[Snyk] Upgrade @aws-sdk/credential-providers from 3.925.0 to 3.929.0

[sestinj]

Snyk has created this PR to upgrade @aws-sdk/credential-providers from 3.925.0 to 3.929.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.

• The recommended version was released 21 days ago.

Release notes

Package name: @aws-sdk/credential-providers

• 3.929.0 - 2025-11-11
  

  3.929.0(2025-11-11)

  Documentation Changes

  • client-batch: Documentation-only update: update API and doc descriptions per EKS ImageType default value switch from AL2 to AL2023. (42db21d3)

  New Features

  • client-bedrock-data-automation: Added support for Language Expansion feature for BDA Audio modality. (e2374dbd)
  • client-medical-imaging: Added new fields in existing APIs. (8e8ee4a0)
  • client-ec2: AWS Site-to-Site VPN now supports VPN connections with up to 5 Gbps bandwidth per tunnel, a 4x improvement from existing limit of 1.25 Gbps. (165cccca)
  • client-security-ir: Added support for configuring communication preferences as well as clearly displaying case comment author identities. (6c2d4f91)
  • client-rtbfabric: Added LogSettings and LinkAttribute fields to external links (5f3dd496)
  • clients: use schema-serde in AWS REST JSON clients (#7485) (99a36932)

  Tests

  • client-s3vectors: add e2e test (#7487) (8d3df6ff)
  • client-dynamodb: e2e test for type registry based error handling (#7486) (ba1aeb67)
  • client-cloudwatch-logs: e2e test for live tail event streams (#7484) (3d7ac161)

  ---

  For list of updated packages, view updated-packages.md in assets-3.929.0.zip

• 3.928.0 - 2025-11-10
  

  3.928.0(2025-11-10)

  Chores

  • core/protocols: set public release level for runtime protocols (#7482) (78a69dc8)

  New Features

  • client-verifiedpermissions: Amazon Verified Permissions / Features : Adds support for entity Cedar tags. (d635af58)
  • client-appstream: AWS Appstream support for IPv6 (6fc319f4)
  • client-datazone: Remove trackingServerName from DataZone Connection MLflowProperties (8c22eaae)
  • client-acm-pca: Private Certificate Authority service now supports ML-DSA key algorithms. (1bd0b8f9)
  • client-backup: AWS Backup supports backups of Amazon EKS clusters, including Kubernetes cluster state and persistent storage attached to the EKS cluster via a persistent volume claim (EBS volumes, EFS file systems, and S3 buckets). (d45f0ebc)
  • client-guardduty: Include tags filed in CreatePublishingDestinationRequest and DescribePublishingDestinationResponse. (9b11c354)
  • client-ec2: Amazon EC2 Fleet customers can now filter instance types based on encryption-in-transit support using Attribute-Based Instance Type Selection (ABIS), eliminating the manual effort of identifying and selecting compatible instance types for security-sensitive workloads. (2b4fb805)
  • client-iam: Added CreateDelegationRequest API, which is not available for general use at this time. (a7579e45)
  • client-sts: Added GetDelegatedAccessToken API, which is not available for general use at this time. (41552ed6)
  • client-wafv2: AWS WAF now supports CLOUDWATCH_TELEMETRY_RULE_MANAGED as a LogScope option, enabling automated logging configuration through Amazon CloudWatch Logs for telemetry data collection and analysis. (79d73853)
  • client-kafka: Amazon MSK now supports intelligent rebalancing for MSK Express brokers. (265e5dae)
  • client-braket: Adds ExperimentalCapabilities field to CreateQuantumTask request and GetQuantumTask response objects. Enables use of experimental software capabilities when creating quantum tasks. (6c179ae7)
  • client-invoicing: Added new invoicing get-invoice-pdf API Operation (de2f6799)
  • client-dsql: Cluster endpoint added to CreateCluster and GetCluster API responses (647406db)
  • clients: use schema-serde in AWS JSON RPC clients (#7483) (b0f07b49)

  ---

  For list of updated packages, view updated-packages.md in assets-3.928.0.zip

• 3.927.0 - 2025-11-07
  

  3.927.0(2025-11-07)

  New Features

  • client-ec2: Adds PrivateDnsPreference and PrivateDnsSpecifiedDomains to control private DNS resolution for resource and service network VPC endpoints and IpamScopeExternalAuthorityConfiguration to integrate Amazon VPC IPAM with a third-party IPAM service (650aa6de)
  • client-opensearch: This release introduces the Default Application feature, allowing users to set, change, or unset a preferred OpenSearch UI application on a per-region basis for a streamlined and consistent user experience. (ea5f4e47)
  • client-vpc-lattice: Amazon VPC Lattice now supports custom domain name for resource configurations (f46fcf1f)
  • client-controltower: Added Parent Identifier support to ListEnabledControls and GetEnabledControl API. Implemented RemediationType support for Landing Zone operations: CreateLandingZone, UpdateLandingZone and GetLandingZone APIs (89c1f79d)
  • client-kms: Added support for new ECC_NIST_EDWARDS25519 AWS KMS key spec (1d8341db)

  Bug Fixes

  • client-elastic-beanstalk: differentiate modeled and synthesized service base exception name (5e1e54b4)

  Tests

  • core/protocols: add shape serde perf baselines (#7479) (40bc6005)

  ---

  For list of updated packages, view updated-packages.md in assets-3.927.0.zip

• 3.926.0 - 2025-11-06
  

  3.926.0(2025-11-06)

  Chores

  • core/protocols: make error lookup in runtime protocol consistent with existing codegen (#7478) (64e9c616)

  New Features

  • clients: update client endpoints as of 2025-11-06 (4d3f1528)
  • client-connect: Added support for Conditional Questions in Evaluation Forms. Introduced Auto Evaluation capability for Evaluation Forms and Contact Evaluations. Added new API operations: SearchEvaluationForms and SearchContactEvaluations. (45c43b47)
  • client-gamelift: Amazon GameLift Servers now supports game builds that use the Windows 2022 operating system. (e38ba819)
  • client-sagemaker: Added NodeProvisioningMode parameter to UpdateCluster API to determine how instance provisioning is handled during cluster operations; in Continuous mode. Added VpcId field in UpdateDomain request for SageMaker Unified Studio domains with no VPC to add a customer VPC. (382a2ff3)
  • client-s3vectors: Amazon S3 Vectors provides cost-effective, elastic, and durable vector storage for queries based on semantic meaning and similarity. (cb2626e6)
  • client-accessanalyzer: New field totalActiveErrors added to getFindingsStatistics response. (595167c7)
  • client-s3tables: Adds support for tagging APIs for S3 Tables (4c268176)
  • client-ec2: Add Amazon EC2 R8a instance types (7cb13679)
  • client-identitystore: IdentityStore API: added new KMSExceptionReason fields to the Exception object; added multiple new fields to the User APIs - UserStatus, Birthdate, Website and Photos; added multiple new metadata fields for User, Groups and Membership APIs - CreatedAt, CreatedBy, UpdatedAt and UpdatedBy. (28d85047)
  • client-quicksight: Support for New Data Prep Experience (02e87fe9)
  • client-ssm: Provides NoLongerSupportedException error message (70be2a35)
  • client-backup: AWS Backup now supports customer-managed keys (CMK) for logically air-gapped vaults, enabling customers to maintain full control over their encryption key lifecycle. This feature helps organizations meet specific internal governance requirements or external regulatory compliance standards. (b83f5f99)

  ---

  For list of updated packages, view updated-packages.md in assets-3.926.0.zip

• 3.925.0 - 2025-11-05
  

  3.925.0(2025-11-05)

  Chores

  • codegen:
    • bump codegen version to 0.37.0 (#7476) (db3e4c47)
    • upgrade smithy to 1.63.0 (#7474) (beb698c7)
  • deps: bump smithy package versions (#7475) (4a796b6c)

  New Features

  • client-sagemaker: Add new fields in SageMaker Hyperpod DescribeCluster API response: TargetStateCount, SoftwareUpdateStatus and ActiveSoftwareDeploymentConfig to provide AMI update progress visibility . (a29341a5)
  • client-datazone: Added support for Project Resource Tags (64852ec8)
  • client-s3: Launch IPv6 dual-stack support for S3 Express (a6a3e298)
  • client-cloudfront: This release adds new and updated API operations. You can now use the IpAddressType field to specify either ipv4 or dualstack for your Anycast static IP list. You can also enable cross-account resource sharing to share your VPC origins with other AWS accounts (75c3cef3)
  • client-groundstation: Introduce CreateDataflowEndpointGroupV2 action (67ac8eb6)
  • client-ec2: This release adds AvailabilityZoneId support for DescribeFastSnapshotRestores, DisableFastSnapshotRestores, and EnableFastSnapshotRestores APIs. (68aae5bd)
  • client-fsx: Amazon FSx now enables secure management of Active Directory credentials through AWS Secrets Manager integration. Customers can use Secret ARNs instead of direct credentials when joining resources to Active Directory domains. (4e481ba5)

  ---

  For list of updated packages, view updated-packages.md in assets-3.925.0.zip

from @aws-sdk/credential-providers GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

---

Summary by cubic

Upgraded @aws-sdk/credential-providers to 3.929.0 in openai-adapters. This keeps AWS credential resolution current and pulls in recent fixes.

• Dependencies
  • Updated lockfile to align nested AWS SDK packages with the new version; no breaking changes expected.

^{Written for commit d48b40a. Summary will update automatically on new commits.}

[continue]

Keep this PR in a mergeable state →

Learn more

---

All Green is an AI agent that automatically:

✅ Addresses code review comments

✅ Fixes failing CI checks

✅ Resolves merge conflicts

[github-actions]

⚠️ PR Title Format

Your PR title doesn't follow the conventional commit format, but this won't block your PR from being merged. We recommend using this format for better project organization.

Expected Format:

<type>[optional scope]: <description>

Examples:

• feat: add changelog generation support
• fix: resolve login redirect issue
• docs: update README with new instructions
• chore: update dependencies

Valid Types:

feat, fix, docs, style, refactor, perf, test, build, ci, chore, revert

This helps with:

• 📝 Automatic changelog generation
• 🚀 Automated semantic versioning
• 📊 Better project history tracking

This is a non-blocking warning - your PR can still be merged without fixing this.

[github-actions]

✅ Review Complete

Code Review for PR #8983

Summary

This PR upgrades @aws-sdk/credential-providers from 3.925.0 to 3.929.0 (4 versions). The changes are exclusively in package.json and package-lock.json for the openai-adapters package.

Review

✅ Overall Assessment: APPROVED

This is a straightforward dependency upgrade with no breaking changes. The update is well-justified for staying current with AWS SDK security patches and improvements.

Specific Findings:

1. Transitive Dependencies Updated

   • The upgrade properly cascades to nested AWS SDK packages (@aws-sdk/core, @aws-sdk/client-sso, @aws-sdk/nested-clients, etc.)
   • All related packages are consistently updated to compatible versions (3.928.0-3.929.0 range)

2. No Breaking Changes

   • The release notes show only new features, documentation updates, and internal improvements
   • No API changes that would affect this codebase
   • Minor version bump (3.925.0 → 3.929.0) indicates backward compatibility

3. Security Considerations

   • While Snyk initiated this PR, no specific vulnerabilities are mentioned in the description
   • Appears to be a proactive dependency maintenance update

4. Testing Recommendation

   • Verify AWS Bedrock credential provider functionality still works as expected
   • Test any AWS SDK integration points in the openai-adapters package

No code issues identified. The dependency upgrade follows best practices and maintains version consistency across the dependency tree.

---

[cubic-dev-ai]

No issues found across 2 files