chore: bump the gradle-updates group across 1 directory with 5 updates

[dependabot]

Bumps the gradle-updates group with 4 updates in the / directory: com.google.guava:guava, software.amazon.awscdk:aws-cdk-lib, com.fasterxml.jackson:jackson-bom and com.ncorti.ktfmt.gradle.

Updates com.google.guava:guava from 33.4.8-jre to 33.5.0-jre

Release notes

Sourced from com.google.guava:guava's releases.

33.5.0

Maven

<dependency>
  <groupId>com.google.guava</groupId>
  <artifactId>guava</artifactId>
  <version>33.5.0-jre</version>
  <!-- or, for Android: -->
  <version>33.5.0-android</version>
</dependency>

Jar files

• 33.5.0-jre.jar
• 33.5.0-android.jar

Guava requires one runtime dependency, which you can download here:

• failureaccess-1.0.3.jar

Javadoc

• 33.5.0-jre
• 33.5.0-android

JDiff

• 33.5.0-jre vs. 33.4.8-jre
• 33.5.0-android vs. 33.4.8-android
• 33.5.0-android vs. 33.5.0-jre

Changelog

• Restored the Automatic-Module-Name to guava-android. (It, unlike, guava-jre, is not a proper module.) (7a04a8a955)
• For users of guava-gwt: Google has moved off GWT internally. We plan to continue to release guava-gwt for users of GWT and J2CL, but the artifact is no longer tested for GWT-specific issues, and we have limited resources to fix any unexpected issues that might arise. While we do not anticipate any specific problems, we can't guarantee how long support will continue.
• Increased our Android minSdkVersion to 23 (Marshmallow). This follows the minimum of Google's foundational Android libraries, and we expect it to have no practical impact on users. (5c23347cc1)
• Listed the JSpecify annotations as an optional dependency in our OSGi metadata. (2dfd572981)
• cache: Improved the handling of exceptions from compute functions in Cache.asMap(). (We do still recommend using Caffeine rather than com.google.common.cache.) (087f2c4a80)
• collect: Improved Iterators.mergeSorted() to preserve stability for equal elements. (4dc93be9a8)
• math: Added saturatedAbs methods to IntMath and LongMath. (ed0e518f20)
• net: Added image/avif to MediaType. (53344caba6)
• testing: Made CollectorTester available to Android users. (294c251079)
• util.concurrent: Added Striped.custom. (1586eb271d)

Commits

• See full diff in compare view

Updates software.amazon.awscdk:aws-cdk-lib from 2.208.0 to 2.216.0

Release notes

Sourced from software.amazon.awscdk:aws-cdk-lib's releases.

v2.216.0

Features

• apigatewayv2: add disableSchemaValidation for Websocket api (#35290) (bc391ce)
• cloudfront-origins: response completion timeout (#35485) (7d70bf4)
• elasticloadbalancingv2: support target group health attributes (#33351) (2de6e39), closes #31821
• events: add support for Event Bus Logging Configuration (#35201) (7ceaefb), closes #35000
• route53: add SVCB and HTTPS resource record classes (#34744) (8be219a), closes #34673
• stepfunctions-tasks: EmrCreateClusterOptions support ebsRootVolumeIops, ebsRootVolumeThroughput and managedScalingPolicy (#34677) (b3ad6f9), closes #33431

Bug Fixes

• cloudformation-include: aws::novalue type validation error for non-string properties (#35425) (ce76a56), closes #18420
• kinesisanalytics: deprecate using KinesisAnalyticsV2 from aws-kinesisanalytics, use aws-kinesisanalyticsv2 instead (#35519) (4255b23)
• kms: cannot access aliasTargetKey on an Alias imported by Alias.fromAliasName (#35521) (c0c9933), closes #35520
• secretsmanager: SecretRotationApplication creates lambda on python 3.9 which is EOL (#35528) (756b683), closes #34168
• secretsmanager: secret transformation (#35202) (f4b26af), closes #34168

---

Alpha modules (2.216.0-alpha.0)

v2.215.0

Features

• 33270: support new bun lock file (#34873) (0a55ed1), closes #33270
• codebuild: support remote Docker server (#34976) (eb8e74b), closes #34494
• update L1 CloudFormation resource definitions (#35435) (d7f211f)
• batch: ecs execute command (#35341) (30722f2)
• custom-resource: upgrade to python runtime 3.13 for custom resources (#35342) (3db140e)
• rds: add DatabaseProxyEndpoint L2 construct (#35064) (04d8a95), closes #14186
• stepfunctions-tasks: add Node.js 22 support to EvaluateExpression (#35370) (640821d), closes #35353
• synthetics: browser type for canary (#35423) (fe0708b)
• new resource interfaces shared by both L1s and L2s (#35032) (5e8c0d5)

Bug Fixes

• correct typo 'notfication' to 'notification' in Stack docstring (#35455) (bfb54b0), closes #35433
• ecr-assets: TarballImageAsset respects CDK_DOCKER environment variable (#35344) (8bf6b00), closes #35336
• s3: scope BucketNotificationsHandler IAM permissions to specific bucket ARNs (#35334) (c0300d2), closes #35331
• stepfunctions: incorrect/missing permissions to run/redrive DistributedMap in state machine (#34760) (bbebb79), closes #35390 aws/aws-cdk#28820 /github.com/aws/aws-cdk/blob/aea1372ab7bc68c489cea5ee5e499233755910e8/packages/aws-cdk-lib/aws-stepfunctions/lib/state-graph.ts#L178-L180
• stepfunctions: unable to run distributed map when only defined in nested StateGraphs (#35417) (036b413), closes #35391 aws/aws-cdk#34760

---

Alpha modules (2.215.0-alpha.0)

Bug Fixes

• bedrock-alpha: added missing validation when prompt uses default variant (#35366) (cbd271e)

v2.214.0

CHANGES TO L1 RESOURCES

... (truncated)

Changelog

Sourced from software.amazon.awscdk:aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.216.0-alpha.0 (2025-09-22)

2.215.0-alpha.0 (2025-09-15)

Bug Fixes

• bedrock-alpha: added missing validation when prompt uses default variant (#35366) (cbd271e)

2.214.0-alpha.0 (2025-09-02)

Features

• bedrock-alpha: add guardrails l2 construct (#34765) (b4fdb2b)
• eks-v2-alpha: support eks with k8s 1.33 (#34713) (c24565e), closes #34520 #34911
• s3tables-alpha: add TablePolicy support to L2 construct library (#35223) (2741dfb), closes #33054

2.213.0-alpha.0 (2025-08-27)

Features

• s3tables-alpha: add TablePolicy support to L2 construct library (#35223) (a4aad78), closes #33054

2.212.0-alpha.0 (2025-08-20)

2.211.0-alpha.0 (2025-08-12)

2.210.0-alpha.0 (2025-08-06)

Features

• glue-alpha: add optional metrics control for cost optimization (#35154) (6e24133), closes #35149

2.209.1-alpha.0 (2025-08-06)

Bug Fixes

• eks-v2-alpha: fix helm commands not running ecr public login (#35162) (6c2a8b8)

2.209.0-alpha.0 (2025-08-05)

... (truncated)

Commits

• 11eb6d5 chore(release): 2.216.0 (#35541)
• b164aa9 chore: update analytics metadata blueprints
• ceabeae chore(release): 2.216.0
• f95f7ac chore(bedrock): support Qwen3 and DeepSeek-V3.1 models (#35525)
• 756b683 fix(secretsmanager): SecretRotationApplication creates lambda on python 3.9...
• 8be219a feat(route53): add SVCB and HTTPS resource record classes (#34744)
• ce76a56 fix(cloudformation-include): aws::novalue type validation error for non-strin...
• 2de6e39 feat(elasticloadbalancingv2): support target group health attributes (#33351)
• 5176fe8 chore: upgrade axios version (#35517)
• e9fde62 chore(lambda): remove commented out unit tests (#35522)
• Additional commits viewable in compare view

Updates com.fasterxml.jackson:jackson-bom from 2.19.2 to 2.20.0

Commits

• 54f854b [maven-release-plugin] prepare release jackson-bom-2.20.0
• 9cc68d4 Prep for 2.20.0
• cbef800 Version sync for 2.20.0 release (in near future)
• 79bc4ed Back to snapshot deps
• 94947a0 [maven-release-plugin] prepare for next development iteration
• 369dffe [maven-release-plugin] prepare release jackson-bom-2.20.0-rc1
• c5caaf2 Prep for 2.20.0-rc1
• 8ad6e0a Move to 2.20.0-rc1-SNAPSHOT
• 500ef4d Merge branch '2.19' into 2.x
• 274f228 Back to snapshot deps
• Additional commits viewable in compare view

Updates com.fasterxml.jackson.module:jackson-module-kotlin from 2.19.2 to 2.20.0

Commits

• 5684fc2 [maven-release-plugin] prepare release jackson-module-kotlin-2.20.0
• 4d53d9a Prep for 2.20.0
• df3d719 Drop rc2 from version
• 03159dd Post-release version bump
• 3982156 [maven-release-plugin] prepare for next development iteration
• 295e60c [maven-release-plugin] prepare release jackson-module-kotlin-2.20.0-rc1
• ddc1e5c Prep for 2.20.0-rc1
• 80b8371 Merge pull request #1025 from k163377/ex
• 50f5527 Update release notes wrt #1025
• 4ab4308 Fix to test that KotlinInvalidNullException is thrown
• Additional commits viewable in compare view

Updates com.ncorti.ktfmt.gradle from 0.23.0 to 0.24.0

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.