Upgrade: Bump the dependencies group across 1 directory with 5 updates

[dependabot]

Bumps the dependencies group with 5 updates in the /cdn directory:

Package	From	To
boto3	1.38.37	1.40.64
botocore	1.38.37	1.40.64
click	8.1.8	8.3.0
pyyaml	6.0.2	6.0.3
s3transfer	0.13.0	0.14.0

Updates boto3 from 1.38.37 to 1.40.64

Commits

• 4767297 Merge branch 'release-1.40.64'
• 4126cfb Bumping version to 1.40.64
• 1f76848 Add changelog entries from botocore
• de8a8d8 Merge branch 'release-1.40.63'
• b4ab1ec Merge branch 'release-1.40.63' into develop
• cb48975 Bumping version to 1.40.63
• 5c30ab5 Add changelog entries from botocore
• 6abe178 update the documentation for creating s3 bucket to address the region mismatc...
• ea1a84d Merge branch 'release-1.40.62'
• ec252ff Merge branch 'release-1.40.62' into develop
• Additional commits viewable in compare view

Updates botocore from 1.38.37 to 1.40.64

Commits

• 11d0051 Merge branch 'release-1.40.64'
• 0c92337 Bumping version to 1.40.64
• aa692dd Update endpoints model
• e6c0125 Update to latest models
• cf26740 Merge branch 'release-1.40.63'
• 0f7bff1 Merge branch 'release-1.40.63' into develop
• 906cbfb Bumping version to 1.40.63
• ac114bc Update endpoints model
• bd3c3ef Update to latest models
• 68e4960 Merge branch 'release-1.40.62'
• Additional commits viewable in compare view

Updates click from 8.1.8 to 8.3.0

Release notes

Sourced from click's releases.

8.3.0

This is the Click 8.3.0 feature release. A feature release may include new features, remove previously deprecated code, add new deprecation, or introduce potentially breaking changes.

We encourage everyone to upgrade. You can read more about our Version Support Policy on our website.

PyPI: https://pypi.org/project/click/8.3.0/ Changes: https://click.palletsprojects.com/page/changes/#version-8-3-0 Milestone https://github.com/pallets/click/milestone/27

• Improved flag option handling: Reworked the relationship between flag_value and default parameters for better consistency:

  • The default parameter value is now preserved as-is and passed directly to CLI functions (no more unexpected transformations)
  • Exception: flag options with default=True maintain backward compatibility by defaulting to their flag_value
  • The default parameter can now be any type (bool, None, etc.)
  • Fixes inconsistencies reported in: #1992 #2514 #2610 #3024 #3030

• Allow default to be set on Argument for nargs = -1. #2164 #3030

• Show correct auto complete value for nargs option in combination with flag option #2813

• Show correct auto complete value for nargs option in combination with flag option #2813

• Fix handling of quoted and escaped parameters in Fish autocompletion. #2995 #3013

• Lazily import shutil. #3023

• Properly forward exception information to resources registered with click.core.Context.with_resource(). #2447 #3058

• Fix regression related to EOF handling in CliRunner. #2939 #2940

8.2.2

This is the Click 8.2.2 fix release, which fixes bugs but does not otherwise change behavior and should not result in breaking changes compared to the latest feature release.

PyPI: https://pypi.org/project/click/8.2.2/ Changes: https://click.palletsprojects.com/page/changes/#version-8-2-2 Milestone: https://github.com/pallets/click/milestone/25

• Fix reconciliation of default, flag_value and type parameters for flag options, as well as parsing and normalization of environment variables. #2952 #2956
• Fix typing issue in BadParameter and MissingParameter exceptions for the parameter param_hint that did not allow for a sequence of string where the underlying functino _join_param_hints allows for it. #2777 #2990
• Use the value of Enum choices to render their default value in help screen. #2911 #3004
• Fix completion for the Z shell (zsh) for completion items containing colons. #2703 #2846
• Don't include envvar in error hint when not configured. #2971 #2972

... (truncated)

Changelog

Sourced from click's changelog.

Version 8.3.0

Released 2025-09-17

• Improved flag option handling: Reworked the relationship between flag_value and default parameters for better consistency:

  • The default parameter value is now preserved as-is and passed directly to CLI functions (no more unexpected transformations)
  • Exception: flag options with default=True maintain backward compatibility by defaulting to their flag_value
  • The default parameter can now be any type (bool, None, etc.)
  • Fixes inconsistencies reported in: :issue:1992 :issue:2514 :issue:2610 :issue:3024 :pr:3030

• Allow default to be set on Argument for nargs = -1. :issue:2164 :pr:3030

• Show correct auto complete value for nargs option in combination with flag option :issue:2813

• Fix handling of quoted and escaped parameters in Fish autocompletion. :issue:2995 :pr:3013

• Lazily import shutil. :pr:3023

• Properly forward exception information to resources registered with click.core.Context.with_resource(). :issue:2447 :pr:3058

• Fix regression related to EOF handling in CliRunner. :issue:2939 :pr:2940

Version 8.2.2

Released 2025-07-31

• Fix reconciliation of default, flag_value and type parameters for flag options, as well as parsing and normalization of environment variables. :issue:2952 :pr:2956
• Fix typing issue in BadParameter and MissingParameter exceptions for the parameter param_hint that did not allow for a sequence of string where the underlying function _join_param_hints allows for it. :issue:2777 :pr:2990
• Use the value of Enum choices to render their default value in help screen. Refs :issue:2911 :pr:3004
• Fix completion for the Z shell (zsh) for completion items containing colons. :issue:2703 :pr:2846
• Don't include envvar in error hint when not configured. :issue:2971 :pr:2972
• Fix a rare race in click.testing.StreamMixer's finalization that manifested as a ValueError on close in a multi-threaded test session. :issue:2993 :pr:2991

Version 8.2.1

Released 2025-05-20

... (truncated)

Commits

• 00fadb8 Release version 8.3.0
• 2a0e3ba testing/CliRunner: Fix regression related to EOF introduced in 262bdf0 (#2940)
• e11a1ef Merge branch 'main' into fix-cli-runner-prompt-eof-handling
• 36deba8 Forward exception information to resources registered in a context (#3058)
• f2cae7a #2447 Add summary of PR to changelog for 8.3.x
• 7c7ec36 #2447 Split resource exception handling tests in single and nested
• 92129c5 #2447 Added exception forwarding to context tests
• 555fa9b #2447 Forward exception data to exit stack when calling __exit__
• 16fe802 Add more tests on Enum rendering (#3053)
• d36de6f Add more tests on Enum rendering their item's names and not values
• Additional commits viewable in compare view

Updates pyyaml from 6.0.2 to 6.0.3

Release notes

Sourced from pyyaml's releases.

6.0.3

What's Changed

• Support for Python 3.14 and free-threading (experimental).

Full Changelog: yaml/pyyaml@6.0.2...6.0.3

Changelog

Sourced from pyyaml's changelog.

6.0.3 (2025-09-25)

• yaml/pyyaml#864 -- Support for Python 3.14 and free-threading (experimental)

Commits

• 49790e7 Release 6.0.3 (#889)
• See full diff in compare view

Updates s3transfer from 0.13.0 to 0.14.0

Changelog

Sourced from s3transfer's changelog.

0.14.0

• feature:download: Validate requested range matches content range in response for multipart downloads

0.13.1

• enhancement:Python: Added provisional support for the upcoming Python 3.14 release

Commits

• b4ee0a2 Merge branch 'release-0.14.0'
• e3429b8 Bumping version to 0.14.0
• 5dbc94d Merge pull request #358 from hssyoo/validate-multipart-downloads
• faff031 Add changelog entry
• 8ed80f7 Validate multipart download content ranges
• 44a8fb2 Update actions/checkout to 5.0.0 (#357)
• 7ea7d92 Merge branch 'release-0.13.1'
• c3bc3c0 Merge branch 'release-0.13.1' into develop
• 5a93968 Bumping version to 0.13.1
• 54cdf1d Add nested client creation method
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions