Bump software.amazon.awscdk:aws-cdk-lib from 2.117.0 to 2.130.0

[dependabot[bot]]

Bumps software.amazon.awscdk:aws-cdk-lib from 2.117.0 to 2.130.0.

Release notes

Sourced from software.amazon.awscdk:aws-cdk-lib's releases.

v2.130.0

Features

• appconfig: graduate to stable 🚀 (#29188) (7feabc1)
• bedrock: stabilityai model (#29210) (6c17ca5)

Bug Fixes

• custom-resources-handlers: s3 deployment handler log injection vulnerability (#28599) (83aa395), closes #28469
• pipelines: generates warning since CDK 2.128.0 due to addition of v2 pipeline support in aws-codepipeline (#29199) (eca1bcf), closes #29190 /github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/pipelines/lib/codepipeline/codepipeline.ts#L467-L480

---

Alpha modules (2.130.0-alpha.0)

v2.129.0

Features

• update L1 CloudFormation resource definitions (#29191) (c579e3c)
• applicationautoscaling: timezone for ScheduledAction (#29116) (8694125), closes #22645 #27754
• cloudfront-origin: adding FunctionUrlOrigin (#29101) (2b0ed53)
• ecs: credentialSpecs in ContainerDefinitionOptions (#29085) (e92dbec)
• events-targets: launchType property for ECS task (#29069) (b4daf84), closes #28990
• lambda: Add Ipv6AllowedforDualStack support for Lambda function (#28928) (90caad9)
• lambda: adding .net 8 (dotnet8) lambda runtime support (#29178) (74335f6)
• rds: support Aurora MySQL 3.05.2 (#29166) (da0b82c)
• sns: enforce ssl with topic policy (#29144) (a75f447), closes #29142
• synthetics: latest canary runtimes for NodeJS, Python (#29132) (3c122a4), closes #29135

---

Alpha modules (2.129.0-alpha.0)

Bug Fixes

• appconfig: scope generated alarm role policy to '*' for composite alarm support (#29171) (c17879d)

v2.128.0

Features

• cloudwatch: add TableWidget (#29078) (4599aa3), closes #28975
• codedeploy: ignoreAlarmConfiguration parameter to Deployment Groups (#26957) (e890e89)
• codepipeline: pipeline type v2 with pipeline-level variables and triggers (#28538) (40ffe2b), closes #28476 #28694
• ses: grant methods to IEmailIdentity (#29084) (c3c771c), closes #29083
• allow overriding the filename of the processed file after substitution (#29029) (88decc6), closes #28450

Bug Fixes

• lambda: @​deprecated tag to deprecated runtimes (#29081) (2503f68)
• stepfunctions-tasks: missing permissions for running tasks on ecs (#27891) (683d595), closes #27803

---

Alpha modules (2.128.0-alpha.0)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

... (truncated)

Changelog

Sourced from software.amazon.awscdk:aws-cdk-lib's changelog.

2.130.0 (2024-02-23)

Features

• appconfig: graduate to stable 🚀 (#29188) (7feabc1)
• bedrock: stabilityai model (#29210) (6c17ca5)

Bug Fixes

• custom-resources-handlers: s3 deployment handler log injection vulnerability (#28599) (83aa395), closes #28469
• pipelines: generates warning since CDK 2.128.0 due to addition of v2 pipeline support in aws-codepipeline (#29199) (eca1bcf), closes #29190 /github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/pipelines/lib/codepipeline/codepipeline.ts#L467-L480

2.129.0 (2024-02-21)

Features

• update L1 CloudFormation resource definitions (#29191) (c579e3c)
• applicationautoscaling: timezone for ScheduledAction (#29116) (8694125), closes #22645 #27754
• cloudfront-origin: adding FunctionUrlOrigin (#29101) (2b0ed53)
• ecs: credentialSpecs in ContainerDefinitionOptions (#29085) (e92dbec)
• events-targets: launchType property for ECS task (#29069) (b4daf84), closes #28990
• lambda: Add Ipv6AllowedforDualStack support for Lambda function (#28928) (90caad9)
• lambda: adding .net 8 (dotnet8) lambda runtime support (#29178) (74335f6)
• rds: support Aurora MySQL 3.05.2 (#29166) (da0b82c)
• sns: enforce ssl with topic policy (#29144) (a75f447), closes #29142
• synthetics: latest canary runtimes for NodeJS, Python (#29132) (3c122a4), closes #29135

2.128.0 (2024-02-14)

Features

• cloudwatch: add TableWidget (#29078) (4599aa3), closes #28975
• codedeploy: ignoreAlarmConfiguration parameter to Deployment Groups (#26957) (e890e89)
• codepipeline: pipeline type v2 with pipeline-level variables and triggers (#28538) (40ffe2b), closes #28476 #28694
• ses: grant methods to IEmailIdentity (#29084) (c3c771c), closes #29083
• allow overriding the filename of the processed file after substitution (#29029) (88decc6), closes #28450

Bug Fixes

• lambda: @​deprecated tag to deprecated runtimes (#29081) (2503f68)
• stepfunctions-tasks: missing permissions for running tasks on ecs (#27891) (683d595), closes #27803

2.127.0 (2024-02-09)

Features

... (truncated)

Commits

• bd6e5ee chore(release): 2.130.0 (#29228)
• 0dad8cd chore(release): 2.130.0
• 83aa395 fix(custom-resources-handlers): s3 deployment handler log injection vulnerabi...
• fcb7231 chore(appconfig): compilation error in ts 4.2 and below because of using get ...
• 6c17ca5 feat(bedrock): stabilityai model (#29210)
• 7feabc1 feat(appconfig): graduate to stable 🚀 (#29188)
• f528c47 chore(merge-back): 2.129.0 (#29206)
• 54700ec Merge branch 'main' into merge-back/2.129.0
• eca1bcf fix(pipelines): generates warning since CDK 2.128.0 due to addition of v2 pip...
• a7f6b2d chore(opensearch): improve the doc about disabling the logging (#29202)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #565.