Upgrade: Bump the dependencies group in /cdn with 5 updates

[dependabot]

Bumps the dependencies group in /cdn with 5 updates:

Package	From	To
boto3	1.40.64	1.42.39
botocore	1.40.64	1.42.39
click	8.3.0	8.3.1
jmespath	1.0.1	1.1.0
s3transfer	0.14.0	0.16.0

Updates boto3 from 1.40.64 to 1.42.39

Commits

• fd93dbb Merge branch 'release-1.42.39'
• 0a13ecc Bumping version to 1.42.39
• e6b1f89 Add changelog entries from botocore
• f76522e Merge branch 'release-1.42.38'
• c7ef3d3 Merge branch 'release-1.42.38' into develop
• 24e7223 Bumping version to 1.42.38
• 0b29f3a Add changelog entries from botocore
• 68bd84f Update wheel to 0.46.3 (#4713)
• bae9979 Merge branch 'release-1.42.37'
• be2fdc5 Merge branch 'release-1.42.37' into develop
• Additional commits viewable in compare view

Updates botocore from 1.40.64 to 1.42.39

Commits

• 26a688f Merge branch 'release-1.42.39'
• f20e262 Bumping version to 1.42.39
• d48f527 Update endpoints model
• b96b52a Update to latest models
• 0b51aea Merge branch 'release-1.42.38'
• d30db46 Merge branch 'release-1.42.38' into develop
• 37194c4 Bumping version to 1.42.38
• 272ab9b Update to latest models
• 51455c2 Merge branch 'release-1.42.37'
• 9ff970f Merge branch 'release-1.42.37' into develop
• Additional commits viewable in compare view

Updates click from 8.3.0 to 8.3.1

Release notes

Sourced from click's releases.

8.3.1

This is the Click 8.3.1 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.3.1/ Changes: https://click.palletsprojects.com/page/changes/#version-8-3-1 Milestone: https://github.com/pallets/click/milestone/28

• Don't discard pager arguments by correctly using subprocess.Popen. #3039 #3055
• Replace Sentinel.UNSET default values by None as they're passed through the Context.invoke() method. #3066 #3065 #3068
• Fix conversion of Sentinel.UNSET happening too early, which caused incorrect behavior for multiple parameters using the same name. #3071 #3079
• Fix rendering when prompt and confirm parameter prompt_suffix is empty. #3019 #3021
• When Sentinel.UNSET is found during parsing, it will skip calls to type_cast_value. #3069 #3090
• Hide Sentinel.UNSET values as None when looking up for other parameters through the context inside parameter callbacks. #3136 #3137

Changelog

Sourced from click's changelog.

Version 8.3.1

Released 2025-11-15

• Don't discard pager arguments by correctly using subprocess.Popen. :issue:3039 :pr:3055
• Replace Sentinel.UNSET default values by None as they're passed through the Context.invoke() method. :issue:3066 :issue:3065 :pr:3068
• Fix conversion of Sentinel.UNSET happening too early, which caused incorrect behavior for multiple parameters using the same name. :issue:3071 :pr:3079
• Hide Sentinel.UNSET values as None when looking up for other parameters through the context inside parameter callbacks. :issue:3136 :pr:3137
• Fix rendering when prompt and confirm parameter prompt_suffix is empty. :issue:3019 :pr:3021
• When Sentinel.UNSET is found during parsing, it will skip calls to type_cast_value. :issue:3069 :pr:3090

Commits

• 1d038f2 release version 8.3.1
• 03f3889 Fix Ruff UP038 warning (#3141)
• 3867781 Fix Ruff UP038 warning
• b91bb95 Provide altered context to callbacks to hide UNSET values as None (#3137)
• 437e1e3 Temporarily provide a fake context to the callback to hide UNSET values as ...
• ea70da4 Don't test using a file in docs/ (#3102)
• e27b307 Make uv run --all-extras pyright --verifytypes click pass (#3072)
• a92c573 Fix test_edit to work with BSD sed (#3129)
• bd131e1 Fix test_edit to work with BSD sed
• 0b5c6b7 Add Best practices section (#3127)
• Additional commits viewable in compare view

Updates jmespath from 1.0.1 to 1.1.0

Changelog

Sourced from jmespath's changelog.

1.1.0

• Fix concurrency issue with cache (pr [#335](https://github.com/jmespath/jmespath.py/issues/335) <https://github.com/jmespath/jmespath.py/pull/335>__)
• Added support for Python 3.12-3.14 (pr [#331](https://github.com/jmespath/jmespath.py/issues/331) <https://github.com/jmespath/jmespath.py/pull/331>__)
• Removed support for Python 3.7-3.8 (pr [#335](https://github.com/jmespath/jmespath.py/issues/335) <https://github.com/jmespath/jmespath.py/pull/335>__)

Commits

• 6ff419a Merge branch 'release-1.1.0'
• 17e964f Bump version to 1.1.0
• 5ce13aa Merge branch 'v1.1.0' into develop
• d8f0457 Revert versions back to current version
• 8cb3082 1.1.0
• 6e37991 Update permissions in codeql.yml workflow (#338)
• 141734d Bring .github settings up-to-date (#336)
• 07e30cf Merge pull request #337 from nateprewitt/python_changelog
• 9170711 Add missing changelog entries for Python support
• cdb9327 Fix file encoding for Windows
• Additional commits viewable in compare view

Updates s3transfer from 0.14.0 to 0.16.0

Changelog

Sourced from s3transfer's changelog.

0.16.0

• feature:awscrt: CRTTransferManager now supports the following TransferConfig options - multipart_threshold, multipart_chunksize, max_request_concurrency

0.15.0

• feature:CopyPartTask: Validate ETag of stored object during multipart copies

Commits

• 8ebcc1e Merge branch 'release-0.16.0'
• cc4db16 Bumping version to 0.16.0
• 3d60212 Merge pull request #361 from hssyoo/crt-mode
• ee83a56 Add test for arg removal
• 9363a53 Validate min CRT version for config options
• ce2ea72 Use request_type to build CRT args
• fa2d8e0 Edit changelog entry to feature type
• 32137a7 Add support for max_request_concurrency
• 6519e63 Add TransferConfig support for CRTTransferManager
• e7d0e93 Merge branch 'release-0.15.0'
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions