build(deps): bump the aws-sdk group with 5 updates

[dependabot]

Bumps the aws-sdk group with 5 updates:

Package	From	To
github.com/aws/aws-sdk-go-v2	1.41.1	1.41.2
github.com/aws/aws-sdk-go-v2/config	1.32.9	1.32.10
github.com/aws/aws-sdk-go-v2/credentials	1.19.9	1.19.10
github.com/aws/aws-sdk-go-v2/service/sts	1.41.6	1.41.7
github.com/aws/aws-sdk-go-v2/service/ssm	1.68.0	1.68.1

Updates github.com/aws/aws-sdk-go-v2 from 1.41.1 to 1.41.2

Commits

• 238dde7 Release 2026-02-23
• 3a957b9 Regenerated Clients
• 2972c7d Update endpoints model
• aa03794 Update API model
• 7712be7 Feature add new eventstream implementation to support bedrockruntime#InvokeMo...
• da36a98 Release 2026-02-20
• 9d7b59c Regenerated Clients
• e75eb3f Update endpoints model
• 2c987cd Update API model
• 766b176 parameterize generate-dev (#3329)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.9 to 1.32.10

Commits

• 238dde7 Release 2026-02-23
• 3a957b9 Regenerated Clients
• 2972c7d Update endpoints model
• aa03794 Update API model
• 7712be7 Feature add new eventstream implementation to support bedrockruntime#InvokeMo...
• da36a98 Release 2026-02-20
• 9d7b59c Regenerated Clients
• e75eb3f Update endpoints model
• 2c987cd Update API model
• 766b176 parameterize generate-dev (#3329)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.19.9 to 1.19.10

Commits

• fcc0f5d Release 2023-04-10
• cd750e0 Regenerated Clients
• 1bc2f05 Update endpoints model
• b964f5c Update API model
• fd69015 fix APIGW exports nullability exceptions
• fae239a Merge pull request #2089 from aws/auditAccessibility
• acf33a2 Update aws-sdk-go-v2's comment codegened from Smithy Go's updated document sm...
• 27360c1 fix APIGW exports nullability exceptions
• 30383d5 Release 2023-04-07
• 352f89c Regenerated Clients
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.41.6 to 1.41.7

Commits

• 238dde7 Release 2026-02-23
• 3a957b9 Regenerated Clients
• 2972c7d Update endpoints model
• aa03794 Update API model
• 7712be7 Feature add new eventstream implementation to support bedrockruntime#InvokeMo...
• da36a98 Release 2026-02-20
• 9d7b59c Regenerated Clients
• e75eb3f Update endpoints model
• 2c987cd Update API model
• 766b176 parameterize generate-dev (#3329)
• Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/ssm from 1.68.0 to 1.68.1

Commits

• 466d9d5 Release 2025-11-19.2
• ca4b05e Regenerated Clients
• d780944 add logincreds provider (#3230)
• 115ff14 Release 2025-11-19
• 964750d Regenerated Clients
• 5b181c4 Update API model
• 1e2c145 Release 2025-11-18
• 163dcfe Regenerated Clients
• 38b8afe Update endpoints model
• 0252675 Update API model
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Summary by CodeRabbit

• Chores
  • Updated AWS SDK for Go v2 and related service modules to latest patch versions.
  • Updated internal dependencies and transitive packages to maintain system compatibility and stability.

[coderabbitai]

Walkthrough

Updates AWS SDK for Go v2 modules and related dependencies to newer patch versions in the go.mod file. Multiple core SDK packages and service modules are bumped, along with transitive dependencies. No public API changes are introduced.

Changes

Cohort / File(s)	Summary
AWS SDK and Dependencies go.mod	Bumps AWS SDK for Go v2 core modules (aws-sdk-go, config, credentials, sts) and internal/service submodules (ec2/imds, configsources, endpoints, sso, ssm, ssooidc) to newer patch versions. Increments indirect signin dependency. Updates smithy-go transitive dependency.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~8 minutes

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change—bumping AWS SDK Go v2 modules to newer patch versions in the go.mod file.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Stable And Deterministic Test Names	✅ Passed	This PR only modifies go.mod and go.sum files with dependency version bumps; no test files are modified.
Test Structure And Quality	✅ Passed	PR exclusively modifies go.mod for AWS SDK version bumps; no test code files are modified, making this test quality check inapplicable.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/go_modules/aws-sdk-19ff8b193f

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a openshift member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: dependabot[bot]
Once this PR has been reviewed and has the lgtm label, please assign typeid for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@go.mod`:
- Line 43: The go.mod shows transitive AWS SDK v2 version skew caused by
github.com/openshift-online/ocm-common@v0.0.29 pulling older aws-sdk modules
(e.g., config, credentials, feature/ec2/imds, internal/configsources,
internal/endpoints/v2, service/sso, service/ssooidc, service/sts, smithy-go);
update the dependency graph by either bumping
github.com/openshift-online/ocm-common to a release that depends on the newer
AWS SDK v2, or add explicit require/replace directives in go.mod to pin the AWS
SDK modules (e.g., github.com/aws/aws-sdk-go-v2/config, credentials,
feature/ec2/imds, internal/configsources, internal/endpoints/v2, service/sso,
service/ssooidc, service/sts, github.com/aws/smithy-go) to the desired newer
versions so the transitive versions are coherent and then run go mod tidy to
verify.

---

ℹ️ Review info

Configuration used: Repository: openshift/coderabbit/.coderabbit.yaml

Review profile: CHILL

Plan: Pro

Cache: Disabled due to data retention organization setting

Knowledge base: Disabled due to data retention organization setting

📥 Commits

Reviewing files that changed from the base of the PR and between ca6d232 and 05ecc28.

⛔ Files ignored due to path filters (1)

• go.sum is excluded by !**/*.sum

📒 Files selected for processing (1)

• go.mod

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

# First, locate and read the go.mod file
git ls-files | grep -E '^go\.mod$'

Repository: openshift/backplane-cli

Length of output: 73

---

🏁 Script executed:

# Read the go.mod file to see the dependency block around lines 43 and 66-75
cat -n go.mod | sed -n '40,80p'

Repository: openshift/backplane-cli

Length of output: 2483

---

🏁 Script executed:

# Run the suggested dependency graph verification
# Check for multiple versions of AWS SDK v2 and smithy-go modules
go mod graph 2>/dev/null | grep -E 'github.com/aws/aws-sdk-go-v2|github.com/aws/smithy-go' | sort -u | head -100

Repository: openshift/backplane-cli

Length of output: 9347

---

Version mismatch detected in AWS SDK v2 transitive dependencies.

The dependency graph reveals that github.com/openshift-online/ocm-common@v0.0.29 pulls in significantly older AWS SDK v2 modules, creating version conflicts:

• config@v1.27.9 vs. v1.32.10
• credentials@v1.17.9 vs. v1.19.10
• feature/ec2/imds@v1.16.0 vs. v1.18.18
• internal/configsources@v1.3.15 vs. v1.4.18
• internal/endpoints/v2@v2.6.15 vs. v2.7.18
• service/sso@v1.20.3 vs. v1.30.11
• service/ssooidc@v1.23.3 vs. v1.35.15
• service/sts@v1.28.5 vs. v1.41.7
• smithy-go@v1.20.3 vs. v1.24.1

While Go module resolution will use the newer versions, this indicates the transitive dependencies are not coherent. Consider updating ocm-common to a version compatible with the current AWS SDK v2 ecosystem, or explicitly constrain conflicting versions.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@go.mod` at line 43, The go.mod shows transitive AWS SDK v2 version skew
caused by github.com/openshift-online/ocm-common@v0.0.29 pulling older aws-sdk
modules (e.g., config, credentials, feature/ec2/imds, internal/configsources,
internal/endpoints/v2, service/sso, service/ssooidc, service/sts, smithy-go);
update the dependency graph by either bumping
github.com/openshift-online/ocm-common to a release that depends on the newer
AWS SDK v2, or add explicit require/replace directives in go.mod to pin the AWS
SDK modules (e.g., github.com/aws/aws-sdk-go-v2/config, credentials,
feature/ec2/imds, internal/configsources, internal/endpoints/v2, service/sso,
service/ssooidc, service/sts, github.com/aws/smithy-go) to the desired newer
versions so the transitive versions are coherent and then run go mod tidy to
verify.

[openshift-ci]

@dependabot[bot]: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 53.01%. Comparing base (ca6d232) to head (05ecc28).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #901   +/-   ##
=======================================
  Coverage   53.01%   53.01%           
=======================================
  Files          86       86           
  Lines        6538     6538           
=======================================
  Hits         3466     3466           
  Misses       2610     2610           
  Partials      462      462           

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.