Bump the npm_and_yarn group across 1 directory with 6 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the npm_and_yarn group with 6 updates in the / directory:

Package	From	To
fast-xml-parser	4.0.11	4.2.5
@aws-sdk/client-s3	3.252.0	3.537.0
follow-redirects	1.15.5	1.15.6
ip	2.0.0	2.0.1
tough-cookie	4.1.2	4.1.3
@cypress/request	2.88.11	2.88.12

Updates fast-xml-parser from 4.0.11 to 4.2.5

Release notes

Sourced from fast-xml-parser's releases.

Security Fix

Update to this release if you use entity parsing in Fast XML Parser.

Changelog

Sourced from fast-xml-parser's changelog.

Note: If you find missing information about particular minor version, that version must have been changed without any functional change in this library.

4.3.6 / 2024-03-16

• Add support for parsing HTML numeric entities (#645) (By Jonas Schade )

4.3.5 / 2024-02-24

• code for v5 is added for experimental use

4.3.4 / 2024-01-10

• fix: Don't escape entities in CDATA sections (#633) (By wackbyte)

4.3.3 / 2024-01-10

• Remove unnecessary regex

4.3.2 / 2023-10-02

• fix jObj.hasOwnProperty when give input is null (By Arda TANRIKULU)

4.3.1 / 2023-09-24

• revert back "Fix typings for builder and parser to make return type generic" to avoid failure of existing projects. Need to decide a common approach.

4.3.0 / 2023-09-20

• Fix stopNodes to work with removeNSPrefix (#607) (#608) (By [Craig Andrews]https://github.com/candrews))
• Fix #610 ignore properties set to Object.prototype
• Fix typings for builder and parser to make return type generic (By Sarah Dayan)

4.2.7 / 2023-07-30

• Fix: builder should set text node correctly when only textnode is present (#589) (By qianqing)
• Fix: Fix for null and undefined attributes when building xml (#585) (#598). A null or undefined value should be ignored. (By Eugenio Ceschia)

4.2.6 / 2023-07-17

• Fix: Remove trailing slash from jPath for self-closing tags (#595) (By Maciej Radzikowski)

4.2.5 / 2023-06-22

• change code implementation

4.2.4 / 2023-06-06

• fix security bug

4.2.3 / 2023-06-05

• fix security bug

4.2.2 / 2023-04-18

• fix #562: fix unpaired tag when it comes in last of a nested tag. Also throw error when unpaired tag is used as closing tag

4.2.1 / 2023-04-18

• fix: jpath after unpaired tags

4.2.0 / 2023-04-09

• support updateTag parser property

... (truncated)

Commits

• 643816d update package details
• cc73065 Remove unused code (#587)
• 9a880b8 Merge pull request from GHSA-gpv5-7x3g-ghjv
• ecf6016 update package
• 0955739 fix: security bug
• abfee16 update package detail
• 39b0e05 fix security bug
• e7728af update funding detail
• c7b3cea update package detail
• 6511e07 fix unpaired tag
• Additional commits viewable in compare view

Updates @aws-sdk/client-s3 from 3.252.0 to 3.537.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.537.0

3.537.0(2024-03-19)

Chores

• ec2-metadata-service: set smithy dependency versions (#5918) (05c32e74)
• empty the contents of the sdkVersions.properties file when writing to it (#5916) (56e1cdc3)

Documentation Changes

• client-cloudformation: Documentation update, March 2024. Corrects some formatting. (1c3d2b4a)

New Features

• clients: update command documentation examples as of 2024-03-19 (5b3c7e9b)
• client-ec2: This release adds the new DescribeMacHosts API operation for getting information about EC2 Mac Dedicated Hosts. Users can now see the latest macOS versions that their underlying Apple Mac can support without needing to be updated. (b2f3261a)
• client-cloudwatch-logs: Update LogSamples field in Anomaly model to be a list of LogEvent (d5823e32)
• client-managedblockchain-query: Introduces a new API for Amazon Managed Blockchain Query: ListFilteredTransactionEvents. (487e1dd2)
• client-finspace: Adding new attributes readWrite and onDemand to dataview models for Database Maintenance operations. (38c6f75e)
• ec2-metadata-service: implement utils for ec2 metadata service (imds) (#5796) (aee792e1)

Bug Fixes

• middleware-ssec: ssecMiddleware with strict base64 validation (#5875) (28dcfa35)

---

For list of updated packages, view updated-packages.md in assets-3.537.0.zip

v3.536.0

3.536.0(2024-03-18)

Chores

• move deprecation after description in comments (#5911) (6bb7caa0)
• use Jreleaser for codegen maven releases (#5910) (85ac6b4b)
• upgrade gradle version to 8.2.1 (#5908) (343b0663)
• resolve smithy build warnings (#5909) (5ff1e812)

Documentation Changes

• client-timestream-query: Documentation updates, March 2024 (69aee05c)

New Features

• clients: update client endpoints as of 2024-03-18 (e1a2dc24)
• client-mediatailor: This release adds support to allow customers to show different content within a channel depending on metadata associated with the viewer. (72ad42dc)
• client-rds: This release launches the ModifyIntegration API and support for data filtering for zero-ETL Integrations. (861baa75)
• client-cloudformation: This release supports for a new API ListStackSetAutoDeploymentTargets, which provider auto-deployment configuration as a describable resource. Customers can now view the specific combinations of regions and OUs that are being auto-deployed. (29679ab8)

... (truncated)

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.537.0 (2024-03-19)

Note: Version bump only for package @​aws-sdk/client-s3

3.536.0 (2024-03-18)

Note: Version bump only for package @​aws-sdk/client-s3

3.535.0 (2024-03-15)

Note: Version bump only for package @​aws-sdk/client-s3

3.534.0 (2024-03-14)

Note: Version bump only for package @​aws-sdk/client-s3

3.533.0 (2024-03-13)

Features

• client-s3: This release makes the default option for S3 on Outposts request signing to use the SigV4A algorithm when using AWS Common Runtime (CRT). (2ddd8ec)

3.529.1 (2024-03-08)

Note: Version bump only for package @​aws-sdk/client-s3

... (truncated)

Commits

• 75c4599 Publish v3.537.0
• 69ecf8b Publish v3.536.0
• 6bb7caa chore: move deprecation after description in comments (#5911)
• c996c48 Publish v3.535.0
• 65377c8 docs(client-s3): Documentation updates for Amazon S3.
• 74b4812 chore(docs): move documentation before release tag (#5905)
• 56e6715 chore(clients): allow commands to be constructed without arg if optional (#5901)
• 96fd7dc chore(deps): bump tslib dependency to ^2.6.2 (#5899)
• 1d3b44b Publish v3.534.0
• 90feb3f Publish v3.533.0
• Additional commits viewable in compare view

Updates follow-redirects from 1.15.5 to 1.15.6

Commits

• 35a517c Release version 1.15.6 of the npm package.
• c4f847f Drop Proxy-Authorization across hosts.
• 8526b4a Use GitHub for disclosure.
• See full diff in compare view

Updates ip from 2.0.0 to 2.0.1

Commits

• 3b0994a 2.0.1
• 32f468f lib: fixed CVE-2023-42282 and added unit test
• See full diff in compare view

Updates tough-cookie from 4.1.2 to 4.1.3

Release notes

Sourced from tough-cookie's releases.

4.1.3

Security fix for Prototype Pollution discovery in #282. This is a minor release, although output from the inspect utility is affected by this change, we felt this change was important enough to be pushed into the next patch.

Commits

• 4ff4d29 4.1.3 release preparation, update the package and lib/version to 4.1.3. (#284)
• 12d4747 Prevent prototype pollution in cookie memstore (#283)
• f06b72d Fix documentation for store.findCookies, missing allowSpecialUseDomain proper...
• See full diff in compare view

Updates @cypress/request from 2.88.11 to 2.88.12

Release notes

Sourced from @​cypress/request's releases.

v2.88.12

2.88.12 (2023-08-01)

Bug Fixes

• request: update tough-cookie dep (0664780)

Commits

• 0664780 fix(request): update tough-cookie dep
• 30def80 Merge pull request #39 from cypress-io/jordanpowell88/update-pkg-version
• 6b79405 update package version
• bfbb95f Merge pull request #32 from BreakBB/fix-cve-2023-26136
• a67e132 pin 18.16
• 825485a revert back to yarn but v 18
• 3bce354 update workflow to use npm
• 4ceb20b Merge branch 'master' into fix-cve-2023-26136
• 228831e Merge pull request #38 from cypress-io/benm/github-workflows-update
• f6ee03f chore: add in workflows for github. update workflow actions
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
  You can disable automated security fix PRs for this repo from the Security Alerts page.