build(deps): bump the dependencies group with 4 updates

[dependabot]

Bumps the dependencies group with 4 updates: @aws-sdk/client-s3, next, @playwright/test and postcss.

Updates @aws-sdk/client-s3 from 3.1025.0 to 3.1026.0

Release notes

Sourced from @​aws-sdk/client-s3's releases.

v3.1026.0

3.1026.0(2026-04-07)

Chores

• clients: add AWS retry customizations for DynamoDB, SQS, SFN, SWF (#7922) (4d9c5928)
• codegen: update for sparse types and retry 2.1 updates (#7916) (b19357a7)
• scripts: add codegen flag for PR creation (#7920) (899eb5ca)

New Features

• clients: update client endpoints as of 2026-04-07 (1a9724c8)
• client-rtbfabric: AWS RTB Fabric External Responder gateways now support HTTP in addition to HTTPS for inbound external links. Gateways can accept bid requests on port 80 or serve both protocols simultaneously via listener configuration, giving customers flexible transport options for their bidding infrastructure (e7dae9e3)
• client-bedrock-agentcore: This release includes support for 1) InvokeBrowser API, enabling OS-level control of AgentCore Browser Tool sessions through mouse actions, keyboard input, and screenshots. 2) Added documentation noting that empty sessions are automatically deleted after one day in the ListSessions API. (209baf8c)
• client-accessanalyzer: Revert previous additions of API changes. (2498b344)
• client-outposts: This change allows listAssets to surface pending and non-compute asset information. Adds the INSTALLING asset state enum and the STORAGE, POWERSHELF, SWITCH, and NETWORKING AssetTypes. (12921a6f)
• client-s3: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. (229167dd)
• client-ecs: This release provides the functionality of mounting Amazon S3 Files to Amazon ECS tasks by adding support for the new S3FilesVolumeConfiguration parameter in ECS RegisterTaskDefinition API. (1816b915)
• client-datasync: Allow IAM role ARNs with IAM Paths for "SecretAccessRoleArn" field in "CustomSecretConfig" (2493464b)
• client-lambda: Launching Lambda integration with S3 Files as a new file system configuration. (4e40cc0c)
• client-ec2: EC2 Capacity Manager adds new dimensions for grouping and filtering capacity metrics, including tag-based dimensions and Account Name. (4f5a452a)
• client-eks: EKS MNG WarmPool feature to support ASG WarmPool feature. (b982b678)
• client-connect: The voice enhancement mode used by the agent can now be viewed on the contact record via the DescribeContact api. (1411825c)
• client-datazone: Update Configurations and registerS3AccessGrantLocation as public attributes for cfn (49597475)
• client-braket: Added support for t3, g6, and g6e instance types for Hybrid Jobs. (5107b43e)
• client-s3files: Support for S3 Files, a new shared file system that connects any AWS compute directly with your data in Amazon S3. It provides fast, direct access to all of your S3 data as files with full file system semantics and low-latency performance, without your data ever leaving S3. (b87065a7)

Bug Fixes

• scripts: default generate-client-tarball-since to origin/main (#7917) (314b203d)

Tests

• performance-tests: create performance test package (#7864) (ee85613c)

---

For list of updated packages, view updated-packages.md in assets-3.1026.0.zip

Changelog

Sourced from @​aws-sdk/client-s3's changelog.

3.1026.0 (2026-04-07)

Features

• client-s3: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. (229167d)

Commits

• 67ea2f7 Publish v3.1026.0
• 229167d feat(client-s3): Updated list of the valid AWS Region values for the Location...
• b19357a chore(codegen): update for sparse types and retry 2.1 updates (#7916)
• See full diff in compare view

Updates next from 16.2.1-canary.24 to 16.2.1-canary.26

Release notes

Sourced from next's releases.

v16.2.1-canary.26

Core Changes

• next-routing: middleware matching and app request URL normalization: #91859
• docs: clarify serverless runtime behavior for use cache: #92232

Misc Changes

• Adding more system info to the 'initialize project' trace: #92427
• CI: Update and cleanup next-stats-action, force using pnpm 10.33.0: #92475
• turbo-persistence: Use AtomicBool for is_empty() to avoid lock contention: #92481

Credits

Huge thanks to @​ijjk, @​andrewimm, @​bgw, @​wwenrr, and @​lukesandberg for helping!

v16.2.1-canary.25

Core Changes

• Include more context in macOS Rosetta 2 warning message: #92436
• change the process name of builds: #92411
• Fix styled-jsx race condition: styles lost due to concurrent rendering: #92459
• turbo-tasks: fix hashed cell mode crash on task error (re-land #91576): #92108
• Optimize how we track data for persistence: #89370
• Route Handlers: Fix devRequestTimingInternalsEnd and Turbopack server HMR: #92271

Misc Changes

• turbo-persistence: skip BlockCache for uncompressed (mmap-backed) blocks: #92390
• docs: clarify that proxy/middleware matches static assets by default: #92441
• turbo-persistence: pin referenced BlockCache entries to prevent eviction: #92361
• [test] Skip flaky client-cache.parallel-routes in production and deploy: #92195
• Fix sst inspect tool to respect CURRENT and stale sst files: #92414
• [turbopack] add family name to many spans: #92415
• scripts/pr-status: add reply-and-resolve-thread command: #92450
• [test] Regenerate checked-in tsconfig.json files: #92455

Credits

Huge thanks to @​sokra, @​bgw, @​lukesandberg, @​icyJoseph, @​eps1lon, and @​wbinnssmith for helping!

Commits

• 21c28c8 v16.2.1-canary.26
• dfa1201 turbo-persistence: Use AtomicBool for is_empty() to avoid lock contention (#9...
• e513488 docs: clarify serverless runtime behavior for use cache (#92232)
• 68d6729 CI: Update and cleanup next-stats-action, force using pnpm 10.33.0 (#92475)
• 5636400 Adding more system info to the 'initialize project' trace (#92427)
• 2155e07 next-routing: middleware matching and app request URL normalization (#91859)
• 0ed3b18 v16.2.1-canary.25
• ac749a9 [test] Regenerate checked-in tsconfig.json files (#92455)
• 6d572c2 scripts/pr-status: add reply-and-resolve-thread command (#92450)
• fea7547 Route Handlers: Fix devRequestTimingInternalsEnd and Turbopack server HMR (#9...
• Additional commits viewable in compare view

Updates @playwright/test from 1.60.0-alpha-2026-04-07 to 1.60.0-alpha-1775584683000

Commits

• See full diff in compare view

Updates postcss from 8.5.8 to 8.5.9

Release notes

Sourced from postcss's releases.

8.5.9

• Speed up source map encoding paring in case of the error.

Changelog

Sourced from postcss's changelog.

8.5.9

• Speed up source map encoding paring in case of the error.

Commits

• fe88ac2 Release 8.5.9 version
• c551632 Avoid RegExp when we can use simple JS
• 89a6b74 Move SECURITY.txt for docs folder to keep GitHub page cleaner
• 6ceb8a4 Create SECURITY.md
• 02ccae6 Another way to fix CI with .ts ext in tests on old Node.js
• 2c36658 Another way to fix CI with TS on old Node.js
• b906003 Another way to fix CI with old Node.js
• 04d32cd Fix another issue with Node.js 10 on CI
• df86cdf Try to fix Node.js 10 on CI
• 82bec0d Move to oxfmt
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
dcrs	Ready	Preview, Comment	Apr 7, 2026 11:57pm

[github-actions]

🪄 Deploy Preview for ready!

Learn more about StackBlitz Codeflow.

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 1 package(s) with unknown licenses.

See the Details below.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA 08d558e.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

License Issues

package.json

Package	Version	License	Issue Type
@aws-sdk/client-s3	^3.1026.0	Null	Unknown License

OpenSSF Scorecard

Package	Version	Score	Details
npm/@aws-sdk/client-s3	^3.1026.0	Unknown	Unknown
npm/postcss	^8.5.9	Unknown	Unknown

Scanned Files

• package.json

[github-actions]

Overview

Image reference	marukome0743/dcrs:canary	marukome0743/dcrs:pr-1464
- digest	a0411a3fd28a	1af3b14d470c
- tag	canary	pr-1464
- provenance		08d558e
- vulnerabilities
- platform	linux/amd64	linux/amd64
- size	80 MB	92 MB (+12 MB)
- packages	177	182 (+5)
Base Image	distroless/static:nonroot	distroless/static:nonroot
- vulnerabilities

Labels (3 changes)

• ± 3 changed
• 5 unchanged

-org.opencontainers.image.created=2026-04-07T14:40:33.672Z
+org.opencontainers.image.created=2026-04-07T23:56:25.789Z
 org.opencontainers.image.description=Disability Certificate Register System📇
 org.opencontainers.image.licenses=Apache-2.0
-org.opencontainers.image.revision=e75497cdf4a9a5d0c1bb9702c13959c3eff13eee
+org.opencontainers.image.revision=08d558e2348f912ba07d65f9c55b85219b7d9590
 org.opencontainers.image.source=https://github.com/OpenUp-LabTakizawa/dcrs
 org.opencontainers.image.title=dcrs
 org.opencontainers.image.url=https://github.com/OpenUp-LabTakizawa/dcrs
-org.opencontainers.image.version=canary
+org.opencontainers.image.version=pr-1464

Packages and Vulnerabilities (68 package changes and 0 vulnerability changes)

• ➕ 5 packages added
• ♾️ 63 packages changed
• 109 packages unchanged

Changes for packages of type deb (5 changes)

	Package	Version marukome0743/dcrs:canary	Version marukome0743/dcrs:pr-1464
➕	gcc-14		14.2.0-19
➕	glibc		2.41-12+deb13u2
➕	libzstd		1.5.7+dfsg-1
➕	openssl		3.5.5-1~deb13u1
➕	zlib		1:1.3.dfsg+really1.3.1-1

Changes for packages of type npm (63 changes)

	Package	Version marukome0743/dcrs:canary	Version marukome0743/dcrs:pr-1464
♾️	@aws-sdk/client-s3	3.1025.0	3.1026.0
♾️	@aws-sdk/core	3.973.26	3.973.27
♾️	@aws-sdk/crc64-nvme	3.972.5	3.972.6
♾️	@aws-sdk/credential-provider-env	3.972.24	3.972.25
♾️	@aws-sdk/credential-provider-http	3.972.26	3.972.27
♾️	@aws-sdk/credential-provider-ini	3.972.28	3.972.29
♾️	@aws-sdk/credential-provider-login	3.972.28	3.972.29
♾️	@aws-sdk/credential-provider-node	3.972.29	3.972.30
♾️	@aws-sdk/credential-provider-process	3.972.24	3.972.25
♾️	@aws-sdk/credential-provider-sso	3.972.28	3.972.29
♾️	@aws-sdk/credential-provider-web-identity	3.972.28	3.972.29
♾️	@aws-sdk/middleware-bucket-endpoint	3.972.8	3.972.9
♾️	@aws-sdk/middleware-expect-continue	3.972.8	3.972.9
♾️	@aws-sdk/middleware-flexible-checksums	3.974.6	3.974.7
♾️	@aws-sdk/middleware-host-header	3.972.8	3.972.9
♾️	@aws-sdk/middleware-location-constraint	3.972.8	3.972.9
♾️	@aws-sdk/middleware-logger	3.972.8	3.972.9
♾️	@aws-sdk/middleware-recursion-detection	3.972.9	3.972.10
♾️	@aws-sdk/middleware-sdk-s3	3.972.27	3.972.28
♾️	@aws-sdk/middleware-ssec	3.972.8	3.972.9
♾️	@aws-sdk/middleware-user-agent	3.972.28	3.972.29
♾️	@aws-sdk/nested-clients	3.996.18	3.996.19
♾️	@aws-sdk/region-config-resolver	3.972.10	3.972.11
♾️	@aws-sdk/signature-v4-multi-region	3.996.15	3.996.16
♾️	@aws-sdk/token-providers	3.1021.0	3.1026.0
♾️	@aws-sdk/util-endpoints	3.996.5	3.996.6
♾️	@aws-sdk/util-user-agent-node	3.973.14	3.973.15
♾️	@aws-sdk/xml-builder	3.972.16	3.972.17
♾️	@next/env	16.2.1-canary.24	16.2.1-canary.26
♾️	@smithy/config-resolver	4.4.13	4.4.14
♾️	@smithy/core	3.23.13	3.23.14
♾️	@smithy/credential-provider-imds	4.2.12	4.2.13
♾️	@smithy/eventstream-codec	4.2.12	4.2.13
♾️	@smithy/eventstream-serde-config-resolver	4.3.12	4.3.13
♾️	@smithy/eventstream-serde-node	4.2.12	4.2.13
♾️	@smithy/eventstream-serde-universal	4.2.12	4.2.13
♾️	@smithy/fetch-http-handler	5.3.15	5.3.16
♾️	@smithy/hash-node	4.2.12	4.2.13
♾️	@smithy/hash-stream-node	4.2.12	4.2.13
♾️	@smithy/middleware-content-length	4.2.12	4.2.13
♾️	@smithy/middleware-endpoint	4.4.28	4.4.29
♾️	@smithy/middleware-retry	4.4.46	4.5.0
♾️	@smithy/middleware-serde	4.2.16	4.2.17
♾️	@smithy/middleware-stack	4.2.12	4.2.13
♾️	@smithy/node-config-provider	4.3.12	4.3.13
♾️	@smithy/node-http-handler	4.5.1	4.5.2
♾️	@smithy/property-provider	4.2.12	4.2.13
♾️	@smithy/protocol-http	5.3.12	5.3.13
♾️	@smithy/querystring-builder	4.2.12	4.2.13
♾️	@smithy/querystring-parser	4.2.12	4.2.13
♾️	@smithy/service-error-classification	4.2.12	4.2.13
♾️	@smithy/shared-ini-file-loader	4.4.7	4.4.8
♾️	@smithy/signature-v4	5.3.12	5.3.13
♾️	@smithy/smithy-client	4.12.8	4.12.9
♾️	@smithy/types	4.13.1	4.14.0
♾️	@smithy/url-parser	4.2.12	4.2.13
♾️	@smithy/util-defaults-mode-node	4.2.48	4.2.49
♾️	@smithy/util-endpoints	3.3.3	3.3.4
♾️	@smithy/util-middleware	4.2.12	4.2.13
♾️	@smithy/util-retry	4.2.13	4.3.0
♾️	@smithy/util-stream	4.5.21	4.5.22
♾️	@smithy/util-waiter	4.2.14	4.2.15
♾️	next	16.2.1-canary.24	16.2.1-canary.26

[Marukome0743]