From 5fb2b79e73b1b9563da5def232695574c1cb022b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 19 Mar 2026 17:55:37 +0000 Subject: [PATCH 1/8] chore(deps): bump flatted from 3.2.7 to 3.4.2 Bumps [flatted](https://github.com/WebReflection/flatted) from 3.2.7 to 3.4.2. - [Commits](https://github.com/WebReflection/flatted/compare/v3.2.7...v3.4.2) --- updated-dependencies: - dependency-name: flatted dependency-version: 3.4.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index 8739919..cce9bae 100644 --- a/package-lock.json +++ b/package-lock.json @@ -4554,10 +4554,11 @@ } }, "node_modules/flatted": { - "version": "3.2.7", - "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.2.7.tgz", - "integrity": "sha512-5nqDSxl8nn5BSNxyR3n4I6eDmbolI6WT+QqR547RwxQapgjQBmtktdP+HTBb/a/zLsbzERTONyUB5pefh5TtjQ==", - "dev": true + "version": "3.4.2", + "resolved": "https://registry.npmjs.org/flatted/-/flatted-3.4.2.tgz", + "integrity": "sha512-PjDse7RzhcPkIJwy5t7KPWQSZ9cAbzQXcafsetQoD7sOJRQlGikNbx7yZp2OotDnJyrDcbyRq3Ttb18iYOqkxA==", + "dev": true, + "license": "ISC" }, "node_modules/foreground-child": { "version": "3.3.1", From fe6b56f24051e426fc4a72889144155bd62928e5 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 27 Mar 2026 15:37:59 +0000 Subject: [PATCH 2/8] chore(deps): bump picomatch Bumps and [picomatch](https://github.com/micromatch/picomatch). These dependencies needed to be updated together. Updates `picomatch` from 4.0.3 to 4.0.4 - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4) Updates `picomatch` from 2.3.1 to 2.3.2 - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](https://github.com/micromatch/picomatch/compare/4.0.3...4.0.4) --- updated-dependencies: - dependency-name: picomatch dependency-version: 4.0.4 dependency-type: indirect - dependency-name: picomatch dependency-version: 2.3.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/package-lock.json b/package-lock.json index bc9e18c..1897364 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1743,9 +1743,9 @@ } }, "node_modules/anymatch/node_modules/picomatch": { - "version": "2.3.1", - "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz", - "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==", + "version": "2.3.2", + "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.2.tgz", + "integrity": "sha512-V7+vQEJ06Z+c5tSye8S+nHUfI51xoXIXjHQ99cQtKUkQqqO1kO/KCJUfZXuB47h/YBlDhah2H3hdUGXn8ie0oA==", "dev": true, "license": "MIT", "engines": { @@ -5761,9 +5761,9 @@ } }, "node_modules/micromatch/node_modules/picomatch": { - "version": "2.3.1", - "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.1.tgz", - "integrity": "sha512-JU3teHTNjmE2VCGFzuY8EXzCDVwEqB2a8fsIvwaStHhAWJEeVd1o1QD80CU6+ZdEXXSLbSsuLwJjkCBWqRQUVA==", + "version": "2.3.2", + "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-2.3.2.tgz", + "integrity": "sha512-V7+vQEJ06Z+c5tSye8S+nHUfI51xoXIXjHQ99cQtKUkQqqO1kO/KCJUfZXuB47h/YBlDhah2H3hdUGXn8ie0oA==", "dev": true, "license": "MIT", "engines": { @@ -6194,9 +6194,9 @@ "license": "ISC" }, "node_modules/picomatch": { - "version": "4.0.3", - "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.3.tgz", - "integrity": "sha512-5gTmgEY/sqK6gFXLIsQNH19lWb4ebPDLA4SdLP7dsWkIXHWlG66oPuVvXSGFPppYZz8ZDZq0dYYrbHfBCVUb1Q==", + "version": "4.0.4", + "resolved": "https://registry.npmjs.org/picomatch/-/picomatch-4.0.4.tgz", + "integrity": "sha512-QP88BAKvMam/3NxH6vj2o21R6MjxZUAd6nlwAS/pnGvN9IVLocLHxGYIzFhg6fUQ+5th6P4dv4eW9jX3DSIj7A==", "dev": true, "license": "MIT", "engines": { From d9d39672a967b3144229dcccfbf23616b874fb9f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 27 Mar 2026 16:05:00 +0000 Subject: [PATCH 3/8] chore(deps): bump handlebars from 4.7.8 to 4.7.9 Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.8 to 4.7.9. - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md) - [Commits](https://github.com/handlebars-lang/handlebars.js/compare/v4.7.8...v4.7.9) --- updated-dependencies: - dependency-name: handlebars dependency-version: 4.7.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index bc9e18c..605c1b5 100644 --- a/package-lock.json +++ b/package-lock.json @@ -3942,9 +3942,9 @@ "license": "ISC" }, "node_modules/handlebars": { - "version": "4.7.8", - "resolved": "https://registry.npmjs.org/handlebars/-/handlebars-4.7.8.tgz", - "integrity": "sha512-vafaFqs8MZkRrSX7sFVUdo3ap/eNiLnb4IakshzvP56X5Nr1iGKAIqdX6tMlm6HcNRIkr6AxO5jFEoJzzpT8aQ==", + "version": "4.7.9", + "resolved": "https://registry.npmjs.org/handlebars/-/handlebars-4.7.9.tgz", + "integrity": "sha512-4E71E0rpOaQuJR2A3xDZ+GM1HyWYv1clR58tC8emQNeQe3RH7MAzSbat+V0wG78LQBo6m6bzSG/L4pBuCsgnUQ==", "dev": true, "license": "MIT", "dependencies": { From 969470aaf16d901ca508686bca662dc39124206f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 10 Apr 2026 03:37:34 +0000 Subject: [PATCH 4/8] chore(deps-dev): bump lodash from 4.17.23 to 4.18.1 Bumps [lodash](https://github.com/lodash/lodash) from 4.17.23 to 4.18.1. - [Release notes](https://github.com/lodash/lodash/releases) - [Commits](https://github.com/lodash/lodash/compare/4.17.23...4.18.1) --- updated-dependencies: - dependency-name: lodash dependency-version: 4.18.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index bc9e18c..ff0f2e2 100644 --- a/package-lock.json +++ b/package-lock.json @@ -5485,9 +5485,9 @@ } }, "node_modules/lodash": { - "version": "4.17.23", - "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.17.23.tgz", - "integrity": "sha512-LgVTMpQtIopCi79SJeDiP0TfWi5CNEc/L/aRdTh3yIvmZXTnheWpKjSZhnvMl8iXbC1tFg9gdHHDMLoV7CnG+w==", + "version": "4.18.1", + "resolved": "https://registry.npmjs.org/lodash/-/lodash-4.18.1.tgz", + "integrity": "sha512-dMInicTPVE8d1e5otfwmmjlxkZoUpiVLwyeTdUsi/Caj/gfzzblBcCE5sRHV/AsjuCmxWrte2TNGSYuCeCq+0Q==", "dev": true, "license": "MIT" }, From 0fbf0d8ebb66d302056a25a03ad99db6c42e6aeb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 22 Apr 2026 20:30:42 +0000 Subject: [PATCH 5/8] chore(deps): bump @xmldom/xmldom from 0.9.8 to 0.9.10 Bumps [@xmldom/xmldom](https://github.com/xmldom/xmldom) from 0.9.8 to 0.9.10. - [Release notes](https://github.com/xmldom/xmldom/releases) - [Changelog](https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md) - [Commits](https://github.com/xmldom/xmldom/compare/0.9.8...0.9.10) --- updated-dependencies: - dependency-name: "@xmldom/xmldom" dependency-version: 0.9.10 dependency-type: indirect ... Signed-off-by: dependabot[bot] --- package-lock.json | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/package-lock.json b/package-lock.json index bc9e18c..f496e11 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1667,9 +1667,9 @@ ] }, "node_modules/@xmldom/xmldom": { - "version": "0.9.8", - "resolved": "https://registry.npmjs.org/@xmldom/xmldom/-/xmldom-0.9.8.tgz", - "integrity": "sha512-p96FSY54r+WJ50FIOsCOjyj/wavs8921hG5+kVMmZgKcvIKxMXHTrjNJvRgWa/zuX3B6t2lijLNFaOyuxUH+2A==", + "version": "0.9.10", + "resolved": "https://registry.npmjs.org/@xmldom/xmldom/-/xmldom-0.9.10.tgz", + "integrity": "sha512-A9gOqLdi6cV4ibazAjcQufGj0B1y/vDqYrcuP6d/6x8P27gRS8643Dj9o1dEKtB6O7fwxb2FgBmJS2mX7gpvdw==", "dev": true, "license": "MIT", "engines": { From 0f90e18cdb06dcb9ffb1400163ec6bab51a8ab06 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 23 Apr 2026 04:30:22 +0000 Subject: [PATCH 6/8] chore(deps): bump uuid from 8.3.2 to 14.0.0 Bumps [uuid](https://github.com/uuidjs/uuid) from 8.3.2 to 14.0.0. - [Release notes](https://github.com/uuidjs/uuid/releases) - [Changelog](https://github.com/uuidjs/uuid/blob/main/CHANGELOG.md) - [Commits](https://github.com/uuidjs/uuid/compare/v8.3.2...v14.0.0) --- updated-dependencies: - dependency-name: uuid dependency-version: 14.0.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- package-lock.json | 24 +++++++++++++++++++----- package.json | 2 +- 2 files changed, 20 insertions(+), 6 deletions(-) diff --git a/package-lock.json b/package-lock.json index bc9e18c..5e18d8f 100644 --- a/package-lock.json +++ b/package-lock.json @@ -18,7 +18,7 @@ "constructs": "^10.5.0", "fs-extra": "10.1.0", "lodash.get": "^4.4.2", - "uuid": "^8.3.2" + "uuid": "^14.0.0" }, "devDependencies": { "@types/fs-extra": "^8.1.2", @@ -4635,6 +4635,16 @@ "node": ">=6" } }, + "node_modules/jest-junit/node_modules/uuid": { + "version": "8.3.2", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", + "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==", + "dev": true, + "license": "MIT", + "bin": { + "uuid": "dist/bin/uuid" + } + }, "node_modules/jest-leak-detector": { "version": "30.3.0", "resolved": "https://registry.npmjs.org/jest-leak-detector/-/jest-leak-detector-30.3.0.tgz", @@ -8864,13 +8874,17 @@ "license": "MIT" }, "node_modules/uuid": { - "version": "8.3.2", - "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", - "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==", + "version": "14.0.0", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-14.0.0.tgz", + "integrity": "sha512-Qo+uWgilfSmAhXCMav1uYFynlQO7fMFiMVZsQqZRMIXp0O7rR7qjkj+cPvBHLgBqi960QCoo/PH2/6ZtVqKvrg==", + "funding": [ + "https://github.com/sponsors/broofa", + "https://github.com/sponsors/ctavan" + ], "inBundle": true, "license": "MIT", "bin": { - "uuid": "dist/bin/uuid" + "uuid": "dist-node/bin/uuid" } }, "node_modules/v8-to-istanbul": { diff --git a/package.json b/package.json index 75eb412..b95b4c0 100644 --- a/package.json +++ b/package.json @@ -65,7 +65,7 @@ "constructs": "^10.5.0", "fs-extra": "10.1.0", "lodash.get": "^4.4.2", - "uuid": "^8.3.2" + "uuid": "^14.0.0" }, "bundledDependencies": [ "fs-extra", From bd4b462da54a0afc2d4805a711fb863881bb0ebc Mon Sep 17 00:00:00 2001 From: Jon Wire Date: Fri, 15 May 2026 20:19:09 -0500 Subject: [PATCH 7/8] fix: configure Jest to transpile ESM-only uuid v14 uuid v14 is ESM-only, which breaks Jest since it can't parse ES modules in node_modules by default. This adds: - transformIgnorePatterns to allow Jest to transform uuid - Extended transform pattern to handle .js files via ts-jest - allowJs in tsconfig.jest.json for ts-jest to process .js files --- .projenrc.js | 1 + package.json | 7 +++++-- tsconfig.jest.json | 3 ++- 3 files changed, 8 insertions(+), 3 deletions(-) diff --git a/.projenrc.js b/.projenrc.js index e10fe68..8d20726 100644 --- a/.projenrc.js +++ b/.projenrc.js @@ -61,6 +61,7 @@ const project = new awscdk.AwsCdkConstructLibrary({ testPathIgnorePatterns: ['/node_modules/'], coveragePathIgnorePatterns: ['integ-test/', '/node_modules/'], watchPathIgnorePatterns: ['integ-test/'], + transformIgnorePatterns: ['/node_modules/(?!uuid)'], }, }, testdir: 'test', diff --git a/package.json b/package.json index b95b4c0..593859a 100644 --- a/package.json +++ b/package.json @@ -122,13 +122,16 @@ ] ], "transform": { - "^.+\\.tsx?$": [ + "^.+\\.[tj]sx?$": [ "ts-jest", { "tsconfig": "tsconfig.jest.json" } ] - } + }, + "transformIgnorePatterns": [ + "/node_modules/(?!uuid)" + ] }, "types": "lib/index.d.ts", "stability": "stable", diff --git a/tsconfig.jest.json b/tsconfig.jest.json index 3fde67e..ad4a589 100644 --- a/tsconfig.jest.json +++ b/tsconfig.jest.json @@ -23,7 +23,8 @@ "strictNullChecks": true, "strictPropertyInitialization": true, "stripInternal": true, - "target": "ES2018" + "target": "ES2018", + "allowJs": true }, "include": [ ".projenrc.js", From b275f1cc525a733bbb3b255e99ec30ed1b3d2342 Mon Sep 17 00:00:00 2001 From: Jon Wire Date: Fri, 15 May 2026 20:22:50 -0500 Subject: [PATCH 8/8] fix: revert uuid upgrade to 8.x (v14 is ESM-only and incompatible) uuid v14 is ESM-only and requires globalThis.crypto which is unavailable in the Node 18 Jest test environment. Reverting to uuid 8.3.2 which provides CommonJS support. --- .projenrc.js | 1 - package-lock.json | 24 +++++------------------- package.json | 9 +++------ tsconfig.jest.json | 3 +-- 4 files changed, 9 insertions(+), 28 deletions(-) diff --git a/.projenrc.js b/.projenrc.js index 8d20726..e10fe68 100644 --- a/.projenrc.js +++ b/.projenrc.js @@ -61,7 +61,6 @@ const project = new awscdk.AwsCdkConstructLibrary({ testPathIgnorePatterns: ['/node_modules/'], coveragePathIgnorePatterns: ['integ-test/', '/node_modules/'], watchPathIgnorePatterns: ['integ-test/'], - transformIgnorePatterns: ['/node_modules/(?!uuid)'], }, }, testdir: 'test', diff --git a/package-lock.json b/package-lock.json index 51ac1b5..8ad85cd 100644 --- a/package-lock.json +++ b/package-lock.json @@ -18,7 +18,7 @@ "constructs": "^10.5.0", "fs-extra": "10.1.0", "lodash.get": "^4.4.2", - "uuid": "^14.0.0" + "uuid": "^8.3.2" }, "devDependencies": { "@types/fs-extra": "^8.1.2", @@ -4635,16 +4635,6 @@ "node": ">=6" } }, - "node_modules/jest-junit/node_modules/uuid": { - "version": "8.3.2", - "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", - "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==", - "dev": true, - "license": "MIT", - "bin": { - "uuid": "dist/bin/uuid" - } - }, "node_modules/jest-leak-detector": { "version": "30.3.0", "resolved": "https://registry.npmjs.org/jest-leak-detector/-/jest-leak-detector-30.3.0.tgz", @@ -8874,17 +8864,13 @@ "license": "MIT" }, "node_modules/uuid": { - "version": "14.0.0", - "resolved": "https://registry.npmjs.org/uuid/-/uuid-14.0.0.tgz", - "integrity": "sha512-Qo+uWgilfSmAhXCMav1uYFynlQO7fMFiMVZsQqZRMIXp0O7rR7qjkj+cPvBHLgBqi960QCoo/PH2/6ZtVqKvrg==", - "funding": [ - "https://github.com/sponsors/broofa", - "https://github.com/sponsors/ctavan" - ], + "version": "8.3.2", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz", + "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==", "inBundle": true, "license": "MIT", "bin": { - "uuid": "dist-node/bin/uuid" + "uuid": "dist/bin/uuid" } }, "node_modules/v8-to-istanbul": { diff --git a/package.json b/package.json index 593859a..75eb412 100644 --- a/package.json +++ b/package.json @@ -65,7 +65,7 @@ "constructs": "^10.5.0", "fs-extra": "10.1.0", "lodash.get": "^4.4.2", - "uuid": "^14.0.0" + "uuid": "^8.3.2" }, "bundledDependencies": [ "fs-extra", @@ -122,16 +122,13 @@ ] ], "transform": { - "^.+\\.[tj]sx?$": [ + "^.+\\.tsx?$": [ "ts-jest", { "tsconfig": "tsconfig.jest.json" } ] - }, - "transformIgnorePatterns": [ - "/node_modules/(?!uuid)" - ] + } }, "types": "lib/index.d.ts", "stability": "stable", diff --git a/tsconfig.jest.json b/tsconfig.jest.json index ad4a589..3fde67e 100644 --- a/tsconfig.jest.json +++ b/tsconfig.jest.json @@ -23,8 +23,7 @@ "strictNullChecks": true, "strictPropertyInitialization": true, "stripInternal": true, - "target": "ES2018", - "allowJs": true + "target": "ES2018" }, "include": [ ".projenrc.js",