build(deps-dev): bump the nodejs-other group across 1 directory with 3 updates

[dependabot]

Bumps the nodejs-other group with 3 updates in the /nodejs directory: typescript-eslint, @aws-sdk/client-sts and aws-cdk-lib.

Updates typescript-eslint from 8.58.2 to 8.59.0

Release notes

Sourced from typescript-eslint's releases.

v8.59.0

8.59.0 (2026-04-20)

🚀 Features

• eslint-plugin: [no-unnecessary-type-assertion] report more cases based on assignability (#11789)

❤️ Thank You

• Ulrich Stark

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Changelog

Sourced from typescript-eslint's changelog.

8.59.0 (2026-04-20)

This was a version bump only for typescript-eslint to align it with other projects, there were no code changes.

See GitHub Releases for more information.

You can read about our versioning strategy and releases on our website.

Commits

• ea9ae4f chore(release): publish 8.59.0
• See full diff in compare view

Updates @aws-sdk/client-sts from 3.1032.0 to 3.1037.0

Release notes

Sourced from @​aws-sdk/client-sts's releases.

v3.1037.0

3.1037.0(2026-04-24)

New Features

• clients: update client endpoints as of 2026-04-24 (ca3df2be)
• client-evs: EVS now supports i7i.metal-24xl EC2 bare metal instance type, delivering high random IOPS performance with real-time latency, ideal for IO intensive and latency-sensitive workloads such as transactional databases, real-time analytics, and AI ML pre-processing. (fd92ee48)
• client-cloudwatch-logs: Adding nextToken and maxItems to the GetQueryResults API. (1a5ef619)
• client-transfer: AWS Transfer Family now support configurable IP address types for Web Apps of type VPC, enabling customers to select IPv4-only or dual-stack (IPv4 and IPv6) configurations based on their network requirements. (f2a72a85)
• client-bedrock-agentcore-control: Added support for configuring identity providers and inbound authorizers within a private VPC for AWS Bedrock AgentCore, enabling secure network connection without public internet access (a0bf24cd)
• client-connect: Amazon Connect is expanding attachment capabilities to give customers greater flexibility and control. Currently limited to predefined file types, the new feature will allow contact center administrators to customize which file extensions and sizes are supported across chat, email, tasks, and cases. (7e987e88)
• client-connecthealth: Corrected CreateWebAppConfiguration documentation. Adding slash as an allowed character for the Ambient documentation agent to allow pronoun specifications. (c21882c4)

Bug Fixes

• client-kinesis: tolerance for flaky H2 session ordering assertion in E2E test (#7959) (58734960)

---

For list of updated packages, view updated-packages.md in assets-3.1037.0.zip

v3.1036.0

3.1036.0(2026-04-23)

Chores

• codegen: sync for http2 session closure, retry longpoll backoff, and fast-xml-parser version bump (#7958) (107aefc4)
• xml-builder: up fast-xml-parser to 5.7.1 (#7957) (110b1c01)

Documentation Changes

• client-pcs: This release adds support for Slurm 25.11 with expedited requeue enabled by default for jobs failing due to node issues, configurable requeue delay, health checks at node startup only, and unauthenticated HTTP endpoints disabled by default for improved security. (1110500a)

New Features

• client-datazone: Releasing For LakehouseProperties attributes in the Connections API's (d0c03722)
• client-iot-managed-integrations: Adds "Status" field to provisioning profile operation response types, giving users visibility into the readiness of a provisioning profile to be used for device provisioning. (72d6968c)
• client-opensearch: Amazon OpenSearch UI applications now support cross-Region domain association, enabling you to connect OpenSearch Dashboards in one AWS Region to OpenSearch domains in other Regions within the same partition for centralized data visualization. (600311b9)

Tests

• client-transcribe-streaming: add concurrency to startStreamTranscription test (#7948) (e2cf194b)

---

For list of updated packages, view updated-packages.md in assets-3.1036.0.zip

v3.1035.0

... (truncated)

Changelog

Sourced from @​aws-sdk/client-sts's changelog.

3.1037.0 (2026-04-24)

Note: Version bump only for package @​aws-sdk/client-sts

3.1036.0 (2026-04-23)

Note: Version bump only for package @​aws-sdk/client-sts

3.1035.0 (2026-04-22)

Bug Fixes

• client-sts: override IDPCommunicationError to be retryable (#7946) (d75e129)

3.1034.0 (2026-04-21)

Note: Version bump only for package @​aws-sdk/client-sts

3.1033.0 (2026-04-20)

Features

• clients: use binary decision diagrams for endpoint resolution (#7931) (ff1b2ba)

Commits

• 7babd8b Publish v3.1037.0
• 46e4ac5 Publish v3.1036.0
• 107aefc chore(codegen): sync for http2 session closure, retry longpoll backoff, and f...
• d8fbfbc Publish v3.1035.0
• d75e129 fix(client-sts): override IDPCommunicationError to be retryable (#7946)
• d08b5a7 Publish v3.1034.0
• 273ad5b chore(codegen): sync for http2 session concurrency fixes (#7942)
• a62021b Publish v3.1033.0
• ff1b2ba feat(clients): use binary decision diagrams for endpoint resolution (#7931)
• See full diff in compare view

Updates aws-cdk-lib from 2.250.0 to 2.251.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.251.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

aws-elasticloadbalancing: AWS::ElasticLoadBalancing::LoadBalancer: SourceSecurityGroup attribute removed. aws-elasticloadbalancing: AWS::ElasticLoadBalancing::LoadBalancer: PolicyItem type removed. aws-elasticloadbalancing: AWS::ElasticLoadBalancing::LoadBalancer: SourceSecurityGroup type removed.

Features

• update L1 CloudFormation resource definitions (#37684) (9e6c2ef)
• lambda: add ruby 4.0 runtime (#37650) (04d4337)
• update L1 CloudFormation resource definitions (#37644) (e64f943)
• core: Validations class is the new way to add validation plugins to CDK Apps (#37611) (95696b4), closes #37613
• core: graduate policyValidationBeta1 interfaces to policyValidation (#37613) (8c613cf)
• ecs: support for service connect access log configuration (#36067) (5ad1c06)
• route53: accelerated recovery for public hosted zone (#36358) (f1b7b03)
• synthetics: support canary group (#35689) (20ccd31), closes #34043

Bug Fixes

• core: Stage.policyValidationBeta1 is mutable (#37612) (3c1faf1)
• core: construct creation stack traces are implicit (#37643) (5635c20)
• core: synth output is not valid YAML when using policy validation (#37597) (927dd60), closes #25331
• core: token stack traces expensively clutter --debug mode (#37642) (498c546)
• core: tree metadata does not contain logical ID (#37630) (284ab23)
• ec2: fixing vpc endpoint for eu-isoe-west-1 region (#37596) (555c930), closes #31690
• events-targets: make LogGroupTargetInput extend RuleTargetInput for JSII compatibility (#37451) (46dbc7a), closes #36733
• lambda: add Token.isUnresolved checks to provisioned poller config validation (#37197) (667ed30)
• stepfunctions-tasks: warn when CallAwsServiceCrossRegion endpoint is resolved from state input (#37646) (9fdf590)

---

Alpha modules (2.251.0-alpha.0)

Features

• bedrock-agentcore-alpha: add L2 constructs for policy and policy engine (#37238) (1e89e7e)
• bedrock-agentcore-alpha: add observability configuration for Runtime (#36689) (34b43aa), closes #36596
• bedrock-agentcore-alpha: support No Authorization for AgentCore Gateway (#36610) (f20bd8e)
• dsql-alpha: initial L2 construct (#34599) (be1a458), closes #34593

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.251.0-alpha.0 (2026-04-24)

Features

• bedrock-agentcore-alpha: add L2 constructs for policy and policy engine (#37238) (1e89e7e)
• bedrock-agentcore-alpha: add observability configuration for Runtime (#36689) (34b43aa), closes #36596
• bedrock-agentcore-alpha: support No Authorization for AgentCore Gateway (#36610) (f20bd8e)
• dsql-alpha: initial L2 construct (#34599) (be1a458), closes #34593

2.250.0-alpha.0 (2026-04-14)

2.249.0-alpha.0 (2026-04-10)

2.248.0-alpha.0 (2026-04-02)

2.247.0-alpha.0 (2026-04-02)

Features

• mediapackagev2-alpha: new L2 construct (#37279) (7debfb9)

2.246.0-alpha.0 (2026-03-31)

2.245.0-alpha.0 (2026-03-27)

Features

• s3tables-alpha: add support for partition spec, sort order, and table properties (#36811) (2696cd1)
• s3tables-alpha: add metrics configuration support for TableBucket (#37275) (e8786f5)
• s3tables-alpha: implement ITaggableV2 on TableBucket and Table L2 constructs (#37277) (69c8944), closes #33054

2.244.0-alpha.0 (2026-03-19)

Bug Fixes

• kinesisanalytics-flink-alpha: mark deprecated flink runtimes as deprecated (#37155) (0a89447)

2.243.0-alpha.0 (2026-03-11)

2.242.0-alpha.0 (2026-03-10)

... (truncated)

Commits

• 9e6c2ef feat: update L1 CloudFormation resource definitions (#37684)
• 9fdf590 fix(stepfunctions-tasks): warn when CallAwsServiceCrossRegion endpoint is res...
• 04d4337 feat(lambda): add ruby 4.0 runtime (#37650)
• 9fba04d chore: upgrade cloud-assembly-schema packages to fix build (#37677)
• e64f943 feat: update L1 CloudFormation resource definitions (#37644)
• 78fbcb3 chore(ec2): remove obsolete tslint directive from vpc.ts (#37532)
• 56656e8 chore(rds): add PostgreSQL 16.13 engine version (#37654)
• 20ccd31 feat(synthetics): support canary group (#35689)
• 95696b4 feat(core): Validations class is the new way to add validation plugins to C...
• 5635c20 fix(core): construct creation stack traces are implicit (#37643)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions