Skip to content

Update Terraform aws to v6 #27

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update Terraform aws to v6 #27

wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Jun 18, 2025
edited
Loading

This PR contains the following updates:

Package Type Update Change
aws (source) required_provider major 4.64.0 -> 6.21.0

Release Notes

hashicorp/terraform-provider-aws (aws)

v6.21.0

Compare Source

BREAKING CHANGES:

  • resource/aws_bedrockagentcore_browser: Rename network_configuration.network_mode_config to network_configuration.vpc_config (#​44828)

FEATURES:

  • New Action: aws_dynamodb_create_backup (#​45001)
  • New Resource: aws_networkflowmonitor_monitor (#​44782)
  • New Resource: aws_networkflowmonitor_scope (#​44782)
  • New Resource: aws_observabilityadmin_centralization_rule_for_organization (#​44806)

ENHANCEMENTS:

  • data-source/aws_ecs_service: Add capacity_provider_strategy, created_at, created_by, deployment_configuration, deployment_controller, deployments, enable_ecs_managed_tags, enable_execute_command, events, health_check_grace_period_seconds, iam_role, network_configuration, ordered_placement_strategy, pending_count, placement_constraints, platform_family, platform_version, propagate_tags, running_count, service_connect_configuration, service_registries, status, and task_sets attributes (#​44842)
  • resource/aws_bedrockagentcore_gateway_target: Add target_configuration.mcp.mcp_server block (#​44991)
  • resource/aws_bedrockagentcore_gateway_target: Make credential_provider_configuration block optional (#​44991)
  • resource/aws_cloudwatch_log_delivery_destination: Make delivery_destination_type and delivery_destination_configuration optional to support AWS X-Ray as a destination (#​44995)
  • resource/aws_ecs_service: Add support for LINEAR and CANARY deployment strategies with deployment_configuration.linear_configuration and deployment_configuration.canary_configuration blocks (#​44842)
  • resource/aws_lambda_function: Add support for java25 runtime value (#​45024)
  • resource/aws_lambda_function: Add support for nodejs24.x runtime value (#​45024)
  • resource/aws_lambda_function: Add support for python3.14 runtime value (#​45024)
  • resource/aws_lambda_layer_version: Add support for java25 compatible_runtimes value (#​45024)
  • resource/aws_lambda_layer_version: Add support for nodejs24.x compatible_runtimes value (#​45024)
  • resource/aws_lambda_layer_version: Add support for python3.14 compatible_runtimes value (#​45024)
  • resource/aws_s3tables_table: Add tagging support (#​44996)
  • resource/aws_s3tables_table_bucket: Add tagging support (#​44996)
  • resource/aws_sagemaker_endpoint_configuration: Add execution_role_arn argument and make model_name optional in production_variants and shadow_production_variants blocks to support Inference Components (#​44977)
  • resource/aws_sns_topic: Fix AuthorizationError ... is not authorized to perform: iam:PassRole on resource ... IAM eventual consistency errors on Create and Update (#​45018)

BUG FIXES:

  • provider: Fix situation where refreshes of removed infrastructure appear as errors rather than warnings (#​45022)
  • resource/aws_apprunner_service: Prevents error when upgrading from provider pre-v6.0 without refreshing (#​45050)
  • resource/aws_apprunner_service: Prevents error when upgrading from provider pre-v6.0 without refreshing (#​45051)
  • resource/aws_ec2_image_block_public_access: Add region argument (#​45023)
  • resource/aws_ec2_serial_console_access: Add region argument (#​45064)
  • resource/aws_emrcontainers_job_template: Fix ValidationException: Value null at 'jobTemplateData.configurationOverrides.monitoringConfiguration.cloudWatchMonitoringConfiguration.logGroupName' failed to satisfy constraint: Member must not be null error (#​45029)
  • resource/aws_emrcontainers_job_template: Fix setting job_template_data: job_template_data.0.configuration_overrides.0.application_configuration.0: '' expected a map, got 'slice' error (#​45029)
  • resource/aws_emrcontainers_job_template: Mark job_template_data.job_driver.configuration_overrides.monitoring_configuration.persistent_app_ui argument as computed (#​45029)
  • resource/aws_invoicing_invoice_unit: Fix Provider returned invalid result object after apply error occurred when updating the resource (#​45030)
  • resource/aws_opensearch_authorize_vpc_endpoint_access: Fix reading the resource when more than one principal is authorized. The import ID has changed from domain_name to domain_name and account separated by a comma (#​44982)
  • resource/aws_redshift_cluster: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_cluster_snapshot: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_event_subscription: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_hsm_client_certificate: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_hsm_configuration: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_integration: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_parameter_group: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_snapshot_copy_grant: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_snapshot_schedule: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_subnet_group: Prevents errors with empty tag values. (#​44952)
  • resource/aws_redshift_usage_limit: Prevents errors with empty tag values. (#​44952)
  • resource/aws_sagemaker_endpoint: Fix bug where endpoint_config_name was not correctly updated, causing the endpoint to retain the old configuration (#​42843)
  • resource/aws_wafv2_web_acl_logging_configuration: Fix the validation for redacted_fields.single_header.name (#​44987)

v6.20.0

Compare Source

FEATURES:

  • New Resource: aws_ec2_allowed_images_settings (#​44800)
  • New Resource: aws_fis_target_account_configuration (#​44875)
  • New Resource: aws_invoicing_invoice_unit (#​44892)

ENHANCEMENTS:

  • data-source/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior attribute (#​44934)
  • data-source/aws_elasticache_replication_group: Add node_group_configuration attribute to expose node group details including availability zones, replica counts, and slot ranges (#​44879)
  • data-source/aws_kinesis_stream: Add max_record_size_in_kib attribute (#​44915)
  • data-source/aws_opensearch_domain: Add identity_center_options attribute (#​44626)
  • provider: Support us-isob-west-1 as a valid AWS Region (#​44944)
  • resource/aws_cloudfront_distribution: Add logging_v1_enabled attribute (#​44838)
  • resource/aws_connect_routing_profile: Add media_concurrencies.cross_channel_behavior argument (#​44934)
  • resource/aws_ec2_client_vpn_route: Allow IPv6 address ranges for destination_cidr_block (#​44926)
  • resource/aws_ec2_instance_connect_endpoint: Add ip_address_type argument (#​44616)
  • resource/aws_eks_node_group: Add max_parallel_nodes_repaired_count, max_parallel_nodes_repaired_percentage, max_unhealthy_node_threshold_count, max_unhealthy_node_threshold_percentage, and node_repair_config_overrides to the node_repair_config schema (#​44894)
  • resource/aws_elasticache_replication_group: Add node_group_configuration block to support availability zone specification and snapshot restoration for cluster mode enabled replication groups (#​44879)
  • resource/aws_glue_job: Ensure that timeout is unconfigured for Ray jobs (#​35012)
  • resource/aws_kinesis_stream: Add max_record_size_in_kib argument to support for Kinesis 10MiB payloads. This functionality requires the kinesis:UpdateMaxRecordSize IAM permission (#​44915)
  • resource/aws_opensearch_domain: Add identity_center_options configuration block (#​44626)
  • resource/aws_transfer_server: Add support for TransferSecurityPolicy-AS2Restricted-2025-07 security_policy_name value (#​44865)
  • resource/aws_transfer_server: Support TransferSecurityPolicy-AS2Restricted-2025-07 as a valid value for security_policy_name (#​44652)

BUG FIXES:

  • resource/aws_cloudfront_continuous_deployment_policy: Fix Source type "...cloudfront.stagingDistributionDNSNamesModel" does not implement attr.Value error. This fixes a regression introduced in v6.17.0 (#​44972)
  • resource/aws_cloudfront_distribution: Change logging_config.bucket argument from Required to Optional (#​44838)
  • resource/aws_cloudfront_distribution: Fix inability to configure logging_config.include_cookies argument while keeping V1 logging disabled (#​44838)
  • resource/aws_cloudfront_vpc_origin: Fix Source type "...cloudfront.originSSLProtocolsModel" does not implement attr.Value and missing required field, CreateVpcOriginInput.VpcOriginEndpointConfig errors. This fixes a regression introduced in v6.17.0 (#​44861)
  • resource/aws_glue_job: Allow Ray jobs to be updated (#​35012)
  • resource/aws_glue_job: Allow a zero (0) value for timeout for Apache Spark streaming ETL jobs. This allows the job to be configured with no timeout (#​44920)
  • resource/aws_lakeformation_lf_tags: Remove incorrect validation from catalog_id, database.catalog_id, table.catalog_id, and table_with_columns.catalog_id arguments (#​44890)
  • resource/aws_launch_template: Allow an empty ("") value for block_device_mappings.ebs.kms_key_id. This fixes a regression introduced in v6.16.0 (#​44708)

v6.19.0

Compare Source

FEATURES:

  • New Data Source: aws_ecrpublic_images (#​44795)
  • New Resource: aws_lakeformation_identity_center_configuration (#​44867)

ENHANCEMENTS:

  • action/aws_lambda_invoke: Output logs in a progress message when log_type is Tail (#​44843)
  • data-source/aws_imagebuilder_image_recipe: Add ami_tags attribute (#​44731)
  • data-source/aws_lb_listener_rule: Add regex_values attribute to condition.host_header, condition.http_header and condition.path_pattern blocks (#​44741)
  • data-source/aws_lb_listener_rule: Add transform attribute (#​44702)
  • resource/aws_bedrockagentcore_gateway: Add validator to ensure correct authorizer_configuration and authorizer_type config (#​44826)
  • resource/aws_emrserverless_application: Add monitoring_configuration argument (#​43317)
  • resource/aws_emrserverless_application: Add runtime_configuration argument (#​43302)
  • resource/aws_identitystore_group: Adds arn attribute. (#​44867)
  • resource/aws_imagebuilder_image_recipe: Add ami_tags argument (#​44731)
  • resource/aws_lb_listener_rule: Add regex_values argument to condition.host_header, condition.http_header and condition.path_pattern blocks (#​44741)
  • resource/aws_lb_listener_rule: Add transform configuration block (#​44702)
  • resource/aws_lb_listener_rule: The values argument in condition.host_header, condition.http_header and condition.path_pattern is now optional (#​44741)
  • resource/aws_quicksight_data_set: Increase upper limit of physical_table_map.relational_table.name from 64 to 256 characters (#​44807)
  • resource/aws_sagemaker_notebook_instance: Add notebook-al2023-v1 to valid platform_identifier values (#​44570)
  • resource/aws_sqs_queue: Remove account_id and region from Resource Identity schema (#​44846)
  • resource/aws_sqs_queue_policy: Remove account_id and region from Resource Identity schema (#​44846)
  • resource/aws_sqs_queue_redrive_allow_policy: Remove account_id and region from Resource Identity schema (#​44846)
  • resource/aws_sqs_queue_redrive_policy: Remove account_id and region from Resource Identity schema (#​44846)

BUG FIXES:

  • data-source/aws_lakeformation_permissions: Allows IAM Identity Center Groups as principal. (#​44867)
  • provider: Fix crash when setting override region during provider initialization (#​44860)
  • resource/aws_bedrockagentcore_gateway: Change authorizer_configuration block from Required to Optional (#​44812)
  • resource/aws_bedrockagentcore_gateway: Mark authorizer_type argument as ForceNew (#​44812)
  • resource/aws_lakeformation_permissions: Allows IAM Identity Center Groups as principal. (#​44867)

v6.18.0

Compare Source

NOTES:

  • data-source/aws_organizations_organization: The accounts.status and non_master_accounts.status attributes are deprecated. Use the accounts.state and non_master_accounts.state attributes instead. (#​44327)
  • data-source/aws_organizations_organizational_unit_child_accounts: The accounts.status attribute is deprecated. Use accounts.state instead. (#​44327)
  • data-source/aws_organizations_organizational_unit_descendant_accounts: The accounts.status attribute is deprecated. Use accounts.state instead. (#​44327)
  • resource/aws_organizations_account: The status attribute is deprecated. Use state instead. (#​44327)
  • resource/aws_organizations_organization: The accounts.status and non_master_accounts.status attributes are deprecated. Use the accounts.state and non_master_accounts.state attributes instead. (#​44327)

FEATURES:

  • New Resource: aws_bedrockagentcore_memory (#​44306)
  • New Resource: aws_bedrockagentcore_memory_strategy (#​44306)
  • New Resource: aws_bedrockagentcore_oauth2_credential_provider (#​44307)
  • New Resource: aws_bedrockagentcore_token_vault_cmk (#​44606)
  • New Resource: aws_bedrockagentcore_workload_identity (#​44308)

ENHANCEMENTS:

  • data-source/aws_iam_policy: Adds validation for path_prefix attribute (#​44703)
  • data-source/aws_organizations_organization: Add state, joined_method, and 'joined_timestampattributes to theaccountsandnon_master_accounts` blocks (#​44327)
  • data-source/aws_organizations_organizational_unit_child_accounts: Add state, joined_method, and 'joined_timestampattributes to theaccounts` block (#​44327)
  • data-source/aws_organizations_organizational_unit_descendant_accounts: Add state, joined_method, and 'joined_timestampattributes to theaccounts` block (#​44327)
  • resource/aws_appstream_directory_config: Add certificate_based_auth_properties argument (#​44679)
  • resource/aws_iam_policy: Adds List support (#​44703)
  • resource/aws_iam_policy: Adds validation for path attribute (#​44703)
  • resource/aws_iam_role_policy_attachment: Adds List support (#​44739)
  • resource/aws_odb_network: Add delete_associated_resources attribute to enable practitioner to delete associated oci resource. (#​44754)
  • resource/aws_organizations_account: Add state attribute (#​44327)
  • resource/aws_organizations_organization: Add state, joined_method, and 'joined_timestampattributes to theaccountsandnon_master_accounts` blocks (#​44327)

BUG FIXES:

  • data-source/aws_vpn_connection: Properly set tags attribute (#​44761)
  • resource/aws_rds_cluster: Fix "When modifying Provisioned IOPS storage, specify a value for both allocated storage and iops" error when updating RDS clusters with Provisioned IOPS storage (#​44706)
  • resource/guardduty_detector_feature: Fix additional_configuration block to ignore ordering (#​44627)

v6.17.0

Compare Source

NOTES:

  • resource/aws_quicksight_account_subscription: Because we cannot easily test all this functionality, it is best effort and we ask for community help in testing (#​44638)

FEATURES:

  • New Data Source: aws_rds_global_cluster (#​37286)
  • New Data Source: aws_vpn_connection (#​44622)
  • New Resource: aws_bedrockagentcore_agent_runtime (#​44301)
  • New Resource: aws_bedrockagentcore_agent_runtime_endpoint (#​44301)
  • New Resource: aws_bedrockagentcore_api_key_credential_provider (#​44302)
  • New Resource: aws_bedrockagentcore_browser (#​44303)
  • New Resource: aws_bedrockagentcore_code_interpreter (#​44304)
  • New Resource: aws_bedrockagentcore_gateway (#​44305)
  • New Resource: aws_bedrockagentcore_gateway_target (#​44305)

ENHANCEMENTS:

  • resource/aws_imagebuilder_container_recipe: Update EBS throughput maximum validation from 1000 to 2000 MiB/s for gp3 volumes (#​44604)
  • resource/aws_imagebuilder_image_recipe: Update EBS throughput maximum validation from 1000 to 2000 MiB/s for gp3 volumes (#​44604)
  • resource/aws_launch_template: Update EBS throughput maximum validation from 1000 to 2000 MiB/s for gp3 volumes (#​44604)
  • resource/aws_quicksight_account_subscription: Add admin_pro_group, author_pro_group, and reader_pro_group arguments (#​44638)
  • resource/aws_subnet: Adds List support (#​44671)
  • resource/aws_vpc: Adds List support (#​44609)

BUG FIXES:

  • resource/aws_ec2_transit_gateway_route_table_propagation.test: Fix bug causing inconsistent final plan errors (#​44542)
  • resource/aws_lambda_function: Reset non-API attributes (source_code_hash, s3_bucket, s3_key, s3_object_version and filename) to their previous values when an update operation fails (#​42829)

v6.16.0

Compare Source

FEATURES:

  • New Action: aws_transcribe_start_transcription_job (#​44445)
  • New Data Source: aws_odb_cloud_autonomous_vm_clusters (#​44336)
  • New Data Source: aws_odb_cloud_exadata_infrastructures (#​44336)
  • New Data Source: aws_odb_cloud_vm_clusters (#​44336)
  • New Data Source: aws_odb_network_peering_connections (#​44336)
  • New Data Source: aws_odb_networks (#​44336)
  • New Resource: aws_prometheus_resource_policy (#​44256)
  • New Resource: aws_transfer_host_key (#​44559)
  • New Resource: aws_transfer_web_app (#​42708)
  • New Resource: aws_transfer_web_app_customization (#​42708)

ENHANCEMENTS:

  • resource/aws_codebuild_project: Add auto_retry_limit argument (#​40035)
  • resource/aws_emrserverless_application: Add scheduler_configuration block (#​44589)
  • resource/aws_lambda_event_source_mapping: Add schema_registry_config configuration blocks to amazon_managed_kafka_event_source_config and self_managed_kafka_event_source_config blocks (#​44540)
  • resource/aws_ssmcontacts_contact: Add resource identity support (#​44548)
  • resource/aws_vpclattice_resource_gateway: Add ipv4_addresses_per_eni argument (#​44560)

BUG FIXES:

  • provider: Correctly validate AWS European Sovereign Cloud Regions in ARNs (#​44573)
  • provider: Fix Missing Resource Identity After Update errors for non-refreshed and failed updates of Plugin Framework based resources (#​44518)
  • provider: Fix Unexpected Identity Change errors when fully-null identity values in state are updated to valid values for Plugin Framework based resources (#​44518)
  • resource/aws_datazone_environment: Correctly updates glossary_terms. (#​44491)
  • resource/aws_datazone_environment: Prevents unknown value error when optional account_identifier is not specified. (#​44491)
  • resource/aws_datazone_environment: Prevents unknown value error when optional account_region is not specified. (#​44491)
  • resource/aws_datazone_environment: Prevents error when updating. (#​44491)
  • resource/aws_datazone_environment: Prevents occasional unexpected state error when deleting. (#​44491)
  • resource/aws_datazone_environment: Properly passes blueprint_identifier on creation. (#​44491)
  • resource/aws_datazone_environment: Sets values for user_parameters when importing. (#​44491)
  • resource/aws_datazone_environment: Values in user_parameters should not be updateable. (#​44491)
  • resource/aws_datazone_project: No longer ignores errors when deleting. (#​44491)
  • resource/aws_datazone_project: No longer returns error when already deleting. (#​44491)
  • resource/aws_dynamodb_table: Do not retry on LimitExceededException (#​44576)
  • resource/aws_ivschat_room: Set maximum_message_rate_per_second validation maximum to 100 (#​44572)
  • resource/aws_launch_template: kms_key_id validation now accepts key ID, alias, and alias ARN in addition to key ARN (#​44505)
  • resource/aws_servicecatalog_portfolio_share: Add global mutex lock around create and delete operations to prevent ThrottlingException errors (#​24730)

v6.15.0

Compare Source

BREAKING CHANGES:

  • resource/aws_ecs_service: Fix behavior when updating capacity_provider_strategy to avoid ECS service recreation after recent AWS changes (#​43533)

FEATURES:

  • New Action: aws_codebuild_start_build (#​44444)
  • New Action: aws_events_put_events (#​44487)
  • New Action: aws_sfn_start_execution (#​44464)
  • New Data Source: aws_appconfig_application (#​44168)
  • New Data Source: aws_odb_db_node (#​43792)
  • New Data Source: aws_odb_db_nodes (#​43792)
  • New Data Source: aws_odb_db_server (#​43792)
  • New Data Source: aws_odb_db_servers (#​43792)
  • New Data Source: aws_odb_db_system_shapes (#​43825)
  • New Data Source: aws_odb_gi_versions (#​43825)
  • New Resource: aws_lakeformation_lf_tag_expression (#​43883)

ENHANCEMENTS:

  • data-source/aws_dms_endpoint: Add mysql_settings attribute (#​44516)
  • data-source/aws_ec2_instance_type_offering: Add location attribute (#​44328)
  • data-source/aws_rds_proxy: Add default_auth_scheme attribute (#​44309)
  • resource/aws_cleanrooms_configured_table: Add resource identity support (#​44435)
  • resource/aws_cloudfront_distribution: Add ip_address_type argument to origin.custom_origin_config block (#​44463)
  • resource/aws_connect_instance: Add resource identity support (#​44346)
  • resource/aws_connect_phone_number: Add resource identity support (#​44365)
  • resource/aws_dms_endpoint: Add mysql_settings configuration block (#​44516)
  • resource/aws_dsql_cluster: Adds attribute force_destroy. (#​44406)
  • resource/aws_ebs_volume: Update throughput maximum validation from 1000 to 2000 MiB/s for gp3 volumes (#​44514)
  • resource/aws_ecs_capacity_provider: Add cluster and managed_instances_provider arguments (#​44509)
  • resource/aws_ecs_capacity_provider: Make auto_scaling_group_provider optional (#​44509)
  • resource/aws_iam_service_specific_credential: Add support for Bedrock API keys with credential_age_days, service_credential_alias, service_credential_secret, create_date, and expiration_date attributes (#​44299)
  • resource/aws_networkfirewall_logging_configuration: Add enable_monitoring_dashboard argument (#​44515)
  • resource/aws_opensearch_domain: Add aiml_options argument (#​44417)
  • resource/aws_pinpointsmsvoicev2_phone_number: Update two_way_channel_arn argument to accept connect.[region].amazonaws.com in addition to ARNs (#​44372)
  • resource/aws_rds_proxy: Add default_auth_scheme argument (#​44309)
  • resource/aws_rds_proxy: Make auth configuration block optional (#​44309)
  • resource/aws_route53recoverycontrolconfig_cluster: Add network_type argument (#​44377)
  • resource/aws_route53recoverycontrolconfig_cluster: Add tagging support (#​44473)
  • resource/aws_route53recoverycontrolconfig_control_panel: Add tagging support (#​44473)
  • resource/aws_route53recoverycontrolconfig_safety_rule: Add tagging support (#​44473)
  • resource/aws_s3control_bucket: Add resource identity support (#​44379)
  • resource/aws_sfn_activity: Add arn argument (#​44408)
  • resource/aws_sfn_activity: Add resource identity support (#​44408)
  • resource/aws_sfn_alias: Add resource identity support (#​44408)
  • resource/aws_ssmcontacts_contact_channel: Add resource identity support (#​44369)

BUG FIXES:

  • data-source/aws_lb: Fix Invalid address to set: []string{"secondary_ips_auto_assigned_per_subnet"} errors (#​44485)
  • data-source/aws_networkfirewall_firewall_policy: Fix failure to retrieve multiple firewall_policy.stateful_rule_group_reference attributes (#​44482)
  • data-source/aws_servicequotas_service_quota: Fixed a panic that occurred when a non-existing quota_name was provided (#​44449)
  • resource/aws_bedrock_provisioned_model_throughput: Fix AttributeName("arn") still remains in the path: could not find attribute or block "arn" in schema errors when upgrading from a pre-v6.0.0 provider version (#​44434)
  • resource/aws_chatbot_slack_channel_configuration: Force resource replacement when configuration_name is modified (#​43996)
  • resource/aws_cloudwatch_event_rule: Do not retry on LimitExceededException (#​44489)
  • resource/aws_cloudwatch_log_resource_policy: Do not retry on LimitExceededException (#​44522)
  • resource/aws_default_vpc: Correctly set ipv6_cidr_block when the VPC has multiple associated IPv6 CIDRs (#​44362)
  • resource/aws_dms_endpoint: Ensure that postgres_settings are updated (#​44389)
  • resource/aws_dsql_cluster: Prevents error when optional attribute deletion_protection_enabled not set. (#​44406)
  • resource/aws_eks_cluster: Change compute_config, kubernetes_network_config.elastic_load_balancing, and storage_config. to Optional and Computed, allowing EKS Auto Mode settings to be enabled, disabled, and removed from configuration (#​44334)
  • resource/aws_elastic_beanstalk_configuration_template: Fix inconsistent final plan error in some cases with setting elements. (#​44461)
  • resource/aws_elastic_beanstalk_environment: Fix inconsistent final plan error in some cases with setting elements. (#​44461)
  • resource/aws_elasticache_cluster: Fix provider produced unexpected value for cache_usage_limits argument. (#​43841)
  • resource/aws_fsx_lustre_file_system: Fixed to update metadata_configuration first to allow simultaneous increase of metadata_configuration.iops and storage_capacity (#​44456)
  • resource/aws_instance: Fix interface conversion: interface {} is nil, not map[string]interface {} panics when capacity_reservation_target is empty (#​44459)
  • resource/aws_kinesisanalyticsv2_application: Ensure that configured application_configuration.run_configuration values are respected during update (#​43490)
  • resource/aws_odb_cloud_autonomous_vm_cluster : Fixed planmodifier for computed attribute. (#​44401)
  • resource/aws_odb_cloud_vm_cluster : Fixed planmodifier for computed attribute. Fixed planmodifier from display_name attribute. (#​44401)
  • resource/aws_odb_cloud_vm_cluster : Fixed planmodifier for data_storage_size_in_tbs. Marked it mandatory. Fixed gi-version issue during creation (#​44498)
  • resource/aws_odb_network_peering_connection : Fixed planmodifier for computed attribute. (#​44401)
  • resource/aws_rds_cluster: Fixes error when setting database_insights_mode with global_cluster_identifier. (#​44404)
  • resource/aws_route53_health_check: Fix child_health_threshold to properly accept explicitly specified zero value (#​44006)
  • resource/aws_s3_bucket_lifecycle_configuration: Allows unsetting noncurrent_version_expiration.newer_noncurrent_versions and noncurrent_version_transition.newer_noncurrent_versions. (#​44442)
  • resource/aws_s3_bucket_lifecycle_configuration: Do not warn if no filter element is set (#​43590)
  • resource/aws_vpc: Correctly set ipv6_cidr_block when the VPC has multiple associated IPv6 CIDRs (#​44362)

v6.14.1

Compare Source

NOTES:

  • provider: This release contains both internal provider fixes and a Terraform Plugin SDK V2 update related to a regression which may impact resources that support resource identity (#​44375)

BUG FIXES:

  • provider: Fix Missing Resource Identity After Update errors for non-refreshed and failed updates (#​44375)
  • provider: Fix Unexpected Identity Change errors when fully-null identity values in state are updated to valid values (#​44375)

v6.14.0

Compare Source

FEATURES:

  • New Action: aws_cloudfront_create_invalidation (#​43955)
  • New Action: aws_ec2_stop_instance (#​43700)
  • New Action: aws_lambda_invoke (#​43972)
  • New Action: aws_ses_send_email (#​44214)
  • New Action: aws_sns_publish (#​44232)
  • New Data Source: aws_billing_views (#​44272)
  • New Data Source: aws_odb_cloud_autonomous_vm_cluster (#​43809)
  • New Data Source: aws_odb_cloud_exadata_infrastructure (#​43650)
  • New Data Source: aws_odb_cloud_vm_cluster (#​43790)
  • New Data Source: aws_odb_network (#​43715)
  • New Data Source: aws_odb_network_peering_connection (#​43757)
  • New Resource: aws_controltower_baseline (#​42397)
  • New Resource: aws_odb_cloud_autonomous_vm_cluster (#​43809)
  • New Resource: aws_odb_cloud_exadata_infrastructure (#​43650)
  • New Resource: aws_odb_cloud_vm_cluster (#​43790)
  • New Resource: aws_odb_network (#​43715)
  • New Resource: aws_odb_network_peering_connection (#​43757)

ENHANCEMENTS:

  • resource/aws_batch_job_queue: Adds List support (#​43960)
  • resource/aws_cloudwatch_log_group: Adds List support (#​44129)
  • resource/aws_ecs_service: Add deployment_configuration.lifecycle_hook.hook_details argument (#​44289)
  • resource/aws_iam_role: Adds List support (#​44129)
  • resource/aws_instance: Adds List support (#​44129)
  • resource/aws_rds_global_cluster: Remove provider-side conflict between source_db_cluster_identifier and engine arguments (#​44252)
  • resource/aws_scheduler_schedule: Add action_after_completion argument (#​44264)
  • resource/aws_sfn_state_machine: Add resource identity support (#​44286)

BUG FIXES:

  • resource/aws_elasticache_user_group: Ignore InvalidParameterValue: User xxx is not a member of user group xxx errors during group modification (#​43520)
  • resource/aws_sagemaker_endpoint_configuration: Fix panic when empty async_inference_config.output_config.notification_config block is specified (#​44310)

v6.13.0

Compare Source

ENHANCEMENTS:

  • data-source/aws_budgets_budget: Add billing_view_arn attribute (#​44241)
  • data-source/aws_dynamodb_table: Add warm_throughput and global_secondary_index.warm_throughput attributes (#​41308)
  • data-source/aws_elastic_beanstalk_hosted_zone: Add hosted zone IDs for ap-southeast-5, ap-southeast-7, eu-south-2, and me-central-1 AWS Regions (#​44132)
  • data-source/aws_elb_hosted_zone_id: Add hosted zone ID for ap-southeast-6 AWS Region (#​44132)
  • data-source/aws_lb_hosted_zone_id: Add hosted zone IDs for ap-southeast-6 AWS Region (#​44132)
  • data-source/aws_s3_bucket: Add hosted zone ID for ap-southeast-6 AWS Region (#​44132)
  • resource/aws_appautoscaling_policy: Add predictive_scaling_policy_configuration argument (#​44211)
  • resource/aws_appautoscaling_policy: Add plan-time validation of policy_type (#​44211)
  • resource/aws_appautoscaling_policy: Add plan-time validation of step_scaling_policy_configuration.adjustment_type and step_scaling_policy_configuration.metric_aggregation_type (#​44211)
  • resource/aws_bedrock_guardrail: Add input_action, output_action, input_enabled, and output_enabled arguments to word_policy_config.managed_word_lists_config and word_policy_config.words_config configuration blocks (#​44224)
  • resource/aws_budgets_budget: Add billing_view_arn argument (#​44241)
  • resource/aws_cloudfront_distribution: Add origin.response_completion_timeout argument (#​44163)
  • resource/aws_codebuild_webhook: Add pull_request_build_policy configuration block (#​44201)
  • resource/aws_dynamodb_table: Add warm_throughput and `global

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from 9bffe0a to c4e3a58 Compare July 10, 2025 23:44
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch 2 times, most recently from e4de8a6 to 04d17e9 Compare August 1, 2025 03:07
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from 04d17e9 to 9f68777 Compare August 7, 2025 21:06
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from 9f68777 to 1146128 Compare August 14, 2025 21:36
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from 1146128 to f7c597a Compare August 21, 2025 23:29
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from f7c597a to 3a3a935 Compare August 29, 2025 04:06
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch 2 times, most recently from b346b92 to f410250 Compare September 12, 2025 04:55
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch 2 times, most recently from 19429d3 to 3819905 Compare September 22, 2025 21:56
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch 2 times, most recently from eeed418 to 3d7c8f9 Compare October 9, 2025 21:49
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from 3d7c8f9 to b13e374 Compare October 16, 2025 22:14
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from b13e374 to 8b1fce7 Compare October 24, 2025 02:42
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch 2 times, most recently from f3dd731 to f3f8ef6 Compare November 6, 2025 23:52
@renovate renovate bot force-pushed the renovate/aws-6.x-lockfile branch from f3f8ef6 to ba8c8ee Compare November 14, 2025 03:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant