chore: update dev dependency - aws-sdk-js-codemod

[leonmk-aws]

Issue # (if applicable)

Closes #31755.

Reason for this change

The dev dependency is outdated and creates issue for users wanting to use some of the aws-sdk packages in custom resources.

Description of changes

The goal of this change is to update the outdated aws-sdk-js-codemod package to the latest available version (bumping the major version from 0.x.x to 2.x.x).

The following changes have been made:

1. Updated the aws-sdk-js-codemod
2. Ran scripts/update-sdkv3-parameters-model.sh
3. Fixed incorrect IAM prefix generated for CloudWatch actions, see fix(custom-resources): incorrect IAM prefix generated for CloudWatch actions #33078 and doc: https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/permissions-reference-cw.html
4. Set the feature flag logApiResponseDataPropertyTrueDefault to false (which is the default value) for the tests that needed a snapshot update, as there is a bug that causes the snapshots to be outdated: (integ-tests-alpha,custom-resources): snapshots are always outdated #30583
5. Ran the tests with --update-on-failed to update snasphots
6. Reverted the feature flag changes.

Description of how you validated changes

Ran the integration tests and updated the snapshots.

• framework-integ/test/aws-elasticloadbalancingv2/test/integ.alb.oidc.ts: needs a valid domain so successfully deployed it on my personal account, then regenerated the snapshots with --dry-run --force
• packages/@aws-cdk-testing/framework-integ/test/aws-elasticloadbalancingv2-actions/test/integ.cognito.js.snapshot/integ-cognito.template.json: needs a valid domain so successfully deployed it on my personal account, then regenerated the snapshots with --dry-run --force

Checklist

• My code adheres to the CONTRIBUTING GUIDE and DESIGN GUIDELINES

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[kumsmrit]

Please validate whats causing the Security Guardian check to fail.

[leonmk-aws]

Please validate what is causing the Security Guardian check to fail.

The security guardian is failing because two tests use overly broad permissions. The snapshots of these tests have changed due to the changes in this pull request. This caused the security-guardian to run on the updated snapshots and report this issue, which is not related to this pull request but to the tests themselves.

[mergify]

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

[aws-cdk-automation]

AWS CodeBuild CI Report

• CodeBuild project: AutoBuildv2Project1C6BFA3F-wQm2hXv2jqQv
• Commit ID: 9460749
• Result: SUCCEEDED
• Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

[alvazjor]

Security Guardian failure is complaining about a broad principal permission in the integ tests, specifically when creating the custom KMS key in the opensearch.custom-kms-key and elasticsearch.custom-kms-key. Both are unrelated to this change, and we will add a issue to solve them, as they are out of scope of this change. Merging this manually

[github-actions]

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.