Comparing changes

### Description of changes backfill missing enums for lambda ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…isanalytics-flink-alpha (#33632) ### Description of changes backfill missing enums for kinesisanalytics-flink-alpha ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

… kinesisfirehose-destinations-alpha (#33633) ### Description of changes backfill missing enums for kinesisfirehose-destinations-alpha ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Ref: https://aws.amazon.com/about-aws/whats-new/2025/02/amazon-location-service-supports-privatelink/ ```sh % aws ec2 describe-vpc-endpoint-services --filters "Name=service-name,Values=*geo*" --region us-east-1 --query "ServiceNames[]" [ "com.amazonaws.us-east-1.geo.geofencing", "com.amazonaws.us-east-1.geo.maps", "com.amazonaws.us-east-1.geo.metadata", "com.amazonaws.us-east-1.geo.places", "com.amazonaws.us-east-1.geo.routes", "com.amazonaws.us-east-1.geo.tracking" ] ``` ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…33678) ### Issue # (if applicable) n/a ### Reason for this change The `awslint` rules enforce naming to be consistent with CloudFormation resources. In this case, the CFN resource is `AWS::Scheduler::ScheduleGroup` but the construct was named `Group` when it should be `ScheduleGroup`. When this module is stabilized, `Group` will be completely removed. ### Description of changes - Mark `Group` and related methods as deprecated. Deprecation - Introduce new class `ScheduleGroup` (duplicate of Group, just renamed) - Addressed most `awslint` exemptions in the module - Update any logic referencing `group` to reference `scheduleGroup` - Updated README examples ### Describe any new or updated permissions being added n/a ### Description of how you validated changes Updated unit tests ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…entTemplate instead of CfnAssessmentTemplate (#33682) ### Issue # (if applicable) Closes #<issue number here>. ### Reason for this change Adhere to AWS CDK best practice/design guidelines to not expose L1 resources/properties in L2 APIs. ### Description of changes Changed `InspectorStartAssessmentRun` target constructor to accept `IAssessmentTemplate` instead of `CfnAssessmentTemplate` ### Describe any new or updated permissions being added n/a ### Description of how you validated changes Updated unit tests and integration test - no snapshot changes ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) BREAKING CHANGE: The `InspectorStartAssessmentRun` target's constructor now accepts `IAssessmentTemplate` instead of `CfnAssessmentTemplate` as its parameter type. To migrate existing code, use the `AssessmentTemplate.fromCfnAssessmentTemplate()` method to convert your `CfnAssessmentTemplate` instances to `IAssessmentTemplate`. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…t changing (#33680) ### Reason for this change The issue happens in a very small edge case: 1. create a eks.Cluster like this ``` new eks.Cluster(this, 'Cluster', { version: eks.KubernetesVersion.V1_32, kubectlLayer: new KubectlV32Layer(this, 'KubectlLayer'), }); ``` 2. In EKS console, modify the Auth model from CONFIG_MAP to API_AND_CONFIG_MAP, wait a few minutes until it completes. 3. Again, update from API_AND_CONFIG_MAP to API from console, wait until it completes 4. Now in CDK, add ``` authenticationMode: eks.AuthenticationMode.API, ``` 5. When we re-deploy, CDK would have a validation error: ``` Received response status [FAILED] from custom resource. Message returned: Cannot update from undefined(CONFIG_MAP) to API ``` It is because in local template, the auth mode is `Config_Map` while the actual resource is using `API` mode. In this case, cdk deployment should ignore the update instead of throwing an error. ### Description of changes Move the code order a little bit. Basically check if the updated auth mode is the same as existing mode first then do some validations. ### Description of how you validated changes Existing unit tests/integration tests passed. I removed 2 unit tests which are not applicable because `DescribeCluster` api call will always return auth mode. Manually tested the change in the edge case. ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…uct (#33416) ### Issue # (if applicable) #33366 Closes #33366 ### Reason for this change Field Indexing for CloudWatch Logs (CWL) was launched in Nov 2024. A lot of CWL customers are asking for indexing support in L2 construct. This feature will enable that property under FieldIndexPolicies as a JSON object in the LogGroup construct. ### Description of changes The change here is just populating the `fieldIndexPolicies` property of the LogGroup CFN with the list of fields provided by the user. The format of this property will be like this: ``` const fieldIndexPolicy = new FieldIndexPolicy({ fields: ['Operation', 'RequestId'], }); new LogGroup(this, 'LogGroupLambda', { dataProtectionPolicy: dataProtectionPolicy, fieldIndexPolicies: [fieldIndexPolicy], }); ``` ### Describe any new or updated permissions being added No new permissions have been added. ### Description of how you validated changes Added unit tests. Will add integ tests after getting a confirmation from the CDK team on the implementation. ### Checklist - [X] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

See [CHANGELOG](https://github.com/aws/aws-cdk/blob/merge-back/2.182.0/CHANGELOG.md)

#33692) When a bundling command is interrupted with Ctrl-C, the asset output directory has already been created. On the next synthesis, we assume the asset has already successfully been produced, don't do any bundling, and upload it. We will then have produced and uploaded a broken asset. Instead, the common pattern to handle this is: - Do the work into a temporary directory - Rename the temporary directory to the target directory only if the work succeeds. Closes #33201, closes #32869, relates to #14474. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Removed folks who left CDK Team. Added QuantumNeuralCoder and SimonCMoore ### Issue # (if applicable) Closes #<issue number here>. ### Reason for this change ### Description of changes ### Describe any new or updated permissions being added ### Description of how you validated changes ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Removing folks who left CDK team. Adding QuantumNeuralCoder and SimonCMoore ### Issue # (if applicable) Closes #<issue number here>. ### Reason for this change ### Description of changes ### Describe any new or updated permissions being added ### Description of how you validated changes ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…33700) ### Issue # (if applicable) Relates to #32569 ### Reason for this change untyped Errors are not recommended ### Description of changes ValidationErrors everywhere ### Describe any new or updated permissions being added None ### Description of how you validated changes Existing tests. Exemptions granted as this is a refactor of existing code. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…1, and 11.4.5 (#33665) Ref: https://aws.amazon.com/about-aws/whats-new/2025/02/amazon-rds-for-mariadb-supports-minors/ - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…vided to Provider (#33600) ### Issue # (if applicable) Closes #20360 ### Reason for this change When users specify a isCompletehandler and specifies a custom role for the provider framework, the output template is not deployable due to circular dependencies. ### Description of changes The change here is to deprecate the old `role` property because this `role` is shared between the 3 framework lambda functions. The state machine will depends on the sfn default policy. The default policy depends on isCompleteLambda (granting invoke function permission). isCompleteLambda depends on common default role policy. The common role default policy has startExecution permission to SFN. The solution is to deprecate `role` and introduce new roles for the onEvent lambda and isComplete/onTimeout lambda ### Describe any new or updated permissions being added N/A ### Description of how you validated changes New tests ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…33703) ### Description of changes Remove test branch for triggering the workflow. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

## Issue # (if applicable) N/A - New feature proposal ## Reason for this change Currently, applying removal policies to multiple resources requires setting them individually or using Tags as a workaround. This change introduces a new RemovalPolicies module that provides a more intuitive and type-safe way to manage removal policies across multiple resources, similar to the existing Tags API. ## Description of changes Added a new RemovalPolicies module that provides: - A similar interface to Tags.of() for managing removal policies - Type-safe resource type specifications using CloudFormation resource type strings - Ability to include or exclude specific resource types - Convenient methods for common removal policies (destroy, retain, snapshot, retainOnUpdateOrDelete) Example usage: ```ts // Using CloudFormation resource type strings RemovalPolicies.of(scope).retain({ applyToResourceTypes: ['AWS::S3::Bucket', 'AWS::DynamoDB::Table'] }); const bucket = new s3.Bucket(scope, 'bucket') // Using CDK resource classes (type-safe) RemovalPolicies.of(scope).retain({ applyToResourceTypes: [ bucket.cfnResourceType, CfnTable.CFN_RESOURCE_TYPE_NAME, ] }); // Mixed usage RemovalPolicies.of(scope).retain({ applyToResourceTypes: [bucket.cfnResourceType, 'AWS::DynamoDB::Table'] }); ``` ## Description of how you validated changes TBD ## Checklist [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) --- By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

