk/client-sfn

3.993.0 (2026-02-18)

Note: Version bump only for package @​aws-sdk/client-sfn

3.992.0 (2026-02-17)

Note: Version bump only for package @​aws-sdk/client-sfn

3.991.0 (2026-02-16)

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
build(deps): bump fast-xml-parser, @aws-sdk/client-s3 and @aws-sdk/cl…
ed76eb0 
…ient-sfn

Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) to 5.3.6 and updates ancestor dependencies [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser), [@aws-sdk/client-s3](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-s3) and [@aws-sdk/client-sfn](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-sfn). These dependencies need to be updated together.


Updates `fast-xml-parser` from 5.2.5 to 5.3.6
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v5.2.5...v5.3.6)

Updates `@aws-sdk/client-s3` from 3.965.0 to 3.997.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-s3/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.997.0/clients/client-s3)

Updates `@aws-sdk/client-sfn` from 3.965.0 to 3.997.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-sfn/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.997.0/clients/client-sfn)

---
updated-dependencies:
- dependency-name: fast-xml-parser
  dependency-version: 5.3.6
  dependency-type: indirect
- dependency-name: "@aws-sdk/client-s3"
  dependency-version: 3.997.0
  dependency-type: direct:production
- dependency-name: "@aws-sdk/client-sfn"
  dependency-version: 3.997.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 25, 2026
@dependabot dependabot bot requested a review from brnkrygs as a code owner February 25, 2026 16:42
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Feb 25, 2026
@dependabot dependabot bot mentioned this pull request Feb 25, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@brnkrygs brnkrygs Awaiting requested review from brnkrygs brnkrygs is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants