chore(deps-dev): bump @pulumi/pulumi from 3.35.1 to 3.40.2

[dependabot]

Bumps @pulumi/pulumi from 3.35.1 to 3.40.2.

Release notes

Sourced from @​pulumi/pulumi's releases.

v3.40.2

3.40.2 (2022-09-27)

Features

• [cli] Allow per-execution override of the cloud secrets provider url via the PULUMI_CLOUD_SECRET_OVERRIDE environment variable. This allows a temporary replacement without updating the stack config, such a during CI. This does not effect stacks using service secrets or passphrases. #10749

• [cli/new] Enables pulumi new to use templates from Azure DevOps(currently limited to master/main branches and does not support providing subdirectories). #10789

• [engine] 'pulumi policy new' now uses the same system as 'pulumi new' to install dependencies. #10797

• [programgen] Support resource option "version" in pulumi convert to select specific provider SDK versions. #10194

• [yaml] Updates Pulumi YAML to v0.5.8 #10856

• [cli/plugin] Don't retry plugin downloads in 403 and 404 responses #10803

• [sdk/dotnet] Added Deployment.OrganizationName to return the current organization if available. #10564

• [sdk/go] Pulumi Go Programs now support a Pulumi.yaml option buildTarget: path/to/binary to compile/recompile a Go binary to that location. #10731

• [sdk/go] Added Context.Organization to return the current organization if available. #10811

Bug Fixes

• [ci] Re-enable Homebrew Tap publishing. #10796

• [cli] Fixes --tracing to account for response parsing in HTTP api/* spans. #10828

• [cli] Fixes Pulumi.yaml validation error when the refresh: always option is specified #10833

• [engine] Mark pulumi-analyzer-policy and pulumi-analyzer-policy-python as bundled plugins. #10817

• [engine] Fix node and python MLCs on Windows. #10827

... (truncated)

Changelog

Sourced from @​pulumi/pulumi's changelog.

3.40.2 (2022-09-27)

Features

• [cli] Allow per-execution override of the cloud secrets provider url via the PULUMI_CLOUD_SECRET_OVERRIDE environment variable. This allows a temporary replacement without updating the stack config, such a during CI. This does not effect stacks using service secrets or passphrases. #10749 #10749 #10749

• [cli/new] Enables pulumi new to use templates from Azure DevOps(currently limited to master/main branches and does not support providing subdirectories). #10789

• [engine] 'pulumi policy new' now uses the same system as 'pulumi new' to install dependencies. #10797

• [programgen] Support resource option "version" in pulumi convert to select specific provider SDK versions. #10194

• [yaml] Updates Pulumi YAML to v0.5.8 #10856

• [cli/plugin] Don't retry plugin downloads in 403 and 404 responses #10803

• [sdk/dotnet] Added Deployment.OrganizationName to return the current organization if available. #10564

• [sdk/go] Pulumi Go Programs now support a Pulumi.yaml option buildTarget: path/to/binary to compile/recompile a Go binary to that location. #10731

• [sdk/go] Added Context.Organization to return the current organization if available. #10811

Bug Fixes

• [ci] Re-enable Homebrew Tap publishing. #10796

• [cli] Fixes --tracing to account for response parsing in HTTP api/* spans. #10828

• [cli] Fixes Pulumi.yaml validation error when the refresh: always option is specified #10833

• [engine] Mark pulumi-analyzer-policy and pulumi-analyzer-policy-python as bundled plugins. #10817

• [engine] Fix node and python MLCs on Windows.

... (truncated)

Commits

• 57b25b4 refactor: use os.ReadDir for lightweight directory reading
• a450f6e Merge #10820 #10833
• 9034fca Make getOrganization total, default to 'organization'
• f033d9d Merge #10815 #10821 #10822 #10823
• 110dd76 ci: Pin yarn lockfile for security & dependency scanning
• 5493b82 Merge #10622
• b93815d Merge #10624
• 4cb43b5 Merge #10806 #10810
• 7e555cb ci: Simplify test listing, update go dependencies to 1.18 compat
• a4b1d6b ci: gofmt 1.18+ clean
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #64.