build(deps): bump aws-lambda-powertools from 2.19.0 to 2.20.0

[dependabot]

Bumps aws-lambda-powertools from 2.19.0 to 2.20.0.

Release notes

Sourced from aws-lambda-powertools's releases.

v2.20.0

Summary

This release introduces signed and verifiable builds for PyPi, and a new documentation section to make our automation practices, maintainers playbook, and soon a re-imagined contributing guide more visible.

Love automation and CI/CD? We did an interview to walk through what's now documented under our new Automation section:

• Walkthrough - Continuous Integration
• Walkthrough - Release Pipeline

Verifying signed builds

Docs

As of today's release, you can now publicly verify our builds came from a trusted source to further strengthen supply chain security. We created a new Security section in our documentation with steps you can take to verify releases.

You can skip this part if you're not interested in the supply chain security space

For the past few months, we've been working hard to improve our operational and security posture. The biggest chunk of work was introducing Open Source Security Foundation (OSSF) Scorecard project to generate security health metrics, proactive security alerts, and attest we've been following OSSF Best Practices.

We couldn't be happier with the results.

Through the research, we've learned about SLSA as a framework to produce verifiable reproducible builds within our release pipeline. This enables our more security conscious customers to guarantee our releases came from this repository and every step can be publicly traced back.

Provenance step within our release pipeline to attest its reproducibility and authenticity

Changes

• refactor(parser): convert functional tests to unit tests (#2656) by @​leandrodamascena

🌟New features and non-breaking changes

• feat(metrics): support to set default dimension in EphemeralMetrics (#2748) by @​leandrodamascena

📜 Documentation updates

• docs(process): explain our integration automated checks; revamp navigation (#2764) by @​heitorlessa
• chore(ci): introduce provenance and attestation in release (#2746) by @​heitorlessa
• feat(metrics): support to set default dimension in EphemeralMetrics (#2748) by @​leandrodamascena
• docs(batch): fix custom batch processor example (#2714) by @​heitorlessa
• docs(maintainers): add cicd pipeline diagram (#2692) by @​heitorlessa
• docs(contributing): add code integration journey graph (#2685) by @​heitorlessa
• chore(ci): enforce pip --require-hashes to maybe satistify scorecard (#2679) by @​heitorlessa
• chore(deps): bump squidfunk/mkdocs-material from 3837c0f to a28ed81 in /docs (#2669) by @​dependabot

... (truncated)

Changelog

Sourced from aws-lambda-powertools's changelog.

[v2.20.0] - 2023-07-14

Maintenance

• version bump
• deps-dev: bump mypy-boto3-secretsmanager from 1.28.0 to 1.28.3 (#2773)

Commits

• 2e746d7 chore: version bump
• 4b0b2b8 chore(deps-dev): bump mypy-boto3-secretsmanager from 1.28.0 to 1.28.3 (#2773)
• 961e78c chore(deps): bump github.com/aws/aws-sdk-go-v2/service/lambda from 1.37.0 to ...
• ca0ec3a chore(deps-dev): bump sentry-sdk from 1.28.0 to 1.28.1 (#2772)
• 8d52b03 chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.18.27 to 1.18.28...
• fc242cf chore(deps): bump actions/setup-python from 4.6.1 to 4.7.0 (#2768)
• d1c2295 chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.18.1 to 1.19.0 in /laye...
• 0db5ffd chore(deps-dev): bump mypy-boto3-s3 from 1.28.0 to 1.28.3 (#2774)
• 9ac305f chore(ci): changelog rebuild (#2766)
• 8625ccb docs(process): explain our integration automated checks; revamp navigation (#...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #88.