Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
~> 3.37.0
->~> 5.5.0
⚠ Dependency Lookup Warnings ⚠
Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.
Release Notes
hashicorp/terraform-provider-aws (aws)
v5.5.0
Compare Source
NOTES:
trust-ad
option in/etc/resolv.conf
and, if set, will set the "authentic data" option in outgoing DNS requests in order to better match the behavior of the GNU libc resolver. (#32108)FEATURES:
aws_sesv2_email_identity
(#32026)aws_sesv2_email_identity_mail_from_attributes
(#32026)aws_chimesdkvoice_sip_rule
(#32070)aws_organizations_resource_policy
(#32056)ENHANCEMENTS:
TF_LOG
level isTRACE
(#32174)exclusion_by_resource_types
andrecording_strategy
attributes to therecording_group
configuration block (#32007)object_tags
attribute tooptions
configuration block (#27811)BUG FIXES:
binary_media_types
isnull
(#32169)server_certificate
argument (#27811)reading EC2 EIP (eipalloc-abcd1234): couldn't find resource
errors when reading new resource (#32016)waiting for completion: unexpected state 'AVAILABLE'
errors when deleting resource (#32067)reading Route Table (rtb-abcd1234): couldn't find resource
errors when reading new resource (#30999)kms_encrypted
istrue
butkms_key_arn
is not sent in the request (#32171)v5.4.0
Compare Source
FEATURES:
aws_organizations_policies
(#31545)aws_organizations_policies_for_target
(#31682)aws_chimesdkvoice_sip_media_application
(#31937)aws_opensearchserverless_collection
(#31091)aws_opensearchserverless_security_config
(#28776)aws_opensearchserverless_vpc_endpoint
(#28651)ENHANCEMENTS:
catalog_id
argument totarget_table
block (#31926)BUG FIXES:
index out of range [0] with length 0
panic (#32004)subnets
is updated to an empty list (#31976)function_name
argument now properly handles ARN values (#31933)*conns.AWSClient is not ssm.ssmClient: missing method SSMClient
panic (#31928)v5.3.0
Compare Source
NOTES:
metadata_options.http_endpoint
argument now correctly defaults toenabled
. (#24774)replace_security_groups_on_destroy
andreplacement_security_group_ids
attributes are being deprecated as AWS no longer supports this operation. These attributes now have no effect, and will be removed in a future major version. (#31904)FEATURES:
aws_quicksight_theme
(#31900)aws_opensearchserverless_access_policy
(#28518)aws_opensearchserverless_security_policy
(#28470)aws_quicksight_theme
(#31900)ENHANCEMENTS:
cluster_namespace_arn
attribute (#31884)cluster_namespace_arn
attribute (#31884)private_dns_only_for_inbound_resolver_endpoint
attribute to thedns_options
configuration block (#31873)BUG FIXES:
efs_volume_configuration
has bothroot_volume
andauthorization_config
set. (#26880)metadata_options.http_endpoint
argument. (#24774)name
(#31352)keyspace_name
,table_name
and column names (#31352)availability_zone_relocation_enabled
to betrue
whenpublicly_accessible
istrue
(#31886)reading EC2 VPC (vpc-abcd1234) Attribute (enableDnsSupport): couldn't find resource
errors when reading new resource (#31877)v5.2.0
Compare Source
NOTES:
FEATURES:
aws_budgets_budget
(#31691)aws_ecr_pull_through_cache_rule
(#31696)aws_guardduty_finding_ids
(#31711)aws_iam_principal_policy_simulation
(#25569)aws_chimesdkvoice_global_settings
(#31365)aws_finspace_kx_cluster
(#31806)aws_finspace_kx_database
(#31803)aws_finspace_kx_environment
(#31802)aws_finspace_kx_user
(#31804)ENHANCEMENTS:
bgp_peer_address
andbgp_transit_gateway_addresses
attributes (#31752)retry_mode
parameter (#31745)bgp_peer_address
andbgp_transit_gateway_addresses
attributes (#31752)replace_existing_association
argument (#31452)Volumes
toactions.*.target
(#31499)instance_market_options
configuration block andinstance_lifecycle
andspot_instance_request_id
attributes (#31495)ruby3.2
runtime
value (#31842)ruby3.2
compatible_runtimes
value (#31842)CREATING_SNAPSHOT
a valid pending state for resource update (#31833)stream_exception_policy
option tofirewall_policy.stateful_engine_options
(#31541)config_parameter.parameter_key
(#31747)container.model_package_name
andprimary_container.model_package_name
arguments (#31755)BUG FIXES:
modifying
state (#31772)default_tags
to resourcetags
, and vice versa (#31826)Failed
scaling activities due to IAM eventual consistency (#31282)vlan_id
fromTypeString
toTypeInt
in Terraform state for existing resources. This fixes a regression introduced in v5.1.0 causinga number is required
errors (#31735)endpoint_configuration.weight
to0
(#31767)hls_cdn_settings
expander. (#31844)iam_roles
diffs when the namespace contains a workgroup (#31749)config_parameter
fromTypeList
toTypeSet
as order is not significant (#31747)ValidationException: Can't update multiple configurations at the same time
errors (#31747)v5.1.0
Compare Source
BREAKING CHANGES:
role_last_used
attribute has been removed. Use theaws_iam_role
data source instead. (#31656)NOTES:
load_balancers
andtarget_group_arns
attributes have been changed toComputed
. This means that omitting this argument is interpreted as ignoring any existing load balancer or target group attachments. To remove all load balancer or target group attachments an empty list should be specified. (#31527)role_last_used
attribute has been removed. Use theaws_iam_role
data source instead. See the community feedback provided in the linked issue for additional justification on this change. As the attribute is read-only, unlikely to be used as an input to another resource, and available in the corresponding data source, a breaking change in a minor version was deemed preferable to a long deprecation/removal cycle in this circumstance. (#31656)aqua_configuration_status
, since the AWS API ignores it. Now always returnsauto
. (#31612)FEATURES:
aws_vpclattice_resource_policy
(#31372)aws_autoscaling_traffic_source_attachment
(#31527)aws_emrcontainers_job_template
(#31399)aws_glue_data_quality_ruleset
(#31604)aws_quicksight_analysis
(#31542)aws_quicksight_dashboard
(#31448)aws_resourcegroups_resource
(#31430)ENHANCEMENTS:
traffic_source
attribute (#31527)off_peak_window_options
attribute (#35970)visibility
argument (#31369)log_config.cloudwatch_logs_role_arn
(#31369)traffic_source
configuration block (#31527)managed_execution
argument (#25210)skip_final_backup
argument (#31544)security_style
argument and mark as Computed (#31544)ontap_volume_type
attribute to be configurable (#31544)junction_path
is Optional (#31544)storage_efficiency_enabled
is Optional (#31544)skip_destroy
attribute (#29571)skip_destroy
argument (#31646)off_peak_window_options
configuration block (#35970)shadow_production_variants.serverless_config.provisioned_concurrency
arguments (#31398)TransferSecurityPolicy-2023-05
security_policy_name
value (#31536)BUG FIXES:
vlan_id
being returned as null (#31480)tags
arenull
and others arecomputed
(#31687)The AutoRollback parameter cannot be set to true when the DesiredConfiguration parameter is empty
errors when refreshing instances (#31715)origin_keepalive_timeout
(#31608)CREATION_FAILED
status (#31689)tags
in state (#31716)vlan_id
being returned as null (#31480)alarms
is updated (#31683)storage_virtual_machine_id
to ForceNew (#31544)volume_type
to ForceNew (#31544)user_group_resolution_mode
value to state after creation (#31669)hls_cdn_settings
expand (#31647)resource_tags
blocks are configured (#31393)db_cluster_instance_class
(#31709)Maintenance
(#31612)ConcurrentModification
error (#31588)v5.0.1
Compare Source
BUG FIXES:
null
(#31587)v5.0.0
Compare Source
BREAKING CHANGES:
minimum_compression_size
is now a string type to allow values set via thebody
attribute to be properly computed. (#30969)hours_of_operation_arn
attribute has been removed (#31484)db_security_groups
attribute has been removed (#30966)security_group_names
attribute has been removed (#30966)number_cache_clusters
,replication_group_description
arguments -- usenum_cache_clusters
, anddescription
, respectively, instead (#31008)statement.sid
values tojson
attribute value (#28539)source_json
andoverride_json
have been removed -- usesource_policy_documents
andoverride_policy_documents
, respectively, instead (#30829)filter
argument has been removed (#31312)filter
argument has been removed (#31312)vpc_classic_link_id
andvpc_classic_link_security_groups
attributes have been removed (#30966)cluster_security_groups
attribute has been removed (#30966)rotation_enabled
,rotation_lambda_arn
androtation_rules
attributes have been removed (#31487)allow_classic_link_to_remote_vpc
andallow_vpc_to_remote_classic_link
attributes have been removed (#30966)assume_role.duration_seconds
,assume_role_with_web_identity.duration_seconds
,s3_force_path_style
,shared_credentials_file
andskip_get_ec2_platforms
attributes have been removed (#31155)aws_subnet_ids
data source has been removed (#31140)aws_db_security_group
resource has been removed (#30966)aws_elasticache_security_group
resource has been removed (#30966)aws_redshift_security_group
resource has been removed (#30966)aws_macie_member_account_association
resource has been removed (#31058)aws_macie_s3_bucket_association
resource has been removed (#31058)status
attribute has been removed (#31084)minimum_compression_size
is now a string type to allow values set via thebody
attribute to be properly computed. (#30969)alb_target_group_arn
has been removed -- uselb_target_group_arn
instead (#30828)tags
attribute (#30842)cost_filters
attribute has been removed (#31395)threshold
attribute has been removed (#30374)ecs_target.propagate_tags
attribute now has no default value (#25233)secondary_sources.auth
andsource.auth
attributes have been removed (#31483)hours_of_operation_arn
attribute has been removed (#31484)quick_connect_ids_associated
attribute has been removed (#31376)queue_configs_associated
attribute has been removed (#31376)name
- usedb_name
instead (#31232)security_group_names
attribute has been removed (#30966)id
is no longer the AWS databaseidentifier
-id
is now thedbi-resource-id
. Refer toidentifier
instead ofid
to use the database's identifier (#31232)enable_classiclink
andenable_classiclink_dns_support
attributes have been removed (#30966)s3_settings.ignore_headers_row
has been removed (#30452)snapshot_identifier
change now properly forces replacement (#29409)status
attribute has been removed (#31223)security_groups
attribute has been removed (#31396)status
attribute has been removed (#31223)capacity_providers
anddefault_capacity_provider_strategy
attributes have been removed (#31346)standard
domain is no longer supported (#30966)standard
domain is no longer supported (#30966)security_group_names
attribute has been removed (#30966)availability_zones
,number_cache_clusters
,replication_group_description
arguments -- usepreferred_cache_cluster_azs
,num_cache_clusters
, anddescription
, respectively, instead (#31008)cluster_mode
configuration block -- use top-levelnum_node_groups
andreplicas_per_node_group
instead (#31008)s3_configuration
attribute from the root of the resource.s3_configuration
is now a part of the following blocks:elasticsearch_configuration
,opensearch_configuration
,redshift_configuration
,splunk_configuration
, andhttp_endpoint_configuration
(#31138)s3
as an option fordestination
. Useextended_s3
instead (#31138)extended_s3_configuration.0.s3_backup_configuration.0.buffer_size
andextended_s3_configuration.0.s3_backup_configuration.0.buffer_interval
toextended_s3_configuration.0.s3_backup_configuration.0.buffering_size
andextended_s3_configuration.0.s3_backup_configuration.0.buffering_interval
, respectively (#31141)redshift_configuration.0.s3_backup_configuration.0.buffer_size
andredshift_configuration.0.s3_backup_configuration.0.buffer_interval
toredshift_configuration.0.s3_backup_configuration.0.buffering_size
andredshift_configuration.0.s3_backup_configuration.0.buffering_interval
, respectively (#31141)s3_configuration.0.buffer_size
ands3_configuration.0.buffer_internval
tos3_configuration.0.buffering_size
ands3_configuration.0.buffering_internval
, respectively (#31141)vpc_classic_link_id
andvpc_classic_link_security_groups
attributes have been removed (#30966)ipv6_address
attribute has been removed (#31489)statemux_settings
attribute has been removed. Usestatmux_settings
argument instead (#31034)broker_node_group_info.ebs_volume_size
attribute has been removed (#31324)snapshot_identifier
change now properly forces replacement (#29409)policy_document
argument -- useaws_networkmanager_core_network_policy_attachment
resource instead (#30875)engine
argument is now required and has no default (#31112)snapshot_identifier
change now properly forces replacement (#29409)engine
argument is now required and has no default (#31112)cluster_security_groups
attribute has been removed (#30966)instance_id
can no longer be set in configurations. Usenetwork_interface_id
instead, for example, settingnetwork_interface_id
toaws_instance.test.primary_network_interface_id
. (#30804)route.*.instance_id
can no longer be set in configurations. Useroute.*.network_interface_id
instead, for example, settingnetwork_interface_id
toaws_instance.test.primary_network_interface_id
. (#30804)rotation_enabled
,rotation_lambda_arn
androtation_rules
attributes have been removed (#31487)provisioning_artifact_parameters
arguments now properly trigger a replacement. This fixes incorrect behavior, but may technically be breaking for configurations expecting non-functional in-place updates. (#31061)enable_classiclink
andenable_classiclink_dns_support
attributes have been removed (#30966)allow_classic_link_to_remote_vpc
andallow_vpc_to_remote_classic_link
attributes have been removed (#30966)allow_classic_link_to_remote_vpc
andallow_vpc_to_remote_classic_link
attributes have been removed (#30966)allow_classic_link_to_remote_vpc
andallow_vpc_to_remote_classic_link
attributes have been removed (#30966)statement.managed_rule_group_statement.excluded_rule
andstatement.rule_group_reference_statement.excluded_rule
attributes have been removed (#31374)redacted_fields.all_query_arguments
,redacted_fields.body
andredacted_fields.single_query_argument
attributes have been removed (#31486)NOTES:
description
instead of thereplication_group_description
argument (#31008)num_cache_clusters
instead of thenumber_cache_clusters
argument (#31008)kibana_endpoint
attribute has been deprecated. All configurations usingkibana_endpoint
should be updated to use thedashboard_endpoint
attribute instead (#31490)tags_all
attribute has been deprecated and will be removed in a future version (#31162)aws_redshift_service_account
data source has been deprecated and will be removed in a future version. AWS documentation states that a service principal name should be used instead of an AWS account ID in any relevant IAM policy (#31006)tags_all
attribute has been deprecated and will be removed in a future version (#31162)minimum_compression_size
set to pass the value as a string. Valid values remain the same. (#30969)lb_target_group_arn
instead ofalb_target_group_arn
which has been removed (#30828)source_ids
using theid
attribute ofaws_db_instance
must be updated to useidentifier
instead - for example,source_ids = [aws_db_instance.example.id]
must be updated tosource_ids = [aws_db_instance.example.identifier]
(#31232)replicate_source_db
using theid
attribute ofaws_db_instance
must be updated to useidentifier
instead - for example,replicate_source_db = aws_db_instance.example.id
must be updated toreplicate_source_db = aws_db_instance.example.identifier
(#31232)id
is, namely, a DBI Resource ID now versus DB Identifier previously, has far-reaching consequences. Configurations that refer to, for example,aws_db_instance.example.id
will now have errors and must be changed to useidentifier
instead, for example,aws_db_instance.example.identifier
(#31232)db_instance_identifier
using theid
attribute ofaws_db_instance
must be updated to useidentifier
instead - for example,db_instance_identifier = aws_db_instance.example.id
must be updated todb_instance_identifier = aws_db_instance.example.identifier
(#31232)db_instance_identifier
using theid
attribute ofaws_db_instance
must be updated to useidentifier
instead - for example,db_instance_identifier = aws_db_instance.example.id
must be updated todb_instance_identifier = aws_db_instance.example.identifier
(#31232)db_instance_identifier
using theid
attribute ofaws_db_instance
must be updated to useidentifier
instead - for example,db_instance_identifier = aws_db_instance.example.id
must be updated todb_instance_identifier = aws_db_instance.example.identifier
(#31232)snapshot_identifier
attribute will now trigger a replacement, rather than an in-place update. This corrects the previous behavior which resulted in a successful apply, but did not actually restore the cluster from the designated snapshot. (#29409)vpn_gateway_id
attribute has been deprecated. All configurations usingvpn_gateway_id
should be updated to use theassociated_gateway_id
attribute instead (#31384)description
instead of thereplication_group_description
argument (#31008)num_cache_clusters
instead of thenumber_cache_clusters
argument (#31008)preferred_cache_cluster_azs
instead of theavailability_zones
argument (#31008)num_node_groups
andreplicas_per_node_group
instead ofcluster_mode.0.num_node_groups
andcluster_mode.0.replicas_per_node_group
, respectively (#31008)log_group_name
attribute has been deprecated. All configurations usinglog_group_name
should be updated to use thelog_destination
attribute instead (#31382)auto_enable
argument has been deprecated. Use theauto_enable_organization_members
argument instead. (#30736)snapshot_identifier
attribute will now trigger a replacement, rather than an in-place update. This corrects the previous behavior which resulted in a successful apply, but did not actually restore the cluster from the designated snapshot. (#29409)aws_networkmanager_core_network_policy_attachment
resource instead of thepolicy_document
argument (#30875)engine_version
attribute no longer has a default value. When omitted, the underlying AWS API will use the latest OpenSearch engine version. (#31568)kibana_endpoint
attribute has been deprecated. All configurations usingkibana_endpoint
should be updated to use thedashboard_endpoint
attribute instead (#31490)snapshot_identifier
attribute will now trigger a replacement, rather than an in-place update. This corrects the previous behavior which resulted in a successful apply, but did not actually restore the cluster from the designated snapshot. (#29409)engine
argument must be updated to includeengine
as it is now required. Previously, not includingengine
was equivalent toengine = "aurora"
and created a MySQL-5.6-compatible cluster (#31112)engine
argument must be updated to includeengine
as it is now required. Previously, not includingengine
was equivalent toengine = "aurora"
and created a MySQL-5.6-compatible cluster instance (#31112)instance_id
can no longer be set in configurations, usenetwork_interface_id
instead. For example, setnetwork_interface_id
toaws_instance.test.primary_network_interface_id
. (#30804)route.*.instance_id
can no longer be set in configurations, useroute.*.network_interface_id
instead. For example, setnetwork_interface_id
toaws_instance.test.primary_network_interface_id
. (#30804)instance_id
attribute has been deprecated. All configurations usinginstance_id
should be updated to use thetargets
attribute instead (#31380)ENHANCEMENTS:
computed
tags
on resources (#30793)default_tags
and resourcetags
to include zero values""
(#30793)default_tags
can now be included and will be overwritten by resourcetags
(#30793)identifier
andidentifier_prefix
will no longer cause the database instance to be destroyed and recreated (#31232)vpc
attribute. Usedomain
instead (#31567)auto_enable_organization_members
attribute (#30736)s3_configuration
toelasticsearch_configuration
,opensearch_configuration
,redshift_configuration
,splunk_configuration
, andhttp_endpoint_configuration
(#31138)engine_version
default value (#31568)rule_action_override
onrule_group_reference_statement
(#31374)BUG FIXES:
instance_warmup_period
of0
in theauto_scaling_group_provider.managed_scaling
configuration block (#24005)metadata_options
to allow default condition (#30545)acl
default in order to work with S3 buckets that have ACL disabled (#27197)acl
default in order to work with S3 buckets that have ACL disabled (#27197)provisioning_artifact_parameters
arguments now properly trigger a replacement (#31061)vpcPeeringConnectionOptionsEqual
(#30966)v4.67.0
Compare Source
NOTES:
id
attribute is now comma-delimited (#30820)FEATURES:
aws_connect_user
(#26156)aws_connect_vocabulary
(#26158)aws_organizations_policy
(#30920)aws_redshiftserverless_namespace
(#31250)aws_quicksight_template
(#30453)aws_quicksight_template_alias
(#31310)aws_quicksight_vpc_connection
(#31309)ENHANCEMENTS:
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.