[Snyk] Upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0 #384

eliranRP · 2025-10-14T10:10:34Z

Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 254 versions ahead of your current version.
The recommended version was released 22 days ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-5668858	589	No Known Exploit
	Regular Expression Denial of Service (ReDoS) SNYK-JS-FASTXMLPARSER-7573289	589	No Known Exploit

Release notes

Package name: @aws-sdk/client-secrets-manager

3.894.0 - 2025-09-22
3.894.0(2025-09-22)

Chores
- clients: enable inliner build for new clients (#7365) (9e3a3e02)
Documentation Changes
- client-batch: Starting in JAN 2026, AWS Batch will change the default AMI for new Amazon ECS compute environments from Amazon Linux 2 to Amazon Linux 2023. We recommend migrating AWS Batch Amazon ECS compute environments to Amazon Linux 2023 to maintain optimal performance and security. (fd3b9072)
New Features
- clients: update client endpoints as of 2025-09-22 (182581c3)
- client-imagebuilder: Version ARNs are no longer required for the EC2 Image Builder list-image-build-version, list-component-build-version, and list-workflow-build-version APIs. Calling these APIs without the ARN returns all build versions for the given resource type in the requesting account. (ac6ffdfe)
- client-eks: Adds support for RepairConfig overrides and configurations in EKS Managed Node Groups. (8a8db628)
- xml-builder: use DOMParser for browser XML parsing (#7347) (af402500)
For list of updated packages, view updated-packages.md in assets-3.894.0.zip
3.893.0 - 2025-09-19
3.893.0(2025-09-19)

Chores
- codegen:
  - release 0.35.0 (#7361) (4442dff7)
  - sync for Uint8Array genericity (#7359) (ef0345c2)
- pull request build on PR opened event (#7360) (c64f7f0e)
- packages: set sideEffects metadata (#7358) (c1611a07)
Documentation Changes
- client-sqs: Update invalid character handling documentation for SQS SendMessage API (4ff9d676)
New Features
- clients: update client endpoints as of 2025-09-19 (3726908c)
- client-bedrock-agentcore-control: Add tagging and VPC support to AgentCore Runtime, Code Interpreter, and Browser resources. Add support for configuring request headers in Runtime. Fix AgentCore Runtime shape names. (9ab54a28)
- client-config-service: Add UNKNOWN state to RemediationExecutionState and add IN_PROGRESS/EXITED/UNKNOWN states to RemediationExecutionStepState. (9b89d935)
- client-connect: This release adds a persistent connection field to UserPhoneConfig that maintains agent's softphone media connection for faster call connections. (59e863ba)
- client-license-manager-user-subscriptions: Added support for cross-account Active Directories. (22e49d10)
- client-medialive: Add MinBitrate for QVBR mode under H264/H265/AV1 output codec. Add GopBReference, GopNumBFrames, SubGopLength fields under H265 output codec. (25f22be2)
Tests
- rekognitionstreaming: remove outdated endpoint tests (#7362) (10b3d03f)
For list of updated packages, view updated-packages.md in assets-3.893.0.zip
3.891.0 - 2025-09-17
3.891.0(2025-09-17)

Chores
- codegen: codegen sync for command doc update and retry trait (#7353) (29220637)
Documentation Changes
- update guidance on instanceof Exception checking (#7351) (70328726)
New Features
- client-ec2: Add mac-m4.metal and mac-m4pro.metal instance types. (542f2aba)
- client-pcs: Add support for Amazon EC2 Capacity Blocks for ML (28cf47d6)
- client-network-firewall: Network Firewall now prevents TLS handshakes with the target server until after the Server Name Indication (SNI) has been seen and verified. The monitoring dashboard now provides deeper insights into PrivateLink endpoint candidates and offers filters based on IP addresses and protocol. (11455fdf)
Tests
- normalize import of integ test mock (#7352) (8c20c066)
- client-s3: add integration test for selectObjectContent (#7325) (c65c2030)
For list of updated packages, view updated-packages.md in assets-3.891.0.zip
3.890.0 - 2025-09-16
3.890.0(2025-09-16)

Chores
- scripts: turn off verdaccio benchmark script (#7350) (e5b756a3)
- codegen: sync for fs-mock and eventstream codegen fix (#7348) (60f5a8c8)
Documentation Changes
- update client configuration documentation (#7345) (bb982487)
New Features
- clients: update client endpoints as of 2025-09-16 (aef54eb6)
- client-osis: Adds support for cross-account ingestion for push-based sources. This includes resource policies for sharing pipelines across accounts and features for managing pipeline endpoints which enable accessing pipelines across different VPCs, including VPCs in other accounts. (de930e70)
- client-budgets: Add support for custom time periods in budget configuration (8d881364)
- client-ivs-realtime: IVS now offers customers the ability to control the positioning of participants in both grid and PiP layouts based on custom attribute values in participant tokens. (bac6c46e)
- client-cloudwatch-logs: Cloudwatch Logs added support for 2 new API parameters in metric and subscription filter APIs to filter log events based on system field values and emit system field values as dimensions and send them to customer destination as additional metadata. (8d9dd737)
Tests
- credential-provider-node: rewrite integ in vitest (#7349) (9eee6eb1)
For list of updated packages, view updated-packages.md in assets-3.890.0.zip
3.888.0 - 2025-09-12
3.888.0(2025-09-12)

Chores
- ci:
  - run pull request workflow on ready for review and synchronize (#7341) (ad2b2ef0)
  - bump GitHub actions to use node 24 (#7339) (cf8d1f5e)
- deps:
  - bump gradle to 8.14 (#7340) (84f24f58)
  - use gradle/actions/wrapper-validation (#7338) (85153665)
New Features
- client-payment-cryptography: Add support for certificates to be signed by 3rd party certificate authorities. New API GetCertificateSigningRequest API and support for providing certificates at run-time for tr-34 import/export (bcb39c29)
Tests
- core/protocols: document testing (#7334) (9cd94157)
For list of updated packages, view updated-packages.md in assets-3.888.0.zip
3.887.0 - 2025-09-11
3.887.0(2025-09-11)

Chores
- ci: cache gradle in GitHub workflow (#7337) (bac6f2d5)
- codegen: bump codegen version to 0.34.1 (#7329) (36807467)
- deps: bump @ smithy/ dependency versions (#7328) (9963c983)
New Features
- clients: update client endpoints as of 2025-09-11 (d1fbb5ff)
- client-emr-containers: Added nodeLabel support in container provider to aid hardware isolation support for virtual cluster and security configuration. (b8451741)
- client-ecs: This release supports hook details for Amazon ECS lifecycle hooks. (e2c85d32)
- client-evs: CreateEnvironment API now supports parameters (isHcxPublic & hcxNetworkAclId) for HCX migration via public internet, adding flexibility for migration scenarios. New APIs have been added for associating (AssociateEipToVlan) & disassociating (DisassociateEipFromVlan) Elastic IP (EIP) addresses. (6147f353)
- client-medialive: AWS Elemental MediaLive adds a new feature in MediaPackage output group that enables MediaPackage V2 users to control HLS-related parameters directly in MediaLive. These parameter settings are then reflected in MediaPackage outputs, providing more streamlined control over HLS configurations. (36b2bf07)
- client-rds: Adds support for end-to-end IAM authentication in RDS Proxy for MySQL, MariaDB, and PostgreSQL engines. (31a35344)
- client-amp: Add Vended Logs APIs for Amazon Prometheus Managed Collector (4312d5be)
- client-quicksight: This release adds support for Account level custom permissions, additional Dashboard Options, and Null support for Q&A. (40a0cf05)
- client-datazone: adding IAM principal id to IAM user profile details (090fbf95)
- client-guardduty: Updated Java SDK implementation of entity set status in GuardDuty API. (6eb1c3d5)
Bug Fixes
- codegen: update deprecated APIs in build.gradle.kts (#7335) (127022cb)
For list of updated packages, view updated-packages.md in assets-3.887.0.zip
3.886.0 - 2025-09-10
3.886.0(2025-09-10)

Chores
- middleware-recursion-detection:
  - read TraceID from Lambda Invoke Store (#7293) (ac324bb6)
  - add no-op middleware outside of Node.js (#7326) (9484757b)
New Features
- clients: update client endpoints as of 2025-09-10 (dc8054d1)
- client-payment-cryptography: AWS Payment Cryptography Service now supports Multi-Region key replication. Customers can choose to automatically distribute keys across AWS Regions. (6e51152f)
- client-networkflowmonitor: Added new enum value (AWS::Region) for type field under MonitorLocalResource and MonitorRemoteResource. Workload Insights and Monitor top contributors queries now support a new DestinationCategory (INTER_REGION). (08380595)
For list of updated packages, view updated-packages.md in assets-3.886.0.zip
3.883.0 - 2025-09-05
3.882.0 - 2025-09-04
3.879.0 - 2025-08-29
3.876.0 - 2025-08-26
3.873.0 - 2025-08-21
3.872.0 - 2025-08-20
3.864.0 - 2025-08-08
3.863.0 - 2025-08-07
3.862.0 - 2025-08-06
3.859.0 - 2025-08-01
3.858.0 - 2025-07-31
3.857.0 - 2025-07-30
3.856.0 - 2025-07-29
3.855.0 - 2025-07-28
3.848.0 - 2025-07-17
3.846.0 - 2025-07-16
3.845.0 - 2025-07-15
3.844.0 - 2025-07-09
3.840.0 - 2025-06-30
3.839.0 - 2025-06-27
3.835.0 - 2025-06-23
3.830.0 - 2025-06-16
3.828.0 - 2025-06-11
3.826.0 - 2025-06-06
3.825.0 - 2025-06-05
3.823.0 - 2025-06-03
3.821.0 - 2025-05-30
3.817.0 - 2025-05-23
3.816.0 - 2025-05-22
3.812.0 - 2025-05-16
3.810.0 - 2025-05-14
3.808.0 - 2025-05-12
3.806.0 - 2025-05-08
3.804.0 - 2025-05-06
3.803.0 - 2025-05-05
3.799.0 - 2025-04-29
3.798.0 - 2025-04-28
3.797.0 - 2025-04-25
3.796.0 - 2025-04-24
3.787.0 - 2025-04-10
3.782.0 - 2025-04-03
3.777.0 - 2025-03-27
3.775.0 - 2025-03-25
3.774.0 - 2025-03-24
3.772.0 - 2025-03-20
3.758.0 - 2025-02-27
3.750.0 - 2025-02-17
3.749.0 - 2025-02-14
3.744.0 - 2025-02-07
3.743.0 - 2025-02-06
3.741.0 - 2025-02-03
3.738.0 - 2025-01-29
3.734.0 - 2025-01-23
3.731.1 - 2025-01-18
3.731.0 - 2025-01-17
3.730.0 - 2025-01-16
3.726.1 - 2025-01-10
3.726.0 - 2025-01-09
3.723.0 - 2025-01-06
3.721.0 - 2025-01-02
3.716.0 - 2024-12-19
3.714.0 - 2024-12-17
3.713.0 - 2024-12-16
3.712.0 - 2024-12-13
3.709.0 - 2024-12-10
3.699.0 - 2024-11-22
3.696.0 - 2024-11-19
3.693.0 - 2024-11-15
3.692.0 - 2024-11-14
3.691.0 - 2024-11-14
3.687.0 - 2024-11-07
3.686.0 - 2024-11-06
3.682.0 - 2024-10-29
3.679.0 - 2024-10-24
3.678.0 - 2024-10-23
3.677.0 - 2024-10-22
3.675.0 - 2024-10-18
3.674.0 - 2024-10-17
3.670.0 - 2024-10-11
3.669.0 - 2024-10-10
3.668.0 - 2024-10-09
3.667.0 - 2024-10-08
3.666.0 - 2024-10-07
3.665.0 - 2024-10-04
3.664.0 - 2024-10-03
3.662.0 - 2024-10-01
3.658.1 - 2024-09-25
3.658.0 - 2024-09-24
3.654.0 - 2024-09-18
3.651.1 - 2024-09-13
3.650.0 - 2024-09-11
3.649.0 - 2024-09-10
3.645.0 - 2024-09-04
3.637.0 - 2024-08-22
3.635.0 - 2024-08-20
3.632.0 - 2024-08-15
3.631.0 - 2024-08-14
3.629.0 - 2024-08-12
3.624.0 - 2024-08-05
3.623.0 - 2024-08-02
3.622.0 - 2024-08-01
3.621.0 - 2024-07-30
3.620.1 - 2024-07-29
3.620.0 - 2024-07-25
3.616.0 - 2024-07-18
3.614.0 - 2024-07-10
3.613.0 - 2024-07-09
3.609.0 - 2024-07-02
3.606.0 - 2024-06-28
3.600.0 - 2024-06-18
3.599.0 - 2024-06-17
3.598.0 - 2024-06-14
3.596.0 - 2024-06-12
3.592.0 - 2024-06-06
3.590.0 - 2024-06-04
3.588.0 - 2024-05-31
3.587.0 - 2024-05-30
3.583.0 - 2024-05-23
3.582.0 - 2024-05-22
3.580.0 - 2024-05-20
3.578.0 - 2024-05-16
3.577.0 - 2024-05-15
3.576.0 - 2024-05-14
3.575.0 - 2024-05-13
3.574.0 - 2024-05-10
3.572.0 - 2024-05-08
3.569.0 - 2024-05-03
3.568.0 - 2024-05-02
3.567.0 - 2024-05-01
3.565.0 - 2024-04-29
3.564.0 - 2024-04-26
3.563.0 - 2024-04-25
3.556.0 - 2024-04-16
3.554.0 - 2024-04-11
3.552.0 - 2024-04-09
3.549.0 - 2024-04-04
3.543.0 - 2024-03-27
3.540.0 - 2024-03-22
3.535.0 - 2024-03-15
3.534.0 - 2024-03-14
3.533.0 - 2024-03-13
3.529.1 - 2024-03-08
3.529.0 - 2024-03-07
3.525.0 - 2024-02-29
3.523.0 - 2024-02-27
3.521.0 - 2024-02-23
3.515.0 - 2024-02-15
3.514.0 - 2024-02-14
3.513.0 - 2024-02-13
3.511.0 - 2024-02-09
3.509.0 - 2024-02-07
3.507.0 - 2024-02-05
3.504.0 - 2024-01-31
3.503.1 - 2024-01-30
3.503.0 - 2024-01-30
3.502.0 - 2024-01-29
3.501.0 - 2024-01-26
3.499.0 - 2024-01-24
3.496.0 - 2024-01-19
3.495.0 - 2024-01-18
3.491.0 - 2024-01-12
3.490.0 - 2024-01-11
3.489.0 - 2024-01-10
3.485.0 - 2024-01-03
3.484.0 - 2023-12-29
3.481.0 - 2023-12-26
3.480.0 - 2023-12-22
3.478.0 - 2023-12-20
3.477.0 - 2023-12-19
3.476.0 - 2023-12-18
3.474.0 - 2023-12-14
3.473.0 - 2023-12-13
3.470.0 - 2023-12-08
3.468.0 - 2023-12-06
3.465.0 - 2023-12-01
3.462.0 - 2023-11-29
3.461.0 - 2023-11-28
3.460.0 - 2023-11-28
3.458.0 - 2023-11-27
3.454.0 - 2023-11-17
3.451.0 - 2023-11-14
3.450.0 - 2023-11-13
3.449.0 - 2023-11-10
3.445.0 - 2023-11-07
3.441.0 - 2023-11-01
3.438.0 - 2023-10-27
3.437.0 - 2023-10-26
3.436.0 - 2023-10-25
3.435.0 - 2023-10-24
3.433.0 - 2023-10-20
3.432.0 - 2023-10-19
3.431.0 - 2023-10-18
3.430.0 - 2023-10-17
3.429.0 - 2023-10-16
3.428.0 - 2023-10-12
3.427.0 - 2023-10-06
3.425.0 - 2023-10-04
3.423.0 - 2023-10-02
3.421.0 - 2023-09-27
3.418.0 - 2023-09-22
3.414.0 - 2023-09-15
3.413.0 - 2023-09-14
3.410.0 - 2023-09-11
3.409.0 - 2023-09-08
3.408.0 - 2023-09-07
3.405.0 - 2023-09-01
3.398.0 - 2023-08-23
3.395.0 - 2023-08-18
3.391.0 - 2023-08-14
3.389.0 - 2023-08-10
3.388.0 - 2023-08-09
3.387.0 - 2023-08-08
3.386.0 - 2023-08-07
3.385.0 - 2023-08-04
3.382.0 - 2023-08-01
3.379.1 - 2023-07-28
3.378.0 - 2023-07-26
3.377.0 - 2023-07-25
3.370.0 - 2023-07-13
3.369.0 - 2023-07-11
3.363.0 - 2023-06-29
3.362.0 - 2023-06-28
3.360.0 - 2023-06-26
3.359.0 - 2023-06-23
3.358.0 - 2023-06-22
3.357.0 - 2023-06-21
3.354.0 - 2023-06-16
3.353.0 - 2023-06-15
3.352.0 - 2023-06-13
3.350.0 - 2023-06-09
3.348.0 - 2023-06-07
3.347.1 - 2023-06-07
3.347.0 - 2023-06-06
3.345.0 - 2023-06-02
3.344.0 - 2023-06-01
3.342.0 - 2023-05-30
3.341.0 - 2023-05-26
3.338.0 - 2023-05-23
3.337.0 - 2023-05-22
3.335.0 - 2023-05-18
3.334.0 - 2023-05-16
3.332.0 - 2023-05-11
3.329.0 - 2023-05-08
3.328.0 - 2023-05-05
3.327.0 - 2023-05-04
3.326.0 - 2023-05-03
3.325.0 - 2023-05-02
3.321.1 - 2023-04-27

from @aws-sdk/client-secrets-manager GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.
Max score is 1000. Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0. See this package in npm: @aws-sdk/client-secrets-manager See this project in Snyk: https://app.snyk.io/org/eliranrp/project/68604a49-9ac7-48bf-8661-282b7c3616d2?utm_source=github&utm_medium=referral&page=upgrade-pr

[Snyk] Upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0 #384

Are you sure you want to change the base?

[Snyk] Upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0 #384

Uh oh!

Conversation

eliranRP commented Oct 14, 2025

Snyk has created this PR to upgrade @aws-sdk/client-secrets-manager from 3.321.1 to 3.894.0.

Issues fixed by the recommended upgrade:

3.894.0(2025-09-22)

Chores

Documentation Changes

New Features

3.893.0(2025-09-19)

Chores

Documentation Changes

New Features

Tests

3.891.0(2025-09-17)

Chores

Documentation Changes

New Features

Tests

3.890.0(2025-09-16)

Chores

Documentation Changes

New Features

Tests

3.888.0(2025-09-12)

Chores

New Features

Tests

3.887.0(2025-09-11)

Chores

New Features

Bug Fixes

3.886.0(2025-09-10)

Chores

New Features

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants