chore(deps): update safe automerge

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
@aws-sdk/client-ecs (source)	3.1057.0 → 3.1076.0			dependencies	minor
@aws-sdk/client-resource-groups-tagging-api (source)	3.1057.0 → 3.1076.0			dependencies	minor
@platformatic/service	3.55.0 → 3.58.1			dependencies	minor
fastify (source)	5.8.5 → 5.9.0			devDependencies	minor
node	24.16.0-alpine → 24.18.0-alpine			final	minor
platformatic (source)	3.55.0 → 3.58.1			dependencies	minor
pnpm (source)	11.5.0 → 11.9.0			packageManager	minor
pnpm/action-setup	v6.0.8 → v6.0.9			action	patch
wattpm (source)	3.55.0 → 3.58.1			dependencies	minor

---

Release Notes

aws/aws-sdk-js-v3 (@​aws-sdk/client-ecs)

v3.1076.0

Compare Source

Features

• client-ecs: Amazon ECS now supports customizable deployment circuit breaker configurations. Customers can now define the failure threshold or control the failure counting mechanism. (ff85bd3)

v3.1075.0

Compare Source

3.1075.0(2026-06-23)

New Features

• client-kafka: Amazon MSK Replicator now supports mTLS authentication when connecting to external Apache Kafka clusters, enabling customers to replicate data from clusters that require mutual TLS for client authentication. This capability is supported when replicating to Amazon MSK Express brokers. (005f9529)

---

For list of updated packages, view updated-packages.md in assets-3.1075.0.zip

v3.1074.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1073.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1072.0

Compare Source

Features

• client-ecs: Amazon ECS services now support high resolution (20 second) CloudWatch metrics for CPUUtilization and MemoryUtilization. Use these metrics for faster service auto scaling. (93055ac)

v3.1071.0

Compare Source

3.1071.0(2026-06-17)

New Features

• client-partnercentral-selling: Cosell Resonate AND Prospecing API Launch with ARN correction (7e8c98ab)
• client-compute-optimizer-automation: This launch adds IfExists comparison operators to Compute Optimizer Automation rule criteria, so a rule can include recommended actions whose specified attribute isn't present. (ab2c616d)
• client-bedrock-agent: Launching Bedrock Managed Knowledge Bases. Added support for resource-based policies on Knowledge Base resources, enabling cross-account access for Managed Knowledge Bases. (de0affe4)
• client-securityagent: Updated AWS Security Agent SDK model with new APIs for threat modeling, code review, security requirements, and additional integration providers. (9c3d3351)
• client-opensearch: Adds support for configuring IAM Identity Center options on existing OpenSearch applications via the UpdateApplication API. (94f06a20)
• client-glue: This release adds support for Search and Discovery in AWS Glue, letting you and your applications search Data Catalog assets such as table and enrich them with business context and glossary terms. (b394fc0b)
• client-bedrock-agentcore-control: AgentCore Gateway now supports inference targets to LLM providers (direct config or built-in connectors), HTTP passthrough targets with session stickiness, runtime target API schemas, AWS WAF web ACL association with configurable fail-open or fail-close modes, and interceptor payload filtering. (75f1d588)
• client-devops-agent: Adds support for Remote A2A (Agent-to-Agent) agent registration and management. Adds new Release Readiness Review and Release Testing capabilities. Adds support for Git managed skills in AWS DevOps Agent. (ebc040e1)
• client-bedrock-agentcore: AgentCore Harness service will be Generally Available at NYS 2026 with this Treb release. Harness will support invoking specific endpoints via the qualifier parameter, AWS Skills for pre-built agent capabilities, and improved validation for skill git source URLs. (5bf9fccc)
• client-ecs: Releasing the ability to bring-your-own task-definition for CreateExpressGatewayService and UpdateGatewayExpressService (b7b9cb4f)
• client-mq: This release adds private networking support for Amazon MQ for RabbitMQ. You can now associate AWS RAM resource shares with your broker and retrieve shared resource details using the new DescribeSharedResources API. (e96af450)
• client-bedrock-agent-runtime: Adds new AgenticRetrieveStream API for managed knowledge bases to use conversation history and autonomously plan for multi-hop multi-KB reasoning with built-in evaluation and access-control. Updates Retrieve API for access-control-based filtering for managed knowledge bases. (557f7b32)

Tests

• core:
  • prebuild before integration and e2e (#​8111) (363f3fb7)
  • prebuild core before unit tests (#​8108) (5f789e7f)

---

For list of updated packages, view updated-packages.md in assets-3.1071.0.zip

v3.1070.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1069.0

Compare Source

3.1069.0(2026-06-15)

Chores

• scripts:
  • apply esm-to-cjs transform to rollup bundles (#​8103) (96759918)
  • tuning the build graph (#​8095) (67981c5a)

Documentation Changes

• client-rds: Adding support for RDS SQL Server BYOM and DB2 Community Edition (db75dc76)

New Features

• client-bedrock-runtime: InvokeGuardrailChecks API evaluates prompts and responses against safety checks (content filters, prompt attacks, sensitive info) without creating guardrail resources. It's a detect-only API, returning numeric scores so you can build adaptive logic as per your application. (4b1fd023)
• client-cloudwatch-logs: Added endTimeOffset parameter to Scheduled Queries APIs (Create, Update, Get) enabling bounded time window configuration. Introduced scheduleType filter (CUSTOMER MANAGED, AWS MANAGED) for ListScheduledQueries and exposed it in Get and Update responses. (e1318840)
• client-workspaces: Added a validation for null check for ImageIds in DescribeWorkspaceImages API request parameters. (4d72e87d)
• client-wafv2: AWS WAF now supports AI traffic monetization for CloudFront. Configure payment networks and pricing on your web ACL, use the new Monetize rule action to charge AI agents via x402, and monitor revenue with new GetRevenueStatisticsSummary, GetRevenueStatistics, and ListSettlementRecords APIs. (49bed3c9)
• client-datazone: Adds support for deleting lineage events in Amazon DataZone. (8e2a176d)
• client-mgn: AWS Transform for VMware now supports Amazon FSx for NetApp ONTAP as a target storage. Customers can migrate source server disks directly to FSx for NetApp ONTAP iSCSI LUNs. Target storage is configurable per source server, and compute, network, and storage migrate together in coordinated waves. (cc83d723)

---

For list of updated packages, view updated-packages.md in assets-3.1069.0.zip

v3.1068.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1067.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1066.0

Compare Source

Features

• client-ecs: Amazon ECS Managed Daemon task definitions now support pidMode and ipcMode parameters. Set shared to allow daemons to share PID or IPC namespaces with co-located tasks on Managed Instances, enabling process tracing and shared memory communication. (4a88904)

v3.1065.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1064.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1063.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1062.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1061.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1060.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1059.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

v3.1058.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-ecs

aws/aws-sdk-js-v3 (@​aws-sdk/client-resource-groups-tagging-api)

v3.1076.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1075.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1074.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1073.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1072.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1071.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1070.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1069.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1068.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1067.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1066.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1065.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1064.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1063.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1062.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1061.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1060.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1059.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

v3.1058.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-resource-groups-tagging-api

platformatic/platformatic (@​platformatic/service)

v3.58.1

What's Changed

• fix(deps): update opentelemetry packages by @​renovate[bot] in #​4835
• chore(deps): update astro monorepo by @​renovate[bot] in #​4816
• chore(deps): update dependency console-table-printer to v2.16.1 by @​renovate[bot] in #​4837
• chore(deps): update dependency @​types/node to v22.19.21 by @​renovate[bot] in #​4817
• fix(deps): update dependency @​platformatic/undici-cache-memory to ^0.9.0 by @​renovate[bot] in #​4800
• chore: refresh protobufjs lockfile entries by @​mcollina in #​4832
• chore(deps): update dependency @​types/inquirer to v9.0.10 by @​renovate[bot] in #​4839
• chore(deps): update dependency isbot to v5.1.42 by @​renovate[bot] in #​4840
• chore(deps): lock file maintenance by @​renovate[bot] in #​4841
• docs: add globals runtime API reference by @​mcollina in #​4838
• docs: document TLS env vars for k8s health endpoints by @​mcollina in #​4844
• feat: Improved unhandled exceptions handling. by @​ShogunPanda in #​4842
• feat: Support HTTPS in Node applications. by @​ShogunPanda in #​4843
• fix(telemetry): improve diag logger object output by @​mcollina in #​4845
• feat: Added Sentry logging example. by @​ShogunPanda in #​4847
• chore(deps): update pnpm/action-setup action to v4.4.0 by @​renovate[bot] in #​4834
• chore(deps): update pnpm to v10.34.4 by @​renovate[bot] in #​4833
• feat: Added gateway deduplication. by @​ShogunPanda in #​4849
• feat: Added Nuxt capability. by @​ShogunPanda in #​4846
• fix(next): avoid empty DEL when revalidating Valkey tags with no entries by @​mbackonja in #​4853
• chore(deps): update dependency borp to v1 by @​renovate[bot] in #​4824
• chore(deps): update dependency astro to v6.4.6 [security] by @​renovate[bot] in #​4854
• chore(deps): update dependency tar to v7.5.16 [security] by @​renovate[bot] in #​4855
• chore(deps): update dependency vite to v7.3.5 [security] by @​renovate[bot] in #​4856
• chore(deps): update astro monorepo by @​renovate[bot] in #​4858
• chore(deps): lock file maintenance by @​renovate[bot] in #​4860
• fix(deps): update dependency undici to v7.28.0 [security] by @​renovate[bot] in #​4861
• fix: Skipped nested pnpm installs. by @​ShogunPanda in #​4862
• fix(metrics): export OTLP metrics for command-based services by @​mcollina in #​4850
• feat: Added healthProbes runtime configuration. by @​ShogunPanda in #​4863
• chore(deps): update dependency undici-oidc-interceptor to ^0.9.0 by @​renovate[bot] in #​3873
• fix(runtime): use unique worker indices on restart by @​mcollina in #​4596
• feat: Updated to inquirer 13. by @​ShogunPanda in #​4864
• docs: fix broken Markdown links flagged by Docusaurus build by @​mcollina in #​4867
• chore(deps): update dependency isbot to v5.1.44 by @​renovate[bot] in #​4869
• chore(deps): update dependency @​datadog/pprof to v5.15.1 by @​renovate[bot] in #​4870
• chore(deps): update dependency @​nuxt/cli to v3.36.1 by @​renovate[bot] in #​4871
• doc: use watt skills with agents by @​marcopiraccini in #​4868

New Contributors

• @​mbackonja made their first contribution in #​4853

Full Changelog: platformatic/platformatic@v3.57.0...v3.58.1

v3.57.0

Compare Source

What's Changed

• fix(deps): update dependency undici to v7.27.2 by @​renovate[bot] in #​4801
• chore(deps): update dependency graphql to v16.14.2 by @​renovate[bot] in #​4818
• fix(deps): update dependency @​platformatic/graphql-composer to ^0.11.0 by @​renovate[bot] in #​4822
• fix(deps): update dependency amaro to v1 by @​renovate[bot] in #​4830
• chore(deps): update dependency c8 to v11 by @​renovate[bot] in #​4825
• fix(deps): update dependency @​fastify/view to v12 by @​renovate[bot] in #​4829
• fix(deps): update dependency @​fastify/jwt to v10 by @​renovate[bot] in #​4828
• fix(deps): update dependency @​fastify/cors to v11 by @​renovate[bot] in #​4826
• feat(telemetry): add OTLP gRPC transport option by @​mcollina in #​4769
• fix(deps): update dependency @​platformatic/promotel to ^0.2.0 by @​renovate[bot] in #​4823
• feat(runtime): support HTTPS for metrics server by @​mcollina in #​4831
• fix(deps): update dependency @​fastify/deepmerge to v3 by @​renovate[bot] in #​4827
• fix: don't fail metrics collection when http stats globals are not tracked by @​marcopiraccini in #​4836

Full Changelog: platformatic/platformatic@v3.56.0...v3.57.0

v3.56.0

Compare Source

What's Changed

• chore(deps): update babel monorepo to v7.29.7 by @​renovate[bot] in #​4808
• chore(deps): update astro monorepo by @​renovate[bot] in #​4807
• chore(deps): lock file maintenance by @​renovate[bot] in #​4797
• chore(deps): lock file maintenance by @​renovate[bot] in #​4810
• chore(deps): update dependency borp to ^0.21.0 by @​renovate[bot] in #​4809
• fix: Do not generate server configuration for wrapped applications. by @​ShogunPanda in #​4813
• fix: Properly report missing dependencies. by @​ShogunPanda in #​4812
• feat: Support new handler option for gateway. by @​ShogunPanda in #​4811
• chore(deps): lock file maintenance by @​renovate[bot] in #​4819
• fix(runtime): preserve undici 8 global dispatcher by @​mcollina in #​4815
• fix(db): support pgvector vector columns by @​mcollina in #​4735
• feat: New Global API. by @​ShogunPanda in #​4814
• feat: Support factory for background applications. by @​ShogunPanda in #​4820
• Allow runtime without entrypoint by @​mcollina in #​4821

Full Changelog: platformatic/platformatic@v3.55.0...v3.56.0

fastify/fastify (fastify)

v5.9.0

Compare Source

nodejs/node (node)

v24.18.0: 2026-06-23, Version 24.18.0 'Krypton' (LTS), @​richardlau prepared by @​sxa

Compare Source

Notable Changes

• [e07e7a31e1] - crypto: update root certificates to NSS 3.123.1 (Node.js GitHub Bot) #​63527
• [44c8ebcbd6] - http: avoid stream listeners on idle agent sockets (Matteo Collina) #​64004
• [d3ef4122ee] - (SEMVER-MINOR) buffer: increase Buffer.poolSize default to 64 KiB (Matteo Collina) #​63597
• [bb2857b85a] - (SEMVER-MINOR) crypto: align key argument names in docs and error messages (Filip Skokan) #​62527
• [b9d5e87880] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #​62527
• [ccd756d61e] - (SEMVER-MINOR) crypto: add TurboSHAKE and KangarooTwelve Web Cryptography algorithms (Filip Skokan) #​62183
• [4c9251fc09] - (SEMVER-MINOR) http: add writeInformation to send arbitrary 1xx status codes (Tim Perry) #​63155
• [8c989ec4a3] - (SEMVER-MINOR) inspector: expose precise coverage start to JS runtime (sangwook) #​63079
• [3f54c8ba32] - Revert "stream: noop pause/resume on destroyed streams" (Stewart X Addison) #​63834

Commits

• [d3ef4122ee] - (SEMVER-MINOR) buffer: increase Buffer.poolSize default to 64 KiB (Matteo Collina) #​63597
• [9ff36e40f0] - build: add --enable-all-experimentals build flag (Paolo Insogna) #​62755
• [7c22ee23aa] - build: def NODE_USE_NODE_CODE_CACHE only used in node_mksnapshot (Chengzhong Wu) #​63588
• [2551abdb4a] - build,win: enable x64 PGO (Stefan Stojanovic) #​62761
• [e8a55ce9b1] - crypto: strengthen argument CHECKs in TurboSHAKE (Tobias Nießen) #​62763
• [ae61cd68f3] - crypto: harden WebCrypto against prototype pollution (Filip Skokan) #​63363
• [3d05a1d396] - crypto: pass CryptoKey handles to KDF jobs (Filip Skokan) #​63363
• [f9d10a3f6b] - crypto: remove async from WebCrypto methods (Filip Skokan) #​63363
• [e431d93e9e] - crypto: add WebCrypto CryptoJob mode (Filip Skokan) #​63363
• [56e2505e48] - crypto: wire ML-DSA and ML-KEM for use when using BoringSSL (Filip Skokan) #​63255
• [3bac77f2a8] - crypto: wire ChaCha20-Poly1305 in Web Cryptography when using BoringSSL (Filip Skokan) #​63255
• [1bff901b09] - crypto: wire AES-KW in Web Cryptography when using BoringSSL (Filip Skokan) #​63255
• [4433fca3df] - crypto: harden CryptoKey algorithm slots (Filip Skokan) #​63111
• [b5cf01217a] - crypto: harden KeyObject internal slots (Filip Skokan) #​63111
• [ce84aef37d] - crypto: add guards and adjust tests for BoringSSL (Filip Skokan) #​62883
• [26781689b0] - crypto: reject duplicate ML-KEM JWK key_ops (Filip Skokan) #​62905
• [aeea8f4970] - crypto: add JWK support for ML-KEM and SLH-DSA key types (Filip Skokan) #​62706
• [407cf91656] - crypto: guard against size_t overflow on experimental 32-bit arch (Filip Skokan) #​62626
• [bb2857b85a] - (SEMVER-MINOR) crypto: align key argument names in docs and error messages (Filip Skokan) #​62527
• [b9d5e87880] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #​62527
• [b46d52b283] - crypto: unify asymmetric key import through KeyObjectHandle::Init (Filip Skokan) #​62499
• [ccd756d61e] - (SEMVER-MINOR) crypto: add TurboSHAKE and KangarooTwelve Web Cryptography algorithms (Filip Skokan) #​62183
• [e07e7a31e1] - crypto: update root certificates to NSS 3.123.1 (Node.js GitHub Bot) #​63527
• [61826df455] - crypto: coerce -0 keylen to +0 in pbkdf2 and scrypt (Jordan Harband) #​63531
• [16d2fd3c07] - crypto: align verifyOneShot accepted types (Anshika Jain) #​63280
• [3b8330deda] - crypto: improve system certificate enumeration logic on macOS (Robo) #​62576
• [141de35399] - debugger: add --help to node inspect and improve docs (Joyee Cheung) #​63201
• [b76bfcd4fa] - deps: upgrade npm to 11.16.0 (npm team) #​63602
• [4ec142314c] - deps: SQLite: cherry-pick b869ed6 (Junsu Han) #​63525
• [19e8ce1c36] - deps: upgrade npm to 11.15.0 (npm team) #​63463
• [8a264260e2] - deps: update sqlite to 3.53.1 (Node.js GitHub Bot) #​63217
• [50c8ff3f94] - deps: update simdjson to 4.6.4 (Node.js GitHub Bot) #​62811
• [6e56f01c4b] - deps: V8: cherry-pick 435a2cd (Matthias Liedtke) #​63136
• [3ba813b242] - deps: cherry-pick libuv/libuv@a43e543 (Ali Hassan) #​63222
• [2390e3a5ac] - doc: remove duplicated sentences in large-pull-requests.md (Joyee Cheung) #​63650
• [52a1c18374] - doc: update git node land instructions for security releases (Antoine du Hamel) #​63586
• [3e6b4da037] - doc: drop --experimental from --permission (Rafael Gonzaga) #​63583
• [84d05163b9] - doc: explicitly ask for reproducible in JS (Rafael Gonzaga) #​63479
• [7da2a4450e] - doc: fix URL postMessage example in worker_threads (Kit Dallege) #​62203
• [3d79bd8b29] - doc: clarify filter option of sqlite.database.applyChangeset (Antoine du Hamel) #​63515
• [4f4174aace] - doc: fix double spaces in ERR_TLS_INVALID_PROTOCOL_METHOD (Daijiro Wachi) #​63511
• [388323ca4b] - doc: fix double space in modules.md (Daijiro Wachi) #​63512
• [5258ccc058] - doc: fix "options" to "option" in tls.createServer (Daijiro Wachi) #​63453
• [43e83e6507] - doc: fix typo in deprecations (Daijiro Wachi) #​63434
• [f05a61d54c] - doc: remove unsupported template type from v8.md (René) #​63410
• [c39d5fc820] - doc: fix article usage before vowel-sound acronyms (joao-oliveira-softtor) #​62696
• [398261f911] - doc: remove the bi-monthly contributor spotlight section (Claudio Wunder) #​62734
• [fd9e14c405] - doc: update http2's push and trailers events with rawHeaders param (YuSheng Chen) #​63259
• [b943ce6933] - doc: remove inactive members from Triagers list (Antoine du Hamel) #​63329
• [4b9cdfc022] - doc: reference correct function in Module docs (Robin Malfait) #​63247
• [bed84b6df2] - doc: replace Visual Studio 2022 Evergreen version reference with 17.14 (Mike McCready) #​63211
• [32ea70569b] - doc: recommend explicitly Tier 1 or 2 for production applications (Mike McCready) #​63187
• [4627bcfd82] - doc: run license-builder (github-actions[bot]) #​63232
• [28eba71845] - doc: add large pull requests contributing guide (Matteo Collina) #​62829
• [2648efd438] - doc: remove unnecessary <!-- eslint- magic comments (Antoine du Hamel) #​63200
• [a95fc1f8fc] - doc: clarify SEA platform support excludes darwin-x64 (MJSHANG) #​63181
• [aaef29e2e1] - doc: update release steps when post-release fails (Rafael Gonzaga) #​63131
• [[7d81419cf2](https://redirect.github.com/nodejs/node/commit/

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • At any time (no schedule defined)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.