build(deps): bump @pulumi/pulumi from 3.127.0 to 3.128.0

[dependabot[bot]]

Bumps @pulumi/pulumi from 3.127.0 to 3.128.0.

Release notes

Sourced from @​pulumi/pulumi's releases.

v3.128.0

3.128.0 (2024-08-05)

Features

• [auto/go] Add install command to workspace #16782

• [auto/go] Add support for pulumi destroy --preview-only #16839

• [programgen/go] Use pulumi.Sprintf(...) instead of pulumi.String(fmt.Sprintf(...)) in Go program generation #16852

• [cli/plugin] Enable overriding plugin download URLs for air-gapped environments with an environment variable #16648

• [sdk/python] Allow Python dynamic providers to capture secrets #15864

Bug Fixes

• [engine] Separate provider internal from provider user config. This allows providers to use a config key like "pluginDownloadURL" which previously would have conflicted with the engine's internal state. It also allows the engine to add new internal state fields without concern for clashing with existing or future provider config keys. #16837

• [cli/state] Fix moving resources with secrets when the destination stack has no secrets manager defined #16844

• [cli/state] Include the stack name in the passhprase prompt in state move #16861

• [sdk/nodejs] Fix resource reference serialization when multiple copies of @​pulumi/pulumi are present #13240

• [sdk/nodejs] Don't search upwards for policy packs when determining required plugins #16865

• [sdk/python] Fix missing overloads to config getters #16878

• [sdkgen/{go,nodejs,python}] Fix generation of nested plain input types. #16812

Miscellaneous

• [sdkgen/python] Link to Python docs about input types #16763

Changelog

Sourced from @​pulumi/pulumi's changelog.

3.128.0 (2024-08-05)

Features

• [auto/go] Add install command to workspace #16782

• [auto/go] Add support for pulumi destroy --preview-only #16839

• [programgen/go] Use pulumi.Sprintf(...) instead of pulumi.String(fmt.Sprintf(...)) in Go program generation #16852

• [cli/plugin] Enable overriding plugin download URLs for air-gapped environments with an environment variable #16648

• [sdk/python] Allow Python dynamic providers to capture secrets #15864

Bug Fixes

• [engine] Separate provider internal from provider user config. This allows providers to use a config key like "pluginDownloadURL" which previously would have conflicted with the engine's internal state. It also allows the engine to add new internal state fields without concern for clashing with existing or future provider config keys. #16837

• [cli/state] Fix moving resources with secrets when the destination stack has no secrets manager defined #16844

• [cli/state] Include the stack name in the passhprase prompt in state move #16861

• [sdk/nodejs] Fix resource reference serialization when multiple copies of @​pulumi/pulumi are present #13240

• [sdk/nodejs] Don't search upwards for policy packs when determining required plugins #16865

• [sdk/python] Fix missing overloads to config getters #16878

• [sdkgen/{go,nodejs,python}] Fix generation of nested plain input types. #16812

Miscellaneous

• [sdkgen/python] Link to Python docs about input types #16763

Commits

• e9ebdab Add a conformance test for invokes (#16867)
• 36ab7cd Prepare for v3.128.0 release (#16869)
• 1cdd231 Don't search upwards for policy packs when determining required plugins (#16865)
• 5d6e340 [sdk/nodejs] Save pkg/mod registrations on async local store (#13240)
• 7c15b7a fix typo in an error message (#16850)
• c9c30f0 Ensure internal provider state doesn't clash with user config (#16837)
• 70b144d Document news ignore changes processing in the provider protocol (#16725)
• 1afd769 Add parameterized Call support to the engine (#16813)
• 9f71340 Add parameterized read support to the engine (#16784)
• e139524 Changelog and go.mod updates for v3.127.0 (#16805)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Looks like @pulumi/pulumi is up-to-date now, so this is no longer needed.