build(deps-dev): bump the aws-cdk group across 1 directory with 6 updates

[dependabot]

Bumps the aws-cdk group with 6 updates in the / directory:

Package	From	To
@aws-cdk/lambda-layer-kubectl-v28	2.1.0	2.2.0
aws-cdk	2.108.1	2.159.1
aws-cdk-lib	2.108.1	2.159.1
cdk8s	2.68.4	2.69.5
cdk8s-cli	2.177.0	2.198.226
cdk8s-plus-27	2.7.61	2.9.5

Updates @aws-cdk/lambda-layer-kubectl-v28 from 2.1.0 to 2.2.0

Commits

• 2dc08ca feat(projen): upgrade dependencies for last 3 minor versions (#532)
• 806580c chore(deps): upgrade dependencies (#531)
• bbec4c4 chore: upgrade helm to 3.14.0 (#490)
• 4fb87a2 feat: upgrade helm and kubectl version as @​aws-cdk/lambda-layer-kubectl-v28 (...
• 3ddaa84 feat: add KubectLayer and release as @​aws-cdk/lambda-layer-kubectl-v28 (#450)
• 193965e feat: add KubectLayer and release as @​aws-cdk/lambda-layer-kubectl-v27 (#349)
• bed1dc7 chore: only release on functional updates (v26) (#344)
• ae4eaf3 fix: bump min cdk version to 2.28.0 to use node 14 (backport #300) (#312)
• 219b341 feat: add KubectLayer and release as @​aws-cdk/lambda-layer-kubectl-v26 (#242)
• aaab67b chore: update contributing guide for publishing new versions (backport #190) ...
• Additional commits viewable in compare view

Updates aws-cdk from 2.108.1 to 2.159.1

Release notes

Sourced from aws-cdk's releases.

v2.159.1

Reverts

• fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31496) (f7e8452)

---

Alpha modules (2.159.1-alpha.0)

v2.159.0

Features

• update L1 CloudFormation resource definitions (#31484) (60ce351), closes /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2
• opensearch: support OpenSearch version 2.15 (#31398) (33eea3f)
• update L1 CloudFormation resource definitions (#31460) (e220e90)
• apigatewayv2: support for setting routeSelectionExpression for an HTTP API (#31373) (36baf51), closes #31104
• elasticloadbalancingv2: alb dualstack without public ipv4 (#30248) (4068af3), closes #30256
• events-target: support Dead Letter Queue for Kinesis Stream Event Target (#31435) (358f231), closes #31428 #13600
• stepfunctions-tasks: support idle timeout for EmrCreateCluster (#31142) (432ffaf), closes #29926
• vpcv2: implementation of add gateway method (#31224) (4b90bfc)

Bug Fixes

• cli: bootstrap respects qualifier from cdk.json (#31410) (44134ad), closes #28249
• cli: hotswapping appsync functions fails when API does not return function on the first page (#31406) (0da4f43), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk/lib/api/evaluate-cloudformation-template.ts#L23-L36
• cli: release outdir lock when synth fails (#30874) (b6ad97f), closes #27864
• cognito: deprecate privateKey and add privateKeyValue as typed SecureValue (#31409) (7ee183d), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk-lib/aws-cognito/lib/user-pool-idps/google.ts#L28
• ecs: reduce ecs service task role cloudwatch permissions when no log configured (under feature flag) (#31475) (de7ab7c)
• eks: fargateCluster compatibility with AuthenticationMode.API (#31267) (4d12833)
• eks: update private ecr repo url regex (#31394) (386fca3)
• lambda: invalid Version object created from Version.fromVersionArn (#31433) (1726abd)
• ssm: update ssm-context to prevent raising an error on missing parameter (#31415) (ff02cca), closes #7051 #22064 #7259
• pipelines ties cli version with cdk-assets version (#31261) (4392ab4), closes #31253

---

Alpha modules (2.159.0-alpha.0)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

• kinesisfirehose-alpha: encryptionKey property is removed and encryption property type has changed from the StreamEncryption enum to the StreamEncryption class.

To pass in a KMS key for the customer managed key case, use StreamEncryption.customerManagedKey(key)

Details

Replaced encryption and encryptionKey properties with a single property encryption of type StreamEncryption and is used by calling one of the 3 methods:

SreamEncryption.unencrypted()
StreamEncryption.awsOwnedKey()
StreamEncryption.customerManagedKey(key?: IKey)

This makes it so it's not longer possible to pass in a key when the encryption type is AWS owned or unencrypted. The key is an optional parameter in StreamEncryption.customerManagedKey(key?: IKey) so following the previous behaviour, if a key is provided it will be used, otherwise a key will be created for the user.

Description of how you validated changes

... (truncated)

Changelog

Sourced from aws-cdk's changelog.

2.159.1 (2024-09-19)

Reverts

• fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31496) (f7e8452)

2.159.0 (2024-09-18)

Features

• update L1 CloudFormation resource definitions (#31484) (60ce351), closes /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2
• opensearch: support OpenSearch version 2.15 (#31398) (33eea3f)
• update L1 CloudFormation resource definitions (#31460) (e220e90)
• apigatewayv2: support for setting routeSelectionExpression for an HTTP API (#31373) (36baf51), closes #31104
• elasticloadbalancingv2: alb dualstack without public ipv4 (#30248) (4068af3), closes #30256
• events-target: support Dead Letter Queue for Kinesis Stream Event Target (#31435) (358f231), closes #31428 #13600
• stepfunctions-tasks: support idle timeout for EmrCreateCluster (#31142) (432ffaf), closes #29926
• vpcv2: implementation of add gateway method (#31224) (4b90bfc)

Bug Fixes

• cli: bootstrap respects qualifier from cdk.json (#31410) (44134ad), closes #28249
• cli: hotswapping appsync functions fails when API does not return function on the first page (#31406) (0da4f43), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk/lib/api/evaluate-cloudformation-template.ts#L23-L36
• cli: release outdir lock when synth fails (#30874) (b6ad97f), closes #27864
• cognito: deprecate privateKey and add privateKeyValue as typed SecureValue (#31409) (7ee183d), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk-lib/aws-cognito/lib/user-pool-idps/google.ts#L28
• ecs: reduce ecs service task role cloudwatch permissions when no log configured (under feature flag) (#31475) (de7ab7c)
• eks: fargateCluster compatibility with AuthenticationMode.API (#31267) (4d12833)
• eks: update private ecr repo url regex (#31394) (386fca3)
• lambda: invalid Version object created from Version.fromVersionArn (#31433) (1726abd)
• ssm: update ssm-context to prevent raising an error on missing parameter (#31415) (ff02cca), closes #7051 #22064 #7259
• pipelines ties cli version with cdk-assets version (#31261) (4392ab4), closes #31253

2.158.0 (2024-09-11)

Bug Fixes

• cloudformation-include: can't use CFN intrinsics in Tags (#30515) (af9e6ba), closes #27594

2.157.0 (2024-09-09)

Features

• update L1 CloudFormation resource definitions (#31361) (bc4dbfd)
• appsync: support DEBUG and INFO logging levels for AppSync GraphQL APIs (#31326) (4b9643f)
• lambda: added new property allowAllIpv6Outbound to FunctionOptions (#31013) (fa55194), closes #30994

... (truncated)

Commits

• 0da4f43 fix(cli): hotswapping appsync functions fails when API does not return functi...
• b6ad97f fix(cli): release outdir lock when synth fails (#30874)
• 44134ad fix(cli): bootstrap respects qualifier from cdk.json (#31410)
• ff02cca fix(ssm): update ssm-context to prevent raising an error on missing parameter...
• 1e20375 chore: npm-check-updates && yarn upgrade (#31399)
• e91eec2 chore: npm-check-updates && yarn upgrade (#30991)
• 4fa7716 chore: fix spelling error of if (#31353)
• cd58b50 chore: add option unacknowledged to cdk notices (#31250)
• a6c2ad6 chore: save the logs (#31274)
• 751a922 feat(CLI): synth displays "AssertDescription: CDK bootstrap stack version 6 r...
• Additional commits viewable in compare view

Updates aws-cdk-lib from 2.108.1 to 2.159.1

Release notes

Sourced from aws-cdk-lib's releases.

v2.159.1

Reverts

• fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31496) (f7e8452)

---

Alpha modules (2.159.1-alpha.0)

v2.159.0

Features

• update L1 CloudFormation resource definitions (#31484) (60ce351), closes /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2
• opensearch: support OpenSearch version 2.15 (#31398) (33eea3f)
• update L1 CloudFormation resource definitions (#31460) (e220e90)
• apigatewayv2: support for setting routeSelectionExpression for an HTTP API (#31373) (36baf51), closes #31104
• elasticloadbalancingv2: alb dualstack without public ipv4 (#30248) (4068af3), closes #30256
• events-target: support Dead Letter Queue for Kinesis Stream Event Target (#31435) (358f231), closes #31428 #13600
• stepfunctions-tasks: support idle timeout for EmrCreateCluster (#31142) (432ffaf), closes #29926
• vpcv2: implementation of add gateway method (#31224) (4b90bfc)

Bug Fixes

• cli: bootstrap respects qualifier from cdk.json (#31410) (44134ad), closes #28249
• cli: hotswapping appsync functions fails when API does not return function on the first page (#31406) (0da4f43), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk/lib/api/evaluate-cloudformation-template.ts#L23-L36
• cli: release outdir lock when synth fails (#30874) (b6ad97f), closes #27864
• cognito: deprecate privateKey and add privateKeyValue as typed SecureValue (#31409) (7ee183d), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk-lib/aws-cognito/lib/user-pool-idps/google.ts#L28
• ecs: reduce ecs service task role cloudwatch permissions when no log configured (under feature flag) (#31475) (de7ab7c)
• eks: fargateCluster compatibility with AuthenticationMode.API (#31267) (4d12833)
• eks: update private ecr repo url regex (#31394) (386fca3)
• lambda: invalid Version object created from Version.fromVersionArn (#31433) (1726abd)
• ssm: update ssm-context to prevent raising an error on missing parameter (#31415) (ff02cca), closes #7051 #22064 #7259
• pipelines ties cli version with cdk-assets version (#31261) (4392ab4), closes #31253

---

Alpha modules (2.159.0-alpha.0)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

• kinesisfirehose-alpha: encryptionKey property is removed and encryption property type has changed from the StreamEncryption enum to the StreamEncryption class.

To pass in a KMS key for the customer managed key case, use StreamEncryption.customerManagedKey(key)

Details

Replaced encryption and encryptionKey properties with a single property encryption of type StreamEncryption and is used by calling one of the 3 methods:

SreamEncryption.unencrypted()
StreamEncryption.awsOwnedKey()
StreamEncryption.customerManagedKey(key?: IKey)

This makes it so it's not longer possible to pass in a key when the encryption type is AWS owned or unencrypted. The key is an optional parameter in StreamEncryption.customerManagedKey(key?: IKey) so following the previous behaviour, if a key is provided it will be used, otherwise a key will be created for the user.

Description of how you validated changes

... (truncated)

Changelog

Sourced from aws-cdk-lib's changelog.

2.159.1 (2024-09-19)

Reverts

• fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31496) (f7e8452)

2.159.0 (2024-09-18)

Features

• update L1 CloudFormation resource definitions (#31484) (60ce351), closes /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-launchtemplate-launchtemplatedata.html#cfn-ec2
• opensearch: support OpenSearch version 2.15 (#31398) (33eea3f)
• update L1 CloudFormation resource definitions (#31460) (e220e90)
• apigatewayv2: support for setting routeSelectionExpression for an HTTP API (#31373) (36baf51), closes #31104
• elasticloadbalancingv2: alb dualstack without public ipv4 (#30248) (4068af3), closes #30256
• events-target: support Dead Letter Queue for Kinesis Stream Event Target (#31435) (358f231), closes #31428 #13600
• stepfunctions-tasks: support idle timeout for EmrCreateCluster (#31142) (432ffaf), closes #29926
• vpcv2: implementation of add gateway method (#31224) (4b90bfc)

Bug Fixes

• cli: bootstrap respects qualifier from cdk.json (#31410) (44134ad), closes #28249
• cli: hotswapping appsync functions fails when API does not return function on the first page (#31406) (0da4f43), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk/lib/api/evaluate-cloudformation-template.ts#L23-L36
• cli: release outdir lock when synth fails (#30874) (b6ad97f), closes #27864
• cognito: deprecate privateKey and add privateKeyValue as typed SecureValue (#31409) (7ee183d), closes /github.com/aws/aws-cdk/blob/1e203753519e10e19ef0db87e1382377b609bcaa/packages/aws-cdk-lib/aws-cognito/lib/user-pool-idps/google.ts#L28
• ecs: reduce ecs service task role cloudwatch permissions when no log configured (under feature flag) (#31475) (de7ab7c)
• eks: fargateCluster compatibility with AuthenticationMode.API (#31267) (4d12833)
• eks: update private ecr repo url regex (#31394) (386fca3)
• lambda: invalid Version object created from Version.fromVersionArn (#31433) (1726abd)
• ssm: update ssm-context to prevent raising an error on missing parameter (#31415) (ff02cca), closes #7051 #22064 #7259
• pipelines ties cli version with cdk-assets version (#31261) (4392ab4), closes #31253

2.158.0 (2024-09-11)

Bug Fixes

• cloudformation-include: can't use CFN intrinsics in Tags (#30515) (af9e6ba), closes #27594

2.157.0 (2024-09-09)

Features

• update L1 CloudFormation resource definitions (#31361) (bc4dbfd)
• appsync: support DEBUG and INFO logging levels for AppSync GraphQL APIs (#31326) (4b9643f)
• lambda: added new property allowAllIpv6Outbound to FunctionOptions (#31013) (fa55194), closes #30994

... (truncated)

Commits

• f7e8452 revert: fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31496)
• 7ecfae4 chore(release): 2.159.0
• de7ab7c fix(ecs): reduce ecs service task role cloudwatch permissions when no log con...
• 60ce351 feat: update L1 CloudFormation resource definitions (#31484)
• f60d13b docs(s3): updated docstring for BucketPolicy() (#31395)
• 33eea3f feat(opensearch): support OpenSearch version 2.15 (#31398)
• 95c49ab fix(ec2): fixing vpc endpoint pattern for ecr and ecr docker (#31434)
• 1726abd fix(lambda): invalid Version object created from Version.fromVersionArn (#31433)
• 386fca3 fix(eks): update private ecr repo url regex (#31394)
• 84701d6 chore(s3): readme update with mixing L1 and L2 bucket policy (#31437)
• Additional commits viewable in compare view

Updates cdk8s from 2.68.4 to 2.69.5

Release notes

Sourced from cdk8s's releases.

v2.69.5

2.69.5 (2024-09-21)

v2.69.4

2.69.4 (2024-09-20)

v2.69.3

2.69.3 (2024-09-17)

v2.69.2

2.69.2 (2024-09-16)

v2.69.1

2.69.1 (2024-09-15)

v2.69.0

2.69.0 (2024-09-10)

Features

• Size.asString that preserves original units (#1494) (b8dc5c2), closes /github.com/cdk8s-team/cdk8s-plus/blob/k8s-27/main/src/container.ts#L880

v2.68.107

2.68.107 (2024-09-09)

v2.68.106

2.68.106 (2024-09-07)

v2.68.105

2.68.105 (2024-09-05)

v2.68.104

2.68.104 (2024-09-02)

v2.68.103

2.68.103 (2024-08-31)

v2.68.102

... (truncated)

Commits

• 1ddbf1f chore(deps): upgrade compiler dependencies (#2898)
• 4e10211 chore(deps): upgrade dev dependencies (#2896)
• 326d2a8 chore(deps): upgrade configuration (#2894)
• fa1a08f chore(deps): upgrade compiler dependencies (#2892)
• aba1352 chore(deps): upgrade dev dependencies (#2890)
• e3572cc chore(deps): upgrade dev dependencies (#2888)
• 271bdfe chore(deps): upgrade configuration (#2886)
• 4396aa8 chore(deps): upgrade dev dependencies (#2880)
• 83cafe4 chore(deps): upgrade configuration (#2884)
• 03200ed chore(deps): upgrade compiler dependencies (#2882)
• Additional commits viewable in compare view

Updates cdk8s-cli from 2.177.0 to 2.198.226

Release notes

Sourced from cdk8s-cli's releases.

v2.198.226

2.198.226 (2024-09-23)

v2.198.225

2.198.225 (2024-09-22)

v2.198.224

2.198.224 (2024-09-21)

v2.198.223

2.198.223 (2024-09-20)

v2.198.222

2.198.222 (2024-09-19)

v2.198.221

2.198.221 (2024-09-18)

v2.198.220

2.198.220 (2024-09-17)

v2.198.219

2.198.219 (2024-09-16)

v2.198.218

2.198.218 (2024-09-15)

v2.198.217

2.198.217 (2024-09-14)

v2.198.216

2.198.216 (2024-09-13)

v2.198.215

2.198.215 (2024-09-12)

Bug Fixes

... (truncated)

Commits

• 0c41a89 chore(deps): upgrade runtime dependencies (#2771)
• 74e3d7a chore(deps): upgrade dev dependencies (#2768)
• 9374706 chore(deps): upgrade runtime dependencies (#2767)
• f087dd3 chore(deps): upgrade dev dependencies (#2764)
• 40fa0aa chore(deps): upgrade runtime dependencies (#2763)
• 0ae6fb0 chore(deps): upgrade configuration (#2760)
• 8c97696 chore(deps): upgrade dev dependencies (#2759)
• 579e140 chore(deps): upgrade runtime dependencies (#2758)
• 784223a chore(deps): upgrade dev dependencies (#2755)
• 4703618 chore(deps): upgrade runtime dependencies (#2754)
• Additional commits viewable in compare view

Updates cdk8s-plus-27 from 2.7.61 to 2.9.5

Commits

• 7af3ff1 chore(deps): upgrade compiler dependencies (#4230)
• e4c344d chore(deps): upgrade dev dependencies (#4229)
• d3f9f53 chore(deps): upgrade configuration (#4224)
• 0be24e1 chore(deps): upgrade dev dependencies (#4223)
• c6eaae9 chore(deps): upgrade configuration (#4217)
• 686c5fb chore(deps): upgrade dev dependencies (#4220)
• 37bf0df chore(deps): upgrade dev dependencies (#4215)
• fbe8aac chore(deps): upgrade configuration (#4212)
• e6f4c83 chore(deps): upgrade dev dependencies (#4210)
• b6fbd60 chore(deps): upgrade dev dependencies (#4207)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Superseded by #769.