Upgrade: [dependabot] - bump @middy/core from 6.4.5 to 7.2.1#743

Open

dependabot[bot] wants to merge 1 commit intomainfrom

dependabot/npm_and_yarn/middy/core-7.2.1

Contributor

dependabot bot commented on behalf of github Mar 20, 2026 •

edited

Loading

Bumps @middy/core from 6.4.5 to 7.2.1.

Release notes

Sourced from @middy/core's releases.

7.2.1

What changed

@middy/cloudformation-response version 7.1.7 breaks life cycle of custom resource #1602

Full Changelog: middyjs/middy@7.2.0...7.2.1

7.2.0

What's Changed

event-normalizer: add support for rmq

Full Changelog: middyjs/middy@7.1.8...7.2.0

7.1.8

What's Changed

fix appconfig: crash when Configuration absent in GetLatestConfiguration response (SDK >= 3.929.0) #1600

Full Changelog: middyjs/middy@7.1.7...7.1.8

7.1.7

What's Changed

@middy/secrets-manager: Fixed crash when LastRotationDate or LastChangedDate is undefined during rotation-date-based cache expiry calculation. Previously, Math.max(undefined, ...) would produce NaN, breaking the cache logic. Now defaults to 0 when either date is missing.

@middy/cloudformation-response: Auto-populate PhysicalResourceId from context.logStreamName when not explicitly set. This prevents CloudFormation custom resource responses from failing due to a missing required field.

@middy/core (types): Widened the TErr generic in UseFn from Error to any, allowing middleware that uses custom error types to be passed to .use() without type errors.

Issue/1594 in middyjs/middy#1597

Full Changelog: middyjs/middy@7.1.6...7.1.7

7.1.6

What's Changed

Compatability with lambda power tools broken since 7.1.3 #1594

chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 by @dependabot[bot] in middyjs/middy#1593

chore(deps): bump actions/setup-node from 6.2.0 to 6.3.0 by @dependabot[bot] in middyjs/middy#1592

Full Changelog: middyjs/middy@7.1.5...7.1.6

7.1.5

What's Changed

httpResponseSerializer generates type error in Middy 7.1.4 #1590

(http-event-normalizer): API Gateway Event v2 is not accepted #1589

chore: update type test setup by @mrazauskas in middyjs/middy#1588

Full Changelog: middyjs/middy@7.1.4...7.1.5

7.1.4

What's Changed

7.1.3 introduced type error "Argument not assignable to parameter of type Context" #1585

... (truncated)

Commits

8ca0256 chore: version bump
136e3b4 chore: dep update
ca70b9b chore: version bump
452b668 chore: dep update
84db5d7 chore: version bump
3fda6c6 chore: dep update
46f5a5b docs: fix linking
32035db chore: version bump
c5f0075 fix: types
f4bffa9 chore: version bump
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for @middy/core since your current version.

dependabot bot added dependencies javascript labels

dependabot bot mentioned this pull request

Upgrade: [dependabot] - bump @middy/core from 6.4.5 to 7.1.6 #730

Closed

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from f56a07f to 9a6a748 Compare

March 20, 2026 18:07

eps-autoapprove-dependabot bot commented Mar 20, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

eps-autoapprove-dependabot bot added the requires-manual-qa label

eps-autoapprove-dependabot bot enabled auto-merge (squash)

March 20, 2026 18:07

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 9a6a748 to 4029a9e Compare

March 20, 2026 18:08

eps-autoapprove-dependabot bot commented Mar 20, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 4029a9e to c2efd7a Compare

March 20, 2026 18:10

eps-autoapprove-dependabot bot commented Mar 20, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from c2efd7a to e6de081 Compare

March 27, 2026 18:05

eps-autoapprove-dependabot bot commented Mar 27, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from e6de081 to 63d62a7 Compare

March 27, 2026 18:07

eps-autoapprove-dependabot bot commented Mar 27, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 63d62a7 to 4267bd0 Compare

March 27, 2026 18:09

eps-autoapprove-dependabot bot commented Mar 27, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 4267bd0 to 04f31ef Compare

March 27, 2026 18:10

eps-autoapprove-dependabot bot commented Mar 27, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 04f31ef to 889edf3 Compare

March 27, 2026 18:11

eps-autoapprove-dependabot bot commented Mar 27, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 889edf3 to d8897eb Compare

April 3, 2026 18:07

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from d8897eb to ac76e17 Compare

April 3, 2026 18:08

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from ac76e17 to edbeaca Compare

April 3, 2026 18:09

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from edbeaca to c1361bc Compare

April 3, 2026 18:10

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from c1361bc to 3ce1822 Compare

April 3, 2026 18:11

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production


          Upgrade: [dependabot] - bump @middy/core from 6.4.5 to 7.2.1

9de5f55

Bumps [@middy/core](https://github.com/middyjs/middy/tree/HEAD/packages/core) from 6.4.5 to 7.2.1.
- [Release notes](https://github.com/middyjs/middy/releases)
- [Changelog](https://github.com/middyjs/middy/blob/main/docs/RELEASE.md)
- [Commits](https://github.com/middyjs/middy/commits/7.2.1/packages/core)

---
updated-dependencies:
- dependency-name: "@middy/core"
  dependency-version: 7.2.1
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot force-pushed the dependabot/npm_and_yarn/middy/core-7.2.1 branch from 3ce1822 to 9de5f55 Compare

April 3, 2026 18:13

eps-autoapprove-dependabot bot commented Apr 3, 2026

I'm not approving this PR because it includes a major update of a dependency used in production

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies javascript requires-manual-qa