There is a new AWS SDK minor version that came out. Although we haven't seen it in Renovate yet, we should upgrade to using it, considering AWS will not backport all security fixes, such as explicitely said to fgrilli here: https://github.com/aws/aws-sdk-java-v2/issues/4638
- This release contains a major internal refactor of authentication. The
refactor is part of moving the SDK to a standardized AWS SDK architecture.
It paves the way for new features to be released over the coming months: SDK plugins to provide a unified interface to add third-party functionality to the SDK and the ability to define additional ways of authenticating with services.
With this release, custom 3rd party credential providers can be created with fewer SDK dependencies (with the new `identity-spi` module), and AWS signers can be used with fewer SDK dependencies (with the new `http-auth-aws` module).
Because this is a major refactor that may result in backwards-compatible behavior changes, this release bumps the minor version of the SDK to 2.21.