apigatewayv2: websocket - callback url (#15227) (349de7c), closes #14836
apigatewayv2-integrations: http private integrations - tls config (#15469) (6453769), closes #14036
appsync: optional operation parameter for lambdaRequest mapping template (#15283) (efd2e68), closes #15274 #14079
aws-efs: grant support on FileSystem (#14999) (09591c6), closes #14998
cli: add ability to specify an external id for the deploy-role (#15604) (2647cf3)
lambda-nodejs: source map mode (#15621) (b934976), closes #14857
pipelines: confirm IAM changes before starting the deployment (#15441) (ebba618), closes #12748
rds: allow setting copyTagsToSnapshot on Clusters (#15553) (f7c6289), closes #15521
servicecatalog: Add stack event notification constraint (#15610) (4e40db3)
servicecatalog: Add TagOptions for portfolio (#15612) (e7760ee)

Bug Fixes

appsync: update timestamp for apikey test (#15624) (9c4e51c), closes #15623
cfnspec: make EndpointConfiguration of AWS::Serverless::Api a union type (#15526) (dd38eff)
cli: cdk deploy is listing deprecated ids (#15603) (22f2499)
iam: PrincipalWithConditions.addCondition does not work (#15414) (fdce08c)
pipelines: CodeBuildStep.partialBuildSpec not used, buildspec control for legacy API (#15625) (d8dc818), closes #15169
pipelines: new pipeline stages aren't validated (#15665) (309b9b4)
pipelines: permissions check in legacy API does not work (#15660) (5e3cf2b)
pipelines: unresolved source names aren't handled properly (#15600) (4b7116d), closes #15592

1.114.0

Diff

aws-cdk-team

published 1.114.0 • 3 years ago

Changelog

Source

1.114.0 (2021-07-15)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

appmesh: prefixPath property in HttpGatewayRouteMatch has been renamed to path, and its type changed from string to HttpGatewayRoutePathMatch
servicecatalog: AcceptLanguage enum has been renamed to MessageLanguage, and fields that accepted this enum have been updated to reflect this change.
servicecatalog: property acceptLanguage in PortfolioShareOptions has been renamed to messageLanguage.
servicecatalog: property acceptLanguage in PortfolioProps has been renamed to messageLanguage.
servicecatalog: property acceptLanguage in CloudFormationProductProps has been renamed messageLanguage.
appmesh: prefixPath property in HttpRouteMatch has been renamed to path, and its type changed from string to HttpRoutePathMatch

Features

appmesh: add Route matching on path, query parameters, metadata, and method name (#15470) (eeeec5d)
appmesh: add support for Gateway Route request matching and path rewriting (#15527) (1589ff8), closes #15305
appmesh: the App Mesh Construct Library is now Generally Available (stable) (#15560) (718d143), closes #9489
aws-ecs: New CDK constructs for ECS Anywhere task and service definitions (#14931) (3592b26)
bootstrap: widen lookup role permissions for future extension (#15423) (cafdd3c)
cfnspec: cloudformation spec v39.5.0 (#15536) (c98e40e)
pipelines: revised version of the API (#12326) (165ee3a), closes #10872
servicecatalog: Add portfolio-product association and tag update constraint (#15452) (b06f7bf)

Bug Fixes

ecr-assets: There is already a Construct with name 'Staging' when using tarball image (#15540) (594d7c6)

1.113.0

Diff

aws-cdk-team

published 1.113.0 • 3 years ago

Changelog

Source

1.113.0 (2021-07-12)

Features

assets: docker images from tar file (#15438) (76f06fc), closes #15419
codepipeline-actions: support combining batch build artifacts in CodeBuildAction (#15457) (0952f1f), closes #15455
events: cross-region event rules (#14731) (c62afe9)

Bug Fixes

aws-ecs: token is added to Options instead of SecretOptions in SplunkLogDriver (#15408) (23abe22)

1.112.0

Diff

aws-cdk-team

published 1.112.0 • 3 years ago

Changelog

Source

1.112.0 (2021-07-09)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

appmesh: the class HttpHeaderMatch has been renamed to HeaderMatch
appmesh: the class HttpRouteMatchMethod has been renamed to HttpRouteMethod
appmesh: ServiceDiscovery.cloudMap() method has been changed to accept positional arguments

Features

acm: DaysToExpiry metric (#15424) (ff044ed)
appmesh: add support for shared Meshes (#15353) (6a68873)
appmesh: allow setting the DnsResponseType in DNS ServiceDiscovery (#15388) (647acfa)
appmesh: rename the class HttpHeaderMatch to HeaderMatch (#15468) (d88b45e)
appmesh: rename the class HttpRouteMatchMethod to HttpRouteMethod (#15466) (fc01d22)
autoscaling: ScalingEvents.TERMINATION_EVENTS (#15302) (af7ad2c)
aws-elasticloadbalancingv2: Allow listing added listeners on application load balancers (#15259) (a80ad42), closes #11841
cfnspec: cloudformation spec v39.3.0 (#15446) (71c0a4c)
cloudwatch: allow arbitrary statistics in Metric and Alarm (#15387) (86a44f9)
core: add docker security option to asset bundling (#15204) (cbee18a), closes #14681
ec2: add rds-data vpc endpoint (#15240) (e61a5b8)
events: DLQ and retry policy support for BatchJob target (#15308) (5ecf257), closes #15238
pipelines: Docker registry credentials (#15364) (e289822), closes #10999 #11774

Bug Fixes

autoscaling: scaling intervals are incorrect if the bottom one does not start at 0 (#15345) (bf6f7ef), closes #10141
build: explicit non-private package not respected in packaging (#15435) (31e6b1a), closes #15203
cfnspec: .npmignore generated by cfnspec does not pass pkglint (#15409) (c432d48), closes #15064
cli: prevent 'Failed resources:' message when no failures and report all progress steps (#15207) (f3c1b6d)
codebuild: merge spec correctly when using strings (#15429) (3a65b9c)
events: Archive event pattern fields are not translated correctly (#15376) (afa5de1), closes #14905
iam: remove incorrect normalization of principal (#15248) (850cba0), closes #14274 #14274
iam: set principalAccount in AccountPrincipal and PrincipalWithConditions (#15430) (b95ee44)
lambda-nodejs: pnpm exec args separator order (#15410) (1d19b3b), closes #15164
pipelines: singlePublisherPerType overwrites assets buildspec file of other pipelines (#15356) (48dd771)
pipelines: unable to add assets stage to existing VPC pipeline (#15401) (b010239), closes #14343

Reverts

migration: add constructs migration to rewrite script (#15461) (adee46c), reverts #14916

1.111.0

Diff

aws-cdk-team

published 1.111.0 • 3 years ago

Changelog

Source

1.111.0 (2021-07-01)

Features

assertions: 'arrayWith' and 'objectLike' matchers (#15195) (20e2b79)
cdk-assets: externally-configured Docker credentials (#15290) (e530195), closes #10999 #11774
cfnspec: cloudformation spec v39.3.0 (#15311) (94eb3a8)
cfnspec: cloudformation spec v39.3.0 (#15362) (5d0954a)
cli: add option --security-only to diff (#15374) (6b639be)
cloudwatch: revert trimmed mean stat in graph widgets (#15368) (d630d7f)
cloudwatch: trimmed mean stat in graph widgets (#15316) (60f6d82)
codebuild: improve merging of BuildSpecs (#15332) (e68087d), closes #15169
ecs: Adding support for secretOptions in Firelens log driver (#15351) (c3096ea), closes #8174
secretsmanager: Allow cross account grant (#14834) (ea40cfe)
servicecatalog: initial implementation of the Product construct (#15185) (fe3e0f2)
servicecatalogappregistry: allow Applications to associate with AttributeGroups and Stacks (#15371) (06619fe)
sns: add sns service trust to keys for encrypted queue subscriptions (#14960) (ccc2e30), closes #2504
sqs: add support for high throughput fifo (#15202) (d0c9602), closes #15063
stepfunctions-tasks: add EventBridgePutEvents task integration (#15165) (1799f4c), closes #15033

Bug Fixes

aws-elasticloadbalancingv2: cannot clear access logging bucket prefix (#15149) (2e93fb9), closes #14044
cloudfront: cannot set header including 'authorization' in OriginRequestPolicy (#15327) (3a2f642), closes #15286
codepipeline-actions: reduce S3SourceAction role permissions to just the key (#15304) (d2c76aa), closes #15112
core: unresolved tokens in generated nested stack outputs (#15380) (62e552c), closes #15155
eks: kubectl version 1.21.0 breaks object pruning (#15314) (74da5c1), closes #15072
pipelines: artifact bucket permissions missing for in-account deployments (#15348) (2a5e288), closes #15307
stepfunctions-tasks: EcsRunTask containerOverrides throws if container name doesn't match construct ID (#15190) (5f59787), closes #15171

1.110.1

Diff

aws-cdk-team

published 1.110.1 • 3 years ago

Changelog

Source

1.110.1 (2021-06-28)

Bug Fixes

eks: kubectl version 1.21.0 breaks object pruning (#15314) (623689d), closes #15072

1.110.0

Diff

aws-cdk-team

published 1.110.0 • 3 years ago

Changelog

Source

1.110.0 (2021-06-24)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

appmesh: static methods from TlsValidationTrust have been changed to accept positional arguments

appmesh: static methods from TlsCertificate have been changed to accept positional arguments
appmesh: the type TlsListener has been renamed to ListenerTlsOptions

Features

appmesh: allow configuring mutual TLS (#15101) (e47a01f), closes /github.com/aws/aws-cdk/pull/14782#discussion_r636334863 #12733
assertions: an initial version of the CDK 'assert' library, now experimentally available in all supported languages (#15173) (367fe7e)
cli: read outputs-file parameter from cdk.json (#15095) (9e933ca), closes #14307
cloudwatch: use string instead of any for cloudwatch dimension values (#15097) (dc3cf13), closes #14978
codepipeline: allow granting manual approval permissions (#15102) (b2037d3)
dynamodb: allow using Kinesis stream in Table (#15199) (7bc6c6e), closes #14534
eks: taints for managed node groups (#14792) (0556e6b)
events: allows importing event bus from name (#15087) (e39b6c5), closes #14072
msk: IAM access control for clusters (#14647) (1fe680c)
msk: use L2 ACM PCA in cluster authentication props (#15110) (aa86a24)
pipelines: add pre-install commands to asset action (#15067) (f238779)
s3: notifications to existing buckets (#15158) (7d218c2), closes #2004
secretsmanager: automatically grant permissions to rotation Lambda (#14882) (ad283b6)
servicecatalogappregistry: initial L2 construct for Application (#15140) (881737c)
servicecatalogappregistry: Initial L2 construct for Attribute Group (#15282) (4330fe8)
synthetics: support canary environment variables (#15082) (df9f13f), closes #10515 #9300

Bug Fixes

amplify: deployment does not remove basic auth (#15243) (e5c0d59), closes #15028
bootstrap: deploy-role could directly access buckets in target account (#15192) (d04e288), closes #12985 #14082 #13422
cdk-assets: content type not correctly set when publishing files (#15069) (9b1a4f9)
core: 1 hour renders as 60 minutes (#15125) (adcd8c3)
core: parsing an ARN with a slash after a colon in the resource part fails (#15166) (16b8a4e), closes /github.com/aws/aws-cdk/pull/15140/files#r653112073
elasticsearch: Domain.fromDomainAttributes gives "Invalid URL" when endpoint is a token (#15219) (ecb5af8), closes #15188
lambda-nodejs: unstable asset hashes with bundling.nodeModules (#15229) (4b5418c), closes #15023
servicecatalog: Portfolio fails validation when passed Tokens as its properties (#15208) (ce727c1)
stepfunctions-tasks: checking for task token in EcsRunTask containerOverrides causes memory explosion (#15187) (af53798), closes #15124
stepfunctions-tasks: instance type for SageMakerCreateTrainingJob cannot be specified dynamically through JSONPath (#15215) (9280d95), closes #11928

1.109.0

Diff

aws-cdk-team

published 1.109.0 • 3 years ago

Changelog

Source

1.109.0 (2021-06-16)

Features

apigateway: disable execute api endpoint (#14526) (b3a7d5b)
aws-backup: Add arn attribute and grant method to backup vault (#14997) (04c0a07), closes #14996
cfnspec: cloudformation spec v38.0.0 (#15044) (632d518)
cfnspec: cloudformation spec v39.1.0 (#15144) (abc457e)
cloudfront: add fromFile for CF functions (#14980) (31c9338), closes #14967
codestarnotifications: new L2 constructs (#10833) (645ebe1), closes #9680
core: allow user to provide docker --security-opt when bundling (#14682) (a418ea6)
core: Support platform flag during asset build (#14908) (0189a9a)
dynamodb: exposes schema method to return partition and sort key of table or secondary indexes (#15111) (1137eb7), closes #7680
ecs-patterns: Add ability to configure VisibilityTimeout on QueueProcessing service pattern (#15052) (350d783)
ecs-patterns: allow specifying security groups on ScheduledTask pattern (#15096) (6bdf1c0), closes #5213 #14220
ecs-patterns: expose task target on ScheduledTask pattern (#15127) (c31c59a), closes #14971 #14953 #12609
lambda-event-sources: streams - report batch item failures (#14458) (3d4a13e), closes #12654
logs: make the addition of permissions to Lambda functions optional (#14222) (0c50ec9), closes #14198
migration: add constructs migration to rewrite script (#14916) (37a4c8d)
pipelines: add test commands to standard synth actions (#14979) (0bc8a8a)
servicecatalog: initial implementation of the Portfolio construct (#15099) (203cc45)

