Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Terraform aws to v5 #11

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update Terraform aws to v5 #11

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Dec 23, 2023
edited
Loading

This PR contains the following updates:

Package Type Update Change
aws (source) required_provider major ~> 4.67.0 -> ~> 5.90.0

Release Notes

hashicorp/terraform-provider-aws (aws)

v5.90.0

Compare Source

BREAKING CHANGES:

  • resource/aws_s3_bucket_lifecycle_configuration: rule.noncurrent_version_expiration.noncurrent_days and rule.noncurrent_version_transition.noncurrent_days are Required (#​40796)

NOTES:

  • data-source/aws_launch_template: elastic_gpu_specifications and elastic_inference_accelerator are deprecated. AWS no longer supports Elastic Graphics or Elastic Inference. (#​41677)
  • provider: In preparation for Go 1.24, we are re-enabling the experimental post-quantum key exchange mechanism, X25519Kyber768Draft00. Previously, in environments using AWS Network Firewall, the Provider would hang due to a handshake issue between Go 1.23 and Network Firewall, which supported Suricata 6.0.9. We had disabled the post-quantum key exchange to resolve the issue. Since November 2024, AWS Network Firewall has upgraded to Suricata 7.0, which no longer has this issue. However, if you use AWS Network Firewall, we’d appreciate your help in identifying any remaining issues related to this change. (#​41655)
  • provider: On December 3, 2024, Amazon SageMaker was renamed to Amazon SageMaker AI. While resource and data source names remain the same in the provider, documentation and error messages have been updated to reflect the name change. (#​41673)
  • resource/aws_ecs_task_execution: overrides.inference_accelerator_overrides is deprecated. AWS no longer provides the Elastic Inference service. (#​41676)
  • resource/aws_launch_template: elastic_gpu_specifications and elastic_inference_accelerator are deprecated. AWS no longer supports Elastic Graphics or Elastic Inference. (#​41677)
  • resource/aws_opsworks_application: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_custom_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_ecs_cluster_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_ganglia_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_haproxy_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_instance: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_java_app_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_memcached_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_mysql_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_nodejs_app_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_permission: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_php_app_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_rails_app_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_rds_db_instance: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_stack: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_static_web_layer: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_opsworks_user_profile: OpsWorks is no longer supported by AWS. This resource is deprecated and will be removed in the next major version. (#​41674)
  • resource/aws_sagemaker_notebook_instance: accelerator_types is deprecated and will be removed in a future version. Use instance_type instead. (#​41673)

FEATURES:

  • New Resource: aws_dataexchange_event_action (#​40552)
  • New Resource: aws_lakeformation_opt_in (#​41611)

ENHANCEMENTS:

  • data-source/aws_cloudfront_cache_policy: Add arn attribute (#​41660)
  • data-source/aws_cloudfront_origin_access_control: Add arn attribute (#​41660)
  • data-source/aws_cloudfront_origin_access_identity: Add arn attribute (#​41660)
  • data-source/aws_cloudfront_origin_request_policy: Add arn attribute (#​41660)
  • data-source/aws_cloudfront_response_headers_policy: Add arn attribute (#​41660)
  • data-source/aws_dx_connection: Add state attribute (#​41575)
  • data-source/aws_opensearch_domain: Add cluster_config.node_options attribute (#​40181)
  • resource/aws_account_region: Allow adoption of regions in an ENABLED or DISABLED state without an explicit import operation (#​41678)
  • resource/aws_account_region: Prevent errors when the region is an ENABLING or DISABLING state during creation (#​41678)
  • resource/aws_cloudfront_cache_policy: Add arn attribute (#​41660)
  • resource/aws_cloudfront_continuous_deployment_policy: Add arn attribute (#​41660)
  • resource/aws_cloudfront_field_level_encryption_config: Add arn attribute (#​41660)
  • resource/aws_cloudfront_field_level_encryption_profile: Add arn attribute (#​41660)
  • resource/aws_cloudfront_origin_access_control: Add arn attribute (#​41660)
  • resource/aws_cloudfront_origin_access_identity: Add arn attribute (#​41660)
  • resource/aws_cloudfront_origin_request_policy: Add arn attribute (#​41660)
  • resource/aws_cloudfront_response_headers_policy: Add arn attribute (#​41660)
  • resource/aws_ec2_client_vpn_endpoint: Add disconnect_on_session_timeout attribute (#​41621)
  • resource/aws_mwaa_environment: Lower the minimum value of the max_webservers and min_webservers arguments from 2 to 1 in support of Amazon MWAA micro environments (#​40244)
  • resource/aws_opensearch_domain: Add cluster_config.node_options configuration block in support of dedicated coordinator nodes (#​40181)
  • resource/aws_osis_pipeline: Add vpc_options.vpc_endpoint_management argument (#​38001)
  • resource/aws_prometheus_rule_group_namespace: Add arn attribute (#​41645)
  • resource/aws_prometheus_rule_group_namespace: Add tags argument and tags_all attribute (#​41645)
  • resource/aws_route53_traffic_policy: Add arn attribute (#​41660)
  • resource/aws_route53_traffic_policy_instance: Add arn attribute (#​41660)
  • resource/aws_s3_bucket_lifecycle_configuration: Adds warning validation to require exactly one of the elements of rule.filter (#​41662)
  • resource/aws_s3_bucket_lifecycle_configuration: rule.noncurrent_version_expiration.noncurrent_days and rule.noncurrent_version_transition.noncurrent_days are Required. Technically this is a breaking change, but failure to configure this attribute would have led to InvalidArgument or MalformedXML errors (#​40796)
  • resource/aws_waf_byte_match_set: Add arn attribute (#​41660)
  • resource/aws_waf_sql_injection_match_set: Add arn attribute (#​41660)

BUG FIXES:

  • ephemeral/aws_secrets_manager_random_password: Change exclude_characters from Bool to String (#​41546)
  • resource/aws_ecs_service: Fix removal of all vpc_lattice_configurations blocks (#​41594)
  • resource/aws_s3_bucket_lifecycle_configuration: Fix error when converting rule configuration from filter.prefix to filter.and.prefix (#​41662)
  • resource/aws_s3_bucket_lifecycle_configuration: Fix error when converting rule configuration from prefix to filter.prefix or filter.and.prefix (#​41662)
  • resource/aws_sagemaker_mlflow_tracking_server: Increased the timeout from 30 to 45 minutes (#​41463)
  • resource/aws_vpclattice_target_group: Retry ConflictException errors on delete (#​41594)

v5.89.0

Compare Source

FEATURES:

  • New Resource: aws_macie2_organization_configuration (#​41475)
  • New Resource: aws_neptunegraph_graph (#​41216)
  • New Resource: aws_quicksight_role_membership (#​41589)
  • New Resource: aws_rds_shard_group (#​41254)
  • New Resource: aws_xray_resource_policy (#​41517)

ENHANCEMENTS:

  • data-source/aws_cloudwatch_log_data_protection_policy_document: Add configuration argument (#​41524)
  • data-source/aws_rds_cluster: Add cluster_scalability_type attribute (#​41254)
  • data-source/aws_rds_cluster: Add database_insights_mode attribute (#​41254)
  • data-source/aws_s3_bucket_object: Add application/yaml to the list of Content-Types that return a body (#​41443)
  • data-source/aws_s3_object: Add application/yaml to the list of Content-Types that return a body (#​41443)
  • data-source/aws_s3_object: Add checksum_crc64nvme attribute (#​41015)
  • release/aws_dx_lag: Add 400Gbps as a supported connections_bandwidth value (#​41547)
  • resource/aws_autoscaling_policy: Add target_tracking_configuration.customized_metric_specification.period argument to support high-resolution metrics (#​41385)
  • resource/aws_db_instance: Add RequiredWith validation password_wo and password_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_docdb_cluster: Add RequiredWith validation master_password_wo and master_password_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_dx_connection: Add 25Gbps and 400Gbps as supported bandwidth values (#​41547)
  • resource/aws_dx_hosted_connection: Add 25Gbps as a supported bandwidth value (#​41547)
  • resource/aws_launch_template: Add network_interfaces.ena_srd_specification configuration block (#​41367)
  • resource/aws_lb: Add enable_zonal_shift support for Application Load Balancers (#​41335)
  • resource/aws_macie2_classification_job: Allow tags to be updated in-place (#​41266)
  • resource/aws_macie2_custom_data_identifier: Allow tags to be updated in-place (#​41266)
  • resource/aws_macie2_findings_filter: Allow tags to be updated in-place (#​41266)
  • resource/aws_macie2_member: Allow tags to be updated in-place (#​41266)
  • resource/aws_nat_gateway: Make it possible to move from secondary_private_ip_address_count to secondary_private_ip_addresses for private NAT Gateways (#​41403)
  • resource/aws_rds_cluster: Add RequiredWith validation master_password_wo and master_password_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_rds_cluster: Add cluster_scalability_type argument (#​41254)
  • resource/aws_rds_cluster: Add database_insights_mode argument (#​41254)
  • resource/aws_rds_cluster: Support "" as a valid value for engine_mode (#​41254)
  • resource/aws_rds_instance: Support iam-db-auth-error as a valid value for enabled_cloudwatch_logs_exports (#​41408)
  • resource/aws_redshift_cluster: Add RequiredWith validation master_password_wo and master_password_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_redshiftseverless_namespace: Add RequiredWith validation admin_user_password_wo and admin_user_password_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_s3_directory_bucket: The default value for data_redundancy is SingleLocalZone if location.type is LocalZone (#​40944)
  • resource/aws_s3_object: Add checksum_crc64nvme attribute (#​41015)
  • resource/aws_s3_object_copy: Add checksum_crc64nvme attribute (#​41015)
  • resource/aws_secretsmanager_secret_version: Add RequiredWith validation secret_string_wo and secret_string_wo_version. Remove PreferWriteOnlyAttribute validation (#​41562)
  • resource/aws_ssm_parameter: Remove PreferWriteOnlyAttribute validation (#​41562)

BUG FIXES:

  • resource/aws_cloudwatch_log_delivery: Fix Provider produced inconsistent result error on s3_delivery_configuration.suffix_path (#​41497)
  • resource/aws_ec2_fleet: Add spot_options.max_total_price, spot_options.min_target_capacity, spot_options.single_instance_type, and spot_options.single_availability_zone arguments (#​41272)
  • resource/aws_lb_listener: Ensure that routing_http_response_server_enabled, routing_http_response_strict_transport_security_header_value, routing_http_response_access_control_allow_origin_header_value, routing_http_response_access_control_allow_methods_header_value, routing_http_response_access_control_allow_headers_header_value, routing_http_response_access_control_allow_credentials_header_value, routing_http_response_access_control_expose_headers_header_value, routing_http_response_access_control_max_age_header_value, routing_http_response_content_security_policy_header_value, routing_http_response_x_content_type_options_header_value, routing_http_response_x_frame_options_header_value, routing_http_request_x_amzn_mtls_clientcert_serial_number_header_name, routing_http_request_x_amzn_mtls_clientcert_issuer_header_name, routing_http_request_x_amzn_mtls_clientcert_subject_header_name, routing_http_request_x_amzn_mtls_clientcert_validity_header_name, routing_http_request_x_amzn_mtls_clientcert_leaf_header_name, routing_http_request_x_amzn_mtls_clientcert_header_name, routing_http_request_x_amzn_tls_version_header_name, and routing_http_request_x_amzn_tls_cipher_suite_header_name are updated if tcp_idle_timeout_seconds does not change (#​41299)
  • resource/aws_macie2_classification_job: Ensure that only status and tags can be updated in-place (#​41266)
  • resource/aws_nat_gateway: Allow secondary_allocation_ids to be updated in-place (#​41403)
  • resource/aws_redshift_cluster: Fix master_username validation (#​41556)
  • resource/aws_s3_bucket_lifecycle_configuration: Prevents InvalidRequest error when rule.and.object_size_less_than not set. (#​41542)
  • resource/aws_servicequotas_service_quota: Does not leave stuck resource in state when service quota not supported in current region. (#​41509)

v5.88.0

Compare Source

NOTES:

  • resource/aws_s3_bucket_lifecycle_configuration: A warning diagnostic has been added for configurations where rule.expiration.expired_object_delete_marker is set with either rule.expiration.date or rule.expiration.days. While historically the provider allowed this invalid configuration, the migration of this resource to the Terraform Plugin Framework in v5.86.0 resulted in this misconfiguration surfacing as a hard inconsistent result after apply error. This diagnostic aims to direct users how to resolve the issue at plan time. See this issue comment for additional context. (#​41462)

FEATURES:

  • New Data Source: aws_cloudwatch_contributor_managed_insight_rules (#​41472)
  • New Resource: aws_cloudwatch_contributor_managed_insight_rule (#​41449)
  • New Resource: aws_qbusiness_application (#​35249)

ENHANCEMENTS:

