chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
aws (source)	required_provider	minor	5.34.0 -> 5.37.0
terraform-linters/tflint-ruleset-aws	plugin	minor	0.29.0 -> 0.30.0

---

Release Notes

hashicorp/terraform-provider-aws (aws)

v5.37.0

Compare Source

NOTES:

• provider: Updates to Go 1.21 (used by Terraform starting with v1.6.0), which, for Windows, requires at least Windows 10 or Windows Server 2016--support for previous versions has been discontinued--and, for macOS, requires macOS 10.15 Catalina or later--support for previous versions has been discontinued. (#​35832)
• resource/aws_bedrock_provisioned_model_throughput: Because we cannot easily test this functionality, it is best effort and we ask for community help in testing (#​35689)

FEATURES:

• New Data Source: aws_db_parameter_group (#​35698)
• New Resource: aws_bedrock_provisioned_model_throughput (#​35689)
• New Resource: aws_cloudfront_key_value_store (#​35663)
• New Resource: aws_redshift_data_share_consumer_association (#​35771)

ENHANCEMENTS:

• data-source/aws_ecr_pull_through_cache_rule: Add credential_arn attribute (#​34475)
• data-source/aws_ecs_task_execution: Add client_token argument (#​34402)
• data-source/aws_neptune_cluster_instance: Add skip_final_snapshot argument (#​35698)
• data-source/aws_rds_engine_version: Improve search functionality and options by adding latest, preferred_major_targets, and preferred_upgrade_targets. Add version_actual attribute (#​35698)
• data-source/aws_rds_orderable_db_instance: Improve search functionality and options by adding engine_latest_version and supports_clusters arguments and converting read_replica_capable, supported_engine_modes, supported_network_types, and supports_multi_az to arguments for use as search criteria (#​35698)
• resource/aws_appsync_graphql_api: Add introspection_config, query_depth_limit, and resolver_count_limit arguments (#​35631)
• resource/aws_codeartifact_domain: Add s3_bucket_arn attribute (#​35760)
• resource/aws_ecr_pull_through_cache_rule: Add credential_arn argument (#​34475)
• resource/aws_ecs_service: Add service_connect_configuration.service.timeout and service_connect_configuration.service.tls configuration blocks (#​35684)
• resource/aws_ecs_task_definition: Add track_latest argument (#​30154)
• resource/aws_glue_catalog_database: Add federated_database argument (#​35799)
• resource/aws_glue_trigger: Add configurable timeouts (#​35542)
• resource/aws_rds_cluster: Add domain and domain_iam_role_name arguments to support Kerberos authentication (#​35753)
• resource/aws_route53_record: Add geoproximity_routing_policy configuration block to support geoproximity routing (#​35565)
• resource/aws_route53_resolver_rule: Add target_ip.protocol argument (#​35744)
• resource/aws_sagemaker_endpoint_configuration: Add routing_config argument. Enables the specification of a routing_strategy. (#​34777)
• resource/aws_sagemaker_space: Add ownership_settings, space_sharing_settings, space_settings.app_type, space_settings.code_editor_app_settings, space_settings.custom_file_system, space_settings.jupyter_lab_app_settings, and space_settings.space_storage_settings arguments (#​35116)

BUG FIXES:

• provider: Fix failed to get rate limit token, retry quota exceeded errors (#​35817)
• resource/aws_apigateway_domain_name: Properly send changes to ownership_verification_certificate_arn on update (#​35777)
• resource/aws_apigatewayv2_route: Fix BadRequestException: Unable to update route. Authorizer type is invalid or null errors when updating authorizer_id (#​35821)
• resource/aws_autoscaling_group: Fix version to computed for inconsistent final plan issue (#​35774)
• resource/aws_datasync_task: Fix crash when reading empty report_override values (#​35778)
• resource/aws_datasync_task: Prevent ValidationErrors when empty values are sent with report_override arguments (#​35778)
• resource/aws_db_proxy: Change auth from TypeList to TypeSet as order is not significant (#​35819)
• resource/aws_ecs_account_setting_default: Remove plan-time validation of value (#​33393)
• resource/aws_ecs_task_definition: Fix perpetual container_definitions diffs when Secrets are ordered differently (#​35792)
• resource/aws_eks_access_policy_association: Retry IAM eventual consistency errors on create (#​35736)
• resource/aws_instance: Fix ReservationCapacityExceeded errors when updating instance_type and capacity_reservation_specification.capacity_reservation_target.capacity_reservation_id (#​33412)
• resource/aws_lakeformation_resource: Properly handle configured false values for use_service_linked_role (#​35799)
• resource/aws_medialive_channel: Added client_cache to hls_group_settings. (#​35738)
• resource/aws_ram_resource_share_accepter: Fix handling of out-of-band resource share deletion (#​35800)
• resource/aws_redshift_data_share_authorization: Fix read operation to properly handle shares in ACTIVE status (#​35771)
• resource/aws_s3_bucket_acl: Correctly updates access_control_policy when switching configuration to acl. (#​35775)
• resource/resource_share_acceptor: Wait until RAM resource share available after accepting the invitation (#​34753)

v5.36.0

Compare Source

NOTES:

• data-source/aws_media_convert_queue: The AWS Elemental MediaConvert service has been converted to use standard Regional endpoints instead of deprecated per-account endpoints (#​35615)
• resource/aws_controltower_landing_zone: Because we cannot easily test this functionality, it is best effort and we ask for community help in testing (#​34595)
• resource/aws_media_convert_queue: The AWS Elemental MediaConvert service has been converted to use standard Regional endpoints instead of deprecated per-account endpoints (#​35615)

