chore(deps): bump the aws-cdk group with 2 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the aws-cdk group with 2 updates: @aws-cdk/toolkit-lib and aws-cdk-lib.

Updates @aws-cdk/toolkit-lib from 1.17.0 to 1.18.0

Release notes

Sourced from @​aws-cdk/toolkit-lib's releases.

@​aws-cdk/toolkit-lib@​v1.18.0

1.18.0 (2026-03-09)

Features

• cli: --revert-drift option to bring actual resource states in line with template definitions (#1127) (693fe48)

Bug Fixes

• cli: trap errors from notices to prevent CLI breakage (#1205) (1cb6252), closes cdklabs/aws-cdk-notices#1044

Commits

• 56f10cc chore(deps): upgrade dependencies (#1206)
• 1cb6252 fix(cli): trap errors from notices to prevent CLI breakage (#1205)
• 693fe48 feat(cli): --revert-drift option to bring actual resource states in line wi...
• See full diff in compare view

Updates aws-cdk-lib from 2.241.0 to 2.243.0

Release notes

Sourced from aws-cdk-lib's releases.

v2.243.0

Features

• update L1 CloudFormation resource definitions (#37201) (85daaf5)
• cfn-property-mixins: graduate to stable @​aws-cdk/cfn-property-mixins package (#37215) (f071e67)

Bug Fixes

• dynamodb: resource policies don't have the index ARNs when indexes are added after granting permissions (#37213) (eb37071)

---

Alpha modules (2.243.0-alpha.0)

v2.242.0

⚠ BREAKING CHANGES

• ** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:

  • aws-ssm: AWS::SSM::MaintenanceWindow: Id attribute removed.

Features

• core: support PropertyMergeStrategy to merge arbitrary CFN property objects (#37206) (793ad97)
• ecr: add RepositoryAutoDeleteImages mixin (#37176) (3189116)
• s3 and ecs service mixins are now available in aws-cdk-lib (#37151) (52c99da)
• update L1 CloudFormation resource definitions (#37173) (1dfaf5f), closes #37BFF5 #37BFF5
• apigateway: add TLS 1.3 security policies for domain names (#36303) (9d0300b), closes #36280
• appsync: add EnhancedMetricsConfigProperty for GraphQL api (#35328) (ebfaf89), closes #29933
• opensearchservice: s3 vectors engine (#36382) (c0b1d4e)
• s3: graduate BucketAutoDeleteObjects mixin into aws-cdk-lib (#37161) (e5ddd79)

Bug Fixes

• aws-cdk-lib: Asset uses a lot of memory (#37186) (70cae75)
• large amounts of metadata can break 512MB string limit (#34480) (20c3154)
• opensearchservice: enableAutoSoftwareUpdate: false is not reflected in the CloudFormation template (#37152) (dec8e6f), closes #36382
• s3: discover existing bucket policies in default trait factory (#37166) (f090816)

---

Alpha modules (2.242.0-alpha.0)

Features

• mixins-preview: allow passing resource objects into properties in CFN Property mixins (#37148) (f238629)
• mixins-preview: generate EventBridge pattern for all events (#37081) (f30e836)
• mixins-preview: support custom merge strategies via IMergeStrategy (#37170) (0dec011)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.243.0-alpha.0 (2026-03-11)

2.242.0-alpha.0 (2026-03-10)

Features

• mixins-preview: allow passing resource objects into properties in CFN Property mixins (#37148) (f238629)
• mixins-preview: generate EventBridge pattern for all events (#37081) (f30e836)
• mixins-preview: support custom merge strategies via IMergeStrategy (#37170) (0dec011)

2.241.0-alpha.0 (2026-03-02)

Features

• mixins-preview: add recordFields and outputFormat to Vended Logs Mixin (#37042) (dd94c31)
• mixins-preview: cross account delivery destinations (#36827) (a759eb6)

2.240.0-alpha.0 (2026-02-23)

2.239.0-alpha.0 (2026-02-19)

⚠ BREAKING CHANGES

redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE

Features

• bedrock-agentcore-alpha: add fromCodeAsset method to create runtime artifact with local code assets (#36472) (c5a87e6), closes #36473
• bedrock-agentcore-alpha: added new target type (api gateway) in agentcore gateway target. (#36841) (0842754), closes #36817
• mixins-preview: add ECS ClusterSettingsMixin (#36796) (b8ab5be)
• mixins-preview: add s3 bucket mixin for publicAccessBlock (#36905) (feed4b2)
• mixins-preview: send Vended Logs to pre-created DeliveryDestination using toDestination() (#36896) (48f1fe6)

Bug Fixes

• redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE (#36516) (ea19e5c), closes #36416

2.238.0-alpha.0 (2026-02-09)

Features

• eks-v2-alpha: add support for bootstrapSelfManagedAddons (#36740) (1ffe38d)

... (truncated)

Commits

• 85daaf5 feat: update L1 CloudFormation resource definitions (#37201)
• b6f01df Merge branch 'main' into merge-back/2.242.0
• eb37071 fix(dynamodb): resource policies don't have the index ARNs when indexes are a...
• 5e49f50 chore: update analytics metadata blueprints
• 3189116 feat(ecr): add RepositoryAutoDeleteImages mixin (#37176)
• 793ad97 feat(core): support PropertyMergeStrategy to merge arbitrary CFN property o...
• 70cae75 fix(aws-cdk-lib): Asset uses a lot of memory (#37186)
• 1dfaf5f feat: update L1 CloudFormation resource definitions (#37173)
• 20c3154 fix: large amounts of metadata can break 512MB string limit (#34480)
• e5ddd79 feat(s3): graduate BucketAutoDeleteObjects mixin into aws-cdk-lib (#37161)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions