fix(lambda): bump the aws-powertools group in /lambdas with 4 updates #4770

dependabot · 2025-09-15T19:09:38Z

Bumps the aws-powertools group in /lambdas with 4 updates: @aws-lambda-powertools/parameters, @aws-lambda-powertools/logger, @aws-lambda-powertools/metrics and @aws-lambda-powertools/tracer.

Updates @aws-lambda-powertools/parameters from 2.25.2 to 2.26.1

Release notes

Sourced from @aws-lambda-powertools/parameters's releases.

v2.26.1

Summary

This patch release addresses a regression with the Batch Processing utility introduced in v2.26.0 that caused a bundling error due to an internal dependency not being declared in the package.json.

This bug affects only those who are using Batch Processing without other Powertools for AWS utilities and who have already upgraded to v2.26.0 which was released on 12/09/2025.

We recommend updating to the latest version to avoid the issue.

⭐ Congratulations to @Grmiade for identifying this issue and fixing it with their first PR merged in the project 🎉

Changes

chore(ci): update layer ARN on documentation (#4471) by @sdangol

📜 Documentation updates

chore(ci): update layer ARN on documentation (#4488) by @sdangol

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

docs(batch): added documentation for the parser integration feature in batch processor (#4435) by @sdangol

🔧 Maintenance

fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484) by @Grmiade

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473) by @dependabot[bot]

chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432) by @dependabot[bot]

This release was made possible by the following contributors:

@Grmiade, @dependabot[bot], @github-actions[bot], @sdangol, dependabot[bot] and github-actions[bot]

v2.26.0

Summary

We're excited to announce support for API Gateway REST APIs in the Event Handler utility. This simplifies routing and processing of events in AWS Lambda functions by allowing you to define specific handlers that corresponds to routes in your REST APIs with minimal boilerplate code.

We have also integrated the Parser utility with Batch Processing, enabling automatic validation of payloads from SQS, Kinesis and DynamoDB streams.

Furthermore, we have added support for custom error handlers to the AppSync GraphQL event handler resolver, with automatic marshalling of errors to the expected AppSync format and logging built-in.

⭐ Congratulations @dcabib for their first PR merged in the project and to @arnabrahman for their continued contributions to AppSync event handler 🎉

Working with API Gateway REST APIs

Key Features

Lightweight routing to reduce boilerplate code for API Gateway REST APIs

Built-in middleware engine for executing custom logic when processing requests and responses

Supports micro function (one or a few routes) and monolithic functions (all routes)

... (truncated)

Changelog

Sourced from @aws-lambda-powertools/parameters's changelog.

2.26.1 (2025-09-15)

Bug Fixes

batch declare the @aws-lambda-powertools/commons dependency (#4484) (8cfcccd)

2.26.0 (2025-09-11)

Improvements

logger update getCodeLocation regex to improve performance (#4389) (801333d)

batch simplified the parser integration api with batch processor (#4465) (96977ff)

Bug Fixes

parser updated the binaryValue and stringValue in the SqsMsgAttributeSchema to nullable (#4450) (cefcbdb)

event-handler handle nullable fields in APIGatewayProxyEvent (#4455) (200f47b)

Features

parser integrate parser with Batch Processing (#4408) (0b6bbbb)

parser implemented a helper function Base64Encoded to decode base64 encoded payloads (#4413) (1554360)

parser add IPv6 support for sourceIp in API Gateway schemas (#4398) (2a94c37)

event-handler remove undefined from Router's resolve type signature (#4463) (d36ef55)

event-handler implement mechanism to manipulate response in middleware (#4439) (35a510d)

event-handler add route specific middleware registration and execution (#4437) (e6ea674)

event-handler add middleware registration and composition to rest handler (#4428) (fc87eb3)

event-handler add support for error handling in AppSync GraphQL (#4317) (77a992f)

event-handler add resolution logic to base router (#4349) (f1ecc6d)

Maintenance

event-handler rename variables to reflect that options object is now a RequestContext (#4460) (5b4ee1a)

event-handler expose rest handler functionality (#4458) (23eddfd)

event-handler split Router tests into multiple files (#4449) (91a1ec4)

event-handler rename BaseRouter class to Router (#4448) (b043c28)

Commits

0855525 chore(ci): bump version to 2.26.1 (#4486)
8cfcccd fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484)
9118bbf chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443)
4fed581 docs(batch): added documentation for the parser integration feature in batch ...
dc7c654 chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473)
cc23367 chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432)
bfdeeb6 chore(ci): update layer ARN on documentation (#4471)
ddb52e3 chore(ci): bump version to 2.26.0 (#4469)
d0bbfe0 chore(deps): bump github/codeql-action from 3.30.2 to 3.30.3 (#4467)
41292d5 chore(deps-dev): bump zod from 4.1.5 to 4.1.7 (#4468)
Additional commits viewable in compare view

Updates @aws-lambda-powertools/logger from 2.25.2 to 2.26.1

Release notes

Sourced from @aws-lambda-powertools/logger's releases.

v2.26.1

Summary

This patch release addresses a regression with the Batch Processing utility introduced in v2.26.0 that caused a bundling error due to an internal dependency not being declared in the package.json.

This bug affects only those who are using Batch Processing without other Powertools for AWS utilities and who have already upgraded to v2.26.0 which was released on 12/09/2025.

We recommend updating to the latest version to avoid the issue.

⭐ Congratulations to @Grmiade for identifying this issue and fixing it with their first PR merged in the project 🎉

Changes

chore(ci): update layer ARN on documentation (#4471) by @sdangol

📜 Documentation updates

chore(ci): update layer ARN on documentation (#4488) by @sdangol

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

docs(batch): added documentation for the parser integration feature in batch processor (#4435) by @sdangol

🔧 Maintenance

fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484) by @Grmiade

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473) by @dependabot[bot]

chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432) by @dependabot[bot]

This release was made possible by the following contributors:

@Grmiade, @dependabot[bot], @github-actions[bot], @sdangol, dependabot[bot] and github-actions[bot]

v2.26.0

Summary

We're excited to announce support for API Gateway REST APIs in the Event Handler utility. This simplifies routing and processing of events in AWS Lambda functions by allowing you to define specific handlers that corresponds to routes in your REST APIs with minimal boilerplate code.

We have also integrated the Parser utility with Batch Processing, enabling automatic validation of payloads from SQS, Kinesis and DynamoDB streams.

Furthermore, we have added support for custom error handlers to the AppSync GraphQL event handler resolver, with automatic marshalling of errors to the expected AppSync format and logging built-in.

⭐ Congratulations @dcabib for their first PR merged in the project and to @arnabrahman for their continued contributions to AppSync event handler 🎉

Working with API Gateway REST APIs

Key Features

Lightweight routing to reduce boilerplate code for API Gateway REST APIs

Built-in middleware engine for executing custom logic when processing requests and responses

Supports micro function (one or a few routes) and monolithic functions (all routes)

... (truncated)

Changelog

Sourced from @aws-lambda-powertools/logger's changelog.

2.26.1 (2025-09-15)

Bug Fixes

batch declare the @aws-lambda-powertools/commons dependency (#4484) (8cfcccd)

2.26.0 (2025-09-11)

Improvements

logger update getCodeLocation regex to improve performance (#4389) (801333d)

batch simplified the parser integration api with batch processor (#4465) (96977ff)

Bug Fixes

parser updated the binaryValue and stringValue in the SqsMsgAttributeSchema to nullable (#4450) (cefcbdb)

event-handler handle nullable fields in APIGatewayProxyEvent (#4455) (200f47b)

Features

parser integrate parser with Batch Processing (#4408) (0b6bbbb)

parser implemented a helper function Base64Encoded to decode base64 encoded payloads (#4413) (1554360)

parser add IPv6 support for sourceIp in API Gateway schemas (#4398) (2a94c37)

event-handler remove undefined from Router's resolve type signature (#4463) (d36ef55)

event-handler implement mechanism to manipulate response in middleware (#4439) (35a510d)

event-handler add route specific middleware registration and execution (#4437) (e6ea674)

event-handler add middleware registration and composition to rest handler (#4428) (fc87eb3)

event-handler add support for error handling in AppSync GraphQL (#4317) (77a992f)

event-handler add resolution logic to base router (#4349) (f1ecc6d)

Maintenance

event-handler rename variables to reflect that options object is now a RequestContext (#4460) (5b4ee1a)

event-handler expose rest handler functionality (#4458) (23eddfd)

event-handler split Router tests into multiple files (#4449) (91a1ec4)

event-handler rename BaseRouter class to Router (#4448) (b043c28)

Commits

0855525 chore(ci): bump version to 2.26.1 (#4486)
8cfcccd fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484)
9118bbf chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443)
4fed581 docs(batch): added documentation for the parser integration feature in batch ...
dc7c654 chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473)
cc23367 chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432)
bfdeeb6 chore(ci): update layer ARN on documentation (#4471)
ddb52e3 chore(ci): bump version to 2.26.0 (#4469)
d0bbfe0 chore(deps): bump github/codeql-action from 3.30.2 to 3.30.3 (#4467)
41292d5 chore(deps-dev): bump zod from 4.1.5 to 4.1.7 (#4468)
Additional commits viewable in compare view

Updates @aws-lambda-powertools/metrics from 2.25.2 to 2.26.1

Release notes

Sourced from @aws-lambda-powertools/metrics's releases.

v2.26.1

Summary

This patch release addresses a regression with the Batch Processing utility introduced in v2.26.0 that caused a bundling error due to an internal dependency not being declared in the package.json.

This bug affects only those who are using Batch Processing without other Powertools for AWS utilities and who have already upgraded to v2.26.0 which was released on 12/09/2025.

We recommend updating to the latest version to avoid the issue.

⭐ Congratulations to @Grmiade for identifying this issue and fixing it with their first PR merged in the project 🎉

Changes

chore(ci): update layer ARN on documentation (#4471) by @sdangol

📜 Documentation updates

chore(ci): update layer ARN on documentation (#4488) by @sdangol

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

docs(batch): added documentation for the parser integration feature in batch processor (#4435) by @sdangol

🔧 Maintenance

fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484) by @Grmiade

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473) by @dependabot[bot]

chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432) by @dependabot[bot]

This release was made possible by the following contributors:

@Grmiade, @dependabot[bot], @github-actions[bot], @sdangol, dependabot[bot] and github-actions[bot]

v2.26.0

Summary

We're excited to announce support for API Gateway REST APIs in the Event Handler utility. This simplifies routing and processing of events in AWS Lambda functions by allowing you to define specific handlers that corresponds to routes in your REST APIs with minimal boilerplate code.

We have also integrated the Parser utility with Batch Processing, enabling automatic validation of payloads from SQS, Kinesis and DynamoDB streams.

Furthermore, we have added support for custom error handlers to the AppSync GraphQL event handler resolver, with automatic marshalling of errors to the expected AppSync format and logging built-in.

⭐ Congratulations @dcabib for their first PR merged in the project and to @arnabrahman for their continued contributions to AppSync event handler 🎉

Working with API Gateway REST APIs

Key Features

Lightweight routing to reduce boilerplate code for API Gateway REST APIs

Built-in middleware engine for executing custom logic when processing requests and responses

Supports micro function (one or a few routes) and monolithic functions (all routes)

... (truncated)

Changelog

Sourced from @aws-lambda-powertools/metrics's changelog.

2.26.1 (2025-09-15)

Bug Fixes

batch declare the @aws-lambda-powertools/commons dependency (#4484) (8cfcccd)

2.26.0 (2025-09-11)

Improvements

logger update getCodeLocation regex to improve performance (#4389) (801333d)

batch simplified the parser integration api with batch processor (#4465) (96977ff)

Bug Fixes

parser updated the binaryValue and stringValue in the SqsMsgAttributeSchema to nullable (#4450) (cefcbdb)

event-handler handle nullable fields in APIGatewayProxyEvent (#4455) (200f47b)

Features

parser integrate parser with Batch Processing (#4408) (0b6bbbb)

parser implemented a helper function Base64Encoded to decode base64 encoded payloads (#4413) (1554360)

parser add IPv6 support for sourceIp in API Gateway schemas (#4398) (2a94c37)

event-handler remove undefined from Router's resolve type signature (#4463) (d36ef55)

event-handler implement mechanism to manipulate response in middleware (#4439) (35a510d)

event-handler add route specific middleware registration and execution (#4437) (e6ea674)

event-handler add middleware registration and composition to rest handler (#4428) (fc87eb3)

event-handler add support for error handling in AppSync GraphQL (#4317) (77a992f)

event-handler add resolution logic to base router (#4349) (f1ecc6d)

Maintenance

event-handler rename variables to reflect that options object is now a RequestContext (#4460) (5b4ee1a)

event-handler expose rest handler functionality (#4458) (23eddfd)

event-handler split Router tests into multiple files (#4449) (91a1ec4)

event-handler rename BaseRouter class to Router (#4448) (b043c28)

Commits

0855525 chore(ci): bump version to 2.26.1 (#4486)
8cfcccd fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484)
9118bbf chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443)
4fed581 docs(batch): added documentation for the parser integration feature in batch ...
dc7c654 chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473)
cc23367 chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432)
bfdeeb6 chore(ci): update layer ARN on documentation (#4471)
ddb52e3 chore(ci): bump version to 2.26.0 (#4469)
d0bbfe0 chore(deps): bump github/codeql-action from 3.30.2 to 3.30.3 (#4467)
41292d5 chore(deps-dev): bump zod from 4.1.5 to 4.1.7 (#4468)
Additional commits viewable in compare view

Updates @aws-lambda-powertools/tracer from 2.25.2 to 2.26.1

Release notes

Sourced from @aws-lambda-powertools/tracer's releases.

v2.26.1

Summary

This patch release addresses a regression with the Batch Processing utility introduced in v2.26.0 that caused a bundling error due to an internal dependency not being declared in the package.json.

This bug affects only those who are using Batch Processing without other Powertools for AWS utilities and who have already upgraded to v2.26.0 which was released on 12/09/2025.

We recommend updating to the latest version to avoid the issue.

⭐ Congratulations to @Grmiade for identifying this issue and fixing it with their first PR merged in the project 🎉

Changes

chore(ci): update layer ARN on documentation (#4471) by @sdangol

📜 Documentation updates

chore(ci): update layer ARN on documentation (#4488) by @sdangol

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

docs(batch): added documentation for the parser integration feature in batch processor (#4435) by @sdangol

🔧 Maintenance

fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484) by @Grmiade

chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443) by @dependabot[bot]

chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473) by @dependabot[bot]

chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432) by @dependabot[bot]

This release was made possible by the following contributors:

@Grmiade, @dependabot[bot], @github-actions[bot], @sdangol, dependabot[bot] and github-actions[bot]

v2.26.0

Summary

We're excited to announce support for API Gateway REST APIs in the Event Handler utility. This simplifies routing and processing of events in AWS Lambda functions by allowing you to define specific handlers that corresponds to routes in your REST APIs with minimal boilerplate code.

We have also integrated the Parser utility with Batch Processing, enabling automatic validation of payloads from SQS, Kinesis and DynamoDB streams.

Furthermore, we have added support for custom error handlers to the AppSync GraphQL event handler resolver, with automatic marshalling of errors to the expected AppSync format and logging built-in.

⭐ Congratulations @dcabib for their first PR merged in the project and to @arnabrahman for their continued contributions to AppSync event handler 🎉

Working with API Gateway REST APIs

Key Features

Lightweight routing to reduce boilerplate code for API Gateway REST APIs

Built-in middleware engine for executing custom logic when processing requests and responses

Supports micro function (one or a few routes) and monolithic functions (all routes)

... (truncated)

Changelog

Sourced from @aws-lambda-powertools/tracer's changelog.

2.26.1 (2025-09-15)

Bug Fixes

batch declare the @aws-lambda-powertools/commons dependency (#4484) (8cfcccd)

2.26.0 (2025-09-11)

Improvements

logger update getCodeLocation regex to improve performance (#4389) (801333d)

batch simplified the parser integration api with batch processor (#4465) (96977ff)

Bug Fixes

parser updated the binaryValue and stringValue in the SqsMsgAttributeSchema to nullable (#4450) (cefcbdb)

event-handler handle nullable fields in APIGatewayProxyEvent (#4455) (200f47b)

Features

parser integrate parser with Batch Processing (#4408) (0b6bbbb)

parser implemented a helper function Base64Encoded to decode base64 encoded payloads (#4413) (1554360)

parser add IPv6 support for sourceIp in API Gateway schemas (#4398) (2a94c37)

event-handler remove undefined from Router's resolve type signature (#4463) (d36ef55)

event-handler implement mechanism to manipulate response in middleware (#4439) (35a510d)

event-handler add route specific middleware registration and execution (#4437) (e6ea674)

event-handler add middleware registration and composition to rest handler (#4428) (fc87eb3)

event-handler add support for error handling in AppSync GraphQL (#4317) (77a992f)

event-handler add resolution logic to base router (#4349) (f1ecc6d)

Maintenance

event-handler rename variables to reflect that options object is now a RequestContext (#4460) (5b4ee1a)

event-handler expose rest handler functionality (#4458) (23eddfd)

event-handler split Router tests into multiple files (#4449) (91a1ec4)

event-handler rename BaseRouter class to Router (#4448) (b043c28)

Commits

0855525 chore(ci): bump version to 2.26.1 (#4486)
8cfcccd fix(batch): declare the @aws-lambda-powertools/commons dependency (#4484)
9118bbf chore(deps): bump the aws-cdk group across 1 directory with 3 updates (#4443)
4fed581 docs(batch): added documentation for the parser integration feature in batch ...
dc7c654 chore(deps-dev): bump zod from 4.1.7 to 4.1.8 (#4473)
cc23367 chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 (#4432)
bfdeeb6 chore(ci): update layer ARN on documentation (#4471)
ddb52e3 chore(ci): bump version to 2.26.0 (#4469)
d0bbfe0 chore(deps): bump github/codeql-action from 3.30.2 to 3.30.3 (#4467)
41292d5 chore(deps-dev): bump zod from 4.1.5 to 4.1.7 (#4468)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

github-actions · 2025-09-15T19:09:54Z

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package

Version

Score

Details

npm/@aws-lambda-powertools/parameters

^2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/logger

^2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/metrics

^2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/tracer

^2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/commons

2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/logger

2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/metrics

2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/parameters

2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

npm/@aws-lambda-powertools/tracer

2.26.1

🟢 9.1

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Dependency-Update-Tool	🟢 10	update tool detected
Security-Policy	🟢 10	security policy file detected
Packaging	⚠️ -1	packaging workflow not detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Pinned-Dependencies	🟢 10	all dependencies are pinned
SAST	🟢 10	SAST tool is run on all commits
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ -1	no releases found
License	🟢 10	license file detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration
Vulnerabilities	🟢 8	2 existing vulnerabilities detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 11 contributing companies or organizations

Scanned Files

lambdas/functions/control-plane/package.json
lambdas/libs/aws-powertools-util/package.json
lambdas/yarn.lock

@yangmillstheory

🤖 I have created a release *beep* *boop* --- ## [6.7.8](v6.7.7...v6.7.8) (2025-09-18) ### Bug Fixes * **dispatcher:** Log org / repository context when unable to match labels ([#4761](#4761)) ([e214177](e214177)) @yangmillstheory * **lambda:** bump axios from 1.12.1 to 1.12.2 in /lambdas ([#4772](#4772)) ([4d0ad0a](4d0ad0a)) * **lambda:** bump axios from 1.8.4 to 1.12.0 in /lambdas ([#4763](#4763)) ([bbf1bd8](bbf1bd8)) * **lambda:** bump the aws group in /lambdas with 7 updates ([#4769](#4769)) ([7f30dca](7f30dca)) * **lambda:** bump the aws-powertools group in /lambdas with 4 updates ([#4770](#4770)) ([dbb6888](dbb6888)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: runners-releaser[bot] <194412594+runners-releaser[bot]@users.noreply.github.com>

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Sep 15, 2025

dependabot bot requested a review from a team as a code owner September 15, 2025 19:09

dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update Javascript code labels Sep 15, 2025

npalm approved these changes Sep 18, 2025

View reviewed changes

npalm merged commit dbb6888 into main Sep 18, 2025
6 of 7 checks passed

npalm deleted the dependabot/npm_and_yarn/lambdas/aws-powertools-d5152ab437 branch September 18, 2025 21:40

runners-releaser bot mentioned this pull request Sep 18, 2025

chore(main): release 6.7.8 #4765

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

fix(lambda): bump the aws-powertools group in /lambdas with 4 updates #4770

fix(lambda): bump the aws-powertools group in /lambdas with 4 updates #4770

Uh oh!

dependabot bot commented on behalf of github Sep 15, 2025

Uh oh!

github-actions bot commented Sep 15, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

fix(lambda): bump the aws-powertools group in /lambdas with 4 updates #4770

fix(lambda): bump the aws-powertools group in /lambdas with 4 updates #4770

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 15, 2025

v2.26.1

Summary

Changes

📜 Documentation updates

🔧 Maintenance

This release was made possible by the following contributors:

v2.26.0

Summary

Working with API Gateway REST APIs

Key Features

2.26.1 (2025-09-15)

Bug Fixes

2.26.0 (2025-09-11)

Improvements

Bug Fixes

Features

Maintenance

v2.26.1

Summary

Changes

📜 Documentation updates

🔧 Maintenance

This release was made possible by the following contributors:

v2.26.0

Summary

Working with API Gateway REST APIs

Key Features

2.26.1 (2025-09-15)

Bug Fixes

2.26.0 (2025-09-11)

Improvements

Bug Fixes

Features

Maintenance

v2.26.1

Summary

Changes

📜 Documentation updates

🔧 Maintenance

This release was made possible by the following contributors:

v2.26.0

Summary

Working with API Gateway REST APIs

Key Features

2.26.1 (2025-09-15)

Bug Fixes

2.26.0 (2025-09-11)

Improvements

Bug Fixes

Features

Maintenance

v2.26.1

Summary

Changes

📜 Documentation updates

🔧 Maintenance

This release was made possible by the following contributors:

v2.26.0

Summary

Working with API Gateway REST APIs

Key Features

2.26.1 (2025-09-15)

Bug Fixes

2.26.0 (2025-09-11)

Improvements

Bug Fixes

Features

Maintenance

Uh oh!

github-actions bot commented Sep 15, 2025

Dependency Review

OpenSSF Scorecard

Scanned Files

Uh oh!

Uh oh!