FEATURES:

• New Resource: aws_controltower_landing_zone (#​34595)
• New Resource: aws_osis_pipeline (#​35582)
• New Resource: aws_redshift_data_share_authorization (#​35703)
• New Resource: aws_securitylake_custom_log_source (#​35354)

ENHANCEMENTS:

• resource/aws_cloudwatch_metric_stream: Add plan-time validation of output_format (#​35569)
• resource/aws_db_instance: Add diag.log and notify.log as valid values for enabled_cloudwatch_logs_exports (#​35626)
• resource/aws_db_instance: Add domain_auth_secret_arn, domain_dns_ips, domain_fqdn, and domain_ou arguments to support self-managed Active Directory (#​35500)
• resource/aws_s3_bucket_metric: Add filter.access_point argument (#​35590)
• resource/aws_verifiedaccess_group: Add sse_configuration argument (#​34055)

BUG FIXES:

• resource/aws_db_instance: Creating resource from point-in-time recovery now handles password attribute correctly (#​35589)
• resource/aws_dynamodb_table: Ensure that replicas are always set on Read (#​35630)
• resource/aws_emr_cluster: Properly normalize launch_specifications.on_demand_specification.allocation_strategy and launch_specifications.spot_specification.allocation_strategy values to fix perpetual state differences (#​34367)
• resource/aws_kinesis_firehose_delivery_stream: Change extended_s3_configuration.processing_configuration.processors.parameters from TypeList to TypeSet as order is not significant (#​35672)
• resource/aws_lambda_function: Resolve consecutive diff issue in logging_config when values for application_log_level or system_log_level are not specified (#​35694)
• resource/aws_lb_listener: Fixes unexpected diff when using default_action parameters which don't match the type. (#​35678)
• resource/aws_lb_listener: Was incorrectly reporting conflicting default_action[].target_group_arn when ignore_changes was set. (#​35671)
• resource/aws_lb_listener: Was not storing default_action[].forward in state if only a single target_group was set. (#​35671)
• resource/aws_lb_listener_rule: Fixes unexpected diff when using action parameters which don't match the type. (#​35678)
• resource/aws_lb_listener_rule: Was incorrectly reporting conflicting action[].target_group_arn when ignore_changes was set. (#​35671)
• resource/aws_lb_listener_rule: Was not storing action[].forward in state if only a single target_group was set. (#​35671)
• resource/aws_ssm_patch_baseline: Mark json as Computed if there are content changes (#​35606)

v5.35.0

Compare Source

FEATURES:

• New Data Source: aws_bedrock_custom_model (#​34310)
• New Data Source: aws_bedrock_custom_models (#​34310)
• New Data Source: aws_ssmcontacts_rotation (#​32710)
• New Resource: aws_bedrock_custom_model (#​34310)
• New Resource: aws_lexv2models_slot (#​34617)
• New Resource: aws_lexv2models_slot_type (#​35555)
• New Resource: aws_rekognition_collection (#​35407)
• New Resource: aws_sesv2_email_identity_policy (#​35486)
• New Resource: aws_ssmcontacts_rotation (#​32710)

ENHANCEMENTS:

• data-source/aws_redshift_cluster: Add multi_az attribute (#​35508)
• resource/aws_lakeformation_resource: Add hybrid_access_enabled argument (#​35571)
• resource/aws_lakeformation_resource: Add with_federation argument (#​35154)
• resource/aws_redshift_cluster: Add multi_az argument (#​35508)
• resource/aws_redshiftserverless_endpoint_access: Add owner_account argument (#​35509)
• resource/aws_wafv2_rule_group: Add header_order to field_to_match configuration blocks (#​35521)
• resource/aws_wafv2_web_acl: Add header_orderto field_to_match configuration blocks (#​35521)

BUG FIXES:

• data-source/aws_networkmanager_core_network_policy_document: Remove core_network_configuration.edge_locations maximum item limit (#​35585)
• resource/aws_backup_plan: Fix InvalidParameterValueException: Invalid lifecycle. EBS Cold Tier is not yet supported errors on resource Create in AWS GovCloud (US) (#​35560)
• resource/aws_cognito_user_group: Allow import of user groups with names containing / (#​35501)
• resource/aws_dms_event_subscription: Mark source_ids as Optional. This fixes a regression introduced in v5.31.0 (#​35541)
• resource/aws_efs_file_system: Increase lifecycle_policy maximum item limit to 3 (#​35522)
• resource/aws_eks_access_entry: Retry IAM eventual consistency errors on create (#​35535)
• resource/aws_finspace_kx_cluster: Increase command_line_arguments max length restriction from 50 to 1024. (#​35581)

terraform-linters/tflint-ruleset-aws (terraform-linters/tflint-ruleset-aws)

v0.30.0

Compare Source

Enhancements

• #​589 #​601 #​602 #​606: Update AWS provider/module and generated content

Bug Fixes

• #​600: fix: prevent runtime error when instanceType/nodeType have no dot (@​guillaumelecerf)

Chores

• #​599: Bump golang.org/x/net from 0.19.0 to 0.20.0
• #​603: Bump github.com/hashicorp/terraform-json from 0.20.0 to 0.21.0
• #​604: Bump github.com/zclconf/go-cty from 1.14.1 to 1.14.2
• #​605: Bump peter-evans/create-pull-request from 5 to 6
• #​607: deps: Go 1.22 (@​wata727)

---

Configuration

📅 Schedule: Branch creation - "every weekday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[github-actions]

🎉 This PR is included in version 3.1.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