Upgrade: Bump the dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dependencies group with 4 updates in the /cdn directory: boto3, botocore, pyyaml and urllib3.

Updates boto3 from 1.34.137 to 1.35.30

Commits

• 243c39d Merge branch 'release-1.35.30'
• bcd964e Bumping version to 1.35.30
• 307d390 Add changelog entries from botocore
• 2883025 Merge pull request #4285 from boto/dependabot/github_actions/actions/checkout...
• 2a57a5d Bump actions/checkout from 4.1.0 to 4.2.0
• f1cff14 Merge branch 'release-1.35.29'
• 2879c42 Merge branch 'release-1.35.29' into develop
• b84190a Bumping version to 1.35.29
• 03ce91f Add changelog entries from botocore
• 8307fac Merge branch 'release-1.35.28'
• Additional commits viewable in compare view

Updates botocore from 1.34.137 to 1.35.30

Changelog

Sourced from botocore's changelog.

1.35.30

• api-change:bedrock: Add support for custom models via provisioned throughput for Bedrock Model Evaluation
• api-change:clouddirectory: Add examples for API operations in model.
• api-change:connect: Amazon Connect introduces StartOutboundChatContact API allowing customers to initiate outbound chat contacts
• api-change:pricing: Add examples for API operations in model.
• api-change:resource-groups: This update includes new APIs to support application groups and to allow users to manage resource tag-sync tasks in applications.
• api-change:supplychain: Release DataLakeDataset, DataIntegrationFlow and ResourceTagging APIs for AWS Supply Chain
• api-change:timestream-influxdb: Timestream for InfluxDB now supports port configuration and additional customer-modifiable InfluxDB v2 parameters. This release adds Port to the CreateDbInstance and UpdateDbInstance API, and additional InfluxDB v2 parameters to the CreateDbParameterGroup API.
• api-change:verifiedpermissions: Add examples for API operations in model.

1.35.29

• api-change:customer-profiles: Introduces optional RoleArn parameter for PutIntegration request and includes RoleArn in the response of PutIntegration, GetIntegration and ListIntegrations
• api-change:quicksight: Adding personalization in QuickSight data stories. Admins can enable or disable personalization through QuickSight settings.
• api-change:securityhub: Documentation updates for AWS Security Hub
• api-change:sesv2: This release adds support for engagement tracking over Https using custom domains.

1.35.28

• api-change:chatbot: Return State and StateReason fields for Chatbot Channel Configurations.
• api-change:lambda: Reverting Lambda resource-based policy and block public access APIs.
• api-change:organizations: Add support for policy operations on the CHATBOT_POLICY policy type.
• api-change:pcs: AWS PCS API documentation - Edited the description of the iamInstanceProfileArn parameter of the CreateComputeNodeGroup and UpdateComputeNodeGroup actions; edited the description of the SlurmCustomSetting data type to list the supported parameters for clusters and compute node groups.
• api-change:rds-data: Documentation update for RDS Data API to reflect support for Aurora MySQL Serverless v2 and Provisioned DB clusters.
• api-change:sagemaker: Adding TagPropagation attribute to Sagemaker API

1.35.27

• api-change:cloudtrail: Doc-only update for CloudTrail network activity events release (in preview)
• api-change:ec2: Updates to documentation for the transit gateway security group referencing feature.
• api-change:fsx: Doc-only update to address Lustre S3 hard-coded names.
• api-change:worklink: The worklink client has been removed following the deprecation of the service.

1.35.26

• api-change:bedrock: Add support for Cross Region Inference in Bedrock Model Evaluations.
• api-change:budgets: Releasing minor partitional endpoint updates
• api-change:kinesis: This release includes support to add tags when creating a stream
• api-change:pinpoint-sms-voice-v2: AWS End User Messaging SMS-Voice V2 has added support for resource policies. Use the three new APIs to create, view, edit, and delete resource policies.
• api-change:sagemaker: Adding HiddenInstanceTypes and HiddenSageMakerImageVersionAliases attribute to SageMaker API

... (truncated)

Commits

• 074456c Merge branch 'release-1.35.30'
• 7bf1f71 Bumping version to 1.35.30
• 1c10533 Update to latest models
• c81e72c Merge customizations for Resource Groups
• 68d43f3 Merge pull request #3266 from boto/dependabot/github_actions/actions/checkout...
• 0211522 Bump actions/checkout from 4.1.0 to 4.2.0
• 892c64b Merge branch 'release-1.35.29'
• 66d047b Merge branch 'release-1.35.29' into develop
• 7c6966c Bumping version to 1.35.29
• 61e47ca Update endpoints model
• Additional commits viewable in compare view

Updates pyyaml from 6.0.1 to 6.0.2

Release notes

Sourced from pyyaml's releases.

6.0.2

What's Changed

• Support for Cython 3.x and Python 3.13.

Full Changelog: yaml/pyyaml@6.0.1...6.0.2

6.0.2rc1

• Support for extension build with Cython 3.x
• Support for Python 3.13
• Added PyPI wheels for musllinux on aarch64

Changelog

Sourced from pyyaml's changelog.

6.0.2 (2024-08-06)

• yaml/pyyaml#808 -- Support for Cython 3.x and Python 3.13

Commits

• 41309b0 Release 6.0.2 (#819)
• dd9f0e1 6.0.2rc1 (#809)
• f5527a2 disable CI trigger on PR edits
• b4d80a7 Python 3.12 + musllinux_1_1_x86_64 wheel support
• See full diff in compare view

Updates urllib3 from 1.26.19 to 1.26.20

Release notes

Sourced from urllib3's releases.

1.26.20

🚀 urllib3 is fundraising for HTTP/2 support

urllib3 is raising ~$40,000 USD to release HTTP/2 support and ensure long-term sustainable maintenance of the project after a sharp decline in financial support for 2023. If your company or organization uses Python and would benefit from HTTP/2 support in Requests, pip, cloud SDKs, and thousands of other projects please consider contributing financially to ensure HTTP/2 support is developed sustainably and maintained for the long-haul.

Thank you for your support.

Changes

• Fixed a crash where certain standard library hash functions were absent in FIPS-compliant environments. (#3432)
• Replaced deprecated dash-separated setuptools entries in setup.cfg. (#3461)
• Took into account macOS setting ECONNRESET instead of EPROTOTYPE in its newer versions. (#3416)
• Backported changes to our tests and CI configuration from v2.x to support testing with CPython 3.12 and 3.13. (#3436)

Full Changelog: urllib3/urllib3@1.26.19...1.26.20

Changelog

Sourced from urllib3's changelog.

1.26.20 (2024-08-29)

• Fixed a crash where certain standard library hash functions were absent in FIPS-compliant environments. ([#3432](https://github.com/urllib3/urllib3/issues/3432) <https://github.com/urllib3/urllib3/issues/3432>__)
• Replaced deprecated dash-separated setuptools entries in setup.cfg. ([#3461](https://github.com/urllib3/urllib3/issues/3461) <https://github.com/urllib3/urllib3/pull/3461>__)
• Took into account macOS setting ECONNRESET instead of EPROTOTYPE in its newer versions. ([#3416](https://github.com/urllib3/urllib3/issues/3416) <https://github.com/urllib3/urllib3/pull/3416>__)
• Backported changes to our tests and CI configuration from v2.x to support testing with CPython 3.12 and 3.13. ([#3436](https://github.com/urllib3/urllib3/issues/3436) <https://github.com/urllib3/urllib3/pull/3436>__)

Commits

• 6f2ad7c Release 1.26.20
• 7f925b0 Backport changes to the publish workflow
• 3d9b2d3 Replace deprecated dash-separated setuptools entries in setup.cfg (#3461)
• e9ac9bc Upgrade actions (#3437)
• 0b42b01 Do not limit runs with 3.13 to Ubuntu
• d135b54 Backport a part of 5d93c9c6c01efc469200044027c21c6e661f2a99
• 8c13ec8 Backport test_eintr_zero_timeout fix
• df09e8c Move verbosity flag to noxfile
• ac96f20 Test test_requesting_large_resources_via_ssl separately
• 3f1806c Try using same PyPy 3.9 version as in main to fix timeouts
• Additional commits viewable in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
urllib3	[>= 2.a, < 3]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions