Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

chore(deps): bump aws-sdk and serverless

Closed
Number: #1388
Type: Pull Request
State: Closed
Author: dependabot[bot] dependabot[bot]
Association: Unknown
Comments: 1
Created: January 16, 2026 at 09:29 PM UTC
(5 months ago)
Updated: January 16, 2026 at 09:47 PM UTC
(5 months ago)
Closed: January 16, 2026 at 09:47 PM UTC
(5 months ago)
Time to Close: 17 minutes
Labels:
dependencies auto javascript
Description:

Removes aws-sdk. It's no longer used after updating ancestor dependency serverless. These dependencies need to be updated together.

Removes aws-sdk

Updates serverless from 3.40.0 to 4.31.0

Release notes

Sourced from serverless's releases.

4.31.0

Features

Serverless Framework

  • Integrated serverless-prune-plugin functionality. Lambda version and layer pruning is now built directly into the Serverless Framework. Use the sls prune command to manually remove old function versions, or enable automatic pruning after deployments via the custom.prune configuration. Read more in our docs. (#13244)

    Thanks to @​claygregory for creating the original plugin and to all contributors!

    custom:
  prune:
    automatic: true
    number: 3           # Keep 3 most recent versions
    includeLayers: true # Also prune layer versions

    # Manual pruning
sls prune -n 3

  • Added support for AWS Asia Pacific (Taipei) region ap-east-2. (#13260, #13257)

    provider:
  name: aws
  region: ap-east-2

[!NOTE] The serverless dev command is not supported in ap-east-2 because AWS IoT Core is not currently available in that region.

Bug Fixes

Serverless Framework

  • Fixed esbuild sourcemap configuration error. Setting build.esbuild.sourcemap.setNodeOptions: false no longer throws "sourcemap" must be a string or a boolean. The framework now correctly defaults to sourcemap: true when only setNodeOptions is specified. (#13246)

  • Fixed AppSync schema empty on Windows. Resolved an issue where .graphql schema files using glob patterns (e.g., Schema/*.graphql) were not found on Windows due to path separator incompatibility with globby. (#13242, #13240)

  • Fixed Windows CI/CD intermittent failures. Resolved EPERM: operation not permitted, rename errors on Windows by using the system temp directory for AJV cache and adding retry logic with exponential backoff for file operations. (#13243, #13264)

Maintenance

  • Updated multiple dependencies:
    • Upgraded dotenv to v17.2.3 (#13259)
    • Upgraded chokidar to v4.0.3 (#13251)
    • Upgraded jest to v30.2.0 (#13250)
    • Upgraded globby to v14 (#13236)

... (truncated)

Commits
  • 9699b8b chore: release 4.31.0 (#13266)
  • 202a341 refactor: move prune command to global commands schema (#13267)
  • 372463b feat: integrate serverless-prune-plugin functionality (#13244)
  • 3d8c4a5 chore(ci): optimize integration test execution for Ubuntu runners with maxWor...
  • 9e83b10 fix: add retry logic with exponential backoff to handle Windows EPERM errors ...
  • 325f1f1 chore(deps): bump @​graphql-tools/merge from 8.4.2 to 9.1.7 (#13263)
  • 49df6d2 feat: add support for ap-east-2 region (#13260)
  • 8e9a6ba chore(deps): upgrade dotenv to v17.2.3 and remove unused loadDotEnvFile uti...
  • e1b03b6 chore(deps): add glob v11 compatibility exclusion for Node.js 18 in dependabo...
  • 2022059 chore(deps): bump the aws-sdk group with 31 updates (#13253)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for serverless since your current version.


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Package Dependencies
Package:
serverless
Ecosystem:
npm
Version Change:
3.40.0 → 4.31.0
Update Type:
Major
Package:
aws-sdk
Ecosystem:
npm
Update Type:
Removal
Actions
View on GitHub View Repository All Dependabot PRs
Technical Details
ID: 12834450
UUID: 3823723525
Node ID: PR_kwDOEUYIC869tSzP
Host: GitHub
Repository: devpow112/serverless-plugin-function-value