Bug Fixes

aws-iam: prevent adding duplicate resources and actions (#14712) (a8298cb), closes #13611
cfn-include: NestedStack's Parameters are not converted to strings (#15098) (8ad33b8), closes #15092
cli: cdk synth too eager with validation in Pipelines (#15147) (ae98e88), closes #14613 #15130
cli: cdk synth doesn't output yaml for stacks with dependency stacks (#14805) (44feee6), closes #3721
cli: deployment error traceback overwritten by progress bar (#14812) (d4a0af1), closes #14780
cli: HTTP timeout is too low for some asset uploads (#13575) (23c58d6), closes #13183
cli: option --all selects stacks in nested assemblies (#15046) (0d00e50)
cli: partition is not being resolved at missing value lookup (#15146) (cc7191e), closes #15119
cli: stack glob patterns only select one stack (#15071) (fcd2a6e)
codebuild: Project's Role has permissions to the entire Bucket when using S3 as the source (#15112) (9d01b4f)
codebuild: Secret env variable as token from another account fails on Key decryption (#14483) (91e80d7), closes #14477
core: CloudFormation dynamic references can't be assigned to num… (#14913) (39aacc8), closes #14824
ecs: TagParameterContainerImage cannot be used across accounts (#15073) (486f2e5), closes #15070
kinesisanalytics-flink: set applicationName with L2 Application (#15060) (1de85f2), closes #15058
lambda: deployment failure when layers are added to container functions (#15037) (8127cf2), closes #14143
lambda-event-sources: kafka event source expects credentials even when accessed via vpc (#14804) (5eb1e75)
pipelines: assets buildspec can exceed 25k size limit (#14974) (f7f367f)
pipelines: PublishAssetsAction uses hard-coded role names (#15118) (bad9713)
pipelines: self-update role assumes hard-coded role names (#14969) (cbd7552), closes #14877 #9271
secretsmanager: support secrets rotation in partition 'aws-cn' (#14608) (5061a8d), closes #13385

1.108.1

Diff

aws-cdk-team

published 1.108.1 • 3 years ago

Changelog

Source

1.108.1 (2021-06-11)

Features

cfnspec: cloudformation spec v39.1.0 (af74354)

1.108.0

Diff

aws-cdk-team

published 1.108.0 • 3 years ago

Changelog

Source

1.108.0 (2021-06-09)

⚠ BREAKING CHANGES TO EXPERIMENTAL FEATURES

cfnspec: imageScanningConfiguration property of ecr.CfnRepository now accepts scanOnPush instead of ScanOnPush (notice the casing change).
bootstrap: users of the modern bootstrap stack (notably: CDK Pipelines users) will need to re-run cdk bootstrap to update to bootstrap stack version '6'.

Features

cfnspec: cloudformation spec v37.1.0 (#14951) (aee0f58)
Parameterize bootstrap stack version (#14626) (a37108c)
cli: new bootstrap supports cross-account lookups (#14874) (f66f4b8), closes #8905
cognito: user pool - customize mfa message (#14241) (a12db62)
custom-resources: support custom lambda role in provider framework (#12131) (bc01207), closes #12126
ec2: Implement UserData methods in MultipartUserData (#14347) (d1b6ce4)
ecs: Adding support for ECS Exec (#14670) (b35328c)
ecs-patterns: Add Load Balancer name to ApplicationLoadBalancedFargateService props (#14831) (c432fb4)
ecs-patterns: Add support for Docker labels to ECS Patterns (#14783) (00c11b5)
elb: set accessLoggingPolicy property with L2 LoadBalancer (#14983) (252dfa2), closes #14972
events: support embedded string variables (#13487) (a5d27aa), closes #9191 #9191
kms: introduce fromCfnKey() method (#14859) (1ff5b9e), closes #9719 #14795 #14809
route-53: add ability to create DS Records (#14726) (f0c9726)
route53-targets: route53 record target (#14820) (b22da80), closes #14800
s3: support ExpiredObjectDeleteMarker (#14970) (f932e0f), closes #14752

Bug Fixes

apigatewayv2: http api - default route does not use the default authorizer (#14904) (25412a6)
cli: cross account docker image assets upload no longer works (#14816) (14fbb11), closes #14815
cli: image publishing role doesn't have docker pull permissions (#14662) (beaffa9), closes #14656
core: property overrides fail for references (#15018) (ebac8bc)
docs: fixed typos in documentation (#14760) (ced9b38)
ec2: add missing entry for XLARGE3 (#14750) (af6d49f)
ecs: Can't enable both Fargate and ASG capacity providers on ECS Cluster (#15012) (6b2d0e0), closes #14730
events: AwsApi warns if service does not exist (#13352) (3bad98f), closes #13090
lambda-nodejs: pnpm exec command (#14954) (df16d40), closes #14757 #14772
s3: autoDeleteObjects had redundant GetObject* permissions (#14573) (f9be15d), closes #14572
stepfunctions: repeated object references not allowed even if not a circular reference (#14628) (486990f), closes #14596

…