[Snyk] Upgrade @aws-sdk/client-sts from 3.258.0 to 3.687.0

[bibiefrat]

Snyk has created this PR to upgrade @aws-sdk/client-sts from 3.258.0 to 3.687.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 198 versions ahead of your current version.

• The recommended version was released on 21 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-5668858	646	No Known Exploit
	Prototype Pollution SNYK-JS-FASTXMLPARSER-3325616	646	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-7573289	646	No Known Exploit

Release notes

Package name: @aws-sdk/client-sts

• 3.687.0 - 2024-11-07
  

  3.687.0(2024-11-07)

  Chores

  • middleware-flexible-checksums: delay checksum validation until stream read (#6629) (43ee3c1e)

  New Features

  • clients: update client endpoints as of 2024-11-07 (dbf853a1)
  • client-auto-scaling: Auto Scaling groups now support the ability to strictly balance instances across Availability Zones by configuring the AvailabilityZoneDistribution parameter. If balanced-only is configured for a group, launches will always be attempted in the under scaled Availability Zone even if it is unhealthy. (3589a0fe)
  • client-bedrock-runtime: Add Prompt management support to Bedrock runtime APIs: Converse, ConverseStream, InvokeModel, InvokeModelWithStreamingResponse (66072530)
  • client-quicksight: Add Client Credentials based OAuth support for Snowflake and Starburst (3d8d0bb1)
  • client-cleanroomsml: This release introduces support for Custom Models in AWS Clean Rooms ML. (188d6019)
  • client-synthetics: Add support to toggle if a canary will automatically delete provisioned canary resources such as Lambda functions and layers when a canary is deleted. This behavior can be controlled via the new ProvisionedResourceCleanup property exposed in the CreateCanary and UpdateCanary APIs. (b06511c0)
  • client-cleanrooms: This release introduces support for Custom Models in AWS Clean Rooms ML. (ef8b2588)
  • client-bedrock-agent: Add prompt support for chat template configuration and agent generative AI resource. Add support for configuring an optional guardrail in Prompt and Knowledge Base nodes in Prompt Flows. Add API to validate flow definition (7f72a17e)
  • client-resource-explorer-2: Add GetManagedView, ListManagedViews APIs. (362a7bd2)

  Tests

  • add retry=4 to aggregate e2e test run (#6638) (289220f6)
  • update jest.config.js to remove private folder (#6639) (1532651e)
  • middleware-user-agent: more precise assertions (#6637) (9f7c19d6)
  • aws-restjson-*: use vitest (#6628) (ea3482f4)

  ---

  For list of updated packages, view updated-packages.md in assets-3.687.0.zip

• 3.686.0 - 2024-11-06
  

  3.686.0(2024-11-06)

  Chores

  • codegen: bump smithy-ts commit to 0d9cee80 (#6627) (76cb4e8b)
  • remove smithy from codeowners (#6616) (e5a04d03)

  New Features

  • client-qapps: Introduces category apis in AmazonQApps. Web experience users use Categories to tag and filter library items. (9e3e6fb6)
  • client-verifiedpermissions: Adding BatchGetPolicy API which supports the retrieval of multiple policies across multiple policy stores within a single request. (6860b355)
  • client-codebuild: AWS CodeBuild now adds additional compute types for reserved capacity fleet. (73be6196)
  • client-lakeformation: API changes for new named tag expressions feature. (85aa63fd)
  • client-s3-control: Fix ListStorageLensConfigurations and ListStorageLensGroups deserialization for Smithy SDKs. (14cff2e0)
  • client-guardduty: GuardDuty RDS Protection expands support for Amazon Aurora PostgreSQL Limitless Databases. (4c78745a)

  Tests

  • client-ec2: convert cucumber tests to vitest for ec2 (#6625) (6ee85c57)
  • client-s3: convert some read ops to waiters (#6622) (396fc77e)
  • credential-provider-node: remove sts and sso client mocks (#6619) (62ae71a8)
  • remove turbo from test orchestration (#6615) (36006687)

  ---

  For list of updated packages, view updated-packages.md in assets-3.686.0.zip

• 3.682.0 - 2024-10-29
  

  3.682.0(2024-10-29)

  New Features

  • clients: update client endpoints as of 2024-10-29 (d7b891c8)
  • client-cloudwatch-logs: Added support for new optional baseline parameter in the UpdateAnomaly API. For UpdateAnomaly requests with baseline set to True, The anomaly behavior is then treated as baseline behavior. However, more severe occurrences of this behavior will still be reported as anomalies. (da1de11c)
  • client-bedrock: Update Application Inference Profile (cd3a5ec8)
  • client-iotfleetwise: Updated BatchCreateVehicle and BatchUpdateVehicle APIs: LimitExceededException has been added and the maximum number of vehicles in a batch has been set to 10 explicitly (820ad6d3)
  • client-sagemaker: Adding notebook-al2-v3 as allowed value to SageMaker NotebookInstance PlatformIdentifier attribute (8c8cce53)
  • client-redshift-data: Adding a new API GetStatementResultV2 that supports CSV formatted results from ExecuteStatement and BatchExecuteStatement calls. (5943dd5e)
  • client-cleanrooms: This release adds the option for customers to configure analytics engine when creating a collaboration, and introduces the new SPARK analytics engine type in addition to maintaining the legacy CLEAN_ROOMS_SQL engine type. (2ccb11c7)
  • client-bedrock-runtime: Update Application Inference Profile (aae686f9)

  Tests

  • temporarily ignore turbo error (#6600) (908ff3c2)
  • throw final error in turbo script (#6594) (19abef78)

  ---

  For list of updated packages, view updated-packages.md in assets-3.682.0.zip

• 3.679.0 - 2024-10-24
• 3.678.0 - 2024-10-23
• 3.677.0 - 2024-10-22
• 3.675.0 - 2024-10-18
• 3.670.0 - 2024-10-11
• 3.669.0 - 2024-10-10
• 3.668.0 - 2024-10-09
• 3.667.0 - 2024-10-08
• 3.666.0 - 2024-10-07
• 3.665.0 - 2024-10-04
• 3.664.0 - 2024-10-03
• 3.662.0 - 2024-10-01
• 3.658.1 - 2024-09-25
• 3.658.0 - 2024-09-24
• 3.654.0 - 2024-09-18
• 3.651.1 - 2024-09-13
• 3.650.0 - 2024-09-11
• 3.649.0 - 2024-09-10
• 3.645.0 - 2024-09-04
• 3.637.0 - 2024-08-22
• 3.635.0 - 2024-08-20
• 3.632.0 - 2024-08-15
• 3.631.0 - 2024-08-14
• 3.629.0 - 2024-08-12
• 3.624.0 - 2024-08-05
• 3.623.0 - 2024-08-02
• 3.622.0 - 2024-08-01
• 3.621.0 - 2024-07-30
• 3.620.1 - 2024-07-29
• 3.620.0 - 2024-07-25
• 3.616.0 - 2024-07-18
• 3.614.0 - 2024-07-10
• 3.613.0 - 2024-07-09
• 3.609.0 - 2024-07-02
• 3.606.0 - 2024-06-27
• 3.600.0 - 2024-06-18
• 3.598.0 - 2024-06-14
• 3.596.0 - 2024-06-12
• 3.592.0 - 2024-06-06
• 3.590.0 - 2024-06-04
• 3.588.0 - 2024-05-31
• 3.587.0 - 2024-05-30
• 3.583.0 - 2024-05-23
• 3.582.0 - 2024-05-22
• 3.577.0 - 2024-05-15
• 3.576.0 - 2024-05-14
• 3.575.0 - 2024-05-13
• 3.574.0 - 2024-05-10
• 3.572.0 - 2024-05-08
• 3.569.0 - 2024-05-03
• 3.568.0 - 2024-05-02
• 3.567.0 - 2024-05-01
• 3.565.0 - 2024-04-29
• 3.556.0 - 2024-04-16
• 3.554.0 - 2024-04-11
• 3.552.0 - 2024-04-09
• 3.549.0 - 2024-04-04
• 3.540.0 - 2024-03-22
• 3.535.0 - 2024-03-15
• 3.533.0 - 2024-03-13
• 3.529.1 - 2024-03-08
• 3.529.0 - 2024-03-07
• 3.525.0 - 2024-02-29
• 3.523.0 - 2024-02-27
• 3.521.0 - 2024-02-23
• 3.515.0 - 2024-02-15
• 3.513.0 - 2024-02-13
• 3.511.0 - 2024-02-09
• 3.507.0 - 2024-02-05
• 3.504.0 - 2024-01-31
• 3.502.0 - 2024-01-29
• 3.501.0 - 2024-01-26
• 3.499.0 - 2024-01-24
• 3.496.0 - 2024-01-19
• 3.495.0 - 2024-01-18
• 3.490.0 - 2024-01-11
• 3.489.0 - 2024-01-10
• 3.485.0 - 2024-01-03
• 3.484.0 - 2023-12-29
• 3.481.0 - 2023-12-26
• 3.478.0 - 2023-12-20
• 3.477.0 - 2023-12-19
• 3.476.0 - 2023-12-18
• 3.474.0 - 2023-12-14
• 3.473.0 - 2023-12-13
• 3.470.0 - 2023-12-08
• 3.468.0 - 2023-12-06
• 3.465.0 - 2023-12-01
• 3.462.0 - 2023-11-29
• 3.461.0 - 2023-11-28
• 3.460.0 - 2023-11-28
• 3.458.0 - 2023-11-27
• 3.454.0 - 2023-11-17
• 3.451.0 - 2023-11-14
• 3.450.0 - 2023-11-13
• 3.449.0 - 2023-11-10
• 3.445.0 - 2023-11-07
• 3.441.0 - 2023-11-01
• 3.438.0 - 2023-10-27
• 3.437.0 - 2023-10-26
• 3.436.0 - 2023-10-25
• 3.435.0 - 2023-10-24
• 3.433.0 - 2023-10-20
• 3.431.0 - 2023-10-18
• 3.430.0 - 2023-10-17
• 3.429.0 - 2023-10-16
• 3.428.0 - 2023-10-12
• 3.427.0 - 2023-10-06
• 3.425.0 - 2023-10-04
• 3.423.0 - 2023-10-02
• 3.421.0 - 2023-09-27
• 3.418.0 - 2023-09-22
• 3.414.0 - 2023-09-15
• 3.413.0 - 2023-09-14
• 3.410.0 - 2023-09-11
• 3.409.0 - 2023-09-08
• 3.408.0 - 2023-09-07
• 3.405.0 - 2023-09-01
• 3.398.0 - 2023-08-23
• 3.395.0 - 2023-08-18
• 3.391.0 - 2023-08-14
• 3.388.0 - 2023-08-09
• 3.387.0 - 2023-08-08
• 3.386.0 - 2023-08-07
• 3.385.0 - 2023-08-04
• 3.382.0 - 2023-08-01
• 3.379.1 - 2023-07-28
• 3.378.0 - 2023-07-26
• 3.377.0 - 2023-07-25
• 3.370.0 - 2023-07-13
• 3.369.0 - 2023-07-11
• 3.363.0 - 2023-06-29
• 3.362.0 - 2023-06-28
• 3.360.0 - 2023-06-26
• 3.359.0 - 2023-06-23
• 3.358.0 - 2023-06-22
• 3.357.0 - 2023-06-21
• 3.354.0 - 2023-06-16
• 3.353.0 - 2023-06-15
• 3.352.0 - 2023-06-13
• 3.350.0 - 2023-06-09
• 3.348.0 - 2023-06-07
• 3.347.1 - 2023-06-07
• 3.347.0 - 2023-06-06
• 3.345.0 - 2023-06-02
• 3.344.0 - 2023-06-01
• 3.342.0 - 2023-05-30
• 3.341.0 - 2023-05-26
• 3.338.0 - 2023-05-23
• 3.337.0 - 2023-05-22
• 3.335.1 - 2023-06-12
• 3.335.0 - 2023-05-18
• 3.332.0 - 2023-05-11
• 3.329.0 - 2023-05-08
• 3.328.0 - 2023-05-05
• 3.327.0 - 2023-05-04
• 3.326.0 - 2023-05-03
• 3.325.0 - 2023-05-02
• 3.321.1 - 2023-04-27
• 3.319.0 - 2023-04-24
• 3.316.0 - 2023-04-19
• 3.315.0 - 2023-04-17
• 3.312.0 - 2023-04-12
• 3.310.0 - 2023-04-10
• 3.309.0 - 2023-04-07
• 3.306.0 - 2023-04-04
• 3.303.0 - 2023-03-30
• 3.301.0 - 2023-03-28
• 3.300.0 - 2023-03-27
• 3.299.0 - 2023-03-24
• 3.298.0 - 2023-03-23
• 3.297.0 - 2023-03-22
• 3.296.0 - 2023-03-21
• 3.295.0 - 2023-03-20
• 3.294.0 - 2023-03-17
• 3.293.0 - 2023-03-16
• 3.292.0 - 2023-03-15
• 3.290.0 - 2023-03-13
• 3.289.0 - 2023-03-10
• 3.288.0 - 2023-03-09
• 3.287.0 - 2023-03-08
• 3.282.0 - 2023-03-01
• 3.281.0 - 2023-02-28
• 3.279.0 - 2023-02-24
• 3.278.0 - 2023-02-23
• 3.276.0 - 2023-02-21
• 3.272.0 - 2023-02-15
• 3.271.0 - 2023-02-14
• 3.267.0 - 2023-02-08
• 3.266.1 - 2023-02-07
• 3.266.0 - 2023-02-06
• 3.264.0 - 2023-02-02
• 3.262.0 - 2023-01-31
• 3.261.0 - 2023-01-30
• 3.259.0 - 2023-01-26
• 3.258.0 - 2023-01-25

from @aws-sdk/client-sts GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs