Release v2.6.0 (#697)

* scoped permission to the minimum requirement (#686)

Co-authored-by: Yuqi Huang <yuuqih@amazon.com>

* Bump webpack from 5.103.0 to 5.105.0 (#690)

Bumps [webpack](https://github.com/webpack/webpack) from 5.103.0 to 5.105.0.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.103.0...v5.105.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-version: 5.105.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump fast-xml-parser, @aws-sdk/client-kinesis-video, @aws-sdk/client-kinesis-video-signaling and @aws-sdk/client-kinesis-video-webrtc-storage (#692)

Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) to 5.3.6 and updates ancestor dependencies [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser), [@aws-sdk/client-kinesis-video](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-kinesis-video), [@aws-sdk/client-kinesis-video-signaling](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-kinesis-video-signaling) and [@aws-sdk/client-kinesis-video-webrtc-storage](https://github.com/aws/aws-sdk-js-v3/tree/HEAD/clients/client-kinesis-video-webrtc-storage). These dependencies need to be updated together.


Updates `fast-xml-parser` from 4.4.1 to 5.3.6
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](NaturalIntelligence/fast-xml-parser@v4.4.1...v5.3.6)

Updates `@aws-sdk/client-kinesis-video` from 3.758.0 to 3.995.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-kinesis-video/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.995.0/clients/client-kinesis-video)

Updates `@aws-sdk/client-kinesis-video-signaling` from 3.758.0 to 3.995.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-kinesis-video-signaling/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.995.0/clients/client-kinesis-video-signaling)

Updates `@aws-sdk/client-kinesis-video-webrtc-storage` from 3.758.0 to 3.995.0
- [Release notes](https://github.com/aws/aws-sdk-js-v3/releases)
- [Changelog](https://github.com/aws/aws-sdk-js-v3/blob/main/clients/client-kinesis-video-webrtc-storage/CHANGELOG.md)
- [Commits](https://github.com/aws/aws-sdk-js-v3/commits/v3.995.0/clients/client-kinesis-video-webrtc-storage)

---
updated-dependencies:
- dependency-name: fast-xml-parser
  dependency-version: 5.3.6
  dependency-type: indirect
- dependency-name: "@aws-sdk/client-kinesis-video"
  dependency-version: 3.995.0
  dependency-type: direct:production
- dependency-name: "@aws-sdk/client-kinesis-video-signaling"
  dependency-version: 3.995.0
  dependency-type: direct:production
- dependency-name: "@aws-sdk/client-kinesis-video-webrtc-storage"
  dependency-version: 3.995.0
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump webpack from 5.98.0 to 5.105.0 in /aws-sdk-build (#689)

Bumps [webpack](https://github.com/webpack/webpack) from 5.98.0 to 5.105.0.
- [Release notes](https://github.com/webpack/webpack/releases)
- [Changelog](https://github.com/webpack/webpack/blob/main/CHANGELOG.md)
- [Commits](webpack/webpack@v5.98.0...v5.105.0)

---
updated-dependencies:
- dependency-name: webpack
  dependency-version: 5.105.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump undici from 6.21.3 to 6.23.0 (#688)

Bumps [undici](https://github.com/nodejs/undici) from 6.21.3 to 6.23.0.
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](nodejs/undici@v6.21.3...v6.23.0)

---
updated-dependencies:
- dependency-name: undici
  dependency-version: 6.23.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump node-forge from 1.3.1 to 1.3.2 (#665)

Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.3.1 to 1.3.2.
- [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md)
- [Commits](digitalbazaar/forge@v1.3.1...v1.3.2)

---
updated-dependencies:
- dependency-name: node-forge
  dependency-version: 1.3.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump ts-jest from 29.4.5 to 29.4.6 (#667)

Bumps [ts-jest](https://github.com/kulshekhar/ts-jest) from 29.4.5 to 29.4.6.
- [Release notes](https://github.com/kulshekhar/ts-jest/releases)
- [Changelog](https://github.com/kulshekhar/ts-jest/blob/main/CHANGELOG.md)
- [Commits](kulshekhar/ts-jest@v29.4.5...v29.4.6)

---
updated-dependencies:
- dependency-name: ts-jest
  dependency-version: 29.4.6
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump jsdom from 27.2.0 to 27.3.0 (#669)

Bumps [jsdom](https://github.com/jsdom/jsdom) from 27.2.0 to 27.3.0.
- [Release notes](https://github.com/jsdom/jsdom/releases)
- [Changelog](https://github.com/jsdom/jsdom/blob/main/Changelog.md)
- [Commits](jsdom/jsdom@27.2.0...27.3.0)

---
updated-dependencies:
- dependency-name: jsdom
  dependency-version: 27.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump prettier from 3.6.2 to 3.7.4 (#670)

Bumps [prettier](https://github.com/prettier/prettier) from 3.6.2 to 3.7.4.
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](prettier/prettier@3.6.2...3.7.4)

---
updated-dependencies:
- dependency-name: prettier
  dependency-version: 3.7.4
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Bump @typescript-eslint/eslint-plugin from 8.48.0 to 8.49.0 (#671)

Bumps [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) from 8.48.0 to 8.49.0.
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.49.0/packages/eslint-plugin)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-version: 8.49.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Sample change: allow master ingest mode to send video-only (#693)

* change from pull_request to pull_request_target (#696)

- enable the CI to automatically change the base of dependabot PR

Co-authored-by: Yuqi Huang <yuuqih@amazon.com>

* Added version check yml file (#678)

* Change URL for fetching regional data (#674)

* Fix undefined channelHelper check (#675)

* Migrate to OIDC trusted publishing (#676)

* Add version check workflow to enforce version updates on PRs
- Validates version changes in package.json, package-lock.json, and src/index.ts
- Ensures all version files are synchronized before merging to master
- Prevents PRs from being merged without proper version bumps

---------

Co-authored-by: sirknightj <jggunawa@amazon.com>
Co-authored-by: Yuqi Huang <yuuqih@amazon.com>

* bump version to 2.6.0 (#695)

Co-authored-by: Yuqi Huang <yuuqih@amazon.com>

* Make sure permission is explicitly stated (#698)

Co-authored-by: Yuqi Huang <yuuqih@amazon.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: Yuqi Huang <yuuqih@amazon.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: sirknightj <jggunawa@amazon.com>

Author: 4 people

.github/workflows/develop-publish-gh-pages.yml

@@ -4,6 +4,9 @@ on:
     push:
         branches:
             - develop
+permissions:
+  contents: write
+  pages: write
 jobs:
     publish-ubuntu-build:
         runs-on: ubuntu-latest

.github/workflows/retarget-dependabot-to-develop.yml

@@ -1,7 +1,7 @@
 name: Retarget Dependabot PRs to develop
 
 on:
-  pull_request:
+  pull_request_target:
     branches:
       - master
 

.github/workflows/version-check.yml

@@ -0,0 +1,70 @@
+name: Check Version Mismatch between PR branch and master.
+
+on:
+  pull_request:
+    branches:
+      - master
+
+permissions:
+  contents: read
+
+jobs:
+  check-version:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout PR branch
+        uses: actions/checkout@v4
+
+      - name: Get version from PR
+        id: pr_version
+        run: |
+          PR_VERSION=$(grep -Po '"version": "\K[0-9]+\.[0-9]+\.[0-9]+' package.json)
+          PR_LOCK_VERSION=$(grep -Po '"version": "\K[0-9]+\.[0-9]+\.[0-9]+' package-lock.json | head -1)
+          PR_INDEX_VERSION=$(grep -Po "VERSION = '\K[0-9]+\.[0-9]+\.[0-9]+" src/index.ts || echo "$PR_VERSION")
+          echo "PR_VERSION=$PR_VERSION" >> "$GITHUB_ENV"
+          echo "PR_LOCK_VERSION=$PR_LOCK_VERSION" >> "$GITHUB_ENV"
+          echo "PR_INDEX_VERSION=$PR_INDEX_VERSION" >> "$GITHUB_ENV"
+          echo "PR Version: $PR_VERSION"
+          echo "PR Lock Version: $PR_LOCK_VERSION"
+          echo "PR Index Version: $PR_INDEX_VERSION"
+
+      - name: Checkout master branch
+        uses: actions/checkout@v4
+        with:
+          ref: master
+
+      - name: Get version from master
+        id: master_version
+        run: |
+          MASTER_VERSION=$(grep -Po '"version": "\K[0-9]+\.[0-9]+\.[0-9]+' package.json)
+          MASTER_LOCK_VERSION=$(grep -Po '"version": "\K[0-9]+\.[0-9]+\.[0-9]+' package-lock.json | head -1)
+          MASTER_INDEX_VERSION=$(grep -Po "VERSION = '\K[0-9]+\.[0-9]+\.[0-9]+" src/index.ts || echo "$MASTER_VERSION")
+          echo "MASTER_VERSION=$MASTER_VERSION" >> "$GITHUB_ENV"
+          echo "MASTER_LOCK_VERSION=$MASTER_LOCK_VERSION" >> "$GITHUB_ENV"
+          echo "MASTER_INDEX_VERSION=$MASTER_INDEX_VERSION" >> "$GITHUB_ENV"
+          echo "Master version: $MASTER_VERSION"
+          echo "Master lock version: $MASTER_LOCK_VERSION"
+          echo "Master index version: $MASTER_INDEX_VERSION"
+
+      - name: Compare versions
+        run: |
+          echo "Comparing versions:"
+          echo "  package.json - Master: $MASTER_VERSION, PR: $PR_VERSION"
+          echo "  package-lock.json - Master: $MASTER_LOCK_VERSION, PR: $PR_LOCK_VERSION"
+          echo "  src/index.ts - Master: $MASTER_INDEX_VERSION, PR: $PR_INDEX_VERSION"
+          
+          if [ "$MASTER_VERSION" == "$PR_VERSION" ]; then
+            echo "Please update the version in package.json file. Any PR getting merged to master requires a version update"
+            exit 1
+          elif [ "$MASTER_LOCK_VERSION" == "$PR_LOCK_VERSION" ]; then
+            echo "Please update the version in package-lock.json file. Run 'npm install' after updating package.json"
+            exit 1
+          elif [ "$MASTER_INDEX_VERSION" == "$PR_INDEX_VERSION" ]; then
+            echo "Please update the version in src/index.ts file to match package.json version"
+            exit 1
+          elif [ "$PR_VERSION" != "$PR_LOCK_VERSION" ]; then
+            echo "Version mismatch between package.json ($PR_VERSION) and package-lock.json ($PR_LOCK_VERSION). Run 'npm install' to sync"
+            exit 1
+          else
+            echo "Version update detected and all the files are in sync."
+          fi