fix(appconfig): apply retain removal policy only to hosted configurat… #26829
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
github-actions
bot
added
the
beginning-contributor
AWS CodeBuild CI Report
Powered by github-codebuild-logs, available on the AWS Serverless Application Repository |
aws-cdk-automation
added
the
pr/needs-community-review
The current logic counts the number of changes in any parent stacks. It doesn't count nested stacks correctly, and doesn't count parent stacks correctly. With this change: <img width="1047" alt="Screenshot 2023-08-18 at 9 43 49 AM" src="https://github.com/aws/aws-cdk/assets/66279577/b417baa7-58d9-454a-a735-4bd406f1c126"> Without this change: <img width="1047" alt="Screenshot 2023-08-18 at 9 51 55 AM" src="https://github.com/aws/aws-cdk/assets/66279577/85e87e72-25ec-47af-96af-f47f7c43a4f2"> Closes aws#26818. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…6155) Changing Logical IDs for EfsMountTarget While using the forEach, index will be added as a suffix to logical id of EfsMountTarget this is causing an error when the subnets array in the props has changed. Closes aws#25099 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…fined" (aws#26800) The repository name is embedded in the `description` of `CustomResourceProvider` for the ECR AutoDeleteImages, but the repository name becomes to `undefined` because the `CustomResourceProvider` is created before the repository name is set. ```ts private enableAutoDeleteImages() { const firstTime = Stack.of(this).node.tryFindChild(`${AUTO_DELETE_IMAGES_RESOURCE_TYPE}CustomResourceProvider`) === undefined; const provider = CustomResourceProvider.getOrCreateProvider(this, AUTO_DELETE_IMAGES_RESOURCE_TYPE, { codeDirectory: path.join(__dirname, '..', '..', 'custom-resource-handlers', 'dist', 'aws-ecr', 'auto-delete-images-handler'), useCfnResponseWrapper: false, runtime: CustomResourceProviderRuntime.NODEJS_18_X, description: `Lambda function for auto-deleting images in ${this.repositoryName} repository.`, }); ``` So I moved the `enableAutoDeleteImages` calls after following codes that set `repositoryName` in the `Repository` constructor. ```ts this.repositoryName = this.getResourceNameAttribute(resource.ref); ``` ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…#26822) Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files) from 37.6.0 to 37.6.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/releases">tj-actions/changed-files's releases</a>.</em></p> <blockquote> <h2>v37.6.1</h2> <h2>What's Changed</h2> <ul> <li>Upgraded to v37.6.0 by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1441">tj-actions/changed-files#1441</a></li> <li>chore(deps): update typescript-eslint monorepo to v6.3.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1442">tj-actions/changed-files#1442</a></li> <li>chore(deps): update dependency <code>@types/node</code> to v20.4.9 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1444">tj-actions/changed-files#1444</a></li> <li>chore(deps): update dependency <code>@types/lodash</code> to v4.14.197 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1446">tj-actions/changed-files#1446</a></li> <li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1450">tj-actions/changed-files#1450</a></li> <li>chore(deps): update dependency eslint to v8.47.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1451">tj-actions/changed-files#1451</a></li> <li>chore(deps): update dependency <code>@types/node</code> to v20.4.10 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1452">tj-actions/changed-files#1452</a></li> <li>chore(deps): update dependency <code>@types/node</code> to v20.5.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1453">tj-actions/changed-files#1453</a></li> <li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1454">tj-actions/changed-files#1454</a></li> <li>chore(deps): update actions/setup-node action to v3.8.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1455">tj-actions/changed-files#1455</a></li> <li>chore(deps): update typescript-eslint monorepo to v6.4.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1456">tj-actions/changed-files#1456</a></li> <li>chore(deps): update dependency prettier to v3.0.2 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1457">tj-actions/changed-files#1457</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v37...v37.6.1">https://github.com/tj-actions/changed-files/compare/v37...v37.6.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/blob/main/HISTORY.md">tj-actions/changed-files's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h1><a href="https://github.com/tj-actions/changed-files/compare/v37.6.0...v37.6.1">37.6.1</a> - (2023-08-15)</h1> <h2>🔄 Update</h2> <ul> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/927363397d870aec841c3616c5136442218239af">9273633</a>) - (Tonye Jack)</li> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/a2e707696afd3f2f1738328cbfed71c56cd9b744">a2e7076</a>) - (Tonye Jack)</li> </ul> <h2>⚙️ Miscellaneous Tasks</h2> <ul> <li><strong>deps:</strong> Update dependency prettier to v3.0.2 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1457">#1457</a>) (<a href="https://github.com/tj-actions/changed-files/commit/a0585ff9904b77d046192a7846e59783d6ea287b">a0585ff</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update typescript-eslint monorepo to v6.4.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1456">#1456</a>) (<a href="https://github.com/tj-actions/changed-files/commit/ec3a2a3b3bf9648f952a5c642013948f99ab154f">ec3a2a3</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update actions/setup-node action to v3.8.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1455">#1455</a>) (<a href="https://github.com/tj-actions/changed-files/commit/24e2a6fb86042fb1e67a527045d6f8dea53b7d06">24e2a6f</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Lock file maintenance (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1454">#1454</a>) (<a href="https://github.com/tj-actions/changed-files/commit/1144bc6587e8570446c99b3cd5961539c750de3e">1144bc6</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update dependency <code>@types/node</code> to v20.5.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1453">#1453</a>) (<a href="https://github.com/tj-actions/changed-files/commit/fa84d9471e31552ac5031e74416776d80f7b3c23">fa84d94</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update dependency <code>@types/node</code> to v20.4.10 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1452">#1452</a>) (<a href="https://github.com/tj-actions/changed-files/commit/71dfd0dc2e7cde599586ee53148fcf31fda68499">71dfd0d</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update dependency eslint to v8.47.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1451">#1451</a>) (<a href="https://github.com/tj-actions/changed-files/commit/b941520afb05ff090564ee87734ece045963aaa7">b941520</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Lock file maintenance (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1450">#1450</a>) (<a href="https://github.com/tj-actions/changed-files/commit/be110124f6253e3471e3c0280329c359fef9b077">be11012</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update dependency <code>@types/lodash</code> to v4.14.197 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1446">#1446</a>) (<a href="https://github.com/tj-actions/changed-files/commit/9dc097cfe56dd6dca442b8b71b988aad4c385f94">9dc097c</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Update dependency <code>@types/node</code> to v20.4.9 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1444">#1444</a>) (<a href="https://github.com/tj-actions/changed-files/commit/e3b0c8a681e6f809136066ceeaae9a9203eddf29">e3b0c8a</a>) - (renovate[bot])</li> <li>Fix typo (<a href="https://github.com/tj-actions/changed-files/commit/a62be95af39e3e8d28a0ff4a80d07d30e7d16e17">a62be95</a>) - (Tonye Jack)</li> <li><strong>deps:</strong> Update typescript-eslint monorepo to v6.3.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1442">#1442</a>) (<a href="https://github.com/tj-actions/changed-files/commit/f267068b025785a2b8e6c5fd692c18782759af31">f267068</a>) - (renovate[bot])</li> </ul> <h2>⬆️ Upgrades</h2> <ul> <li>Upgraded to v37.6.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1441">#1441</a>)</li> </ul> <p>Co-authored-by: jackton1 <a href="mailto:[email protected]">[email protected]</a> (<a href="https://github.com/tj-actions/changed-files/commit/7f0849be06042444c62445709a000389e08d70e6">7f0849b</a>) - (tj-actions[bot])</p> <h1><a href="https://github.com/tj-actions/changed-files/compare/v37.5.2...v37.6.0">37.6.0</a> - (2023-08-07)</h1> <h2>🚀 Features</h2> <ul> <li>Improve checking local branch history (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1436">#1436</a>) (<a href="https://github.com/tj-actions/changed-files/commit/d4e6e22e932832260459e972c83fa76adca04a5c">d4e6e22</a>) - (Tonye Jack)</li> </ul> <h2>🔄 Update</h2> <ul> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/1e9cd5f2990496e3dc049d7978a807ed153b11a7">1e9cd5f</a>) - (Tonye Jack)</li> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/6b028b63039ee69ccfad97e35166eb997f6807ff">6b028b6</a>) - (Tonye Jack)</li> <li>Updated README.md (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1432">#1432</a>)</li> </ul> <p>Co-authored-by: jackton1 <a href="mailto:[email protected]">[email protected]</a> (<a href="https://github.com/tj-actions/changed-files/commit/b61db7817fbdc9f587fb205f4276886cda5913c5">b61db78</a>) - (tj-actions[bot])</p> <ul> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/6a48a0a0182db1daa7e00603ede7e99364f65ff2">6a48a0a</a>) - (Tonye Jack)</li> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/3415802ae92f45865a7bb5f80578ad22994f57ea">3415802</a>) - (Tonye Jack)</li> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/20a19b977fa3a78c7d87956e7b388681926d3b56">20a19b9</a>) - (Tonye Jack)</li> <li>Update README.md (<a href="https://github.com/tj-actions/changed-files/commit/10228bf07b9286b8db198de83022b52ab908bde7">10228bf</a>) - (Tonye Jack)</li> </ul> <h2>🧪 Testing</h2> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tj-actions/changed-files/commit/a0585ff9904b77d046192a7846e59783d6ea287b"><code>a0585ff</code></a> chore(deps): update dependency prettier to v3.0.2 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1457">#1457</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/ec3a2a3b3bf9648f952a5c642013948f99ab154f"><code>ec3a2a3</code></a> chore(deps): update typescript-eslint monorepo to v6.4.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1456">#1456</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/24e2a6fb86042fb1e67a527045d6f8dea53b7d06"><code>24e2a6f</code></a> chore(deps): update actions/setup-node action to v3.8.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1455">#1455</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/1144bc6587e8570446c99b3cd5961539c750de3e"><code>1144bc6</code></a> chore(deps): lock file maintenance (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1454">#1454</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/fa84d9471e31552ac5031e74416776d80f7b3c23"><code>fa84d94</code></a> chore(deps): update dependency <code>@types/node</code> to v20.5.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1453">#1453</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/71dfd0dc2e7cde599586ee53148fcf31fda68499"><code>71dfd0d</code></a> chore(deps): update dependency <code>@types/node</code> to v20.4.10 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1452">#1452</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/b941520afb05ff090564ee87734ece045963aaa7"><code>b941520</code></a> chore(deps): update dependency eslint to v8.47.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1451">#1451</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/be110124f6253e3471e3c0280329c359fef9b077"><code>be11012</code></a> chore(deps): lock file maintenance (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1450">#1450</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/927363397d870aec841c3616c5136442218239af"><code>9273633</code></a> Update README.md</li> <li><a href="https://github.com/tj-actions/changed-files/commit/9dc097cfe56dd6dca442b8b71b988aad4c385f94"><code>9dc097c</code></a> chore(deps): update dependency <code>@types/lodash</code> to v4.14.197 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1446">#1446</a>)</li> <li>Additional commits viewable in <a href="https://github.com/tj-actions/changed-files/compare/87697c0dca7dd44e37a2b79a79489332556ff1f3...a0585ff9904b77d046192a7846e59783d6ea287b">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
rix0rrr
requested changes
Aug 22, 2023
There was a problem hiding this comment.
Please make sure that your PR body describes the problem the PR is solving, and the design approach and alternatives considered. Explain why the PR solves the problem. A link to an issue is helpful, but does not replace an explanation of your thought process (See Contributing Guide, Pull Requests)
In addition, I see reference in the original thread to "I have a CloudFormation template that destroys fine". The current change does not seem to move us closer to destroying properly?
aws-cdk-automation
removed
the
pr/needs-community-review
AWS Service Spec packages to latest versions.
Amazon ECS [supports](https://aws.amazon.com/it/about-aws/whats-new/2022/12/amazon-ecs-supports-container-port-ranges-port-mapping/) container port ranges for port mapping since quite a bit, however the `ContainerDefinition` L2 construct does not expose a way to set them. Right now, the only viable solution I found to use the feature is using Escape Hatches. Within this PR, the `containerPortRange` property is added to the `PortMapping` object and mapped back to the underlying L1 construct. The current implementation contains a breaking change: since setting both a port range and a single fixed port doesn't make sense, I had to mark optional all the properties of `PortMapping`, hence the `containerPort` property changed its type from `non-nullable` to `nullable`. The downside of the proposed solution is that now all the properties are optional and the compiler doesn't complain if an empty object is passed as port mapping. I added some runtime checks to ensure that a valid object is created, but I didn't find a better way to do it at compile time that is also compatible with the transformation done by `jsii`. Closes aws#23509. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…'s description (aws#26149) When creating an instance of a `RestApi` construct, by default it has a `Deployment` attached to it. The description of the `Deployment` can be configured with an option given to the `RestApi`, like so: ```tsx const api = new RestApi(this, 'Api', { restApiName: 'MyApi', deployOptions: { description: 'Deployment description' } }); ``` However, looking at the [source code](https://github.com/aws/aws-cdk/blob/72eb1e957afb9d1573445999eddd38b5c345fa7a/packages/aws-cdk-lib/aws-apigateway/lib/restapi.ts#L592C25-L592C25), we see that instead of using the `props.deployOptions.description`, it uses `props.description`. Fixes aws#26148 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
The resource logical ID validation regex (`VALID_LOGICALID_REGEX`) is updated to be consistent with the [CloudFormation documentation](https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/resources-section-structure.html) which says that logical IDs are alphanumeric. Closes aws#26075. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
The interface EbsOptions for the opensearchservices CDK construct is missing a provisioned throughput option for eg gp3 instance types. iops is there, but not throughput Closes aws#26137. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Specifying the `securityGroups` property requires a `vpc`. This fix adds validation for the case when a `vpc` is not specified, but `securityGroups` is. It also adds validation for the case when both `securityGroups` and `allowAllOutbound` are specified (`allowAllOutbound` should be configured in the SGs). **Question for the reviewers** How should we handle the case of an empty list in `securityGroups`? (eg `securityGroups: []`) Closes aws#26508. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Removes the map of regions -> available lambda nodejs runtime versions that previously was used for all custom resources vended in the aws-cdk. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…#26580) Synthetics [used](https://aws.amazon.com/about-aws/whats-new/2022/05/amazon-cloudwatch-synthetics-support-canary-resources-deletion/) to have a property `deleteLambdaResourceOnCanaryDeletion` that has since been deprecated and erased from cloudformation docs. Although this property still works today synthetics makes no promises that this is supported in the future. Here in CDK land, this PR serves as a replacement to the `deleteLambdaResourceOnCanaryDeletion` property (called `enableAutoDeleteLambdas` on the L2 Canary) by implementing a custom resource similar to what we have in S3 and ECR. **This PR deprecates `enableAutoDeleteLambdas` in favor of `cleanup: cleanup.LAMBDA`, an enum that achieves the same thing but via custom resource** Closes aws#18448 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This GitHub Action updates a CONTRIBUTORS file with the top contributors from the project, pulling contents from the GitHub API. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…aws#26813) Pre 2.89.0 we could import a secret from a complete secret arn in one stack and reference this secret from another stack in a different region to include it in a policy/role through grantRead on the secret construct. Since 2.89.0 the arn in the policy it treats the compledSecretArn as a partial arn adding -?????? which makes the policy invalid and not allowing access to the secret as intended. This PR fixes that by overriding arnForPolicies for imported secrets to either return provided complete arn or partial arn with suffix. Fixes aws#26811. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
A few weeks ago I added the --ssh flag to the constructs for building a cdk with that arg; However, I missed actually passing that arg to the docker.build in the cdk-assets container-images. This adds that arg where it should be. Closes 12062. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
|
Why do we have RETAIN on these resources in the first place? Do we know? Are we sure using a different policy for stack updates and stack deletes is the right solution? It feels to me that either we need to retain them in both cases, for some reason, or we need to retain them in neither case. Your current change will fix the following sequence of events:
But I'm pretty sure it will fail in the following sequence of events:
Here's my motivation for questioning this solution: if we had the following sequence of events: 1. Deploy using HostedConfiguration and HostedConfigurationVersionThe service state will look like this: 2. Update HostedConfigurationVersion causing a replacementThe old Version will be RETAINed, because its The service will end up 2 versions, of which CloudFormation will be tracking the latest. 3. Delete stackCloudFormation will delete the resources it knows about, in reverse dependency order. Because CloudFormation doesn't know about |
Yaml is incorrect causing the workflow to not run at all. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This PR adds the ability to acknowledge annotation warning messages. The main motivation behind this is to allow people to set the `--strict` mode to fail synthesis on warnings. Currently it is all or nothing, you have to get rid of _all_ warnings to use `--strict`. With this feature users will be able to `acknowledge` warnings saying that they are aware, but it does not apply to them. Since we want all warnings to now have an id this will deprecate the `addWarning` method and adds a new `addWarningV2` method. Since the acknowledgements and warnings are written as metadata, it is possible to enhance this in the future to report on warnings and acknowledgements. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…licy (aws#26836) Adds a `cloudWatchRoleRemovalPolicy` property to `RestApiBaseProps` that allows to specify a custom retention policy for CloudWatchRole and Account. Defaults to `RemovalPolicy.RETAIN`. Closes aws#26827. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This PR adds a possibility to use local bundling and let the final asset be one single file that is uploaded as-is. This can be used for several types of assets, e.g. AppSync functions. In contrast to Lambda, these functions to not expect the asset to be a zip file. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Using helm charts in a private ECR repo is not possible in govcloud regions, as the regex is too narrowly defined. This change will properly match against all current AWS regions. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
The reason this is set to retain currently is because this deals with config versions. When a customer creates a new config version, we want to retain any old, existing versions, in the case that the customer later wants to deploy/access an old version. We have had customers ask for this when using our L1 constructs. Having them as separate removal policies makes sense because in the case of removal, the customer is deleting the entire stack and hence all AppConfig resources in the stack. If the config profile is getting deleted, then it doesn't make sense for the hosted config version to be retained since it only exists under the scope of a config profile. Also, since we have nested resources, keeping the hosted config version set to retain on delete will cause failures when trying to delete the application and config profile in the stack (as mentioned in the issue linked above), which does not make for the best customer experience, as they are trying to delete the entire stack (including all AppConfig resources). Only on update does the retain policy make sense for the user because of the reasoning in the first paragraph. |
…26910) If the same asset is used in 2 stacks that use different synthesizer configurations for publishing (for example, by using a different prefix) the asset will only be uploaded once instead of twice. We used to make the assumption that it was okay to use the destination ID as token of uniqueness. This is true inside a single manifest, but does not hold when there is more than stack that each have a manifest: both may have the destination ID `current_account:current_region`, but have different parameters for each destination. Instead, we calculate a content hash over the destination definition itself. That way, if the definitions are different we will create different nodes for each of them. Fixes aws#25927. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This PR is for the implementation of the `GlobalTable` L2. Please reference the following RFC: https://github.com/aws/aws-cdk-rfcs/blob/master/text/0510-dynamodb-global-table.md Closes aws#16118 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…5.2 (aws#26923) Also removes the following warning: ``` DeprecationWarning: 'originalKeywordKind' has been deprecated since v5.0.0 and will no longer be usable after v5.2.0. Use 'identifierToKeywordKind(identifier)' instead. ``` ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Checks off some items from aws#26757 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Add support for [AppSync Merged API](https://aws.amazon.com/blogs/mobile/introducing-merged-apis-on-aws-appsync/) feature. At the moment, a GraphQL schema can be passed using the `schema` property. I deprecated this property because it is not used for merged APIs. Depecreated syntax: ```ts const api = new appsync.GraphqlApi(this, 'Api', { name: 'demo', schema: appsync.SchemaFile.fromAsset(path.join(__dirname, 'schema.graphql')), }); ``` Instead, I introduced a new property `apiSource` that can be used to create a AppSync GraphQL API or Merged API. GraphQL API: ```ts const api = new appsync.GraphqlApi(this, 'Api', { name: 'demo', apiSource: appsync.ApiSource.fromSchema(appsync.SchemaFile.fromAsset(path.join(__dirname, 'schema.graphql'))), // short version apiSource: appsync.ApiSource.fromFile(path.join(__dirname, 'schema.graphql')), }); ``` Merged API: ```ts const api = new appsync.GraphqlApi(this, 'Api', { name: 'demo', apiSource: appsync.ApiSource.fromSourceApis({ sourceApis: [ { sourceApi: firstApi, mergeType: appsync.MergeType.MANUAL_MERGE, }, { sourceApi: secondApi, mergeType: appsync.MergeType.AUTO_MERGE, }, ], }), }); ``` Closes aws#25960. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…ws#26921) Upgrades a few runtime versions from `NODEJS_14_X` (which is EOL and will enter Deprecation Phase 1 on Nov 27, 2023) to `NODEJS_16_X`. Also updates all the tests. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
They execute correctly locally and in a PR build, but not in the Pipeline because the `framework-integ` package gets an `-alpha.999` suffix (whereas the actual constructs get an `-rc.0` suffix). The test used to read the expected version from its own `package.json`. It will now read the expected version from `aws-cdk-lib`'s `package.json`. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Ran npm-check-updates and yarn upgrade to keep the `yarn.lock` file up-to-date.
Its deprecation is causing problems for `cdk-nag`, which has a use case for unsuppressible warnings. Undeprecate for now until we come up with a better all-round solution. Relates to aws#26914. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
I felt it best to keep most of the details in the linked documentation, but I believe this provides a good overview. Closes aws#21103. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…ld counts (aws#26949) `HealthyThresholdCount` and `UnhealthyThresholdCount` do not need to be the same. In fact, the [docs](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/target-group-health-checks.html#health-check-settings) have their default values as 5 and 2. Closes aws#26941. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…s-cdk/aws-lambda-python-alpha/test/lambda-handler-poetry (aws#26956) Bumps [certifi](https://github.com/certifi/python-certifi) from 2023.5.7 to 2023.7.22. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/certifi/python-certifi/commit/8fb96ed81f71e7097ed11bc4d9b19afd7ea5c909"><code>8fb96ed</code></a> 2023.07.22</li> <li><a href="https://github.com/certifi/python-certifi/commit/afe77220e0eaa722593fc5d294213ff5275d1b40"><code>afe7722</code></a> Bump actions/setup-python from 4.6.1 to 4.7.0 (<a href="https://redirect.github.com/certifi/python-certifi/issues/230">#230</a>)</li> <li><a href="https://github.com/certifi/python-certifi/commit/2038739ad56abec7aaddfa90ad2ce6b3ed7f5c7b"><code>2038739</code></a> Bump dessant/lock-threads from 3.0.0 to 4.0.1 (<a href="https://redirect.github.com/certifi/python-certifi/issues/229">#229</a>)</li> <li><a href="https://github.com/certifi/python-certifi/commit/44df761f4c09d19f32b3cc09208a739043a5e25b"><code>44df761</code></a> Hash pin Actions and enable dependabot (<a href="https://redirect.github.com/certifi/python-certifi/issues/228">#228</a>)</li> <li>See full diff in <a href="https://github.com/certifi/python-certifi/compare/2023.05.07...2023.07.22">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aws/aws-cdk/network/alerts). </details>
…ws#26917) Currently, the region parameter in `AwsCustomResource` only controls where the action is performed. If a role needs to be assumed, the `assumeRole` call is made from the region the stack is deployed into. This presents a problem if the stack is deployed into an opt-in region, and the role being assumed lives in a separate stack in an account without the opt-in region enabled. This change makes the `assumeRole` call and the sdk call performed in the same region. Therefore, to solve the above problem, pass any region that is enabled for the account that owns the role to be assumed. Closes aws#26562. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Automated changes by [create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action
…aws#26962) Closes aws#26952. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This adds the ability to use the latest two NodeJS runtimes in your Synthetics construct. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…nnot be set at once (aws#26971) This PR adds comments that both defaultInterval and start for dashboard cannot be set at once. The following is a validation code for them. https://github.com/go-to-k/aws-cdk/blob/05d1c524e356f0e3cbd4799c6f7d233a44301954/packages/aws-cdk-lib/aws-cloudwatch/lib/dashboard.ts#L135-L137 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Signed-off-by: Vinayak Kukreja <[email protected]>
…#26996) Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files) from 38.1.3 to 38.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/releases">tj-actions/changed-files's releases</a>.</em></p> <blockquote> <h2>v38.2.1</h2> <h2>What's Changed</h2> <ul> <li>Upgraded to v38.2.0 by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1515">tj-actions/changed-files#1515</a></li> <li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1516">tj-actions/changed-files#1516</a></li> <li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1519">tj-actions/changed-files#1519</a></li> <li>chore(deps): bump test/demo from <code>8bbc726</code> to <code>5dfac2e</code> by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1518">tj-actions/changed-files#1518</a></li> <li>fix: bug matching patterns by <a href="https://github.com/jackton1"><code>@jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1520">tj-actions/changed-files#1520</a></li> <li>chore: update warning message by <a href="https://github.com/jackton1"><code>@jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1521">tj-actions/changed-files#1521</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v38...v38.2.1">https://github.com/tj-actions/changed-files/compare/v38...v38.2.1</a></p> <h2>v38.2.0</h2> <h2>🚀 🚀 New Feature 🚀 🚀</h2> <ul> <li>Boolean Input <code>fail_on_initial_diff_error</code> now supports exiting with an error when the initial diff fails.</li> <li>Boolean Input <code>fail_on_submodule_diff_error</code> now supports exiting with an error when the submodule diff fails.</li> </ul> <h2>What's Changed</h2> <ul> <li>Upgraded to v38.1.3 by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1503">tj-actions/changed-files#1503</a></li> <li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1504">tj-actions/changed-files#1504</a></li> <li>fix(deps): update dependency yaml to v2.3.2 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1505">tj-actions/changed-files#1505</a></li> <li>chore(deps): update typescript-eslint monorepo to v6.5.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1506">tj-actions/changed-files#1506</a></li> <li>chore(deps): update dependency eslint-plugin-github to v4.10.0 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1507">tj-actions/changed-files#1507</a></li> <li>chore(deps): update dependency prettier to v3.0.3 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1508">tj-actions/changed-files#1508</a></li> <li>Updated README.md by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1510">tj-actions/changed-files#1510</a></li> <li>feat: add support for failing on error by <a href="https://github.com/jackton1"><code>@jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1511">tj-actions/changed-files#1511</a></li> <li>Updated README.md by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1513">tj-actions/changed-files#1513</a></li> <li>Updated README.md by <a href="https://github.com/tj-actions-bot"><code>@tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1514">tj-actions/changed-files#1514</a></li> <li>chore(deps): update dependency <code>@types/uuid</code> to v9.0.3 by <a href="https://github.com/renovate"><code>@renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/1512">tj-actions/changed-files#1512</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v38...v38.2.0">https://github.com/tj-actions/changed-files/compare/v38...v38.2.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/blob/main/HISTORY.md">tj-actions/changed-files's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h1><a href="https://github.com/tj-actions/changed-files/compare/v38.2.0...v38.2.1">38.2.1</a> - (2023-09-01)</h1> <h2>🐛 Bug Fixes</h2> <ul> <li>Bug matching patterns (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1520">#1520</a>) (<a href="https://github.com/tj-actions/changed-files/commit/8476756ae3363aa4c10685f8804636de76aee77c">8476756</a>) - (Tonye Jack)</li> </ul> <h2>➖ Remove</h2> <ul> <li>Deleted .github/ISSUE_TEMPLATE/feature_request.yaml (<a href="https://github.com/tj-actions/changed-files/commit/4fac98a65655335ee89759e4c87d265b0114e15c">4fac98a</a>) - (Tonye Jack)</li> <li>Deleted .github/ISSUE_TEMPLATE/bug_report.yaml (<a href="https://github.com/tj-actions/changed-files/commit/bed56b29b814ce968175396abd67152a01b3a722">bed56b2</a>) - (Tonye Jack)</li> <li>Delete FUNDING.yml (<a href="https://github.com/tj-actions/changed-files/commit/c3ceccf9bce227317f59ed99512b300e0aa6c2ae">c3ceccf</a>) - (Tonye Jack)</li> </ul> <h2>🔄 Update</h2> <ul> <li>Update bug_report.yaml (<a href="https://github.com/tj-actions/changed-files/commit/2338e28eefcb81d8c25c7e6ca50543f53f60446b">2338e28</a>) - (Tonye Jack)</li> <li>Update bug_report.yaml (<a href="https://github.com/tj-actions/changed-files/commit/d4eb53db66ce407e266022c530dec9703cdffd3d">d4eb53d</a>) - (Tonye Jack)</li> <li>Update bug_report.yaml (<a href="https://github.com/tj-actions/changed-files/commit/8f777bbc0dbc0dfc6994d2c93114bfb970d95e61">8f777bb</a>) - (Tonye Jack)</li> <li>Update bug_report.yaml (<a href="https://github.com/tj-actions/changed-files/commit/7d256b941a1ffb4dea0a5f3b7a3a34b6fe962e4c">7d256b9</a>) - (Tonye Jack)</li> </ul> <h2>⚙️ Miscellaneous Tasks</h2> <ul> <li>Update warning message (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1521">#1521</a>) (<a href="https://github.com/tj-actions/changed-files/commit/2f7246cb26e8bb6709b6cbfc1fec7febfe82e96a">2f7246c</a>) - (Tonye Jack)</li> <li><strong>deps:</strong> Bump test/demo from <code>8bbc726</code> to <code>5dfac2e</code> (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1518">#1518</a>) (<a href="https://github.com/tj-actions/changed-files/commit/d90c240f2ad4ec04d8f0f48e5ac290ad96ebe850">d90c240</a>) - (dependabot[bot])</li> <li><strong>deps:</strong> Lock file maintenance (<a href="https://github.com/tj-actions/changed-files/commit/3be651e99d3d4eae395694f6c6f3b9d18457f6c8">3be651e</a>) - (renovate[bot])</li> <li><strong>deps:</strong> Lock file maintenance (<a href="https://github.com/tj-actions/changed-files/commit/c89928824ff66dd05ee32708cd6228b6d65c9405">c899288</a>) - (renovate[bot])</li> </ul> <h2>⬆️ Upgrades</h2> <ul> <li>Upgraded to v38.2.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1515">#1515</a>)</li> </ul> <p>Co-authored-by: jackton1 <a href="mailto:[email protected]">[email protected]</a> (<a href="https://github.com/tj-actions/changed-files/commit/047f65464639f7d9b9efefea74419be4c0b50b5f">047f654</a>) - (tj-actions[bot])</p> <h1><a href="https://github.com/tj-actions/changed-files/compare/v38.1.3...v38.2.0">38.2.0</a> - (2023-08-30)</h1> <h2>🚀 Features</h2> <ul> <li>Add support for failing on error (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1511">#1511</a>) (<a href="https://github.com/tj-actions/changed-files/commit/f1b3c2fa8b5692e972e331fdd79882d38273972c">f1b3c2f</a>) - (Tonye Jack)</li> </ul> <h2>🐛 Bug Fixes</h2> <ul> <li><strong>deps:</strong> Update dependency yaml to v2.3.2 (<a href="https://github.com/tj-actions/changed-files/commit/7555f14f918691d9063483ad675c79b69b47adcd">7555f14</a>) - (renovate[bot])</li> </ul> <h2>➕ Add</h2> <ul> <li>Added missing changes and modified dist assets. (<a href="https://github.com/tj-actions/changed-files/commit/b1c183b83c74c3f32fb9bb133284a41b10553736">b1c183b</a>) - (GitHub Action)</li> </ul> <h2>🔄 Update</h2> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/tj-actions/changed-files/commit/2f7246cb26e8bb6709b6cbfc1fec7febfe82e96a"><code>2f7246c</code></a> chore: update warning message (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1521">#1521</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/8476756ae3363aa4c10685f8804636de76aee77c"><code>8476756</code></a> fix: bug matching patterns (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1520">#1520</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/d90c240f2ad4ec04d8f0f48e5ac290ad96ebe850"><code>d90c240</code></a> chore(deps): bump test/demo from <code>8bbc726</code> to <code>5dfac2e</code> (<a href="https://redirect.github.com/tj-actions/changed-files/issues/1518">#1518</a>)</li> <li><a href="https://github.com/tj-actions/changed-files/commit/3be651e99d3d4eae395694f6c6f3b9d18457f6c8"><code>3be651e</code></a> chore(deps): lock file maintenance</li> <li><a href="https://github.com/tj-actions/changed-files/commit/4fac98a65655335ee89759e4c87d265b0114e15c"><code>4fac98a</code></a> Deleted .github/ISSUE_TEMPLATE/feature_request.yaml</li> <li><a href="https://github.com/tj-actions/changed-files/commit/bed56b29b814ce968175396abd67152a01b3a722"><code>bed56b2</code></a> Deleted .github/ISSUE_TEMPLATE/bug_report.yaml</li> <li><a href="https://github.com/tj-actions/changed-files/commit/2338e28eefcb81d8c25c7e6ca50543f53f60446b"><code>2338e28</code></a> Update bug_report.yaml</li> <li><a href="https://github.com/tj-actions/changed-files/commit/d4eb53db66ce407e266022c530dec9703cdffd3d"><code>d4eb53d</code></a> Update bug_report.yaml</li> <li><a href="https://github.com/tj-actions/changed-files/commit/8f777bbc0dbc0dfc6994d2c93114bfb970d95e61"><code>8f777bb</code></a> Update bug_report.yaml</li> <li><a href="https://github.com/tj-actions/changed-files/commit/7d256b941a1ffb4dea0a5f3b7a3a34b6fe962e4c"><code>7d256b9</code></a> Update bug_report.yaml</li> <li>Additional commits viewable in <a href="https://github.com/tj-actions/changed-files/compare/c860b5c47fa71f461da850094ef2f6e3d6514e44...2f7246cb26e8bb6709b6cbfc1fec7febfe82e96a">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
AWS Service Spec packages to latest versions.
I found some grammatical errors while debugging an issue. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…#26930) When a DeliveryStream is created without `sourceStream` or `encryptionKey`, an extra role is being created that is unused. This PR removes creation of that role. I also learned that the role created for `encryptionKey` is used "indirectly" for a grant put on the KMS key...interesting. Closes aws#26927. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
The upcoming v6 of the [VSCode jest plugin](https://github.com/jest-community/vscode-jest#virtualfolders) allows us to configure our monorepo packages as virtual folders. This makes the built-in Test Explorer work out of the box. <img width="466" alt="image" src="https://github.com/aws/aws-cdk/assets/379814/b98b3736-4713-49d7-bec6-816f14816e73"> Using the workspace is entirely optional. It can also serve as an example configurations. But it does give a space to add recommended/opinionated VSCode settings without compromising contributor's ability to change `.vscode/settings.json`. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…16 (aws#26980) Updates the `CrossAccountZoneDelegationRecord` construct to use sdk v3 / node 18. This is identical to changes in aws#26212, except for hardcoding a region into the `assumeRole` sdk call. This may not be the ideal solution, but should not break specific configurations. That specific configuration, as aws#26593 pointed out, was that the original update was a breaking change if the construct was deployed into an opt-in region, and the parent zone did not have that opt-in region enabled. This PR removes the semi-hidden `@aws-cdk/aws-route53:useRegionalStsEndpoint` feature flag, as it was based on a confusion on why things used to work. We now pick the correct endpoint manually. Closes aws#26976. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Did this get resolved? The PR says merged but it doesn't look like any AppConfig code added. Seems like need a way to clean out all HostedConfigVersions when deleting a stack (like S3 bucket and files). A little confused how the underlying CloudFormation is supposed to work here, since it only tracks and tries to delete the version it deployed, even though the whole point of AppConfig is to make quick deployments in the console by flipping a toggle (without need for CF deployment)? But if you make any changes in the console, the CF stack will fail to delete because of untracked versions. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
…ion version update replace
Addressing #26804 to add retain removal policy only on update replace and not on delete.
This fixes the problem, since before we are using
applyRemovalPolicy(RemovalPolicy.RETAIN)on the hosted config version, which sets the removal to retain on both delete and update. We wanted to set this to retain so hosted config versions are not deleted if updated. However, if the stack is being deleted, then we don't want to retain the hosted config version and that is why we are fixing it to only set the removal policy to retain on an update replace.This is in reference to the user using our L1 constructs, where the hosted config version deletes correctly.
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license