Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: update L1 CloudFormation resource definitions #33363

Merged
merged 1 commit into from
Feb 10, 2025
Merged

feat: update L1 CloudFormation resource definitions #33363

merged 1 commit into from
Feb 10, 2025

Conversation

aws-cdk-automation
Copy link
Collaborator

Updates the L1 CloudFormation resource definitions with the latest changes from @aws-cdk/aws-service-spec

L1 CloudFormation resource definition changes:

├[~] service aws-backup
│ └ resources
│    └[~]  resource AWS::Backup::BackupPlan
│       └ types
│          ├[~] type BackupRuleResourceType
│          │ └ properties
│          │    └[+] IndexActions: Array<IndexActionsResourceType>
│          └[+]  type IndexActionsResourceType
│             ├      name: IndexActionsResourceType
│             └ properties
│                └ ResourceTypes: Array<string>
├[~] service aws-batch
│ └ resources
│    └[~]  resource AWS::Batch::JobDefinition
│       └ types
│          ├[~] type MultiNodeContainerProperties
│          │ ├      - documentation: undefined
│          │ │      + documentation: Container properties are used for Amazon ECS based job definitions. These properties to describe the container that's launched as part of a job.
│          │ └ properties
│          │    ├ Command: (documentation changed)
│          │    ├ Environment: (documentation changed)
│          │    ├ EphemeralStorage: (documentation changed)
│          │    ├ ExecutionRoleArn: (documentation changed)
│          │    ├ Image: (documentation changed)
│          │    ├ InstanceType: (documentation changed)
│          │    ├ JobRoleArn: (documentation changed)
│          │    ├ LinuxParameters: (documentation changed)
│          │    ├ LogConfiguration: (documentation changed)
│          │    ├ Memory: (documentation changed)
│          │    ├ MountPoints: (documentation changed)
│          │    ├ Privileged: (documentation changed)
│          │    ├ ReadonlyRootFilesystem: (documentation changed)
│          │    ├ RepositoryCredentials: (documentation changed)
│          │    ├ ResourceRequirements: (documentation changed)
│          │    ├ RuntimePlatform: (documentation changed)
│          │    ├ Secrets: (documentation changed)
│          │    ├ Ulimits: (documentation changed)
│          │    ├ User: (documentation changed)
│          │    ├ Vcpus: (documentation changed)
│          │    └ Volumes: (documentation changed)
│          ├[~] type MultiNodeEcsProperties
│          │ ├      - documentation: undefined
│          │ │      + documentation: An object that contains the properties for the Amazon ECS resources of a job.
│          │ └ properties
│          │    └ TaskProperties: (documentation changed)
│          └[~] type MultiNodeEcsTaskProperties
│            ├      - documentation: undefined
│            │      + documentation: The properties for a task definition that describes the container and volume definitions of an Amazon ECS task. You can specify which Docker images to use, the required resources, and other configurations related to launching the task definition through an Amazon ECS service or task.
│            └ properties
│               ├ Containers: (documentation changed)
│               ├ ExecutionRoleArn: (documentation changed)
│               ├ IpcMode: (documentation changed)
│               ├ PidMode: (documentation changed)
│               ├ TaskRoleArn: (documentation changed)
│               └ Volumes: (documentation changed)
├[~] service aws-cloudfront
│ └ resources
│    ├[~]  resource AWS::CloudFront::Distribution
│    │  └ types
│    │     ├[~] type Origin
│    │     │ └ properties
│    │     │    └ VpcOriginConfig: (documentation changed)
│    │     └[~] type VpcOriginConfig
│    │       ├      - documentation: undefined
│    │       │      + documentation: An Amazon CloudFront VPC origin configuration.
│    │       └ properties
│    │          ├ OriginKeepaliveTimeout: (documentation changed)
│    │          ├ OriginReadTimeout: (documentation changed)
│    │          └ VpcOriginId: (documentation changed)
│    └[~]  resource AWS::CloudFront::VpcOrigin
│       └ types
│          └[~] type VpcOriginEndpointConfig
│            └ properties
│               ├ HTTPPort: (documentation changed)
│               └ HTTPSPort: (documentation changed)
├[~] service aws-cloudwatch
│ └ resources
│    └[~]  resource AWS::CloudWatch::Alarm
│       └ types
│          └[~] type Dimension
│            └      - documentation: Dimension is an embedded property of the `AWS::CloudWatch::Alarm` type. Dimensions are name/value pairs that can be associated with a CloudWatch metric. You can specify a maximum of 10 dimensions for a given metric.
│                   + documentation: Dimension is an embedded property of the `AWS::CloudWatch::Alarm` type. Dimensions are name/value pairs that can be associated with a CloudWatch metric. You can specify a maximum of 30 dimensions for a given metric.
├[~] service aws-codebuild
│ └ resources
│    └[~]  resource AWS::CodeBuild::Project
│       └ types
│          └[~] type WebhookFilter
│            └ properties
│               └ Type: (documentation changed)
├[~] service aws-codestar
│ └ resources
│    └[~]  resource AWS::CodeStar::GitHubRepository
│       └ attributes
│          └ Id: (documentation changed)
├[~] service aws-deadline
│ └ resources
│    ├[~]  resource AWS::Deadline::Farm
│    │  └ properties
│    │     └ Description: (documentation changed)
│    ├[~]  resource AWS::Deadline::Fleet
│    │  └ properties
│    │     └ Description: (documentation changed)
│    ├[+]  resource AWS::Deadline::Limit
│    │  ├      name: Limit
│    │  │      cloudFormationType: AWS::Deadline::Limit
│    │  │      documentation: Creates a limit that manages the distribution of shared resources, such as floating licenses. A limit can throttle work assignments, help manage workloads, and track current usage. Before you use a limit, you must associate the limit with one or more queues.
│    │  │      You must add the `amountRequirementName` to a step in a job template to declare the limit requirement.
│    │  ├ properties
│    │  │  ├ AmountRequirementName: string (required, immutable)
│    │  │  ├ Description: string (default="")
│    │  │  ├ DisplayName: string (required)
│    │  │  ├ FarmId: string (required, immutable)
│    │  │  └ MaxCount: integer (required)
│    │  └ attributes
│    │     ├ CurrentCount: integer
│    │     └ LimitId: string
│    ├[~]  resource AWS::Deadline::Queue
│    │  └ properties
│    │     └ Description: (documentation changed)
│    └[+]  resource AWS::Deadline::QueueLimitAssociation
│       ├      name: QueueLimitAssociation
│       │      cloudFormationType: AWS::Deadline::QueueLimitAssociation
│       │      documentation: Associates a limit with a particular queue. After the limit is associated, all workers for jobs that specify the limit associated with the queue are subject to the limit. You can't associate two limits with the same `amountRequirementName` to the same queue.
│       └ properties
│          ├ FarmId: string (required, immutable)
│          ├ LimitId: string (required, immutable)
│          └ QueueId: string (required, immutable)
├[~] service aws-dlm
│ └ resources
│    └[~]  resource AWS::DLM::LifecyclePolicy
│       └ types
│          └[~] type EventSource
│            └ properties
│               └ Type: (documentation changed)
├[~] service aws-ec2
│ └ resources
│    ├[~]  resource AWS::EC2::SecurityGroup
│    │  └      - documentation: Specifies a security group. To create a security group, use the [VpcId](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-security-group.html#cfn-ec2-securitygroup-vpcid) property to specify the VPC for which to create the security group.
│    │         If you do not specify an egress rule, we add egress rules that allow IPv4 and IPv6 traffic on all ports and protocols to any destination. We do not add these rules if you specify your own egress rules.
│    │         This type supports updates. For more information about updating stacks, see [AWS CloudFormation Stacks Updates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html) .
│    │         > To cross-reference two security groups in the ingress and egress rules of those security groups, use the [AWS::EC2::SecurityGroupEgress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-egress.html) and [AWS::EC2::SecurityGroupIngress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-ingress.html) resources to define your rules. Do not use the embedded ingress and egress rules in the `AWS::EC2::SecurityGroup` . Doing so creates a circular dependency, which AWS CloudFormation doesn't allow.
│    │         + documentation: Specifies a security group.
│    │         You must specify ingress rules to allow inbound traffic. By default, no inbound traffic is allowed.
│    │         If you do not specify an egress rule, we add egress rules that allow outbound IPv4 and IPv6 traffic on all ports and protocols to any destination. We do not add these rules if you specify your own egress rules.
│    │         This type supports updates. For more information about updating stacks, see [AWS CloudFormation Stacks Updates](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks.html) .
│    │         > To cross-reference two security groups in the ingress and egress rules of those security groups, use the [AWS::EC2::SecurityGroupEgress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-egress.html) and [AWS::EC2::SecurityGroupIngress](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-security-group-ingress.html) resources to define your rules. Do not use the embedded ingress and egress rules in the `AWS::EC2::SecurityGroup` . Doing so creates a circular dependency, which AWS CloudFormation doesn't allow.
│    ├[~]  resource AWS::EC2::VerifiedAccessEndpoint
│    │  └ types
│    │     ├[~] type CidrOptions
│    │     │ ├      - documentation: The options for cidr type endpoint.
│    │     │ │      + documentation: Describes the CIDR options for a Verified Access endpoint.
│    │     │ └ properties
│    │     │    ├ Cidr: (documentation changed)
│    │     │    ├ PortRanges: (documentation changed)
│    │     │    └ Protocol: (documentation changed)
│    │     ├[~] type LoadBalancerOptions
│    │     │ └ properties
│    │     │    └ PortRanges: (documentation changed)
│    │     ├[~] type NetworkInterfaceOptions
│    │     │ └ properties
│    │     │    └ PortRanges: (documentation changed)
│    │     ├[~] type PortRange
│    │     │ ├      - documentation: Describes a range of ports.
│    │     │ │      + documentation: Describes the port range for a Verified Access endpoint.
│    │     │ └ properties
│    │     │    ├ FromPort: (documentation changed)
│    │     │    └ ToPort: (documentation changed)
│    │     └[~] type RdsOptions
│    │       ├      - documentation: The options for rds type endpoint.
│    │       │      + documentation: Describes the RDS options for a Verified Access endpoint.
│    │       └ properties
│    │          ├ Port: (documentation changed)
│    │          ├ Protocol: (documentation changed)
│    │          ├ RdsDbClusterArn: (documentation changed)
│    │          ├ RdsDbInstanceArn: (documentation changed)
│    │          └ RdsDbProxyArn: (documentation changed)
│    ├[~]  resource AWS::EC2::VerifiedAccessInstance
│    │  └ attributes
│    │     └ CidrEndpointsCustomSubDomainNameServers: (documentation changed)
│    ├[~]  resource AWS::EC2::VerifiedAccessTrustProvider
│    │  └ types
│    │     └[~] type NativeApplicationOidcOptions
│    │       └ properties
│    │          └ ClientSecret: (documentation changed)
│    ├[~]  resource AWS::EC2::VPCCidrBlock
│    │  └ properties
│    │     └ Ipv6CidrBlockNetworkBorderGroup: (documentation changed)
│    ├[~]  resource AWS::EC2::VPCEndpoint
│    │  └ properties
│    │     └ Tags: (documentation changed)
│    └[~]  resource AWS::EC2::VPCEndpointService
│       └ properties
│          └ Tags: (documentation changed)
├[~] service aws-ecs
│ └ resources
│    └[~]  resource AWS::ECS::Service
│       └ types
│          └[~] type ServiceManagedEBSVolumeConfiguration
│            └ properties
│               └[-] VolumeInitializationRate: integer
├[~] service aws-elasticloadbalancingv2
│ └ resources
│    └[~]  resource AWS::ElasticLoadBalancingV2::Listener
│       └ types
│          └[~] type MutualAuthentication
│            ├      - documentation: Specifies the configuration information for mutual authentication.
│            │      + documentation: The mutual authentication configuration information.
│            └ properties
│               ├ AdvertiseTrustStoreCaNames: (documentation changed)
│               └ Mode: (documentation changed)
├[~] service aws-ivs
│ └ resources
│    └[~]  resource AWS::IVS::Channel
│       ├ properties
│       │  ├[+] ContainerFormat: string (default="TS")
│       │  └[+] MultitrackInputConfiguration: MultitrackInputConfiguration
│       └ types
│          └[+]  type MultitrackInputConfiguration
│             ├      documentation: A complex type that specifies multitrack input configuration.
│             │      name: MultitrackInputConfiguration
│             └ properties
│                ├ Enabled: boolean (default=false)
│                ├ MaximumResolution: string
│                └ Policy: string
├[~] service aws-rds
│ └ resources
│    └[~]  resource AWS::RDS::GlobalCluster
│       ├ properties
│       │  └[-] GlobalEndpoint: GlobalEndpoint
│       └ attributes
│          └[+] GlobalEndpoint: GlobalEndpoint
├[~] service aws-s3
│ └ resources
│    └[~]  resource AWS::S3::Bucket
│       ├ properties
│       │  └[+] MetadataTableConfiguration: MetadataTableConfiguration
│       ├ attributes
│       │  ├[+] MetadataTableConfiguration.S3TablesDestination.TableArn: string
│       │  └[+] MetadataTableConfiguration.S3TablesDestination.TableNamespace: string
│       └ types
│          ├[+]  type MetadataTableConfiguration
│          │  ├      documentation: The metadata table configuration of an Amazon S3 general purpose bucket. For more information, see [Accelerating data discovery with S3 Metadata](https://docs.aws.amazon.com/AmazonS3/latest/userguide/metadata-tables-overview.html) and [Setting up permissions for configuring metadata tables](https://docs.aws.amazon.com/AmazonS3/latest/userguide/metadata-tables-permissions.html) .
│          │  │      name: MetadataTableConfiguration
│          │  └ properties
│          │     └ S3TablesDestination: S3TablesDestination (required)
│          └[+]  type S3TablesDestination
│             ├      documentation: The destination information for the metadata table configuration. The destination table bucket must be in the same Region and AWS account as the general purpose bucket. The specified metadata table name must be unique within the `aws_s3_metadata` namespace in the destination table bucket.
│             │      name: S3TablesDestination
│             └ properties
│                ├ TableBucketArn: string (required)
│                ├ TableName: string (required)
│                ├ TableNamespace: string
│                └ TableArn: string
├[~] service aws-ssm
│ └ resources
│    ├[~]  resource AWS::SSM::Association
│    │  └ properties
│    │     └ CalendarNames: (documentation changed)
│    └[~]  resource AWS::SSM::ResourceDataSync
│       └ attributes
│          └ SyncName: (documentation changed)
├[~] service aws-transfer
│ └ resources
│    ├[~]  resource AWS::Transfer::Agreement
│    │  └ properties
│    │     ├[+] EnforceMessageSigning: string
│    │     └[+] PreserveFilename: string
│    └[~]  resource AWS::Transfer::Connector
│       └ types
│          └[~] type As2Config
│            └ properties
│               └[+] PreserveContentType: string
└[~] service aws-wisdom
  └ resources
     ├[~]  resource AWS::Wisdom::Assistant
     │  └      - tagInformation: undefined
     │         + tagInformation: {"tagPropertyName":"Tags","variant":"standard"}
     └[~]  resource AWS::Wisdom::AssistantAssociation
        └      - tagInformation: undefined
               + tagInformation: {"tagPropertyName":"Tags","variant":"standard"}

@aws-cdk-automation @github-actions
feat: update L1 CloudFormation resource definitions
fe5604e 
Updates the L1 CloudFormation resource definitions with the latest changes from `@aws-cdk/aws-service-spec`
@aws-cdk-automation aws-cdk-automation added auto-approve contribution/core This is a PR that came from AWS. dependencies This issue is a problem in a dependency or a pull request that updates a dependency file. pr-linter/exempt-readme The PR linter will not require README changes pr-linter/exempt-test The PR linter will not require test changes pr-linter/exempt-integ-test The PR linter will not require integ test changes labels Feb 10, 2025
@aws-cdk-automation aws-cdk-automation requested a review from a team February 10, 2025 13:45
@aws-cdk-automation aws-cdk-automation requested a review from a team February 10, 2025 13:45
@github-actions github-actions bot added the p2 label Feb 10, 2025
@codecov Codecov
Copy link

codecov bot commented Feb 10, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 80.92%. Comparing base (4d9a0c2) to head (fe5604e).

Additional details and impacted files 
@@           Coverage Diff           @@
##             main   #33363   +/-   ##
=======================================
  Coverage   80.92%   80.92%           
=======================================
  Files         236      236           
  Lines       14253    14253           
  Branches     2490     2490           
=======================================
  Hits        11534    11534           
  Misses       2434     2434           
  Partials      285      285
Flag Coverage Δ
suite.unit 80.92% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Components Coverage Δ
packages/aws-cdk 79.73% <ø> (ø)
packages/aws-cdk-lib/core 82.20% <ø> (ø)

@aws-cdk-automation
Copy link
Collaborator Author

AWS CodeBuild CI Report

  • CodeBuild project: AutoBuildv2Project1C6BFA3F-wQm2hXv2jqQv
  • Commit ID: fe5604e
  • Result: SUCCEEDED
  • Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

@mergify Mergify
Copy link
Contributor

mergify bot commented Feb 10, 2025

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

@mergify mergify bot merged commit ba485ef into main Feb 10, 2025
52 checks passed
@mergify mergify bot deleted the automation/spec-update branch February 10, 2025 14:17
@github-actions GitHub Actions
Copy link

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Feb 10, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
auto-approve contribution/core This is a PR that came from AWS. dependencies This issue is a problem in a dependency or a pull request that updates a dependency file. p2 pr-linter/exempt-integ-test The PR linter will not require integ test changes pr-linter/exempt-readme The PR linter will not require README changes pr-linter/exempt-test The PR linter will not require test changes
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@aws-cdk-automation