…correct version (#33664) ### Reason for this change #31265 The above PR migrated the custom resource from `v2` to `v3`, but the documentation was not updated accordingly. This update ensures the documentation reflects the correct version. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) ### Reason for this change There are no VPC endpoints for AWS WAFV2 so I added. ``` % aws ec2 describe-vpc-endpoint-services --filters "Name=service-name,Values=*waf*" --region us-east-1 --query "ServiceNames[]" [ "com.amazonaws.us-east-1.wafv2", "com.amazonaws.us-east-1.wafv2-fips" ] ``` ### Description of changes ### Describe any new or updated permissions being added ### Description of how you validated changes ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Bumps [axios](https://github.com/axios/axios) from 1.7.8 to 1.8.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/releases">axios's releases</a>.</em></p> <blockquote> <h2>Release v1.8.2</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li><strong>http-adapter:</strong> add allowAbsoluteUrls to path building (<a href="https://redirect.github.com/axios/axios/issues/6810">#6810</a>) (<a href="https://github.com/axios/axios/commit/fb8eec214ce7744b5ca787f2c3b8339b2f54b00f">fb8eec2</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/lexcorp16" title="+1/-1 ([#6810](axios/axios#6810) )">Fasoro-Joseph Alexander</a></li> </ul> <h2>Release v1.8.1</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> move <code>generateString</code> to platform utils to avoid importing crypto module into client builds; (<a href="https://redirect.github.com/axios/axios/issues/6789">#6789</a>) (<a href="https://github.com/axios/axios/commit/36a5a620bec0b181451927f13ac85b9888b86cec">36a5a62</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+51/-47 ([#6789](axios/axios#6789) )">Dmitriy Mozgovoy</a></li> </ul> <h2>Release v1.8.0</h2> <h2>Release notes:</h2> <h3>Bug Fixes</h3> <ul> <li><strong>examples:</strong> application crashed when navigating examples in browser (<a href="https://redirect.github.com/axios/axios/issues/5938">#5938</a>) (<a href="https://github.com/axios/axios/commit/1260ded634ec101dd5ed05d3b70f8e8f899dba6c">1260ded</a>)</li> <li>missing word in SUPPORT_QUESTION.yml (<a href="https://redirect.github.com/axios/axios/issues/6757">#6757</a>) (<a href="https://github.com/axios/axios/commit/1f890b13f2c25a016f3c84ae78efb769f244133e">1f890b1</a>)</li> <li><strong>utils:</strong> replace getRandomValues with crypto module (<a href="https://redirect.github.com/axios/axios/issues/6788">#6788</a>) (<a href="https://github.com/axios/axios/commit/23a25af0688d1db2c396deb09229d2271cc24f6c">23a25af</a>)</li> </ul> <h3>Features</h3> <ul> <li>Add config for ignoring absolute URLs (<a href="https://redirect.github.com/axios/axios/issues/5902">#5902</a>) (<a href="https://redirect.github.com/axios/axios/issues/6192">#6192</a>) (<a href="https://github.com/axios/axios/commit/32c7bcc0f233285ba27dec73a4b1e81fb7a219b3">32c7bcc</a>)</li> </ul> <h3>Reverts</h3> <ul> <li>Revert "chore: expose fromDataToStream to be consumable (<a href="https://redirect.github.com/axios/axios/issues/6731">#6731</a>)" (<a href="https://redirect.github.com/axios/axios/issues/6732">#6732</a>) (<a href="https://github.com/axios/axios/commit/1317261125e9c419fe9f126867f64d28f9c1efda">1317261</a>), closes <a href="https://redirect.github.com/axios/axios/issues/6731">#6731</a> <a href="https://redirect.github.com/axios/axios/issues/6732">#6732</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li> <p>code relying on the above will now combine the URLs instead of prefer request URL</p> </li> <li> <p>feat: add config option for allowing absolute URLs</p> </li> <li> <p>fix: add default value for allowAbsoluteUrls in buildFullPath</p> </li> <li> <p>fix: typo in flow control when setting allowAbsoluteUrls</p> </li> </ul> <h3>Contributors to this release</h3> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/axios/axios/blob/v1.x/CHANGELOG.md">axios's changelog</a>.</em></p> <blockquote> <h2><a href="https://github.com/axios/axios/compare/v1.8.1...v1.8.2">1.8.2</a> (2025-03-07)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>http-adapter:</strong> add allowAbsoluteUrls to path building (<a href="https://redirect.github.com/axios/axios/issues/6810">#6810</a>) (<a href="https://github.com/axios/axios/commit/fb8eec214ce7744b5ca787f2c3b8339b2f54b00f">fb8eec2</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/lexcorp16" title="+1/-1 ([#6810](axios/axios#6810) )">Fasoro-Joseph Alexander</a></li> </ul> <h2><a href="https://github.com/axios/axios/compare/v1.8.0...v1.8.1">1.8.1</a> (2025-02-26)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>utils:</strong> move <code>generateString</code> to platform utils to avoid importing crypto module into client builds; (<a href="https://redirect.github.com/axios/axios/issues/6789">#6789</a>) (<a href="https://github.com/axios/axios/commit/36a5a620bec0b181451927f13ac85b9888b86cec">36a5a62</a>)</li> </ul> <h3>Contributors to this release</h3> <ul> <li> <a href="https://github.com/DigitalBrainJS" title="+51/-47 ([#6789](axios/axios#6789) )">Dmitriy Mozgovoy</a></li> </ul> <h1><a href="https://github.com/axios/axios/compare/v1.7.9...v1.8.0">1.8.0</a> (2025-02-25)</h1> <h3>Bug Fixes</h3> <ul> <li><strong>examples:</strong> application crashed when navigating examples in browser (<a href="https://redirect.github.com/axios/axios/issues/5938">#5938</a>) (<a href="https://github.com/axios/axios/commit/1260ded634ec101dd5ed05d3b70f8e8f899dba6c">1260ded</a>)</li> <li>missing word in SUPPORT_QUESTION.yml (<a href="https://redirect.github.com/axios/axios/issues/6757">#6757</a>) (<a href="https://github.com/axios/axios/commit/1f890b13f2c25a016f3c84ae78efb769f244133e">1f890b1</a>)</li> <li><strong>utils:</strong> replace getRandomValues with crypto module (<a href="https://redirect.github.com/axios/axios/issues/6788">#6788</a>) (<a href="https://github.com/axios/axios/commit/23a25af0688d1db2c396deb09229d2271cc24f6c">23a25af</a>)</li> </ul> <h3>Features</h3> <ul> <li>Add config for ignoring absolute URLs (<a href="https://redirect.github.com/axios/axios/issues/5902">#5902</a>) (<a href="https://redirect.github.com/axios/axios/issues/6192">#6192</a>) (<a href="https://github.com/axios/axios/commit/32c7bcc0f233285ba27dec73a4b1e81fb7a219b3">32c7bcc</a>)</li> </ul> <h3>Reverts</h3> <ul> <li>Revert "chore: expose fromDataToStream to be consumable (<a href="https://redirect.github.com/axios/axios/issues/6731">#6731</a>)" (<a href="https://redirect.github.com/axios/axios/issues/6732">#6732</a>) (<a href="https://github.com/axios/axios/commit/1317261125e9c419fe9f126867f64d28f9c1efda">1317261</a>), closes <a href="https://redirect.github.com/axios/axios/issues/6731">#6731</a> <a href="https://redirect.github.com/axios/axios/issues/6732">#6732</a></li> </ul> <h3>BREAKING CHANGES</h3> <ul> <li> <p>code relying on the above will now combine the URLs instead of prefer request URL</p> </li> <li> <p>feat: add config option for allowing absolute URLs</p> </li> <li> <p>fix: add default value for allowAbsoluteUrls in buildFullPath</p> </li> </ul> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/axios/axios/commit/a9f7689b0c4b6d68c7f587c3aa376860da509d94"><code>a9f7689</code></a> chore(release): v1.8.2 (<a href="https://redirect.github.com/axios/axios/issues/6812">#6812</a>)</li> <li><a href="https://github.com/axios/axios/commit/fb8eec214ce7744b5ca787f2c3b8339b2f54b00f"><code>fb8eec2</code></a> fix(http-adapter): add allowAbsoluteUrls to path building (<a href="https://redirect.github.com/axios/axios/issues/6810">#6810</a>)</li> <li><a href="https://github.com/axios/axios/commit/98120457559e573024862e2925d56295a965ad7e"><code>9812045</code></a> chore(sponsor): update sponsor block (<a href="https://redirect.github.com/axios/axios/issues/6804">#6804</a>)</li> <li><a href="https://github.com/axios/axios/commit/72acf759373ef4e211d5299818d19e50e08c02f8"><code>72acf75</code></a> chore(sponsor): update sponsor block (<a href="https://redirect.github.com/axios/axios/issues/6794">#6794</a>)</li> <li><a href="https://github.com/axios/axios/commit/2e64afdff5c41e38284a6fb8312f2745072513a1"><code>2e64afd</code></a> chore(release): v1.8.1 (<a href="https://redirect.github.com/axios/axios/issues/6800">#6800</a>)</li> <li><a href="https://github.com/axios/axios/commit/36a5a620bec0b181451927f13ac85b9888b86cec"><code>36a5a62</code></a> fix(utils): move <code>generateString</code> to platform utils to avoid importing crypto...</li> <li><a href="https://github.com/axios/axios/commit/cceb7b1e154fbf294135c93d3f91921643bbe49f"><code>cceb7b1</code></a> chore(release): v1.8.0 (<a href="https://redirect.github.com/axios/axios/issues/6795">#6795</a>)</li> <li><a href="https://github.com/axios/axios/commit/23a25af0688d1db2c396deb09229d2271cc24f6c"><code>23a25af</code></a> fix(utils): replace getRandomValues with crypto module (<a href="https://redirect.github.com/axios/axios/issues/6788">#6788</a>)</li> <li><a href="https://github.com/axios/axios/commit/32c7bcc0f233285ba27dec73a4b1e81fb7a219b3"><code>32c7bcc</code></a> feat: Add config for ignoring absolute URLs (<a href="https://redirect.github.com/axios/axios/issues/5902">#5902</a>) (<a href="https://redirect.github.com/axios/axios/issues/6192">#6192</a>)</li> <li><a href="https://github.com/axios/axios/commit/4a3e26cf65bb040b7eb4577d5fd62199b0f3d017"><code>4a3e26c</code></a> chore(config): adjust rollup config to preserve license header to minified Ja...</li> <li>Additional commits viewable in <a href="https://github.com/axios/axios/compare/v1.7.8...v1.8.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=axios&package-manager=npm_and_yarn&previous-version=1.7.8&new-version=1.8.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aws/aws-cdk/network/alerts). </details>

This brings in this fix: aws/jsii-compiler#1824 This prevents jsii from failing on cases where we return an anonymous class with methods from a method. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Ref: https://aws.amazon.com/about-aws/whats-new/2025/02/amazon-location-service-supports-privatelink/ ``` $ aws ec2 describe-vpc-endpoint-services --filters Name=service-type,Values=Interface Name=owner,Values=amazon --region us-east-1 --query ServiceNames | jq -r '.[] | select(. == "com.amazonaws.us-east-1.emr-serverless.dashboard")' com.amazonaws.us-east-1.emr-serverless.dashboard ``` ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…s specified and `throughputMode` is `undefined` (#33713) ### Issue # (if applicable) N/A ### Reason for this change I encountered this problem when fixing a bug. This PR fixes an issue where we cannot rerun [test/aws-efs/test/integ.efs-transition.js](https://github.com/aws/aws-cdk/blob/main/packages/%40aws-cdk-testing/framework-integ/test/aws-efs/test/integ.efs-transition.ts). When attempting to rerun this test, the following error is encountered: ```sh The ThroughputMode value for the file system does not support TransitionToArchive. Either change the ThroughputMode value to Elastic or remove the TransitionToArchive parameter. ``` When `throughputMode` is `undefined`, throughput mode is set to `Bursting`. However, `transitionToArchive` is only supported in the Elastic throughput mode. ([Ref](https://docs.aws.amazon.com/efs/latest/ug/API_PutLifecycleConfiguration.html)) > The Archive storage class is available only for file systems that use the Elastic throughput mode and the General Purpose performance mode. ### Description of changes Set `throughputMode` to `Elastic` when `transitionToArchivePolicy` is specified in a unit test and an integ test. I also considered adding validations. However, I decided against it as it might cause regression issues. ### Describe any new or updated permissions being added Nothing ### Description of how you validated changes Successfully reran the integration test. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…13.14, 14.9, 14.10, 14.11, 15.4, 15.5, 15.6, 16.1, 16.2 (#33663) Deprecate PostgreSQL minor versions 13.11, 13.12, 13.13, 13.14, 14.9, 14.10, 14.11, 15.4, 15.5, 15.6, 16.1, 16.2 ### Reason for this change Received this email few days ago: >You are receiving this message because you have one or more instances running Amazon RDS for PostgreSQL minor versions 13.11, 13.12, 13.13, 13.14, 14.9, 14.10, 14.11, 15.4, 15.5, 15.6, 16.1, or 16.2 that require your attention. Amazon RDS for PostgreSQL minor versions listed above will reach end of standard support on March 31, 2025 12:01 AM PDT. To learn more about the RDS policies related to major and minor version support, please refer to Database Engine Versions section in RDS FAQs [1]. >Starting December 9, 2024, 12:01 AM PDT, you will not be able to create new RDS instances with PostgreSQL minor versions 13.11, 13.12, 13.13, 13.14, 14.9, 14.10, 14.11, 15.4, 15.5, 15.6, 16.1, or 16.2 from either the AWS Console or the CLI. RDS will upgrade your databases running versions listed above to PostgreSQL 13.18, 14.15, 15.10, 16.6, or higher during a scheduled maintenance window between March 31, 2025 12:01 AM PDT and April 30, 2025 12:01 AM PDT. Starting on April 30, 2025 12:01 AM PDT, any RDS for PostgreSQL databases still running in the affected minor versions will be upgraded to 13.18, 14.15, 15.10, 16.6, or higher regardless of instances scheduled maintenance window. >We recommend that you take action and upgrade [2] your Amazon RDS for PostgreSQL databases running minor versions 13.11 to 13.14, 14.9 to 14.11, 15.4 to 15.6, and 16.1 to 16.2 to versions 13.18, 14.15, 15.10, 16.6, or higher before March 31, 2025 12:01 AM PDT. Alternatively, you can enable Automatic Minor Version Upgrade [3] to allow Amazon RDS to upgrade your instances. >This is a mandatory engine version upgrade and it requires downtime. To minimize the downtime during the upgrade, you can now use the fully managed Amazon RDS Blue/Green Deployments that uses physical replication for minor version upgrades [4]. >We recommend upgrading these instances to newer minor versions to benefit from patches for known security vulnerabilities, as well as bug fixes, performance improvements, and new functionalities added by the PostgreSQL community. To learn more about documented vulnerabilities of PostgreSQL versions, please visit the PostgreSQL security page [5]. >Your Amazon RDS for PostgreSQL instances running minor versions mentioned above are listed in 'Affected Resources' tab of the AWS Health Dashboard. ### Description of changes Deprecated the following PostgreSQL minor versions: 13.11, 13.12, 13.13, 13.14, 14.9, 14.10, 14.11, 15.4, 15.5, 15.6, 16.1, 16.2 ### Describe any new or updated permissions being added n/a ### Description of how you validated changes n/a ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…33567) ### Issue # (if applicable) Related to #33356 ### Reason for this change address the feedback section of **extraJars, extraFiles, extraPythonFiles, extraJarsFirst** + refactor to reduce duplicative code across the different spark job classes ### Description of changes - update the different spark jobs props to - make `extraPythonFiles`, `extraFiles`, `extraJars`, and `extraJarsFirst` available in pyspark jobs - make `extraFiles`, `extraJars`, and `extraJarsFirst` available in scala spark jobs - introduce a base `SparkJob` class and `SparkJobProps` to reduce duplicate logic across different spark job classes - introduce `setupSparkCodeArguments` `protected` method along with an interface `SparkExtraCodeProps` to handle setting up `Code`-related arguments - fix spark ui setup to be consistent with docs for `sparkUI` prop - merge content of `spark-ui-utils.ts` into `spark-job.ts` and retire it - cleanup comma expression for role setup - fix typos and do renames to follow conventions ### Describe any new or updated permissions being added N/A ### Description of how you validated changes updated unit tests ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Reason for this change When using TypeScript option exactOptionalPropertyTypes: true` we get the following error. All implementations of `IPrincipal` have the type `string | undefined` so this is change will apply it at the base ``` Type 'AccountPrincipal' is not assignable to type 'IPrincipal' with 'exactOptionalPropertyTypes: true'. Consider adding 'undefined' to the types of the target's properties. Types of property 'principalAccount' are incompatible. Type 'string | undefined' is not assignable to type 'string'. Type 'undefined' is not assignable to type 'string'.ts(2375) ``` ### Description of changes Changed type definition of IPrincipal `principalAccount` ### Describe any new or updated permissions being added N/A ### Description of how you validated changes ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) Closes #NA. ### Reason for this change Plan to change default user to a be non-root for bundling process. ### Description of changes - Added integration test for all packages that use dockerfile for bundling and will be affected with further changes. - Added bootstrap file binary to be identified as an LFS under .gitattribute - Updated contributing guide to let users know that git lfs install is needed to handle large file changes. ### Describe any new or updated permissions being added NA ### Description of how you validated changes yarn build yarn integ ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Updates the L1 CloudFormation resource definitions with the latest changes from `@aws-cdk/aws-service-spec` **L1 CloudFormation resource definition changes:** ``` ├[~] service aws-batch │ └ resources │ ├[~] resource AWS::Batch::ComputeEnvironment │ │ ├ properties │ │ │ └ ReplaceComputeEnvironment: (documentation changed) │ │ └ types │ │ └[~] type UpdatePolicy │ │ └ - documentation: Specifies the infrastructure update policy for the compute environment. For more information about infrastructure updates, see [Updating compute environments](https://docs.aws.amazon.com/batch/latest/userguide/updating-compute-environments.html) in the *AWS Batch User Guide* . │ │ + documentation: Specifies the infrastructure update policy for the Amazon EC2 compute environment. For more information about infrastructure updates, see [Updating compute environments](https://docs.aws.amazon.com/batch/latest/userguide/updating-compute-environments.html) in the *AWS Batch User Guide* . │ └[~] resource AWS::Batch::ConsumableResource │ ├ - documentation: Creates an AWS Batch consumable resource. │ │ + documentation: The `AWS::Batch::ConsumableResource` resource specifies the parameters for an AWS Batch consumable resource. For more information, see [Resource-aware scheduling](https://docs.aws.amazon.com/batch/latest/userguide/resource-aware-scheduling.html) in the ** . │ ├ properties │ │ └ Tags: (documentation changed) │ └ attributes │ └ AvailableQuantity: (documentation changed) ├[~] service aws-bedrock │ └ resources │ ├[~] resource AWS::Bedrock::Agent │ │ └ types │ │ └[~] type PromptConfiguration │ │ └ properties │ │ └[+] AdditionalModelRequestFields: json │ ├[+] resource AWS::Bedrock::Blueprint │ │ ├ name: Blueprint │ │ │ cloudFormationType: AWS::Bedrock::Blueprint │ │ │ documentation: Definition of AWS::Bedrock::Blueprint Resource Type │ │ │ tagInformation: {"tagPropertyName":"Tags","variant":"standard"} │ │ ├ properties │ │ │ ├ BlueprintName: string (required, immutable) │ │ │ ├ Schema: json (required) │ │ │ ├ Type: string (required, immutable) │ │ │ ├ KmsKeyId: string │ │ │ ├ KmsEncryptionContext: Map<string, string> │ │ │ └ Tags: Array<tag> │ │ └ attributes │ │ ├ BlueprintArn: string │ │ ├ BlueprintStage: string │ │ ├ CreationTime: string │ │ └ LastModifiedTime: string │ ├[+] resource AWS::Bedrock::DataAutomationProject │ │ ├ name: DataAutomationProject │ │ │ cloudFormationType: AWS::Bedrock::DataAutomationProject │ │ │ documentation: Definition of AWS::Bedrock::DataAutomationProject Resource Type │ │ │ tagInformation: {"tagPropertyName":"Tags","variant":"standard"} │ │ ├ properties │ │ │ ├ CustomOutputConfiguration: CustomOutputConfiguration │ │ │ ├ OverrideConfiguration: OverrideConfiguration │ │ │ ├ ProjectDescription: string │ │ │ ├ ProjectName: string (required, immutable) │ │ │ ├ StandardOutputConfiguration: StandardOutputConfiguration │ │ │ ├ KmsKeyId: string │ │ │ ├ KmsEncryptionContext: Map<string, string> │ │ │ └ Tags: Array<tag> │ │ ├ attributes │ │ │ ├ CreationTime: string │ │ │ ├ LastModifiedTime: string │ │ │ ├ ProjectArn: string │ │ │ ├ ProjectStage: string │ │ │ └ Status: string │ │ └ types │ │ ├ type AudioExtractionCategory │ │ │ ├ name: AudioExtractionCategory │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ ├ type AudioStandardExtraction │ │ │ ├ name: AudioStandardExtraction │ │ │ └ properties │ │ │ └ Category: AudioExtractionCategory (required) │ │ ├ type AudioStandardGenerativeField │ │ │ ├ name: AudioStandardGenerativeField │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ ├ type AudioStandardOutputConfiguration │ │ │ ├ name: AudioStandardOutputConfiguration │ │ │ └ properties │ │ │ ├ Extraction: AudioStandardExtraction │ │ │ └ GenerativeField: AudioStandardGenerativeField │ │ ├ type BlueprintItem │ │ │ ├ name: BlueprintItem │ │ │ └ properties │ │ │ ├ BlueprintArn: string (required) │ │ │ ├ BlueprintVersion: string │ │ │ └ BlueprintStage: string │ │ ├ type CustomOutputConfiguration │ │ │ ├ documentation: Custom output configuration │ │ │ │ name: CustomOutputConfiguration │ │ │ └ properties │ │ │ └ Blueprints: Array<BlueprintItem> │ │ ├ type DocumentBoundingBox │ │ │ ├ name: DocumentBoundingBox │ │ │ └ properties │ │ │ └ State: string (required) │ │ ├ type DocumentExtractionGranularity │ │ │ ├ name: DocumentExtractionGranularity │ │ │ └ properties │ │ │ └ Types: Array<string> │ │ ├ type DocumentOutputAdditionalFileFormat │ │ │ ├ name: DocumentOutputAdditionalFileFormat │ │ │ └ properties │ │ │ └ State: string (required) │ │ ├ type DocumentOutputFormat │ │ │ ├ name: DocumentOutputFormat │ │ │ └ properties │ │ │ ├ TextFormat: DocumentOutputTextFormat (required) │ │ │ └ AdditionalFileFormat: DocumentOutputAdditionalFileFormat (required) │ │ ├ type DocumentOutputTextFormat │ │ │ ├ name: DocumentOutputTextFormat │ │ │ └ properties │ │ │ └ Types: Array<string> │ │ ├ type DocumentOverrideConfiguration │ │ │ ├ name: DocumentOverrideConfiguration │ │ │ └ properties │ │ │ └ Splitter: SplitterConfiguration │ │ ├ type DocumentStandardExtraction │ │ │ ├ name: DocumentStandardExtraction │ │ │ └ properties │ │ │ ├ Granularity: DocumentExtractionGranularity (required) │ │ │ └ BoundingBox: DocumentBoundingBox (required) │ │ ├ type DocumentStandardGenerativeField │ │ │ ├ name: DocumentStandardGenerativeField │ │ │ └ properties │ │ │ └ State: string (required) │ │ ├ type DocumentStandardOutputConfiguration │ │ │ ├ name: DocumentStandardOutputConfiguration │ │ │ └ properties │ │ │ ├ Extraction: DocumentStandardExtraction │ │ │ ├ GenerativeField: DocumentStandardGenerativeField │ │ │ └ OutputFormat: DocumentOutputFormat │ │ ├ type ImageBoundingBox │ │ │ ├ name: ImageBoundingBox │ │ │ └ properties │ │ │ └ State: string (required) │ │ ├ type ImageExtractionCategory │ │ │ ├ name: ImageExtractionCategory │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ ├ type ImageStandardExtraction │ │ │ ├ name: ImageStandardExtraction │ │ │ └ properties │ │ │ ├ Category: ImageExtractionCategory (required) │ │ │ └ BoundingBox: ImageBoundingBox (required) │ │ ├ type ImageStandardGenerativeField │ │ │ ├ name: ImageStandardGenerativeField │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ ├ type ImageStandardOutputConfiguration │ │ │ ├ name: ImageStandardOutputConfiguration │ │ │ └ properties │ │ │ ├ Extraction: ImageStandardExtraction │ │ │ └ GenerativeField: ImageStandardGenerativeField │ │ ├ type OverrideConfiguration │ │ │ ├ documentation: Override configuration │ │ │ │ name: OverrideConfiguration │ │ │ └ properties │ │ │ └ Document: DocumentOverrideConfiguration │ │ ├ type SplitterConfiguration │ │ │ ├ name: SplitterConfiguration │ │ │ └ properties │ │ │ └ State: string │ │ ├ type StandardOutputConfiguration │ │ │ ├ documentation: Standard output configuration │ │ │ │ name: StandardOutputConfiguration │ │ │ └ properties │ │ │ ├ Document: DocumentStandardOutputConfiguration │ │ │ ├ Image: ImageStandardOutputConfiguration │ │ │ ├ Video: VideoStandardOutputConfiguration │ │ │ └ Audio: AudioStandardOutputConfiguration │ │ ├ type VideoBoundingBox │ │ │ ├ name: VideoBoundingBox │ │ │ └ properties │ │ │ └ State: string (required) │ │ ├ type VideoExtractionCategory │ │ │ ├ name: VideoExtractionCategory │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ ├ type VideoStandardExtraction │ │ │ ├ name: VideoStandardExtraction │ │ │ └ properties │ │ │ ├ Category: VideoExtractionCategory (required) │ │ │ └ BoundingBox: VideoBoundingBox (required) │ │ ├ type VideoStandardGenerativeField │ │ │ ├ name: VideoStandardGenerativeField │ │ │ └ properties │ │ │ ├ State: string (required) │ │ │ └ Types: Array<string> │ │ └ type VideoStandardOutputConfiguration │ │ ├ name: VideoStandardOutputConfiguration │ │ └ properties │ │ ├ Extraction: VideoStandardExtraction │ │ └ GenerativeField: VideoStandardGenerativeField │ ├[~] resource AWS::Bedrock::Prompt │ │ └ types │ │ └[~] type ToolChoice │ │ └ - documentation: Determines which tools the model should request in a call to `Converse` or `ConverseStream` . `ToolChoice` is only supported by Anthropic Claude 3 models and by Mistral AI Mistral Large. For more information, see [Call a tool with the Converse API](https://docs.aws.amazon.com/bedrock/latest/userguide/tool-use.html) in the Amazon Bedrock User Guide. │ │ + documentation: Determines which tools the model should request in a call to `Converse` or `ConverseStream` . For more information, see [Call a tool with the Converse API](https://docs.aws.amazon.com/bedrock/latest/userguide/tool-use.html) in the Amazon Bedrock User Guide. │ └[~] resource AWS::Bedrock::PromptVersion │ └ types │ └[~] type ToolChoice │ └ - documentation: Determines which tools the model should request in a call to `Converse` or `ConverseStream` . `ToolChoice` is only supported by Anthropic Claude 3 models and by Mistral AI Mistral Large. For more information, see [Call a tool with the Converse API](https://docs.aws.amazon.com/bedrock/latest/userguide/tool-use.html) in the Amazon Bedrock User Guide. │ + documentation: Determines which tools the model should request in a call to `Converse` or `ConverseStream` . For more information, see [Call a tool with the Converse API](https://docs.aws.amazon.com/bedrock/latest/userguide/tool-use.html) in the Amazon Bedrock User Guide. ├[~] service aws-ce │ └ resources │ └[~] resource AWS::CE::CostCategory │ ├ - tagInformation: undefined │ │ + tagInformation: {"tagPropertyName":"Tags","variant":"standard"} │ ├ properties │ │ └[+] Tags: Array<ResourceTag> │ └ types │ └[+] type ResourceTag │ ├ documentation: The tag structure that contains a tag key and value. │ │ > Tagging is supported only for the following Cost Explorer resource types: [`AnomalyMonitor`](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalyMonitor.html) , [`AnomalySubscription`](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_AnomalySubscription.html) , [`CostCategory`](https://docs.aws.amazon.com/aws-cost-management/latest/APIReference/API_CostCategory.html) . │ │ name: ResourceTag │ └ properties │ ├ Key: string (required) │ └ Value: string (required) ├[~] service aws-cloudformation │ └ resources │ ├[~] resource AWS::CloudFormation::Stack │ │ └ properties │ │ └ Parameters: (documentation changed) │ └[~] resource AWS::CloudFormation::StackSet │ └ properties │ ├ AdministrationRoleARN: (documentation changed) │ ├ AutoDeployment: (documentation changed) │ ├ CallAs: (documentation changed) │ ├ Description: (documentation changed) │ ├ ExecutionRoleName: (documentation changed) │ └ StackSetName: (documentation changed) ├[~] service aws-cloudtrail │ └ resources │ ├[~] resource AWS::CloudTrail::EventDataStore │ │ └ types │ │ └[~] type AdvancedFieldSelector │ │ └ properties │ │ └ Field: (documentation changed) │ └[~] resource AWS::CloudTrail::Trail │ └ types │ └[~] type AdvancedFieldSelector │ └ properties │ └ Field: (documentation changed) ├[~] service aws-codebuild │ └ resources │ └[~] resource AWS::CodeBuild::Project │ └ types │ ├[~] type Environment │ │ └ properties │ │ └ Type: (documentation changed) │ └[~] type WebhookFilter │ └ properties │ └ Type: (documentation changed) ├[~] service aws-cognito │ └ resources │ └[~] resource AWS::Cognito::UserPool │ └ properties │ └ DeviceConfiguration: (documentation changed) ├[~] service aws-dms │ └ resources │ └[~] resource AWS::DMS::DataProvider │ └ types │ ├[+] type IbmDb2LuwSettings │ │ ├ documentation: IbmDb2LuwSettings property identifier. │ │ │ name: IbmDb2LuwSettings │ │ └ properties │ │ ├ ServerName: string (required) │ │ ├ Port: integer (required) │ │ ├ DatabaseName: string (required) │ │ ├ SslMode: string (required) │ │ └ CertificateArn: string │ ├[+] type IbmDb2zOsSettings │ │ ├ documentation: IbmDb2zOsSettings property identifier. │ │ │ name: IbmDb2zOsSettings │ │ └ properties │ │ ├ ServerName: string (required) │ │ ├ Port: integer (required) │ │ ├ DatabaseName: string (required) │ │ ├ SslMode: string (required) │ │ └ CertificateArn: string │ └[~] type Settings │ └ properties │ ├[+] IbmDb2LuwSettings: IbmDb2LuwSettings │ └[+] IbmDb2zOsSettings: IbmDb2zOsSettings ├[~] service aws-ec2 │ └ resources │ └[~] resource AWS::EC2::SecurityGroup │ └ properties │ └ GroupName: (documentation changed) ├[~] service aws-elasticache │ └ resources │ └[~] resource AWS::ElastiCache::ParameterGroup │ └ properties │ └ CacheParameterGroupFamily: (documentation changed) ├[~] service aws-emr │ └ resources │ ├[~] resource AWS::EMR::Cluster │ │ └ types │ │ └[~] type EbsConfiguration │ │ └ properties │ │ └ EbsOptimized: (documentation changed) │ ├[~] resource AWS::EMR::InstanceFleetConfig │ │ └ types │ │ └[~] type EbsConfiguration │ │ └ properties │ │ └ EbsOptimized: (documentation changed) │ └[~] resource AWS::EMR::InstanceGroupConfig │ └ types │ └[~] type EbsConfiguration │ └ properties │ └ EbsOptimized: (documentation changed) ├[+] service aws-gameliftstreams │ ├ capitalized: GameLiftStreams │ │ cloudFormationNamespace: AWS::GameLiftStreams │ │ name: aws-gameliftstreams │ │ shortName: gameliftstreams │ └ resources │ ├ resource AWS::GameLiftStreams::Application │ │ ├ name: Application │ │ │ cloudFormationType: AWS::GameLiftStreams::Application │ │ │ documentation: Definition of AWS::GameLiftStreams::Application Resource Type │ │ │ tagInformation: {"tagPropertyName":"Tags","variant":"map"} │ │ ├ properties │ │ │ ├ ApplicationLogOutputUri: string │ │ │ ├ ApplicationLogPaths: Array<string> │ │ │ ├ ApplicationSourceUri: string (required, immutable) │ │ │ ├ Description: string (required) │ │ │ ├ ExecutablePath: string (required, immutable) │ │ │ ├ RuntimeEnvironment: RuntimeEnvironment (required, immutable) │ │ │ └ Tags: Map<string, string> │ │ ├ attributes │ │ │ ├ Arn: string │ │ │ └ Id: string │ │ └ types │ │ └ type RuntimeEnvironment │ │ ├ name: RuntimeEnvironment │ │ └ properties │ │ ├ Version: string (required) │ │ └ Type: string (required) │ └ resource AWS::GameLiftStreams::StreamGroup │ ├ name: StreamGroup │ │ cloudFormationType: AWS::GameLiftStreams::StreamGroup │ │ documentation: Definition of AWS::GameLiftStreams::StreamGroup Resource Type │ │ tagInformation: {"tagPropertyName":"Tags","variant":"map"} │ ├ properties │ │ ├ DefaultApplication: DefaultApplication │ │ ├ Description: string (required) │ │ ├ StreamClass: string (required, immutable) │ │ ├ Tags: Map<string, string> │ │ └ LocationConfigurations: Array<LocationConfiguration> (required) │ ├ attributes │ │ ├ Arn: string │ │ └ Id: string │ └ types │ ├ type DefaultApplication │ │ ├ name: DefaultApplication │ │ └ properties │ │ ├ Id: string (immutable) │ │ └ Arn: string │ └ type LocationConfiguration │ ├ name: LocationConfiguration │ └ properties │ ├ LocationName: string (required) │ ├ AlwaysOnCapacity: integer │ └ OnDemandCapacity: integer ├[~] service aws-iam │ └ resources │ └[~] resource AWS::IAM::SAMLProvider │ ├ properties │ │ ├[+] AddPrivateKey: string (immutable) │ │ ├[+] AssertionEncryptionMode: string │ │ ├[+] PrivateKeyList: Array<SAMLPrivateKey> │ │ ├[+] RemovePrivateKey: string (immutable) │ │ └ SamlMetadataDocument: - string (required) │ │ + string │ ├ attributes │ │ └[+] SamlProviderUUID: string │ └ types │ └[+] type SAMLPrivateKey │ ├ documentation: The private key metadata for the SAML provider │ │ name: SAMLPrivateKey │ └ properties │ ├ KeyId: string (required) │ └ Timestamp: string (required) ├[~] service aws-iot │ └ resources │ ├[~] resource AWS::IoT::AccountAuditConfiguration │ │ └ types │ │ ├[~] type AuditCheckConfigurations │ │ │ └ properties │ │ │ ├[+] DeviceCertificateAgeCheck: DeviceCertAgeAuditCheckConfiguration │ │ │ └ DeviceCertificateExpiringCheck: - AuditCheckConfiguration │ │ │ + DeviceCertExpirationAuditCheckConfiguration ⇐ AuditCheckConfiguration │ │ │ (documentation changed) │ │ ├[+] type CertAgeCheckCustomConfiguration │ │ │ ├ documentation: Configuration structure containing settings for the device certificate age check. │ │ │ │ name: CertAgeCheckCustomConfiguration │ │ │ └ properties │ │ │ └ CertAgeThresholdInDays: string │ │ ├[+] type CertExpirationCheckCustomConfiguration │ │ │ ├ documentation: Configuration structure containing settings for the device certificate expiration check. │ │ │ │ name: CertExpirationCheckCustomConfiguration │ │ │ └ properties │ │ │ └ CertExpirationThresholdInDays: string │ │ ├[+] type DeviceCertAgeAuditCheckConfiguration │ │ │ ├ documentation: Configuration for the device certificate age audit check. │ │ │ │ name: DeviceCertAgeAuditCheckConfiguration │ │ │ └ properties │ │ │ ├ Enabled: boolean │ │ │ └ Configuration: CertAgeCheckCustomConfiguration │ │ └[+] type DeviceCertExpirationAuditCheckConfiguration │ │ ├ documentation: Configuration for the device certificate expiration audit check. │ │ │ name: DeviceCertExpirationAuditCheckConfiguration │ │ └ properties │ │ ├ Enabled: boolean │ │ └ Configuration: CertExpirationCheckCustomConfiguration │ ├[~] resource AWS::IoT::SoftwarePackage │ │ └ properties │ │ ├ Description: (documentation changed) │ │ ├ PackageName: (documentation changed) │ │ └ Tags: (documentation changed) │ ├[~] resource AWS::IoT::SoftwarePackageVersion │ │ ├ properties │ │ │ ├[+] Artifact: PackageVersionArtifact │ │ │ ├[+] Recipe: string │ │ │ └[+] Sbom: Sbom │ │ ├ attributes │ │ │ └[+] SbomValidationStatus: string │ │ └ types │ │ ├[+] type PackageVersionArtifact │ │ │ ├ documentation: The artifact location of the package version │ │ │ │ name: PackageVersionArtifact │ │ │ └ properties │ │ │ └ S3Location: S3Location (required) │ │ ├[+] type S3Location │ │ │ ├ documentation: The Amazon S3 location │ │ │ │ name: S3Location │ │ │ └ properties │ │ │ ├ Bucket: string (required) │ │ │ ├ Key: string (required) │ │ │ └ Version: string (required) │ │ └[+] type Sbom │ │ ├ documentation: The sbom zip archive location of the package version │ │ │ name: Sbom │ │ └ properties │ │ └ S3Location: S3Location (required) │ ├[~] resource AWS::IoT::ThingType │ │ └ properties │ │ └ DeprecateThingType: (documentation changed) │ └[~] resource AWS::IoT::TopicRule │ └ properties │ └ RuleName: (documentation changed) ├[~] service aws-iotfleetwise │ └ resources │ └[~] resource AWS::IoTFleetWise::DecoderManifest │ └ types │ ├[~] type CanSignal │ │ └ properties │ │ └[+] SignalValueType: string │ └[~] type ObdSignal │ └ properties │ ├[+] IsSigned: boolean | string │ └[+] SignalValueType: string ├[~] service aws-iotsitewise │ └ resources │ ├[~] resource AWS::IoTSiteWise::Gateway │ │ ├ properties │ │ │ └ GatewayVersion: (documentation changed) │ │ └ types │ │ └[~] type GatewayPlatform │ │ └ properties │ │ └ SiemensIE: (documentation changed) │ └[~] resource AWS::IoTSiteWise::Portal │ └ types │ └[~] type PortalTypeEntry │ └ properties │ └ PortalTools: (documentation changed) ├[~] service aws-kafkaconnect │ └ resources │ └[~] resource AWS::KafkaConnect::Connector │ └ properties │ └ ConnectorName: (documentation changed) ├[~] service aws-medialive │ └ resources │ ├[~] resource AWS::MediaLive::CloudWatchAlarmTemplate │ │ └ properties │ │ └ GroupIdentifier: - string (required) │ │ + string │ └[~] resource AWS::MediaLive::EventBridgeRuleTemplate │ └ properties │ └ GroupIdentifier: - string (required) │ + string ├[~] service aws-msk │ └ resources │ ├[~] resource AWS::MSK::BatchScramSecret │ │ ├ - documentation: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-msk-batchscramsecret.html │ │ │ + documentation: Represents a secret stored in the AWS Secrets Manager that can be used to authenticate with a cluster using a user name and a password. │ │ └ properties │ │ ├ ClusterArn: (documentation changed) │ │ └ SecretArnList: (documentation changed) │ ├[~] resource AWS::MSK::Cluster │ │ ├ - documentation: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-msk-cluster.html │ │ │ + documentation: Creates a new MSK cluster. │ │ │ The following Python 3.6 example shows how you can create a cluster that's distributed across two [Availability Zones](https://docs.aws.amazon.com/global-infrastructure/latest/regions/aws-availability-zones.html) . Before you run this Python script, replace the example subnet and security-group IDs with the IDs of your subnets and security group. │ │ │ When you create an MSK cluster, its brokers get evenly distributed across a number of Availability Zones that's equal to the number of subnets that you specify in the `BrokerNodeGroupInfo` parameter. In the following example, you can add a third subnet to get a cluster that's distributed across three Availability Zones. │ │ │ ```PYTHON │ │ │ import boto3 client = boto3.client('kafka') response = client.create_cluster( BrokerNodeGroupInfo={ 'BrokerAZDistribution': 'DEFAULT', 'ClientSubnets': [ 'subnet-012345678901fedcba', 'subnet-9876543210abcdef01' ], 'InstanceType': 'kafka.m5.large', 'SecurityGroups': [ 'sg-012345abcdef789789' ] }, ClusterName='SalesCluster', EncryptionInfo={ 'EncryptionInTransit': { 'ClientBroker': 'TLS_PLAINTEXT', 'InCluster': True } }, EnhancedMonitoring='PER_TOPIC_PER_BROKER', KafkaVersion='2.2.1', NumberOfBrokerNodes=2 │ │ │ ) print(response) │ │ │ ``` │ │ ├ properties │ │ │ ├ BrokerNodeGroupInfo: (documentation changed) │ │ │ ├ ClientAuthentication: (documentation changed) │ │ │ ├ ClusterName: (documentation changed) │ │ │ ├ ConfigurationInfo: (documentation changed) │ │ │ ├ CurrentVersion: (documentation changed) │ │ │ ├ EncryptionInfo: (documentation changed) │ │ │ ├ EnhancedMonitoring: (documentation changed) │ │ │ ├ KafkaVersion: (documentation changed) │ │ │ ├ LoggingInfo: (documentation changed) │ │ │ ├ NumberOfBrokerNodes: (documentation changed) │ │ │ ├ OpenMonitoring: (documentation changed) │ │ │ ├ StorageMode: (documentation changed) │ │ │ └ Tags: (documentation changed) │ │ ├ attributes │ │ │ └ Arn: (documentation changed) │ │ └ types │ │ ├[~] type BrokerNodeGroupInfo │ │ │ ├ - documentation: undefined │ │ │ │ + documentation: Describes the setup to be used for the broker nodes in the cluster. │ │ │ └ properties │ │ │ ├ BrokerAZDistribution: (documentation changed) │ │ │ ├ ClientSubnets: (documentation changed) │ │ │ ├ ConnectivityInfo: (documentation changed) │ │ │ ├ SecurityGroups: (documentation changed) │ │ │ └ StorageInfo: (documentation changed) │ │ ├[~] type EncryptionInfo │ │ │ └ properties │ │ │ └ EncryptionInTransit: (documentation changed) │ │ └[~] type EncryptionInTransit │ │ ├ - documentation: undefined │ │ │ + documentation: The settings for encrypting data in transit. │ │ └ properties │ │ ├ ClientBroker: (documentation changed) │ │ └ InCluster: (documentation changed) │ ├[~] resource AWS::MSK::Configuration │ │ ├ - documentation: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-msk-configuration.html │ │ │ + documentation: Creates a new MSK configuration. To see an example of how to use this operation, first save the following text to a file and name the file `config-file.txt` . │ │ │ `auto.create.topics.enable = true zookeeper.connection.timeout.ms = 1000 log.roll.ms = 604800000` │ │ │ Now run the following Python 3.6 script in the folder where you saved `config-file.txt` . This script uses the properties specified in `config-file.txt` to create a configuration named `SalesClusterConfiguration` . This configuration can work with Apache Kafka versions 1.1.1 and 2.1.0. │ │ │ ```PYTHON │ │ │ import boto3 client = boto3.client('kafka') config_file = open('config-file.txt', 'r') server_properties = config_file.read() response = client.create_configuration( Name='SalesClusterConfiguration', Description='The configuration to use on all sales clusters.', KafkaVersions=['1.1.1', '2.1.0'], ServerProperties=server_properties │ │ │ ) print(response) │ │ │ ``` │ │ ├ properties │ │ │ ├ Description: (documentation changed) │ │ │ ├ KafkaVersionsList: (documentation changed) │ │ │ ├ LatestRevision: (documentation changed) │ │ │ ├ Name: (documentation changed) │ │ │ └ ServerProperties: (documentation changed) │ │ ├ attributes │ │ │ ├ Arn: (documentation changed) │ │ │ ├ LatestRevision.CreationTime: (documentation changed) │ │ │ ├ LatestRevision.Description: (documentation changed) │ │ │ └ LatestRevision.Revision: (documentation changed) │ │ └ types │ │ └[~] type LatestRevision │ │ ├ - documentation: undefined │ │ │ + documentation: Describes a configuration revision. │ │ └ properties │ │ ├ CreationTime: (documentation changed) │ │ ├ Description: (documentation changed) │ │ └ Revision: (documentation changed) │ ├[~] resource AWS::MSK::ServerlessCluster │ │ ├ - documentation: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-msk-serverlesscluster.html │ │ │ + documentation: Specifies the properties required for creating a serverless cluster. │ │ ├ properties │ │ │ ├ ClientAuthentication: (documentation changed) │ │ │ ├ ClusterName: (documentation changed) │ │ │ ├ Tags: (documentation changed) │ │ │ └ VpcConfigs: (documentation changed) │ │ └ attributes │ │ └ Arn: (documentation changed) │ └[~] resource AWS::MSK::VpcConnection │ ├ - documentation: http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-msk-vpcconnection.html │ │ + documentation: Create remote VPC connection. │ └ properties │ ├ ClientSubnets: (documentation changed) │ ├ SecurityGroups: (documentation changed) │ ├ Tags: (documentation changed) │ ├ TargetClusterArn: (documentation changed) │ └ VpcId: (documentation changed) ├[~] service aws-neptunegraph │ └ resources │ └[~] resource AWS::NeptuneGraph::Graph │ └ properties │ └ ProvisionedMemory: (documentation changed) ├[~] service aws-opensearchserverless │ └ resources │ └[+] resource AWS::OpenSearchServerless::Index │ ├ name: Index │ │ cloudFormationType: AWS::OpenSearchServerless::Index │ │ documentation: An OpenSearch Serverless index resource │ ├ properties │ │ ├ CollectionEndpoint: string (required, immutable) │ │ ├ IndexName: string (required, immutable) │ │ ├ Settings: IndexSettings │ │ └ Mappings: Mappings │ ├ attributes │ │ └ Uuid: string │ └ types │ ├ type Index │ │ ├ name: Index │ │ └ properties │ │ ├ RefreshInterval: string │ │ ├ Knn: boolean │ │ └ KnnAlgoParamEfSearch: integer │ ├ type IndexSettings │ │ ├ name: IndexSettings │ │ └ properties │ │ └ Index: Index │ ├ type Mappings │ │ ├ documentation: Index Mappings │ │ │ name: Mappings │ │ └ properties │ │ └ Properties: Map<string, PropertyMapping> │ ├ type Method │ │ ├ documentation: Configuration for k-NN search method │ │ │ name: Method │ │ └ properties │ │ ├ Engine: string (required) │ │ ├ Name: string (required) │ │ ├ SpaceType: string │ │ └ Parameters: Parameters │ ├ type Parameters │ │ ├ documentation: Additional parameters for the k-NN algorithm │ │ │ name: Parameters │ │ └ properties │ │ ├ EfConstruction: integer │ │ └ M: integer │ └ type PropertyMapping │ ├ name: PropertyMapping │ └ properties │ ├ Dimension: integer │ ├ Index: boolean │ ├ Method: Method │ ├ Type: string (required) │ ├ Value: string │ └ Properties: Map<string, PropertyMapping> ├[~] service aws-quicksight │ └ resources │ ├[~] resource AWS::QuickSight::Analysis │ │ └ types │ │ ├[~] type BarChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type BodySectionConfiguration │ │ │ └ properties │ │ │ └[+] RepeatConfiguration: BodySectionRepeatConfiguration │ │ ├[+] type BodySectionDynamicCategoryDimensionConfiguration │ │ │ ├ documentation: Describes the *Category* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ │ name: BodySectionDynamicCategoryDimensionConfiguration │ │ │ └ properties │ │ │ ├ Column: ColumnIdentifier (required) │ │ │ ├ SortByMetrics: Array<ColumnSort> │ │ │ └ Limit: number │ │ ├[+] type BodySectionDynamicNumericDimensionConfiguration │ │ │ ├ documentation: Describes the *Numeric* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ │ name: BodySectionDynamicNumericDimensionConfiguration │ │ │ └ properties │ │ │ ├ Column: ColumnIdentifier (required) │ │ │ ├ SortByMetrics: Array<ColumnSort> │ │ │ └ Limit: number │ │ ├[+] type BodySectionRepeatConfiguration │ │ │ ├ documentation: Describes the configurations that are required to declare a section as repeating. │ │ │ │ name: BodySectionRepeatConfiguration │ │ │ └ properties │ │ │ ├ DimensionConfigurations: Array<BodySectionRepeatDimensionConfiguration> │ │ │ ├ NonRepeatingVisuals: Array<string> │ │ │ └ PageBreakConfiguration: BodySectionRepeatPageBreakConfiguration │ │ ├[+] type BodySectionRepeatDimensionConfiguration │ │ │ ├ documentation: Describes the dataset column and constraints for the dynamic values used to repeat the contents of a section. The dataset column is either *Category* or *Numeric* column configuration │ │ │ │ name: BodySectionRepeatDimensionConfiguration │ │ │ └ properties │ │ │ ├ DynamicNumericDimensionConfiguration: BodySectionDynamicNumericDimensionConfiguration │ │ │ └ DynamicCategoryDimensionConfiguration: BodySectionDynamicCategoryDimensionConfiguration │ │ ├[+] type BodySectionRepeatPageBreakConfiguration │ │ │ ├ documentation: The page break configuration to apply for each repeating instance. │ │ │ │ name: BodySectionRepeatPageBreakConfiguration │ │ │ └ properties │ │ │ └ After: SectionAfterPageBreak │ │ ├[~] type BoxPlotChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ComboChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[+] type ContextMenuOption │ │ │ ├ documentation: The context menu options for a visual's interactions. │ │ │ │ name: ContextMenuOption │ │ │ └ properties │ │ │ └ AvailabilityStatus: string │ │ ├[~] type CustomContentConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type DateTimePickerControlDisplayOptions │ │ │ └ properties │ │ │ ├[+] DateIconVisibility: string │ │ │ └[+] HelperTextVisibility: string │ │ ├[~] type FilledMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type FontConfiguration │ │ │ └ properties │ │ │ └[+] FontFamily: string │ │ ├[~] type FunnelChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[+] type GaugeChartColorConfiguration │ │ │ ├ documentation: The color configuration of a `GaugeChartVisual` . │ │ │ │ name: GaugeChartColorConfiguration │ │ │ └ properties │ │ │ ├ ForegroundColor: string │ │ │ └ BackgroundColor: string │ │ ├[~] type GaugeChartConfiguration │ │ │ └ properties │ │ │ ├[+] ColorConfiguration: GaugeChartColorConfiguration │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type HeatMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type HistogramConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type InsightConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type KPIConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type LineChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type PieChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type PivotTableConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type RadarChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type SankeyDiagramChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ScatterPlotConfiguration │ │ │ └ properties │ │ │ ├[+] Interactions: VisualInteractionOptions │ │ │ └[+] SortConfiguration: ScatterPlotSortConfiguration │ │ ├[+] type ScatterPlotSortConfiguration │ │ │ ├ documentation: The sort configuration of a scatter plot. │ │ │ │ name: ScatterPlotSortConfiguration │ │ │ └ properties │ │ │ └ ScatterPlotLimitConfiguration: ItemsLimitConfiguration │ │ ├[~] type SheetTextBox │ │ │ └ properties │ │ │ └[+] Interactions: json │ │ ├[~] type TableConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ThousandSeparatorOptions │ │ │ └ properties │ │ │ └[+] GroupingStyle: string │ │ ├[~] type TreeMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type VisualInteractionOptions │ │ │ └ properties │ │ │ ├ ContextMenuOption: - json │ │ │ │ + ContextMenuOption │ │ │ └ VisualMenuOption: - json │ │ │ + VisualMenuOption │ │ ├[+] type VisualMenuOption │ │ │ ├ documentation: The menu options for a visual. │ │ │ │ name: VisualMenuOption │ │ │ └ properties │ │ │ └ AvailabilityStatus: string │ │ ├[~] type WaterfallChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ └[~] type WordCloudChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] resource AWS::QuickSight::Dashboard │ │ └ types │ │ ├[~] type BarChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type BodySectionConfiguration │ │ │ └ properties │ │ │ └[+] RepeatConfiguration: BodySectionRepeatConfiguration │ │ ├[+] type BodySectionDynamicCategoryDimensionConfiguration │ │ │ ├ documentation: Describes the *Category* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ │ name: BodySectionDynamicCategoryDimensionConfiguration │ │ │ └ properties │ │ │ ├ Column: ColumnIdentifier (required) │ │ │ ├ SortByMetrics: Array<ColumnSort> │ │ │ └ Limit: number │ │ ├[+] type BodySectionDynamicNumericDimensionConfiguration │ │ │ ├ documentation: Describes the *Numeric* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ │ name: BodySectionDynamicNumericDimensionConfiguration │ │ │ └ properties │ │ │ ├ Column: ColumnIdentifier (required) │ │ │ ├ SortByMetrics: Array<ColumnSort> │ │ │ └ Limit: number │ │ ├[+] type BodySectionRepeatConfiguration │ │ │ ├ documentation: Describes the configurations that are required to declare a section as repeating. │ │ │ │ name: BodySectionRepeatConfiguration │ │ │ └ properties │ │ │ ├ DimensionConfigurations: Array<BodySectionRepeatDimensionConfiguration> │ │ │ ├ NonRepeatingVisuals: Array<string> │ │ │ └ PageBreakConfiguration: BodySectionRepeatPageBreakConfiguration │ │ ├[+] type BodySectionRepeatDimensionConfiguration │ │ │ ├ documentation: Describes the dataset column and constraints for the dynamic values used to repeat the contents of a section. The dataset column is either *Category* or *Numeric* column configuration │ │ │ │ name: BodySectionRepeatDimensionConfiguration │ │ │ └ properties │ │ │ ├ DynamicNumericDimensionConfiguration: BodySectionDynamicNumericDimensionConfiguration │ │ │ └ DynamicCategoryDimensionConfiguration: BodySectionDynamicCategoryDimensionConfiguration │ │ ├[+] type BodySectionRepeatPageBreakConfiguration │ │ │ ├ documentation: The page break configuration to apply for each repeating instance. │ │ │ │ name: BodySectionRepeatPageBreakConfiguration │ │ │ └ properties │ │ │ └ After: SectionAfterPageBreak │ │ ├[~] type BoxPlotChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ComboChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[+] type ContextMenuOption │ │ │ ├ documentation: The context menu options for a visual's interactions. │ │ │ │ name: ContextMenuOption │ │ │ └ properties │ │ │ └ AvailabilityStatus: string │ │ ├[~] type CustomContentConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type DateTimePickerControlDisplayOptions │ │ │ └ properties │ │ │ ├[+] DateIconVisibility: string │ │ │ └[+] HelperTextVisibility: string │ │ ├[~] type FilledMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type FontConfiguration │ │ │ └ properties │ │ │ └[+] FontFamily: string │ │ ├[~] type FunnelChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[+] type GaugeChartColorConfiguration │ │ │ ├ documentation: The color configuration of a `GaugeChartVisual` . │ │ │ │ name: GaugeChartColorConfiguration │ │ │ └ properties │ │ │ ├ ForegroundColor: string │ │ │ └ BackgroundColor: string │ │ ├[~] type GaugeChartConfiguration │ │ │ └ properties │ │ │ ├[+] ColorConfiguration: GaugeChartColorConfiguration │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type HeatMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type HistogramConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type InsightConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type KPIConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type LineChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type PieChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type PivotTableConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type RadarChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type SankeyDiagramChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ScatterPlotConfiguration │ │ │ └ properties │ │ │ ├[+] Interactions: VisualInteractionOptions │ │ │ └[+] SortConfiguration: ScatterPlotSortConfiguration │ │ ├[+] type ScatterPlotSortConfiguration │ │ │ ├ documentation: The sort configuration of a scatter plot. │ │ │ │ name: ScatterPlotSortConfiguration │ │ │ └ properties │ │ │ └ ScatterPlotLimitConfiguration: ItemsLimitConfiguration │ │ ├[~] type SheetTextBox │ │ │ └ properties │ │ │ └[+] Interactions: json │ │ ├[~] type TableConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type ThousandSeparatorOptions │ │ │ └ properties │ │ │ └[+] GroupingStyle: string │ │ ├[~] type TreeMapConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ ├[~] type VisualInteractionOptions │ │ │ └ properties │ │ │ └ ContextMenuOption: - json │ │ │ + ContextMenuOption │ │ ├[~] type WaterfallChartConfiguration │ │ │ └ properties │ │ │ └[+] Interactions: VisualInteractionOptions │ │ └[~] type WordCloudChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ └[~] resource AWS::QuickSight::Template │ └ types │ ├[~] type BarChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type BodySectionConfiguration │ │ └ properties │ │ └[+] RepeatConfiguration: BodySectionRepeatConfiguration │ ├[+] type BodySectionDynamicCategoryDimensionConfiguration │ │ ├ documentation: Describes the *Category* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ name: BodySectionDynamicCategoryDimensionConfiguration │ │ └ properties │ │ ├ Column: ColumnIdentifier (required) │ │ ├ SortByMetrics: Array<ColumnSort> │ │ └ Limit: number │ ├[+] type BodySectionDynamicNumericDimensionConfiguration │ │ ├ documentation: Describes the *Numeric* dataset column and constraints for the dynamic values used to repeat the contents of a section. │ │ │ name: BodySectionDynamicNumericDimensionConfiguration │ │ └ properties │ │ ├ Column: ColumnIdentifier (required) │ │ ├ SortByMetrics: Array<ColumnSort> │ │ └ Limit: number │ ├[+] type BodySectionRepeatConfiguration │ │ ├ documentation: Describes the configurations that are required to declare a section as repeating. │ │ │ name: BodySectionRepeatConfiguration │ │ └ properties │ │ ├ DimensionConfigurations: Array<BodySectionRepeatDimensionConfiguration> │ │ ├ NonRepeatingVisuals: Array<string> │ │ └ PageBreakConfiguration: BodySectionRepeatPageBreakConfiguration │ ├[+] type BodySectionRepeatDimensionConfiguration │ │ ├ documentation: Describes the dataset column and constraints for the dynamic values used to repeat the contents of a section. The dataset column is either *Category* or *Numeric* column configuration │ │ │ name: BodySectionRepeatDimensionConfiguration │ │ └ properties │ │ ├ DynamicNumericDimensionConfiguration: BodySectionDynamicNumericDimensionConfiguration │ │ └ DynamicCategoryDimensionConfiguration: BodySectionDynamicCategoryDimensionConfiguration │ ├[+] type BodySectionRepeatPageBreakConfiguration │ │ ├ documentation: The page break configuration to apply for each repeating instance. │ │ │ name: BodySectionRepeatPageBreakConfiguration │ │ └ properties │ │ └ After: SectionAfterPageBreak │ ├[~] type BoxPlotChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type ComboChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[+] type ContextMenuOption │ │ ├ documentation: The context menu options for a visual's interactions. │ │ │ name: ContextMenuOption │ │ └ properties │ │ └ AvailabilityStatus: string │ ├[~] type CustomContentConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type DateTimePickerControlDisplayOptions │ │ └ properties │ │ ├[+] DateIconVisibility: json │ │ └[+] HelperTextVisibility: json │ ├[~] type FilledMapConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type FontConfiguration │ │ └ properties │ │ └[+] FontFamily: string │ ├[~] type FontSize │ │ └ properties │ │ └[+] Absolute: string │ ├[~] type FunnelChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[+] type GaugeChartColorConfiguration │ │ ├ documentation: The color configuration of a `GaugeChartVisual` . │ │ │ name: GaugeChartColorConfiguration │ │ └ properties │ │ ├ ForegroundColor: string │ │ └ BackgroundColor: string │ ├[~] type GaugeChartConfiguration │ │ └ properties │ │ ├[+] ColorConfiguration: GaugeChartColorConfiguration │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type HeatMapConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type HistogramConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type InsightConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type KPIConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type LineChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type PieChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type PivotTableConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type RadarChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type SankeyDiagramChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type ScatterPlotConfiguration │ │ └ properties │ │ ├[+] Interactions: VisualInteractionOptions │ │ └[+] SortConfiguration: ScatterPlotSortConfiguration │ ├[+] type ScatterPlotSortConfiguration │ │ ├ documentation: The sort configuration of a scatter plot. │ │ │ name: ScatterPlotSortConfiguration │ │ └ properties │ │ └ ScatterPlotLimitConfiguration: ItemsLimitConfiguration │ ├[~] type SheetTextBox │ │ └ properties │ │ └[+] Interactions: json │ ├[~] type TableConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[~] type ThousandSeparatorOptions │ │ └ properties │ │ └[+] GroupingStyle: string │ ├[~] type TreeMapConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ ├[+] type VisualInteractionOptions │ │ ├ documentation: The general visual interactions setup for visual publish options │ │ │ name: VisualInteractionOptions │ │ └ properties │ │ ├ ContextMenuOption: ContextMenuOption │ │ └ VisualMenuOption: VisualMenuOption │ ├[+] type VisualMenuOption │ │ ├ documentation: The menu options for a visual. │ │ │ name: VisualMenuOption │ │ └ properties │ │ └ AvailabilityStatus: string │ ├[~] type WaterfallChartConfiguration │ │ └ properties │ │ └[+] Interactions: VisualInteractionOptions │ └[~] type WordCloudChartConfiguration │ └ properties │ └[+] Interactions: VisualInteractionOptions ├[~] service aws-rds │ └ resources │ ├[~] resource AWS::RDS::DBInstance │ │ └ properties │ │ └ DBSubnetGroupName: (documentation changed) │ └[~] resource AWS::RDS::DBProxyTargetGroup │ └ types │ └[~] type ConnectionPoolConfigurationInfoFormat │ └ properties │ └ InitQuery: (documentation changed) ├[~] service aws-redshift │ └ resources │ └[~] resource AWS::Redshift::Integration │ ├ - documentation: Describes a zero-ETL integration. │ │ + documentation: Describes a zero-ETL or S3 integration. │ └ properties │ ├ AdditionalEncryptionContext: (documentation changed) │ └ KMSKeyId: (documentation changed) ├[~] service aws-sagemaker │ └ resources │ └[~] resource AWS::SageMaker::Model │ └ types │ ├[~] type HubAccessConfig │ │ ├ - documentation: undefined │ │ │ + documentation: The configuration for a private hub model reference that points to a public SageMaker JumpStart model. │ │ │ For more information about private hubs, see [Private curated hubs for foundation model access control in JumpStart](https://docs.aws.amazon.com/sagemaker/latest/dg/jumpstart-curated-hubs.html) . │ │ └ properties │ │ └ HubContentArn: (documentation changed) │ └[~] type S3DataSource │ └ properties │ └ HubAccessConfig: (documentation changed) ├[~] service aws-securitylake │ └ resources │ └[~] resource AWS::SecurityLake::DataLake │ └ - documentation: Initializes an Amazon Security Lake instance with the provided (or default) configuration. You can enable Security Lake in AWS Regions with customized settings before enabling log collection in Regions. To specify particular Regions, configure these Regions using the `configurations` parameter. If you have already enabled Security Lake in a Region when you call this command, the command will update the Region if you provide new configuration parameters. If you have not already enabled Security Lake in the Region when you call this API, it will set up the data lake in the Region with the specified configurations. │ When you enable Security Lake , it starts ingesting security data after the `CreateAwsLogSource` call. This includes ingesting security data from sources, storing data, and making data accessible to subscribers. Security Lake also enables all the existing settings and resources that it stores or maintains for your AWS account in the current Region, including security log and event data. For more information, see the [Amazon Security Lake User Guide](https://docs.aws.amazon.com//security-lake/latest/userguide/what-is-security-lake.html) . │ + documentation: Initializes an Amazon Security Lake instance with the provided (or default) configuration. You can enable Security Lake in AWS Regions with customized settings before enabling log collection in Regions. To specify particular Regions, configure these Regions using the `configurations` parameter. If you have already enabled Security Lake in a Region when you call this command, the command will update the Region if you provide new configuration parameters. If you have not already enabled Security Lake in the Region when you call this API, it will set up the data lake in the Region with the specified configurations. │ When you enable Security Lake , it starts ingesting security data after the `CreateAwsLogSource` call. This includes ingesting security data from sources, storing data, and making data accessible to subscribers. Security Lake also enables all the existing settings and resources that it stores or maintains for your AWS account in the current Region, including security log and event data. For more information, see the [Amazon Security Lake User Guide](https://docs.aws.amazon.com//security-lake/latest/userguide/what-is-security-lake.html) . │ > If you use this template to create multiple data lakes in different AWS Regions , and more than one of your data lakes include an [AWS::SecurityLake::AwsLogSource](https://docs.aws.amazon.com//AWSCloudFormation/latest/UserGuide/aws-resource-securitylake-awslogsource.html) resource, then you must deploy these data lakes sequentially. This is required because data lakes operate globally, and `AwsLogSource` resources must be deployed one at a time. ├[~] service aws-synthetics │ └ resources │ └[~] resource AWS::Synthetics::Canary │ └ - documentation: Creates or updates a canary. Canaries are scripts that monitor your endpoints and APIs from the outside-in. Canaries help you check the availability and latency of your web services and troubleshoot anomalies by investigating load time data, screenshots of the UI, logs, and metrics. You can set up a canary to run continuously or just once. │ To create canaries, you must have the `CloudWatchSyntheticsFullAccess` policy. If you are creating a new IAM role for the canary, you also need the the `iam:CreateRole` , `iam:CreatePolicy` and `iam:AttachRolePolicy` permissions. For more information, see [Necessary Roles and Permissions](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_Canaries_Roles) . │ Do not include secrets or proprietary information in your canary names. The canary name makes up part of the Amazon Resource Name (ARN) for the canary, and the ARN is included in outbound calls over the internet. For more information, see [Security Considerations for Synthetics Canaries](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/servicelens_canaries_security.html) . │ + documentation: Creates or updates a canary. Canaries are scripts that monitor your endpoints and APIs from the outside-in. Canaries help you check the availability and latency of your web services and troubleshoot anomalies by investigating load time data, screenshots of the UI, logs, and metrics. You can set up a canary to run continuously or just once. │ Canaries are automated scripts that run at specified intervals against an endpoint. They include Python or Node.js code to create a Lambda function. This code needs to be packaged in a certain way, depending on the language. For more information, see [Writing a canary script](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_Canaries_WritingCanary.html) . │ To create canaries, you must have the `CloudWatchSyntheticsFullAccess` policy. If you are creating a new IAM role for the canary, you also need the the `iam:CreateRole` , `iam:CreatePolicy` and `iam:AttachRolePolicy` permissions. For more information, see [Necessary Roles and Permissions](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Synthetics_Canaries_Roles) . │ Do not include secrets or proprietary information in your canary names. The canary name makes up part of the Amazon Resource Name (ARN) for the canary, and the ARN is included in outbound calls over the internet. For more information, see [Security Considerations for Synthetics Canaries](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/servicelens_canaries_security.html) . ├[~] service aws-transfer │ └ resources │ └[~] resource AWS::Transfer::Agreement │ ├ properties │ │ ├ BaseDirectory: - string (required) │ │ │ + string │ │ └[+] CustomDirectories: CustomDirectories │ └ types │ └[+] type CustomDirectories │ ├ documentation: Specifies a separate directory for each type of file to store for an AS2 message. │ │ name: CustomDirectories │ └ properties │ ├ FailedFilesDirectory: string (required) │ ├ MdnFilesDirectory: string (required) │ ├ PayloadFilesDirectory: string (required) │ ├ StatusFilesDirectory: string (required) │ └ TemporaryFilesDirectory: string (required) ├[~] service aws-wafv2 │ └ resources │ ├[~] resource AWS::WAFv2::RuleGroup │ │ └ types │ │ ├[~] type FieldToMatch │ │ │ └ properties │ │ │ └ JA4Fingerprint: (documentation changed) │ │ ├[~] type JA4Fingerprint │ │ │ ├ - documentation: Includes the JA4 fingerprint of a web request. │ │ │ │ + documentation: Available for use with Amazon CloudFront distributions and Application Load Balancers. Match against the request's JA4 fingerprint. The JA4 fingerprint is a 36-character hash derived from the TLS Client Hello of an incoming request. This fingerprint serves as a unique identifier for the client's TLS configuration. AWS WAF calculates and logs this fingerprint for each request that has enough TLS Client Hello information for the calculation. Almost all web requests include this information. │ │ │ │ > You can use this choice only with a string match `ByteMatchStatement` with the `PositionalConstraint` set to `EXACTLY` . │ │ │ │ You can obtain the JA4 fingerprint for client requests from the web ACL logs. If AWS WAF is able to calculate the fingerprint, it includes it in the logs. For information about the logging fields, see [Log fields](https://docs.aws.amazon.com/waf/latest/developerguide/logging-fields.html) in the *AWS WAF Developer Guide* . │ │ │ │ Provide the JA4 fingerprint string from the logs in your string match statement specification, to match with any future requests that have the same TLS configuration. │ │ │ └ properties │ │ │ └ FallbackBehavior: (documentation changed) │ │ ├[~] type RateBasedStatementCustomKey │ │ │ └ properties │ │ │ ├ JA3Fingerprint: (documentation changed) │ │ │ └ JA4Fingerprint: (documentation changed) │ │ ├[~] type RateLimitJA3Fingerprint │ │ │ ├ - documentation: Specifies the request's JA3 fingerprint as an aggregate key for a rate-based rule. │ │ │ │ + documentation: Use the request's JA3 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key. If you use a single JA3 fingerprint as your custom key, then each value fully defines an aggregation instance. │ │ │ └ properties │ │ │ └ FallbackBehavior: (documentation changed) │ │ └[~] type RateLimitJA4Fingerprint │ │ ├ - documentation: Specifies the request's JA4 fingerprint as an aggregate key for a rate-based rule. │ │ │ + documentation: Use the request's JA4 fingerprint derived from the TLS Client Hello of an incoming request as an aggregate key. If you use a single JA4 fingerprint as your custom key, then each value fully defines an aggregation instance. │ │ └ properties │ │ └ FallbackBehavior: (documentation changed) │ └[~] resource AWS::WAFv2::WebACL │ └ types │ ├[~] type FieldToMatch │ │ └ properties │ │ └ JA4Fingerprint: (documentation changed) │ ├[~] type JA4Fingerprint │ │ ├ - documentation: Includes the JA4 fingerprint of a web request. │ │ │ + documentation: Available for use with Amazon CloudFront distributions and Application Load Balancers. Match against the request's JA4 fingerprint. The JA4 fing…

…#33732) ### Issue # (if applicable) N/A ### Reason for this change New MySQL engine versions are available. https://aws.amazon.com/about-aws/whats-new/2025/02/amazon-rds-mysql-new-minor-versions-8-0-41-8-4-4/ https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/MySQL.Concepts.VersionMgmt.html ### Description of changes Added following versions: - 5.7.44-rds.20250103 - 5.7.44-rds.20250213 - 8.0.41 - 8.4.4 ### Describe any new or updated permissions being added N/A ### Description of how you validated changes ``` console $ aws --region us-east-1 rds describe-db-engine-versions --engine mysql --query 'DBEngineVersions[?EngineVersion==`5.7.44-rds.20250103`||EngineVersion==`5.7.44-rds.20250213`||EngineVersion==`8.0.41`||EngineVersion==`8.4.4`].[DBEngineVersionDescription,Status]' [ [ "MySQL 5.7.44-rds.20250103", "available" ], [ "MySQL 5.7.44-rds.20250213", "available" ], [ "MySQL 8.0.41", "available" ], [ "MySQL 8.4.4", "available" ] ] ``` ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Reason for this change There was no VPC Endpoint for Security Lake. $ aws ec2 describe-vpc-endpoint-services --filters "Name=service-name,Values=*securitylake*" --region us-east-1 --query "ServiceNames[]" [ "com.amazonaws.us-east-1.securitylake", "com.amazonaws.us-east-1.securitylake-fips" ] ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

Ref: * https://aws.amazon.com/about-aws/whats-new/2025/03/deepseek-r1-fully-managed-amazon-bedrock/ * https://docs.aws.amazon.com/bedrock/latest/userguide/models-supported.html ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

See [CHANGELOG](https://github.com/aws/aws-cdk/blob/bump/2.183.0/CHANGELOG.md)

### Reason for this change Some `chore` PRs should have been `feat`. Manually adding them to Changelog for better awareness of those changes. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Comparing changes

Open a pull request

Commits on Mar 4, 2025

Commits on Mar 5, 2025

Commits on Mar 6, 2025

Commits on Mar 7, 2025

Commits on Mar 10, 2025

Commits on Mar 11, 2025

Commits on Mar 12, 2025

This comparison is taking too long to generate.