Update minor npm dependencies

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Change	Age	Confidence
@aws-sdk/client-s3 (source)	3.1005.0 → 3.1054.0
@aws-sdk/client-sqs (source)	3.1005.0 → 3.1054.0
@aws-sdk/credential-providers (source)	3.1005.0 → 3.1054.0
@aws-sdk/s3-request-presigner (source)	3.1005.0 → 3.1054.0
@dr.pogodin/csurf (source)	1.16.6 → 1.16.9
@eslint/eslintrc	3.3.3 → 3.3.5
@eslint/js (source)	9.39.2 → 9.39.4
@microsoft/applicationinsights-web	3.3.10 → 3.4.1
@ministryofjustice/hmpps-npm-script-allowlist (source)	0.0.3 → 0.0.6
@sentry/node (source)	10.32.1 → 10.54.0
@types/express-serve-static-core (source)	5.1.0 → 5.1.1
@types/express-session (source)	1.18.2 → 1.19.0
@types/jquery (source)	3.5.33 → 3.5.34
@types/node (source)	24.10.4 → 24.12.4
@types/pg (source)	8.16.0 → 8.20.0
@types/qs (source)	6.14.0 → 6.15.1
@types/superagent (source)	8.1.9 → 8.1.10
@typescript-eslint/eslint-plugin (source)	8.50.0 → 8.60.0
@typescript-eslint/parser (source)	8.50.0 → 8.60.0
body-parser	2.2.1 → 2.2.2
cypress (source)	15.8.1 → 15.16.0
cypress-slow-down	1.3.1 → 1.4.0
date-fns	4.1.0 → 4.3.0
dotenv	17.2.3 → 17.4.2
eslint (source)	9.39.2 → 9.39.4
eslint-plugin-cypress	5.2.0 → 5.3.0
eslint-plugin-prettier	5.5.4 → 5.5.5
express-session	1.18.2 → 1.19.0
helmet (source)	8.1.0 → 8.2.0
jest-html-reporter	4.3.0 → 4.4.0
jest-pact	^0.11.0 → ^0.13.0
joi	18.0.2 → 18.2.1
lint-staged	16.2.7 → 16.4.0
mocha (source)	11.7.5 → 11.7.6
moment-timezone (source)	0.6.0 → 0.6.2
nock	14.0.10 → 14.0.15
nodemon (source)	3.1.11 → 3.1.14
prettier (source)	3.7.4 → 3.8.3
redis	5.10.0 → 5.12.1
sass	1.97.1 → 1.100.0
stylelint-scss	6.13.0 → 6.14.0
superagent	10.2.3 → 10.3.0
supertest	7.1.4 → 7.2.2

---

Release Notes

aws/aws-sdk-js-v3 (@​aws-sdk/client-s3)

v3.1054.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1053.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1052.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1051.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1050.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1049.0

Compare Source

Bug Fixes

• client-sts: update imports to new module locations (#​8025) (be183b6)

v3.1048.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1047.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1046.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1045.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1044.0

Compare Source

Features

• client-s3: Validate outpost access point resource name (bee88a5)

v3.1043.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1042.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1041.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1040.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1039.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1038.0

Compare Source

Bug Fixes

• xml-builder: use xml 1.1 parsing behavior for entities (#​7964) (7a30bce)

v3.1037.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1036.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1035.0

Compare Source

Bug Fixes

• client-s3: retry errors with 200 status code (#​7945) (7d9d8d1)

Features

• client-s3: This release adds five additional checksum algorithms for S3 data integrity (MD5, SHA-512, XXHash3, XXHash64, XXHash128) and support for S3 Inventory on directory buckets (S3 Express One Zone). (41a6a59)

v3.1034.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1033.0

Compare Source

Features

• clients: use binary decision diagrams for endpoint resolution (#​7931) (ff1b2ba)

v3.1032.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1031.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1030.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1029.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1028.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1027.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1026.0

Compare Source

Features

• client-s3: Updated list of the valid AWS Region values for the LocationConstraint parameter for general purpose buckets. (229167d)

v3.1025.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1024.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1023.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1022.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1021.0

Compare Source

Bug Fixes

• codegen: sync for adaptive retry throttling detection fix (#​7905) (03f108d)

Features

• client-s3: Add Bucket Metrics configuration support to directory buckets (67ff7cc)

v3.1020.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1019.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1018.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1017.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1016.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1015.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1014.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1013.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1012.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1011.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1010.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1009.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1008.0

Compare Source

Features

• client-s3: Adds support for account regional namespaces for general purpose buckets. The account regional namespace is a reserved subdivision of the global bucket namespace where only your account can create general purpose buckets. (1791028)

v3.1007.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

v3.1006.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-s3

aws/aws-sdk-js-v3 (@​aws-sdk/client-sqs)

v3.1054.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1053.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1052.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1051.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1050.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1049.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1048.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1047.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1046.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1045.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1044.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1043.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1042.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1041.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1040.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1039.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1038.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1037.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1036.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1035.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1034.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1033.0

Compare Source

Features

• clients: use binary decision diagrams for endpoint resolution (#​7931) (ff1b2ba)

v3.1032.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1031.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1030.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1029.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1028.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1027.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1026.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1025.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1024.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1023.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1022.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1021.0

Compare Source

Bug Fixes

• codegen: sync for adaptive retry throttling detection fix (#​7905) (03f108d)

v3.1020.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1019.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1018.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1017.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1016.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1015.0

Compare Source

Bug Fixes

• core/protocols: use composite error registry for error handling, revert default error message to "UnknownError" (#​7877) (55f7726)

v3.1014.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1013.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1012.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1011.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1010.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1009.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1008.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1007.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

v3.1006.0

Compare Source

Note: Version bump only for package @​aws-sdk/client-sqs

aws/aws-sdk-js-v3 (@​aws-sdk/credential-providers)

v3.1054.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1053.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1052.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1051.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1050.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1049.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1048.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1047.0

Compare Source

Note: Version bump only for package @​aws-sdk/credential-providers

v3.1046.0

Compare Source

**N

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (in timezone Europe/London)

• Branch creation
  • "after 9am every weekday,before 5pm every weekday"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[Kumar Thangavel (kth13)]

LGTM

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[atlassian]

🔗 Link your GitHub account to Atlassian

To enable Code Reviewer, please link your GitHub account to your Atlassian account.

Click here to connect your accounts

This is a one-time setup that takes less than a minute.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you click the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: package-lock.json

npm warn Unknown env config "store". This will stop working in the next major version of npm. See `npm help npmrc` for supported config options.
npm error code ERESOLVE
npm error ERESOLVE unable to resolve dependency tree
npm error
npm error While resolving: hmpps-interventions-ui@0.0.1
npm error Found: @pact-foundation/pact@15.0.1
npm error node_modules/@pact-foundation/pact
npm error   dev @pact-foundation/pact@"^15.0.1" from the root project
npm error
npm error Could not resolve dependency:
npm error peer @pact-foundation/pact@"^16.0.0" from jest-pact@0.13.0
npm error node_modules/jest-pact
npm error   dev jest-pact@"^0.13.0" from the root project
npm error
npm error Fix the upstream dependency conflict, or retry this command with --force or --legacy-peer-deps to accept an incorrect (and potentially broken) dependency resolution.
npm error
npm error
npm error For a full report see:
npm error /runner/cache/others/npm/_logs/2026-05-26T23_44_20_071Z-eresolve-report.txt
npm error A complete log of this run can be found in: /runner/cache/others/npm/_logs/2026-05-26T23_44_20_071Z-debug-0.log