Releases: cloudposse/geodesic
Releases · cloudposse/geodesic
v2.9.4
🧰 Included Tools
Add rakkess to linux/arm64 in Debian @Nuru (#929)
what
- Add rakkess to
linux/arm64Debian build
why
- Previously we excluded
rakkessfrom thearm64build because there was no binary available and it was not considered that useful a tool. However, with AWS now supporting a new mechanism for access control for EKS clusters, it is newly useful in verifying access control given that it access can no longer be determined by simply looking at Kubernetes resources.
references
- https://docs.aws.amazon.com/eks/latest/userguide/access-entries.html
- https://github.com/corneliusweig/rakkess
- Some of the best documentation is in this issue comment
Contributors
Nuru
Assets 2
v2.9.3
🧰 Included Tools
Update AWS CLI packages @renovate (#928)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.49 -> ==1.32.54 |
||||
| boto3 | ==1.34.49 -> ==1.34.54 |
Release Notes
aws/aws-cli (awscli)
v1.32.54
=======
- api-change:
accessanalyzer: Fixed a typo in description field. - api-change:
autoscaling: With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types. - api-change:
ec2: With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types.
v1.32.53
=======
- api-change:
docdb-elastic: Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying - api-change:
eks: Added support for new AL2023 AMIs to the supported AMITypes. - api-change:
lexv2-models: This release makes AMAZON.QnAIntent generally available in Amazon Lex. This generative AI feature leverages large language models available through Amazon Bedrock to automate frequently asked questions (FAQ) experience for end-users. - api-change:
migrationhuborchestrator: Adds new CreateTemplate, UpdateTemplate and DeleteTemplate APIs. - api-change:
quicksight: TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update - api-change:
sagemaker: Adds support for ModelDataSource in Model Packages to support unzipped models. Adds support to specify SourceUri for models which allows registration of models without mandating a container for hosting. Using SourceUri, customers can decouple the model from hosting information during registration. - api-change:
securitylake: Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason.
v1.32.52
=======
- api-change:
batch: This release adds Batch support for configuration of multicontainer jobs in ECS, Fargate, and EKS. This support is available for all types of jobs, including both array jobs and multi-node parallel jobs. - api-change:
bedrock-agent-runtime: This release adds support to override search strategy performed by the Retrieve and RetrieveAndGenerate APIs for Amazon Bedrock Agents - api-change:
ce: This release introduces the new API 'GetApproximateUsageRecords', which retrieves estimated usage records for hourly granularity or resource-level data at daily granularity. - api-change:
ec2: This release increases the range of MaxResults for GetNetworkInsightsAccessScopeAnalysisFindings to 1,000. - api-change:
iot: This release reduces the maximum results returned per query invocation from 500 to 100 for the SearchIndex API. This change has no implications as long as the API is invoked until the nextToken is NULL. - api-change:
wafv2: AWS WAF now supports configurable time windows for request aggregation with rate-based rules. Customers can now select time windows of 1 minute, 2 minutes or 10 minutes, in addition to the previously supported 5 minutes.
v1.32.51
=======
- api-change:
amplifyuibuilder: We have added the ability to tag resources after they are created
v1.32.50
=======
- api-change:
apigateway: Documentation updates for Amazon API Gateway. - api-change:
drs: Added volume status to DescribeSourceServer replicated volumes. - api-change:
kafkaconnect: Adds support for tagging, with new TagResource, UntagResource and ListTagsForResource APIs to manage tags and updates to existing APIs to allow tag on create. This release also adds support for the new DeleteWorkerConfiguration API. - api-change:
rds: This release adds support for gp3 data volumes for Multi-AZ DB Clusters.
boto/boto3 (boto3)
v1.34.54
=======
- api-change:
accessanalyzer: [botocore] Fixed a typo in description field. - api-change:
autoscaling: [botocore] With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types. - api-change:
ec2: [botocore] With this release, Amazon EC2 Auto Scaling groups, EC2 Fleet, and Spot Fleet improve the default price protection behavior of attribute-based instance type selection of Spot Instances, to consistently select from a wide range of instance types.
v1.34.53
=======
- api-change:
docdb-elastic: [botocore] Launched Elastic Clusters Readable Secondaries, Start/Stop, Configurable Shard Instance count, Automatic Backups and Snapshot Copying - api-change:
eks: [botocore] Added support for new AL2023 AMIs to the supported AMITypes. - api-change:
lexv2-models: [botocore] This release makes AMAZON.QnAIntent generally available in Amazon Lex. This generative AI feature leverages large language models available through Amazon Bedrock to automate frequently asked questions (FAQ) experience for end-users. - api-change:
migrationhuborchestrator: [botocore] Adds new CreateTemplate, UpdateTemplate and DeleteTemplate APIs. - api-change:
quicksight: [botocore] TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update - api-change:
sagemaker: [botocore] Adds support for ModelDataSource in Model Packages to support unzipped models. Adds support to specify SourceUri for models which allows registration of models without mandating a container for hosting. Using SourceUri, customers can decouple the model from hosting information during registration. - api-change:
securitylake: [botocore] Add capability to update the Data Lake's MetaStoreManager Role in order to perform required data lake updates to use Iceberg table format in their data lake or update the role for any other reason.
v1.34.52
=======
- api-change:
batch: [botocore] This release adds Batch support for configuration of multicontainer jobs in ECS, Fargate, and EKS. This support is available for all types of jobs, including both array jobs and multi-node parallel jobs. - api-change:
bedrock-agent-runtime: [botocore] This release adds support to override search strategy performed by the Retrieve and RetrieveAndGenerate APIs for Amazon Bedrock Agents - api-change:
ce: [botocore] This release introduces the new API 'GetApproximateUsageRecords', which retrieves estimated usage records for hourly granularity or resource-level data at daily granularity. - api-change:
ec2: [botocore] This release increases the range of MaxResults for GetNetworkInsightsAccessScopeAnalysisFindings to 1,000. - api-change:
iot: [botocore] This release reduces the maximum results returned per query invocation from 500 to 100 for the SearchIn...
Contributors
renovate
Assets 2
v2.9.2
🚀 Enhancements
Fix aws CLI auto-completions, use smaller kubectl package @Nuru (#924)
what
- Fix
awsauto-completion - Only install latest
kubectl
why
- The
awsCLI is provided in 2 versions, v1 and v2, and which version is in use is managed byupdate-alternatives. However, each version of the CLI has a corresponding version of theaws_completerutility to perform auto-completion, but until now, Geodesic always used the v1 completer (a python script), even with the v2 CLI. This mostly worked, but it is not supported or correct. - Previously, we installed the
kubectlpackage frompackages.cloud.google.com, which is over 200 MB because it installs multiple versions ofkubectl. We now install only the latestkubectlpackage from the Cloud Posse package repo, which is under 50 MB, to save space. Cloud Posse publishes packages for each minor version ofkubectl(e.g.kubectl-1.29) so you can install the latest version compatible with your cluster if you do not want the current latest version.
references
This was brought to our attention by aws/aws-cli#8547 since upgrading to Python 3.12 in Geodesic v2.9.0.
🧰 Included Tools
Update AWS CLI packages @renovate (#925)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.44 -> ==1.32.49 |
||||
| boto3 | ==1.34.44 -> ==1.34.49 |
Release Notes
aws/aws-cli (awscli)
v1.32.49
=======
- api-change:
appsync: Documentation only updates for AppSync - api-change:
qldb: Clarify possible values for KmsKeyArn and EncryptionDescription. - api-change:
rds: Add pattern and length based validations for DBShardGroupIdentifier - api-change:
rum: Doc-only update for new RUM metrics that were added
v1.32.48
=======
- api-change:
internetmonitor: This release adds IPv4 prefixes to health events - api-change:
kinesisvideo: Increasing NextToken parameter length restriction for List APIs from 512 to 1024.
v1.32.47
=======
- api-change:
iotevents: Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models - api-change:
lookoutequipment: This release adds a field exposing model quality to read APIs for models. It also adds a model quality field to the API response when creating an inference scheduler. - api-change:
medialive: MediaLive now supports the ability to restart pipelines in a running channel. - api-change:
ssm: This release adds support for sharing Systems Manager parameters with other AWS accounts.
v1.32.46
=======
- api-change:
dynamodb: Publishing quick fix for doc only update. - api-change:
firehose: This release updates a few Firehose related APIs. - api-change:
lambda: Add .NET 8 (dotnet8) Runtime support to AWS Lambda.
v1.32.45
=======
- api-change:
amplify: This release contains API changes that enable users to configure their Amplify domains with their own custom SSL/TLS certificate. - api-change:
chatbot: This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK. - api-change:
config: Documentation updates for the AWS Config CLI - api-change:
ivs: Changed description for latencyMode in Create/UpdateChannel and Channel/ChannelSummary. - api-change:
keyspaces: Documentation updates for Amazon Keyspaces - api-change:
mediatailor: MediaTailor: marking #AdBreak.OffsetMillis as required.
boto/boto3 (boto3)
v1.34.49
=======
- api-change:
appsync: [botocore] Documentation only updates for AppSync - api-change:
qldb: [botocore] Clarify possible values for KmsKeyArn and EncryptionDescription. - api-change:
rds: [botocore] Add pattern and length based validations for DBShardGroupIdentifier - api-change:
rum: [botocore] Doc-only update for new RUM metrics that were added
v1.34.48
=======
- api-change:
internetmonitor: [botocore] This release adds IPv4 prefixes to health events - api-change:
kinesisvideo: [botocore] Increasing NextToken parameter length restriction for List APIs from 512 to 1024.
v1.34.47
=======
- api-change:
iotevents: [botocore] Increase the maximum length of descriptions for Inputs, Detector Models, and Alarm Models - api-change:
lookoutequipment: [botocore] This release adds a field exposing model quality to read APIs for models. It also adds a model quality field to the API response when creating an inference scheduler. - api-change:
medialive: [botocore] MediaLive now supports the ability to restart pipelines in a running channel. - api-change:
ssm: [botocore] This release adds support for sharing Systems Manager parameters with other AWS accounts.
v1.34.46
=======
- api-change:
dynamodb: [botocore] Publishing quick fix for doc only update. - api-change:
firehose: [botocore] This release updates a few Firehose related APIs. - api-change:
lambda: [botocore] Add .NET 8 (dotnet8) Runtime support to AWS Lambda.
v1.34.45
=======
- api-change:
amplify: [botocore] This release contains API changes that enable users to configure their Amplify domains with their own custom SSL/TLS certificate. - api-change:
chatbot: [botocore] This release adds support for AWS Chatbot. You can now monitor, operate, and troubleshoot your AWS resources with interactive ChatOps using the AWS SDK. - api-change:
config: [botocore] Documentation updates for the AWS Config CLI - api-change:
ivs: [botocore] Changed description for latencyMode in Create/UpdateChannel and Channel/ChannelSummary. - api-change:
keyspaces: [botocore] Documentation updates for Amazon Keyspaces - api-change:
mediatailor: [botocore] MediaTailor: marking #AdBreak.OffsetMillis as required.
Update dependency cryptography to v42.0.5 @renovate (#921)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| cryptography (changelog) | ==42.0.4 -> ==42.0.5 |
[ |
Contributors
renovate and Nuru
Assets 2
v2.9.1
🧰 Included Tools
Update dependency cryptography to v42.0.3 @renovate (#919)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| cryptography (changelog) | ==42.0.2 -> ==42.0.3 |
Release Notes
Update AWS CLI packages @renovate (#920)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.39 -> ==1.32.44 |
||||
| boto3 | ==1.34.39 -> ==1.34.44 |
Release Notes
aws/aws-cli (awscli)
v1.32.44
=======
- api-change:
connectparticipant: Doc only update to GetTranscript API reference guide to inform users about presence of events in the chat transcript. - api-change:
emr: adds fine grained control over Unhealthy Node Replacement to Amazon ElasticMapReduce - api-change:
firehose: This release adds support for Data Message Extraction for decompressed CloudWatch logs, and to use a custom file extension or time zone for S3 destinations. - api-change:
lambda: Documentation-only updates for Lambda to clarify a number of existing actions and properties. - api-change:
rds: Doc only update for a valid option in DB parameter group - api-change:
sns: This release marks phone numbers as sensitive inputs.
v1.32.43
=======
- api-change:
artifact: This is the initial SDK release for AWS Artifact. AWS Artifact provides on-demand access to compliance and third-party compliance reports. This release includes access to List and Get reports, along with their metadata. This release also includes access to AWS Artifact notifications settings. - api-change:
codepipeline: Add ability to override timeout on action level. - api-change:
detective: Doc only updates for content enhancement - api-change:
guardduty: Marked fields IpAddressV4, PrivateIpAddress, Email as Sensitive. - api-change:
healthlake: This release adds a new response parameter, JobProgressReport, to the DescribeFHIRImportJob and ListFHIRImportJobs API operation. JobProgressReport provides details on the progress of the import job on the server. - api-change:
opensearch: Adds additional supported instance types. - api-change:
polly: Amazon Polly adds 1 new voice - Burcu (tr-TR) - api-change:
sagemaker: This release adds a new API UpdateClusterSoftware for SageMaker HyperPod. This API allows users to patch HyperPod clusters with latest platform softwares. - api-change:
secretsmanager: Doc only update for Secrets Manager - api-change:
endpoint-rules: Update endpoint-rules command to latest version
v1.32.42
=======
- api-change:
controltower: Adds support for new Baseline and EnabledBaseline APIs for automating multi-account governance. - api-change:
lookoutequipment: This feature allows customers to see pointwise model diagnostics results for their models. - api-change:
qbusiness: This release adds the metadata-boosting feature, which allows customers to easily fine-tune the underlying ranking of retrieved RAG passages in order to optimize Q&A answer relevance. It also adds new feedback reasons for the PutFeedback API.
v1.32.41
=======
- api-change:
lightsail: This release adds support to upgrade the major version of a database. - api-change:
marketplace-catalog: AWS Marketplace Catalog API now supports setting intent on requests - api-change:
resource-explorer-2: Resource Explorer now uses newly supported IPv4 'amazonaws.com' endpoints by default. - api-change:
securitylake: Documentation updates for Security Lake - api-change:
endpoint-rules: Update endpoint-rules command to latest version
v1.32.40
=======
- api-change:
appsync: Adds support for new options on GraphqlAPIs, Resolvers and Data Sources for emitting Amazon CloudWatch metrics for enhanced monitoring of AppSync APIs. - api-change:
cloudwatch: Update cloudwatch command to latest version - api-change:
neptune-graph: Adding a new option "parameters" for data plane api ExecuteQuery to support running parameterized query via SDK. - api-change:
route53domains: This release adds bill contact support for RegisterDomain, TransferDomain, UpdateDomainContact and GetDomainDetail API.
boto/boto3 (boto3)
v1.34.44
=======
- api-change:
connectparticipant: [botocore] Doc only update to GetTranscript API reference guide to inform users about presence of events in the chat transcript. - api-change:
emr: [botocore] adds fine grained control over Unhealthy Node Replacement to Amazon ElasticMapReduce - api-change:
firehose: [botocore] This release adds support for Data Message Extraction for decompressed CloudWatch logs, and to use a custom file extension or time zone for S3 destinations. - api-change:
lambda: [botocore] Documentation-only updates for Lambda to clarify a number of existing actions and properties. - api-change:
rds: [botocore] Doc only update for a valid option in DB parameter group - api-change:
sns: [botocore] This release marks phone numbers as sensitive inputs.
v1.34.43
=======
- api-change:
artifact: [botocore] This is the initial SDK release for AWS Artifact. AWS Artifact provides on-demand access to compliance and third-party compliance reports. This release includes access to List and Get reports, along with their metadata. This release also includes access to AWS Artifact notifications settings. - api-change:
codepipeline: [botocore] Add ability to override timeout on action level. - api-change:
detective: [botocore] Doc only updates for content enhancement - api-change:
guardduty: [botocore] Marked fields IpAddressV4, PrivateIpAddress, Email as Sensitive. - api-change:
healthlake: [botocore] This release adds a new response parameter, JobProgressReport, to the DescribeFHIRImportJob and ListFHIRImportJobs API operation. JobProgressReport provides details on the progress of the import job on the server. - api-change:
opensearch: [botocore] Adds additional supported instance types. - api-change:
polly: [botocore] Amazon Polly adds 1 new voice - Burcu (tr-TR) - api-change:
sagemaker: [botocore] This release adds a new API Updat...
Contributors
renovate
Assets 2
v2.9.0 Update to Debian 12.4 from 11.8 (minor breaking change)
In this release we upgrade from Debian 11 (buster) to Debian 12 (bookworm). This introduces a minor breaking change.
Debian 12 has symbolic links for /bin, /sbin, and /lib pointing to /usr/bin, /usr/sbin, and /usr/lib respectively. This can break certain customizations you may be making in your Dockerfile for your custom image, and can also affect Spacelift users.
If you are making a customized version of Geodesic
Previously, the Dockerfile command:
COPY rootfs/ /
worked fine even if you had /bin, /sbin, or /lib subdirectories under rootfs/. Previous versions of Geodesic did have a rootfs/sbin directory which contained a single file, docker, which was a script that explained that the docker command was not installed and gave instructions on how to install it. This caused the COPY command to fail with the error:
ERROR: failed to solve: cannot copy to non-directory: /var/lib/docker/overlay2/6568nfahv2cv3vak9y7g5xv4d/merged/bin
For this reason, we moved the docker stub from rootfs/sbin/ to rootfs/usr/bin. (The reason it had been in /sbin before was so that it would appear later on the path than /usr/bin, which is where the real docker command is installed. However, with the new symlinks, /usr/bin is the last real directory on the PATH, so we can no longer put the stub in a later directory. Now we put it in /usr/bin where it will get replaced when the real docker command is installed.)
To fix this error, move the content out of rootfs/bin, rootfs/sbin, and rootfs/lib and into rootfs/usr/bin, rootfs/usr/sbin, and rootfs/usr/lib.
If you are using Geodesic as the base image for Spacelift
Cloud Posse distributed Spacelift configuration scripts that included the line
ln -sfTv /bin/terraform /usr/bin/terraformSince Debian replaced the /bin directory with a symlink to /usr/bin, this line should be changed to
[ /bin -ef /usr/bin ] || ln -sfTv /bin/terraform /usr/bin/terraformor removed completely. Otherwise you will find that the terraform command cannot be found, and you might get an error like
Using Terraform:
+ which terraform
[01HPMBE7B9D1XJBM622MGSGM46] Unexpected exit code when initializing workspace: 1
🚀 Enhancements
Update to Debian 12.4 and other updates @Nuru (#918)
what
- Update Google Cloud SDK from 455.0.0 to 463.0.0
- Update
helm-difffrom 3.8.1 to 3.9.4 - Updates to Debian-based Geodesic:
- Update Debian from 11.8 to 12.4
- Update Python from 3.11.6 to 3.12.2
- Change architecture emulation message to inform user that native architecture is available
- Updates to Alpine-based Geodesic:
- Update Alpine from 3.18.5 to 3.18.6
- Add deprecation message to banner
why
- Reduce number of known vulnerabilities. See #916
- Inform Alpine users that we will be discontinuing support soon
references
A trivy image scan of a development build of this PR showed zero known fixed vulnerabilities present in the Debian version. It detected 1 known fixed vulnerability in the Alpine version: the Google Cloud SDK includes Python packages that include cryptography v41.0.7, which has a vulnerability that has been fixed in the site-wide installed Python package, version 42.0.2.
- Supersedes and closes #916
Contributors
Nuru
Assets 2
v2.8.7
🏗️ Build/Release Maintenance
Add OCI annotations @Nuru (#917)
what
- Add OCI annotations to published images
why
- Standard compliance and better support for third-party tooling
references
- OCI annotations
- Supersedes and closes #915
Contributors
Nuru
Assets 2
v2.8.6
🧰 Included Tools
Update dependency cryptography to v42 [Security] @renovate (#906)
GitHub Vulnerability Alerts
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive data.
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| cryptography (changelog) | ==41.0.7 -> ==42.0.2 |
Release Notes
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
- If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
Update AWS CLI packages @renovate (#914)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.34 -> ==1.32.39 |
||||
| boto3 | ==1.34.34 -> ==1.34.39 |
Release Notes
aws/aws-cli (awscli)
v1.32.39
=======
- api-change:
amp: Overall documentation updates. - api-change:
batch: This feature allows Batch to support configuration of repository credentials for jobs running on ECS - api-change:
braket: Creating a job will result in DeviceOfflineException when using an offline device, and DeviceRetiredException when using a retired device. - api-change:
cost-optimization-hub: Adding includeMemberAccounts field to the response of ListEnrollmentStatuses API. - api-change:
ecs: Documentation only update for Amazon ECS. - api-change:
iot: This release allows AWS IoT Core users to enable Online Certificate Status Protocol (OCSP) Stapling for TLS X.509 Server Certificates when creating and updating AWS IoT Domain Configurations with Custom Domain. - api-change:
pricing: Add Throttling Exception to all APIs.
v1.32.38
=======
- api-change:
codepipeline: Add ability to execute pipelines with new parallel & queued execution modes and add support for triggers with filtering on branches and file paths. - api-change:
quicksight: General Interactions for Visuals; Waterfall Chart Color Configuration; Documentation Update - api-change:
workspaces: This release introduces User-Decoupling feature. This feature allows Workspaces Core customers to provision workspaces without providing users. CreateWorkspaces and DescribeWorkspaces APIs will now take a new optional parameter "WorkspaceName".
v1.32.37
=======
- api-change:
datasync: AWS DataSync now supports manifests for specifying files or objects to transfer. - api-change:
lexv2-models: Update lexv2-models command to latest version - api-change:
redshift: LisRecommendations API to fetch Amazon Redshift Advisor recommendations.
v1.32.36
=======
- api-change:
appsync: Support for environment variables in AppSync GraphQL APIs - api-change:
ecs: This release is a documentation only update to address customer issues. - api-change:
es: This release adds clear visibility to the customers on the changes that they make on the domain. - api-change:
logs: This release adds a new field, logGroupArn, to the response of the logs:DescribeLogGroups action. - api-change:
opensearch: This release adds clear visibility to the customers on the changes that they make on the domain. - api-change:
wafv2: You can now delete an API key that you've created for use with your CAPTCHA JavaScript integration API.
v1.32.35
=======
- api-change:
glue: Introduce Catalog Encryption Role within Glue Data Catalog Settings. Introduce SASL/PLAIN as an authentication method for Glue Kafka connections - api-change:
workspaces: Added definitions of various WorkSpace states
boto/boto3 (boto3)
v1.34.39
=======
- api-change:
amp: [botocore] Overall documentation updates. - api-change:
batch: [botocore] This feature allows Batch to support configuration of repository credentials for jobs running on ECS - api-change:
braket: [botocore] Creating a job will result in DeviceOfflineException when using an offline device, and DeviceRetiredException when using a retired device. - api-change:
cost-optimization-hub: [botocore] Adding includeMemberAccounts field to the response of ListEnrollmentStatuses API. - api-change:
ecs: [botocore] Documentation only update for Amazon ECS. - api-change:
iot: [botocore] This release allows AWS IoT Core users to enable Online Certificate Status Protocol (OCSP) Stapling for TLS X.509 Server Certificates when creating and updating AWS IoT Domain Configurations with Custom Domain. - api-change:
pricing: [botocore] Add Throttling Exception to all APIs.
v1.34.38
=======
- api-change:
codepipeline: [botocore] Add ability to execute pipelines with new parallel & queued execution modes and add support for triggers with filtering on branches and file paths. - api-change:
quicksight: [botocore] General Interactions for Visuals; Waterfall Chart Color Configuration; Documentation Update - api-change:
workspaces: [botocore] This release introduces User-Decoupling feature. This feature allows Workspaces Core customers to provision workspaces without providing users. CreateWorkspaces and DescribeWorkspaces APIs will now ta...
Contributors
renovate and Nuru
Assets 2
v2.8.5
🧰 Included Tools
Update AWS CLI packages @renovate (#909)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.30 -> ==1.32.34 |
||||
| boto3 | ==1.34.30 -> ==1.34.34 |
Release Notes
aws/aws-cli (awscli)
v1.32.34
=======
- api-change:
dynamodb: Any number of users can execute up to 50 concurrent restores (any type of restore) in a given account. - api-change:
sagemaker: Amazon SageMaker Canvas adds GenerativeAiSettings support for CanvasAppSettings. - api-change:
endpoint-rules: Update endpoint-rules command to latest version
v1.32.33
=======
- api-change:
cognito-idp: Added CreateIdentityProvider and UpdateIdentityProvider details for new SAML IdP features - api-change:
ivs: This release introduces a new resource Playback Restriction Policy which can be used to geo-restrict or domain-restrict channel stream playback when associated with a channel. New APIs to support this resource were introduced in the form of Create/Delete/Get/Update/List. - api-change:
managedblockchain-query: This release adds support for transactions that have not reached finality. It also removes support for the status property from the response of the GetTransaction operation. You can use the confirmationStatus and executionStatus properties to determine the status of the transaction. - api-change:
mediaconvert: This release includes support for broadcast-mixed audio description tracks. - api-change:
neptune-graph: Adding new APIs in SDK for Amazon Neptune Analytics. These APIs include operations to execute, cancel, list queries and get the graph summary.
v1.32.32
=======
- api-change:
cloudformation: CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack. - api-change:
elbv2: Update elbv2 command to latest version - api-change:
glue: Update page size limits for GetJobRuns and GetTriggers APIs. - api-change:
ssm: This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.
v1.32.31
=======
- api-change:
datazone: Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects - api-change:
route53: Update the SDKs for text changes in the APIs.
boto/boto3 (boto3)
v1.34.34
=======
- api-change:
dynamodb: [botocore] Any number of users can execute up to 50 concurrent restores (any type of restore) in a given account. - api-change:
sagemaker: [botocore] Amazon SageMaker Canvas adds GenerativeAiSettings support for CanvasAppSettings. - api-change:
endpoint-rules: [botocore] Update endpoint-rules client to latest version
v1.34.33
=======
- api-change:
cognito-idp: [botocore] Added CreateIdentityProvider and UpdateIdentityProvider details for new SAML IdP features - api-change:
ivs: [botocore] This release introduces a new resource Playback Restriction Policy which can be used to geo-restrict or domain-restrict channel stream playback when associated with a channel. New APIs to support this resource were introduced in the form of Create/Delete/Get/Update/List. - api-change:
managedblockchain-query: [botocore] This release adds support for transactions that have not reached finality. It also removes support for the status property from the response of the GetTransaction operation. You can use the confirmationStatus and executionStatus properties to determine the status of the transaction. - api-change:
mediaconvert: [botocore] This release includes support for broadcast-mixed audio description tracks. - api-change:
neptune-graph: [botocore] Adding new APIs in SDK for Amazon Neptune Analytics. These APIs include operations to execute, cancel, list queries and get the graph summary.
v1.34.32
=======
- api-change:
cloudformation: [botocore] CloudFormation IaC generator allows you to scan existing resources in your account and select resources to generate a template for a new or existing CloudFormation stack. - api-change:
elbv2: [botocore] Update elbv2 client to latest version - api-change:
glue: [botocore] Update page size limits for GetJobRuns and GetTriggers APIs. - api-change:
ssm: [botocore] This release adds an optional Duration parameter to StateManager Associations. This allows customers to specify how long an apply-only-on-cron association execution should run. Once the specified Duration is out all the ongoing cancellable commands or automations are cancelled.
v1.34.31
=======
- api-change:
datazone: [botocore] Add new skipDeletionCheck to DeleteDomain. Add new skipDeletionCheck to DeleteProject which also automatically deletes dependent objects - api-change:
route53: [botocore] Update the SDKs for text changes in the APIs.
🏗️ Build/Release Maintenance
Contributors
renovate and Nuru
Assets 2
v2.8.4
Clean up narrative of Geodesic history @Nuru (#905)
what
- Emphasize current Geodesic version over historical versions
- Remove remnants of explanation of why Geodesic was not supporting Apple Silicon
- Make documentation of historical changes more concsise
why
- Give the most relevant information first
- Make historical information easier to understand
🧰 Included Tools
Update AWS CLI packages @renovate (#907)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.23 -> ==1.32.30 |
||||
| boto3 | ==1.34.23 -> ==1.34.30 |
Release Notes
aws/aws-cli (awscli)
v1.32.30
=======
- api-change:
autoscaling: EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type. - api-change:
comprehend: Comprehend PII analysis now supports Spanish input documents. - api-change:
ec2: EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type. - api-change:
mwaa: This release adds MAINTENANCE environment status for Amazon MWAA environments. - api-change:
rds: Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience. - api-change:
snowball: Modified description of createaddress to include direction to add path when providing a JSON file.
v1.32.29
=======
- api-change:
connect: Update list and string length limits for predefined attributes. - api-change:
inspector2: This release adds ECR container image scanning based on their lastRecordedPullTime. - api-change:
sagemaker: Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.
v1.32.28
=======
- api-change:
acm-pca: AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled. - api-change:
lightsail: This release adds support for IPv6-only instance plans.
v1.32.27
=======
- api-change:
ec2: Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs. - api-change:
ecs: Documentation updates for Amazon ECS. - api-change:
outposts: DeviceSerialNumber parameter is now optional in StartConnection API - api-change:
rds: This release adds support for Aurora Limitless Database. - api-change:
storagegateway: Add DeprecationDate and SoftwareVersion to response of ListGateways.
v1.32.26
=======
- api-change:
inspector2: This release adds support for CIS scans on EC2 instances.
v1.32.25
=======
- bugfix:
s3 sync: Disable S3 Express support for s3 sync command
v1.32.24
=======
- api-change:
appconfigdata: Fix FIPS Endpoints in aws-us-gov. - api-change:
cloud9: Doc-only update around removing AL1 from list of available AMIs for Cloud9 - api-change:
cloudfront-keyvaluestore: This release improves upon the DescribeKeyValueStore API by returning two additional fields, Status of the KeyValueStore and the FailureReason in case of failures during creation of KeyValueStore. - api-change:
connectcases: This release adds the ability to view audit history on a case and introduces a new parameter, performedBy, for CreateCase and UpdateCase API's. - api-change:
ec2: Documentation updates for Amazon EC2. - api-change:
ecs: This release adds support for Transport Layer Security (TLS) and Configurable Timeout to ECS Service Connect. TLS facilitates privacy and data security for inter-service communications, while Configurable Timeout allows customized per-request timeout and idle timeout for Service Connect services. - api-change:
finspace: Allow customer to set zip default through command line arguments. - api-change:
organizations: Doc only update for quota increase change - api-change:
rds: Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS CreateDBCluster API method. This provides enhanced error handling, ensuring a more robust experience when creating database clusters with insufficient instance capacity. - api-change:
endpoint-rules: Update endpoint-rules command to latest version
boto/boto3 (boto3)
v1.34.30
=======
- api-change:
autoscaling: [botocore] EC2 Auto Scaling customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type. - api-change:
comprehend: [botocore] Comprehend PII analysis now supports Spanish input documents. - api-change:
ec2: [botocore] EC2 Fleet customers who use attribute based instance-type selection can now intuitively define their Spot instances price protection limit as a percentage of the lowest priced On-Demand instance type. - api-change:
mwaa: [botocore] This release adds MAINTENANCE environment status for Amazon MWAA environments. - api-change:
rds: [botocore] Introduced support for the InsufficientDBInstanceCapacityFault error in the RDS RestoreDBClusterFromSnapshot and RestoreDBClusterToPointInTime API methods. This provides enhanced error handling, ensuring a more robust experience. - api-change:
snowball: [botocore] Modified description of createaddress to include direction to add path when providing a JSON file.
v1.34.29
=======
- api-change:
connect: [botocore] Update list and string length limits for predefined attributes. - api-change:
inspector2: [botocore] This release adds ECR container image scanning based on their lastRecordedPullTime. - api-change:
sagemaker: [botocore] Amazon SageMaker Automatic Model Tuning now provides an API to programmatically delete tuning jobs.
v1.34.28
=======
- api-change:
acm-pca: [botocore] AWS Private CA now supports an option to omit the CDP extension from issued certificates, when CRL revocation is enabled. - api-change:
lightsail: [botocore] This release adds support for IPv6-only instance plans.
v1.34.27
=======
- api-change:
ec2: [botocore] Introduced a new clientToken request parameter on CreateNetworkAcl and CreateRouteTable APIs. The clientToken parameter allows idempotent operations on the APIs. - api-change:
ecs: [botocore] Documentation updat...
Contributors
renovate and Nuru
Assets 2
v2.8.3
🏗️ Build/Release Maintenance
Add explicit permissions to labeler @Nuru (#903)
what
- Add explicit permissions to labeler
why
- Labeler needs write permission to update labels, which was previously granted by default but now must be explicit
🧰 Included Tools
Update AWS CLI packages @renovate (#902)
This PR contains the following updates:
| Package | Change | Age | Adoption | Passing | Confidence |
|---|---|---|---|---|---|
| awscli (source, changelog) | ==1.32.17 -> ==1.32.23 |
||||
| boto3 | ==1.34.17 -> ==1.34.23 |
Release Notes
aws/aws-cli (awscli)
v1.32.23
=======
- api-change:
athena: Introducing new NotebookS3LocationUri parameter to Athena ImportNotebook API. Payload is no longer required and either Payload or NotebookS3LocationUri needs to be provided (not both) for a successful ImportNotebook API call. If both are provided, an InvalidRequestException will be thrown. - api-change:
codebuild: Release CodeBuild Reserved Capacity feature - api-change:
dynamodb: This release adds support for including ApproximateCreationDateTimePrecision configurations in EnableKinesisStreamingDestination API, adds the same as an optional field in the response of DescribeKinesisStreamingDestination, and adds support for a new UpdateKinesisStreamingDestination API. - api-change:
qconnect: Increased Quick Response name max length to 100
v1.32.22
=======
- api-change:
b2bi: Increasing TestMapping inputFileContent file size limit to 5MB and adding file size limit 250KB for TestParsing input file. This release also includes exposing InternalServerException for Tag APIs. - api-change:
cloudtrail: This release adds a new API ListInsightsMetricData to retrieve metric data from CloudTrail Insights. - api-change:
connect: GetMetricDataV2 now supports 3 groupings - api-change:
drs: Removed invalid and unnecessary default values. - api-change:
firehose: Allow support for Snowflake as a Kinesis Data Firehose delivery destination. - api-change:
sagemaker-featurestore-runtime: Increase BatchGetRecord limits from 10 items to 100 items
v1.32.21
=======
- api-change:
dynamodb: Updating note for enabling streams for UpdateTable. - api-change:
keyspaces: This release adds support for Multi-Region Replication with provisioned tables, and Keyspaces auto scaling APIs
v1.32.20
=======
- api-change:
iot: Revert release of LogTargetTypes - api-change:
iotfleetwise: Updated APIs: SignalNodeType query parameter has been added to ListSignalCatalogNodesRequest and ListVehiclesResponse has been extended with attributes field. - api-change:
macie2: This release adds support for analyzing Amazon S3 objects that are encrypted using dual-layer server-side encryption with AWS KMS keys (DSSE-KMS). It also adds support for reporting DSSE-KMS details in statistics and metadata about encryption settings for S3 buckets and objects. - api-change:
payment-cryptography: Provide an additional option for key exchange using RSA wrap/unwrap in addition to tr-34/tr-31 in ImportKey and ExportKey operations. Added new key usage (type) TR31_M1_ISO_9797_1_MAC_KEY, for use with Generate/VerifyMac dataplane operations with ISO9797 Algorithm 1 MAC calculations. - api-change:
personalize-runtime: Documentation updates for Amazon Personalize - api-change:
personalize: Documentation updates for Amazon Personalize. - api-change:
rekognition: This release adds ContentType and TaxonomyLevel attributes to DetectModerationLabels and GetMediaAnalysisJob API responses. - api-change:
securityhub: Documentation updates for AWS Security Hub
v1.32.19
=======
- api-change:
sagemaker: This release will have ValidationException thrown if certain invalid app types are provided. The release will also throw ValidationException if more than 10 account ids are provided in VpcOnlyTrustedAccounts.
v1.32.18
=======
- api-change:
connect: Supervisor Barge for Chat is now supported through the MonitorContact API. - api-change:
connectparticipant: Introduce new Supervisor participant role - api-change:
location: Location SDK documentation update. Added missing fonts to the MapConfiguration data type. Updated note for the SubMunicipality property in the place data type. - api-change:
mwaa: This Amazon MWAA feature release includes new fields in CreateWebLoginToken response model. The new fields IamIdentity and AirflowIdentity will let you match identifications, as the Airflow identity length is currently hashed to 64 characters. - api-change:
s3control: S3 On Outposts team adds dualstack endpoints support for S3Control and S3Outposts API calls. - api-change:
supplychain: This release includes APIs CreateBillOfMaterialsImportJob and GetBillOfMaterialsImportJob. - api-change:
transfer: AWS Transfer Family now supports static IP addresses for SFTP & AS2 connectors and for async MDNs on AS2 servers. - api-change:
endpoint-rules: Update endpoint-rules command to latest version
boto/boto3 (boto3)
v1.34.23
=======
- api-change:
athena: [botocore] Introducing new NotebookS3LocationUri parameter to Athena ImportNotebook API. Payload is no longer required and either Payload or NotebookS3LocationUri needs to be provided (not both) for a successful ImportNotebook API call. If both are provided, an InvalidRequestException will be thrown. - api-change:
codebuild: [botocore] Release CodeBuild Reserved Capacity feature - api-change:
dynamodb: [botocore] This release adds support for including ApproximateCreationDateTimePrecision configurations in EnableKinesisStreamingDestination API, adds the same as an optional field in the response of DescribeKinesisStreamingDestination, and adds support for a new UpdateKinesisStreamingDestination API. - api-change:
qconnect: [botocore] Increased Quick Response name max length to 100
v1.34.22
=======
- api-change:
b2bi: [botocore] Increasing TestMapping inputFileContent file size limit to 5MB and adding file size limit 250KB for TestParsing input file. This release also includes exposing InternalServerException for Tag APIs. - api-change:
cloudtrail: [botocore] This release adds a new API ListInsightsMetricData to retrieve metric data from CloudTrail Insights. - api-change:
connect: [botocore] GetMetricDataV2 now supports 3 groupings - api-change:
drs: [botocore] Removed invalid and unnecessary default values. - api-change:
firehose: [botocore] Allow support for Snowflake as a Kinesis Data Firehose delivery destination. - api-change:
sagemaker-featurestore-runtime: [botocore] Increase BatchGetRecord limits from 10 items to 100 items
v1.34.21
=======
- api-change:
dynamodb: [botocore] Updating note for enabling streams for UpdateTable. - api-change:
keyspaces: [botocore] This release adds suppo...
Contributors
osterman, renovate, and Nuru