  • resource/aws_bedrock_model_invocation_logging_configuration: Add video_data_delivery_enabled argument (#​41317)
  • resource/aws_db_instance: Add password_wo write-only attribute (#​41366)
  • resource/aws_docdb_cluster: Add master_password_wo write-only attribute (#​41413)
  • resource/aws_glue_partition: Add storage_descriptor.additional_locations argument (#​41434)
  • resource/aws_redshift_cluster: Add master_password_wo write-only attribute (#​41411)
  • resource/aws_redshiftserverless_namespace: Add admin_user_password_wo write-only attribute (#​41412)
  • resource/aws_secretsmanager_secret_version: Add secret_string_wo write-only attribute (#​41371)

BUG FIXES:

  • data-source/aws_codebuild_fleet: Prevents panic when scaling_configuration is not empty. (#​41377)
  • resource/aws_amplify_domain_association: Prevents unexpected state error when creating with multiple sub_domain (#​36961)
  • resource/aws_bedrock_model_invocation_logging_configuration: Set embedding_data_delivery_enabled, image_data_delivery_enabled, and text_data_delivery_enabled arguments as optional with default value of true (#​41317)
  • resource/aws_cloudwatch_contributor_insight_rule: Fix enable/disable rule state (#​41449)
  • resource/aws_dynamodb_table: Fixes long delay in creation of replicas (#​41451)

v5.87.0

Compare Source

FEATURES:

  • New Resource: aws_cloudwatch_contributor_insight_rule (#​41373)

ENHANCEMENTS:

  • resource/aws_dynamodb_table_export: Add export_type and incremental_export_specification arguments (#​41303)
  • resource/aws_quicksight_data_source: Add parameters.s3.role_arn argument to allow override an account-wide role for a specific S3 data source (#​41284)
  • resource/aws_rds_cluster: Add master_password_wo write-only attribute (#​41314)
  • resource/aws_rekognition_stream_processor: Deprecates stream_processor_arn in favor of arn. (#​41271)
  • resource/aws_ssm_parameter: Add value_wo write-only attribute (#​40952)
  • resource/aws_vpclattice_access_log_subscription: Add service_network_log_type argument (#​41304)

BUG FIXES:

  • data-source/aws_dynamodb_table: Add missing on_demand_throughput and global_secondary_index.*.on_demand_throughput attributes to resolve read error (#​41350)
  • resource/aws_cloudformation_stack_set_instance: Prevents overly-long creation times and possible OperationInProgress errors (#​41388)
  • resource/aws_detective_member: No longer fails with unexpected status when adding Organization member accounts. (#​41344)
  • resource/aws_ec2_transit_gateway_route_table_association: Fix deleting and recreating resource when dependencies changes don't require the resource be recreated. (#​41292)
  • resource/aws_internet_gateway: Fix to continue deletion when attachment is not found (#​41346)

v5.86.1

Compare Source

BUG FIXES:

  • data-source/aws_vpclattice_service: Fix regression resulting in AccessDeniedError attempting to list tags (#​41295)
  • data-source/aws_vpclattice_service_network: Fix regression resulting in AccessDeniedError attempting to list tags (#​41295)
  • resource/aws_cloudtrail: Fix regression issue where sns_topic_name shows perpectual diff when an ARN of a SNS topic from a different region is specified (#​41279)
  • resource/aws_s3_bucket_lifecycle_configuration: Fixes "inconsistent result" error when rule[*].prefix is an empty string. (#​41296)

v5.86.0

Compare Source

NOTES:

  • resource/aws_s3_bucket_lifecycle_configuration: When upgrading existing resources with no defined prefix, the Terraform plan will show the removal of prefix from state. This is expected, and should not occur on subsequent plans. (#​41159)

ENHANCEMENTS:

  • data-source/aws_rds_cluster: Add monitoring_interval and monitoring_role_arn attributes (#​41002)
  • provider: Support us-isof-east-1 and us-isof-south-1 as valid AWS Regions (#​41243)
  • resource/aws_fms_policy: Add security_service_policy_data.policy_option.network_acl_common_policy argument to allow creation of FMS-managed NACL rules (#​41219)
  • resource/aws_rds_cluster: Add monitoring_interval and monitoring_role_arn arguments (#​41002)
  • resource/aws_sqs_queue: Accommodate accounts that take longer to process with customizable timeouts. (#​41232)

BUG FIXES:

  • resource/aws_gamelift_game_server_group: Correctly plan tags_all value (#​41256)
  • resource/aws_instance: Properly cancel spot instance requests on destroy when instance_lifecycle is spot (#​41206)
  • resource/aws_route53_zone: Fix panic: runtime error: invalid memory address or nil pointer dereference when deleting the resource would otherwise return an error (#​41260)
  • resource/aws_s3_bucket_lifecycle_configuration: Properly handle default value of transition_default_minimum_object_size (#​41159)
  • resource/aws_wafv2_web_acl: Properly set rule during import (#​41205)

v5.85.0

Compare Source

NOTES:

  • resource/aws_macie2_invitation_accepter: Maintainers are unable to acceptance test the regression fix included in this release. This patch is best effort, and we ask for community help in assessing the change. (#​41163)

FEATURES:

  • New Data Source: aws_vpc_ipam (#​40459)
  • New Data Source: aws_vpc_ipams (#​40459)
  • New Ephemeral Resource: aws_secretsmanager_random_password (#​41106)
  • New Resource: aws_guardduty_member_detector_feature (#​35625)
  • New Resource: aws_route53domains_domain (#​37885)
  • New Resource: aws_timestreamquery_scheduled_query (#​41145)
  • New Resource: aws_vpclattice_resource_configuration (#​41019)
  • New Resource: aws_vpclattice_service_network_resource_association (#​41057)

ENHANCEMENTS:

  • data-source/aws_ec2_transit_gateway_dx_gateway_attachment: Add arn attribute (#​41086)
  • data-source/aws_ec2_transit_gateway_peering_attachment: Add arn attribute (#​41087)
  • data-source/aws_ec2_transit_gateway_vpc_attachment: Add arn attribute (#​41084)
  • data-source/aws_ecs_task_definition: Add missing attributes (#​41081)
  • data-source/aws_launch_template: Add network_interfaces.connection_tracking_specification attribute (#​41184)
  • resource/aws_appflow_connector_profile: Add connector_profile_config.connector_profile_properties.salesforce.use_privatelink_for_metadata_and_authorization argument (#​41175)
  • resource/aws_autoscaling_policy: Add target_tracking_configuration.customized_metric_specification.metrics.metric_stat.period argument to support high-resolution metrics (#​41066)
  • resource/aws_bedrockagent_data_source: Add data_source_configuration.confluence_configuration, data_source_configuration.salesforce_configuration, data_source_configuration.share_point_configuration, and data_source_configuration.web_configuration arguments (#​40711)
  • resource/aws_bedrockagent_knowledge_base: Add knowledge_base_configuration.vector_knowledge_base_configuration.embedding_model_configuration and knowledge_base_configuration.vector_knowledge_base_configuration.supplemental_data_storage_configuration arguments (#​40737)
  • resource/aws_bedrockagent_knowledge_base: Improve retry handling for IAM propagation and OpenSearch data access propagation errors (#​40737)
  • resource/aws_cloudtrail : Add sns_topic_arn attribute (#​41168)
  • resource/aws_cloudtrail_event_data_store: Add suspend argument (#​40607)
  • resource/aws_cloudwatch_event_connection: Add invocation_connectivity_parameters argument (#​41144)
  • resource/aws_ec2_transit_gateway_peering_attachment: Add arn attribute (#​41087)
  • resource/aws_ec2_transit_gateway_vpc_attachment: Add arn attribute (#​41084)
  • resource/aws_ecs_task_definition: Add enable_fault_injection argument (#​41078)
  • resource/aws_launch_template: Add network_interfaces.connection_tracking_specification argument (#​41184)
  • resource/aws_media_convert_queue: Add concurrent_jobs argument (#​41012)
  • resource/aws_medialive_multiplex_program: Add configurable create timeout (#​40972)
  • resource/aws_organizations_account: Add configurable timeouts for Create and Delete (#​41059)
  • resource/aws_pinpoint_email_channel: Add orchestration_sending_role_arn argument (#​41043)
  • resource/aws_pipes_pipe: Add kms_key_identifier argument (#​41082)
  • resource/aws_rds_cluster: Support instance as a valid value for enabled_cloudwatch_logs_exports (#​41111)
  • resource/aws_rekognition_project: Add tags argument and tags_all attribute (#​41192)
  • resource/aws_vpc_endpoint: Add resource_configuration_arn and service_network_arn arguments to support creating VPC Endpoints of type Resource and ServiceNetwork (#​41116)
  • resource/aws_vpc_endpoint_security_group_association: Add import support (#​41042)

BUG FIXES:

  • data-source/aws_opensearchserverless_collection: Prevent errant AutoFlex errors when setting created_date and last_modified_date attributes (#​41105)
  • resource/aws_ami_ids: Fix sort_ascending to sort in ascending order (#​40529)
  • resource/aws_bedrockagent_knowledge_base: Remove ForceNew behavior from role_arn argument (#​41072)
  • resource/aws_cloudwatch_log_delivery: Fix Provider produced inconsistent result after apply errors for s3_delivery_configuration.enable_hive_compatible_path (#​41122)
  • resource/aws_cloudwatch_log_delivery: Mark field_delimiter as Computed (#​41122)
  • resource/aws_cognito_identity_provider: Correct plan-time validation of provider_name to count UTF-8 characters properly (#​41187)
  • resource/aws_cognito_user_group: Correct plan-time validation of name to count UTF-8 characters properly (#​41187)
  • resource/aws_cognito_user_pool_client: Correct plan-time validation of callback_urls, default_redirect_uri, logout_urls, and supported_identity_providers` to count UTF-8 characters properly (#​41187)
  • resource/aws_dms_replication_task: Fix panic: interface conversion: interface {} is float64, not string (#​41096)
  • resource/aws_elasticache_serverless_cache: Fix InvalidParameterCombination error during update (#​40969)
  • resource/aws_iam_server_certificate: Allow update of name, name_prefix, and path without forcing new resource (#​41186)
  • resource/aws_macie2_invitation_accepter: Properly set invitation_id when calling the AcceptInvitation API (#​41163)

v5.84.0

Compare Source

NOTES:

  • resource/aws_kms_custom_key_store: We cannot acceptance test the support for external key stores added in this release. The impementation is best effort and we ask for community help in testing. (#​40557)

FEATURES:

  • New Ephemeral Resource: aws_eks_cluster_auth (#​40660)
  • New Resource: aws_media_packagev2_channel_group (#​38406)

ENHANCEMENTS:

  • data-source/aws_ami: Add uefi_data attribute (#​40210)
  • data-source/aws_ec2_instance_type: Add bandwidth_weightings, boot_modes, default_network_card_index, efa_maximum_interfaces, ena_srd_supported, inference_accelerators.memory_size, media_accelerators, network_cards, neuron_devices, nitro_enclaves_support, nitro_tpm_support, nitro_tpm_supported_versions, phc_support, supported_cpu_features, total_inference_memory, total_media_memory, and total_neuron_device_memory attributes (#​40717)
  • data-source/aws_elb_hosted_zone_id: Add hosted zone ID for mx-central-1 AWS Region (#​40940)
  • data-source/aws_lb_hosted_zone_id: Add hosted zone IDs for mx-central-1 AWS Region (#​40940)
  • data-source/aws_s3_bucket: Add hosted zone ID for mx-central-1 AWS Region (#​40940)
  • provider: Support mx-central-1 as a valid AWS Region (#​40940)
  • resource/aws_ami: Add uefi_data argument (#​40210)
  • resource/aws_ami_copy: Add uefi_data attribute (#​40210)
  • resource/aws_ami_from_instance: Add uefi_data attribute (#​40210)
  • resource/aws_cloudtrail: Add userIdentity.arn to advanced_event_selector.field_selector (#​40629)
  • resource/aws_elasticache_user: engine is now case insensitive (#​40794)
  • resource/aws_elasticache_user_group: engine is now case insensitive (#​40794)
  • resource/aws_globalaccelerator_accelerator: Add arn attribute (#​40930)
  • resource/aws_globalaccelerator_custom_routing_accelerator: Add arn attribute (#​40930)
  • resource/aws_globalaccelerator_custom_routing_listener: Add arn attribute (#​40930)
  • resource/aws_globalaccelerator_listener: Add arn attribute (#​40930)
  • resource/aws_kms_custom_key_store: Add support for external key stores (#​40557)
  • resource/aws_lb_listener: Add routing_http_response_server_enabled, routing_http_response_strict_transport_security_header_value, routing_http_response_access_control_allow_origin_header_value, routing_http_response_access_control_allow_methods_header_value, routing_http_response_access_control_allow_headers_header_value, routing_http_response_access_control_allow_credentials_header_value, routing_http_response_access_control_expose_headers_header_value, routing_http_response_access_control_max_age_header_value, routing_http_response_content_security_policy_header_value, routing_http_response_x_content_type_options_header_value, routing_http_response_x_frame_options_header_value, routing_http_request_x_amzn_mtls_clientcert_serial_number_header_name, routing_http_request_x_amzn_mtls_clientcert_issuer_header_name, routing_http_request_x_amzn_mtls_clientcert_subject_header_name, routing_http_request_x_amzn_mtls_clientcert_validity_header_name, routing_http_request_x_amzn_mtls_clientcert_leaf_header_name, routing_http_request_x_amzn_mtls_clientcert_header_name, routing_http_request_x_amzn_tls_version_header_name, and routing_http_request_x_amzn_tls_cipher_suite_header_name arguments in support of HTTP header modification (#​40736)
  • resource/aws_route53_health_check: Add triggers argument to support synchronization with upstream CloudWatch alarm changes (#​40918)
  • resource/aws_sagemaker_endpoint_configuration: Support setting production_variants.managed_instance_scaling and shadow_production_variants.managed_instance_scaling to 0 (#​40882)

BUG FIXES:

  • resource/aws_apprunner_vpc_ingress_connection: Change ingress_vpc_configuration, name, and service_arn to ForceNew (#​40927)
  • resource/aws_datasync_location_s3: Fix location URI global ID and subdirectory (...) does not match pattern "..." errors on Read when s3_bucket_arn is an S3 on Outposts access point (#​40929)
  • resource/aws_ecs_task_definition: Correctly detect differences in volume.configure_at_launch and volume.docker_volume_configuration (#​40853)
  • resource/aws_lambda_invocation: Fix failed input transformations when upgrading from a version less than v5.1.0 with an input that cannot be marshaled into a map[string]interface{} (#​40958)
  • resource/aws_lambda_invocation: Prevent a new invocation when upgrading from a version less than v5.1.0 with no configuration changes (#​40958)
  • resource/aws_msk_cluster: Prevent persistent differences when broker_node_group_info.0.storage_info.0.ebs_storage_info.0.provisioned_throughput is unset (#​40910)
  • resource/aws_msk_cluster: Properly disable provisioned throughput when a previously configured broker_node_group_info.0.storage_info.0.ebs_storage_info.0.provisioned_throughput block is removed (#​40910)
  • resource/aws_ses_receipt_rule: Retry errors caused by IAM eventual consistency (#​40873)

v5.83.1

Compare Source

BUG FIXES:

  • resource/aws_route53_record: Correct fdqn value if name is a wildcard domain name (the leftmost label is *). This fixes a regression introduced in v5.83.0 (#​40868)

v5.83.0

Compare Source

NOTES:

  • provider: The retry handling in the apigatewayv2 client has been updated to more extensively match ConflictException error responses. This change should be transparent to users, but if any unexpected changes in behavior with apigatewayv2 resources occur following an upgrade to this release, please open a bug report. (#​40840)
  • resource/aws_api_gateway_domain_name_access_association: Deprecates id in favor of arn. (#​40626)
  • resource/aws_route53_cidr_location: Deprecates id. (#​40626)
  • resource/aws_s3_directory_bucket: Deprecates id in favor of bucket. (#​40626)

FEATURES:

  • New Data Source: aws_cloudwatch_event_buses (#​40662)
  • New Data Source: aws_ecs_clusters (#​40638)
  • New Data Source: aws_route53_records (#​38186)
  • New Ephemeral Resource: aws_cognito_identity_openid_token_for_developer_identity (#​40763)
  • New Resource: aws_bedrockagent_agent_collaborator (#​40559)
  • New Resource: aws_cleanrooms_membership (#​35165)
  • New Resource: aws_cloudwatch_log_delivery (#​40731)
  • New Resource: aws_cloudwatch_log_delivery_destination (#​40731)
  • New Resource: aws_cloudwatch_log_delivery_destination_policy (#​40731)
  • New Resource: aws_cloudwatch_log_delivery_source (#​40731)
  • New Resource: aws_cloudwatch_log_index_policy (#​40594)
  • New Resource: aws_vpclattice_resource_gateway (#​40821)

ENHANCEMENTS:

  • data-source/aws_codebuild_fleet: Add compute_configuration attribute (#​40752)
  • data-source/aws_dms_endpoint: Add kafka_settings.sasl_mechanism attribute (#​36918)
  • data-source/aws_elb_hosted_zone_id: Add hosted zone ID for ap-southeast-7 AWS Region (#​40850)
  • data-source/aws_lb_hosted_zone_id: Add hosted zone IDs for ap-southeast-7 AWS Region (#​40850)
  • data-source/aws_rds_certificate: Add default_for_new_launches attribute (#​40536)
  • data-source/aws_rds_engine_version: Add supports_certificate_rotation_without_restart, supports_integrations, and supports_local_write_forwarding attributes (#​40700)
  • data-source/aws_s3_bucket: Add hosted zone ID for ap-southeast-7 AWS Region (#​40850)
  • data-source/aws_vpc_endpoint_service: Add region attribute (#​40795)
  • data-source/aws_vpc_endpoint_service: Add service_regions argument (#​40795)
  • provider: Support ap-southeast-7 as a valid AWS Region (#​40849)
  • resource/aws_appflow_flow: Add data_transfer_api attribute to destination_flow_config_list.destination_connector_properties.salesforce (#​34937)
  • resource/aws_cloudfront_distribution: Add grpc_config argument to default_cache_behavior and ordered_cache_behavior configuration blocks (#​40762)
  • resource/aws_codebuild_fleet: Add compute_configuration argument (#​40752)
  • resource/aws_cognito_user_pool: Add email_mfa_configuration argument (#​40734)
  • resource/aws_cognito_user_pool: Add sign_in_policy and web_authn_configuration arguments (#​40765)
  • resource/aws_cognito_user_pool: Add user_pool_tier argument (#​40633)
  • resource/aws_dms_endpoint: Add kafka_settings.sasl_mechanism argument ([

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/aws-5.x branch from d03e727 to 9633d9d Compare December 23, 2023 22:37
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 9633d9d to 9ba2211 Compare January 12, 2024 01:11
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 9ba2211 to 63d860d Compare January 19, 2024 01:37
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 63d860d to 042a949 Compare January 26, 2024 03:55
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 042a949 to d4b78a7 Compare February 2, 2024 06:15
@renovate renovate bot force-pushed the renovate/aws-5.x branch from d4b78a7 to 635a589 Compare February 9, 2024 01:17
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 635a589 to b9fcbcf Compare February 16, 2024 01:05
@renovate renovate bot force-pushed the renovate/aws-5.x branch from b9fcbcf to 160fc6d Compare February 23, 2024 01:07
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 160fc6d to dc325a8 Compare March 1, 2024 00:56
@renovate renovate bot force-pushed the renovate/aws-5.x branch from dc325a8 to 5ba6358 Compare March 8, 2024 00:52
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 5ba6358 to f2de934 Compare March 14, 2024 23:06
@renovate renovate bot force-pushed the renovate/aws-5.x branch from f2de934 to ba1bfd5 Compare March 22, 2024 04:22
@renovate renovate bot force-pushed the renovate/aws-5.x branch from ba1bfd5 to 37d1460 Compare March 28, 2024 22:44
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 37d1460 to 46e5b61 Compare April 4, 2024 23:11
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 46e5b61 to c37a013 Compare April 12, 2024 01:33
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 76fe42e to 3304dd9 Compare November 21, 2024 20:42
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 3304dd9 to 6d8c18a Compare November 26, 2024 21:30
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 6d8c18a to abcbcc0 Compare December 3, 2024 17:00
@renovate renovate bot force-pushed the renovate/aws-5.x branch from abcbcc0 to b34cb1d Compare December 4, 2024 17:32
@renovate renovate bot force-pushed the renovate/aws-5.x branch from b34cb1d to 04e4ba7 Compare December 12, 2024 20:09
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 04e4ba7 to d43bb04 Compare December 19, 2024 19:36
@renovate renovate bot force-pushed the renovate/aws-5.x branch from d43bb04 to 09cb3fc Compare January 9, 2025 21:48
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 09cb3fc to 47613d7 Compare January 16, 2025 21:05
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 47613d7 to f6aa72e Compare February 3, 2025 21:08
@renovate renovate bot force-pushed the renovate/aws-5.x branch from f6aa72e to 3e7e8f4 Compare February 6, 2025 22:01
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 3e7e8f4 to 232108c Compare February 13, 2025 23:57
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 232108c to 18b0900 Compare February 21, 2025 01:30
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 18b0900 to 933b035 Compare February 27, 2025 22:51
@renovate renovate bot force-pushed the renovate/aws-5.x branch from 933b035 to fcf2040 Compare March 7, 2025 02:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants