Upgrade: [dependabot] - bump aws-cdk-lib from 2.239.0 to 2.240.0

[dependabot]

Bumps aws-cdk-lib from 2.239.0 to 2.240.0.

Release notes

Sourced from aws-cdk-lib's releases.

v2.240.0

Features

• update L1 CloudFormation resource definitions (#37039) (17b2d93)
• eks-v2: graduate to stable 🚀 (#36950) (a7de51c)
• update L1 CloudFormation resource definitions (#37034) (62d40f8)

Bug Fixes

• bump minimatch to ^10.2.1 to resolve ReDoS vulnerability (GHSA-3ppc-4f35-3m26) (#37027) (e48ea41)

---

Alpha modules (2.240.0-alpha.0)

Changelog

Sourced from aws-cdk-lib's changelog.

Changelog

All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

2.240.0-alpha.0 (2026-02-23)

2.239.0-alpha.0 (2026-02-19)

⚠ BREAKING CHANGES

redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE

Features

• bedrock-agentcore-alpha: add fromCodeAsset method to create runtime artifact with local code assets (#36472) (c5a87e6), closes #36473
• bedrock-agentcore-alpha: added new target type (api gateway) in agentcore gateway target. (#36841) (0842754), closes #36817
• mixins-preview: add ECS ClusterSettingsMixin (#36796) (b8ab5be)
• mixins-preview: add s3 bucket mixin for publicAccessBlock (#36905) (feed4b2)
• mixins-preview: send Vended Logs to pre-created DeliveryDestination using toDestination() (#36896) (48f1fe6)

Bug Fixes

• redshift-alpha: update default node type from DC2_LARGE to RA3_LARGE (#36516) (ea19e5c), closes #36416

2.238.0-alpha.0 (2026-02-09)

Features

• eks-v2-alpha: add support for bootstrapSelfManagedAddons (#36740) (1ffe38d)
• eks-v2-alpha: add support for EKS hybrid nodes (#36749) (48ace56)

Bug Fixes

• eks-v2-alpha: ensure kubectl provider and handler functions use the same vpc configuration (#36735) (4e02f08), closes #34878 #34877
• ivs-alpha: add region constraints to integration tests (#36851) (d55fec4)
• mixins-preview: apply mixins in order (#36847) (726060c)
• mixins-preview: apply mixins in order in MixinApplicator (#36877) (09db1c9), closes #36847

2.237.1-alpha.0 (2026-02-03)

2.237.0-alpha.0 (2026-02-02)

Features

• bedrock-agentcore-alpha: add support for custom claims and scopes to runtime/gateway authorizers (#36810) (a3abcd0)
• eks-v2-alpha: pass additional helm chart values to aws-load-balancer-controller (#36754) (cf61814), closes /github.com/kubernetes-sigs/aws-load-balancer-controller/blob/main/helm/aws-load-balancer-controller/values.yaml#L199

... (truncated)

Commits

• e3ec6df chore: update analytics metadata blueprints
• e48ea41 chore: bump minimatch to ^10.2.1 to resolve ReDoS vulnerability (GHSA-3ppc-4f...
• 17b2d93 feat: update L1 CloudFormation resource definitions (#37039)
• a7de51c feat(eks-v2): graduate to stable 🚀 (#36950)
• a8914c2 Merge branch 'main' into merge-back/2.239.0
• 62d40f8 feat: update L1 CloudFormation resource definitions (#37034)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

This PR is raised by Dependabot to update a dependency.

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[eps-autoapprove-dependabot]

I'm approving this pull request because it includes a patch or minor update