Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore(release): 2.148.0 #30764

Merged
merged 60 commits into from
Jul 5, 2024
Merged

chore(release): 2.148.0 #30764

merged 60 commits into from
Jul 5, 2024

Conversation

aws-cdk-automation
Copy link
Collaborator

@aws-cdk-automation aws-cdk-automation commented Jul 5, 2024

See CHANGELOG

mergify bot and others added 30 commits June 20, 2024 22:35
### Reason for this change

missing property

### Description of changes

https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_codebuild.CfnProjectProps.html#visibility

### Description of how you validated changes

done test and integ-test

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
### Issue # (if applicable)

N/A

### Reason for this change
The `defaulrRedirectUri` property missing in the current `UserPoolClient` class,

The DefaultRedirectURI setting is essential when using Amazon Cognito Hosted UI because it specifies the primary destination where users will be redirected after successful authentication, ensuring a seamless and secure OAuth 2.0 or OpenID Connect flow.


### Description of changes
Add missing property.


### Description of how you validated changes
Add unit tests and integ tests.


### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…30358)

### Issue # (if applicable)

Closes #30353 .

### Reason for this change
At the moment, L2 Construct does not support a custom auto scaling configuration for the AppRunner Service.


### Description of changes
* Add `AutoScalingConfiguration` Class
* Add `autoScalingConfiguration` property to the `Service` Class



### Description of how you validated changes
Add unit tests and integ tests.


### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
… from instanceType (#30558)

### Issue # (if applicable)
n/a

### Reason for this change

When configuring NAT instance v2, currently we have to set machineImage manually when we want to use a graviton instance.

Like this:

```ts
const vpc = new Vpc(this, 'Vpc', {
  natGatewayProvider: NatProvider.instanceV2({
    instanceType: InstanceType.of(InstanceClass.T4G, InstanceSize.NANO),
    // we should be able to omit this line!
    machineImage: MachineImage.latestAmazonLinux2023({ cpuType: AmazonLinuxCpuType.ARM_64 }),
  }),
});
```

This can be easily avoided if Nat instance v2 construct decides which cpu type to use for the given instance type.

### Description of changes

Use `instanceType.architecture` to choose cpu type of a machine image.

Now we can remove the redundant code:

```ts
const vpc = new Vpc(this, 'Vpc', {
  natGatewayProvider: NatProvider.instanceV2({
    instanceType: InstanceType.of(InstanceClass.T4G, InstanceSize.NANO),
  }),
});
```

### Description of how you validated changes

Added an integ test.
### Checklist
- [X] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…pes (#30495)

### Issue # (if applicable)

Closes #29385.

### Reason for this change
To use Step Functions state machine enrichment for eventbrige pipes



### Description of changes
Add `StepFunctionsEnrichment` class.



### Description of how you validated changes
Add unit test and integ tests.


### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…time with imported `delegatedZone` (#30440)" (#30606)

This reverts commit a3d9b10.

### Issue # (if applicable)

Closes #30600.

### Reason for this change

Reverting #30440 so that `cdk synth` succeed when using imported `delegatedZone`

### Description of changes

Removed the `throw new Error()`

### Description of how you validated changes



### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…ty (#30614)

### Issue # (if applicable)
Closes #30613.

### Reason for this change
Documentation for `KubernetesVersion.V1_30` property incorrectly refers to `KubectlV29Layer`.


### Description of changes
Corrected documentation for KubernetesVersion.V1_30 property to refer to `KubectlV30Layer`.

### Description of how you validated changes
N/A
### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…moved from roadmap (#30572)

### Issue # (if applicable)

Closes #<issue number here>.

### Reason for this change



### Description of changes



### Description of how you validated changes



### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
… system (#30343)

### Issue # (if applicable)

Closes  #30340.

### Reason for this change
Current LustreFileSystem class does not support automatic backups.


### Description of changes
Add properties equivalent to those of the L1 construct to the L2 construct.

* [automaticBackupRetentionDays](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws%5C_fsx.CfnFileSystem.LustreConfigurationProperty.html#automaticbackupretentiondays)
* [copyTagsToBackups](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws%5C_fsx.CfnFileSystem.LustreConfigurationProperty.html#copytagstobackups)
* [dailyAutomaticBackupStartTime](https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws%5C_fsx.CfnFileSystem.LustreConfigurationProperty.html#dailyautomaticbackupstarttime)

Segregated the `dailyAutomaticBackupStartTime` as a class to enable its usage in another file system's L2 construct (for example, Ontap) in the future.



### Description of how you validated changes
Add unit tests and integ tests.


### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Updates the L1 CloudFormation resource definitions with the latest changes from `@aws-cdk/aws-service-spec`

**L1 CloudFormation resource definition changes:**
```
├[+] service aws-apptest
│ ├  capitalized: AppTest
│ │  cloudFormationNamespace: AWS::AppTest
│ │  name: aws-apptest
│ │  shortName: apptest
│ └ resources
│    └resource AWS::AppTest::TestCase
│     ├  name: TestCase
│     │  cloudFormationType: AWS::AppTest::TestCase
│     │  documentation: Represents a Test Case that can be captured and executed
│     │  tagInformation: {"tagPropertyName":"Tags","variant":"map"}
│     ├ properties
│     │  ├Description: string
│     │  ├Name: string (required, immutable)
│     │  ├Steps: Array<Step> (required)
│     │  └Tags: Map<string, string>
│     ├ attributes
│     │  ├CreationTime: string
│     │  ├LastUpdateTime: string
│     │  ├LatestVersion: TestCaseLatestVersion
│     │  ├Status: string
│     │  ├TestCaseArn: string
│     │  ├TestCaseId: string
│     │  └TestCaseVersion: number
│     └ types
│        ├type TestCaseLatestVersion
│        │├  name: TestCaseLatestVersion
│        │└ properties
│        │   ├Version: number (required)
│        │   └Status: string (required)
│        ├type Step
│        │├  name: Step
│        │└ properties
│        │   ├Name: string (required)
│        │   ├Description: string
│        │   └Action: StepAction (required)
│        ├type StepAction
│        │├  name: StepAction
│        │└ properties
│        │   ├ResourceAction: ResourceAction
│        │   ├MainframeAction: MainframeAction
│        │   └CompareAction: CompareAction
│        ├type ResourceAction
│        │├  name: ResourceAction
│        │└ properties
│        │   ├M2ManagedApplicationAction: M2ManagedApplicationAction
│        │   ├M2NonManagedApplicationAction: M2NonManagedApplicationAction
│        │   └CloudFormationAction: CloudFormationAction
│        ├type M2ManagedApplicationAction
│        │├  name: M2ManagedApplicationAction
│        │└ properties
│        │   ├Resource: string (required)
│        │   ├ActionType: string (required)
│        │   └Properties: M2ManagedActionProperties
│        ├type M2ManagedActionProperties
│        │├  name: M2ManagedActionProperties
│        │└ properties
│        │   ├ForceStop: boolean
│        │   └ImportDataSetLocation: string
│        ├type M2NonManagedApplicationAction
│        │├  name: M2NonManagedApplicationAction
│        │└ properties
│        │   ├Resource: string (required)
│        │   └ActionType: string (required)
│        ├type CloudFormationAction
│        │├  name: CloudFormationAction
│        │└ properties
│        │   ├Resource: string (required)
│        │   └ActionType: string
│        ├type MainframeAction
│        │├  name: MainframeAction
│        │└ properties
│        │   ├Resource: string (required)
│        │   ├ActionType: MainframeActionType (required)
│        │   └Properties: MainframeActionProperties
│        ├type MainframeActionType
│        │├  name: MainframeActionType
│        │└ properties
│        │   ├Batch: Batch
│        │   └Tn3270: TN3270
│        ├type Batch
│        │├  name: Batch
│        │└ properties
│        │   ├BatchJobName: string (required)
│        │   ├BatchJobParameters: Map<string, string>
│        │   └ExportDataSetNames: Array<string>
│        ├type TN3270
│        │├  name: TN3270
│        │└ properties
│        │   ├Script: Script (required)
│        │   └ExportDataSetNames: Array<string>
│        ├type Script
│        │├  name: Script
│        │└ properties
│        │   ├ScriptLocation: string (required)
│        │   └Type: string (required)
│        ├type MainframeActionProperties
│        │├  name: MainframeActionProperties
│        │└ properties
│        │   └DmsTaskArn: string
│        ├type CompareAction
│        │├  name: CompareAction
│        │└ properties
│        │   ├Input: Input (required)
│        │   └Output: Output
│        ├type Input
│        │├  name: Input
│        │└ properties
│        │   └File: InputFile (required)
│        ├type InputFile
│        │├  name: InputFile
│        │└ properties
│        │   ├SourceLocation: string (required)
│        │   ├TargetLocation: string (required)
│        │   └FileMetadata: FileMetadata (required)
│        ├type FileMetadata
│        │├  name: FileMetadata
│        │└ properties
│        │   ├DataSets: Array<DataSet>
│        │   └DatabaseCDC: DatabaseCDC
│        ├type DataSet
│        │├  name: DataSet
│        │└ properties
│        │   ├Type: string (required)
│        │   ├Name: string (required)
│        │   ├Ccsid: string (required)
│        │   ├Format: string (required)
│        │   └Length: number (required)
│        ├type DatabaseCDC
│        │├  name: DatabaseCDC
│        │└ properties
│        │   ├SourceMetadata: SourceDatabaseMetadata (required)
│        │   └TargetMetadata: TargetDatabaseMetadata (required)
│        ├type SourceDatabaseMetadata
│        │├  name: SourceDatabaseMetadata
│        │└ properties
│        │   ├Type: string (required)
│        │   └CaptureTool: string (required)
│        ├type TargetDatabaseMetadata
│        │├  name: TargetDatabaseMetadata
│        │└ properties
│        │   ├Type: string (required)
│        │   └CaptureTool: string (required)
│        ├type Output
│        │├  name: Output
│        │└ properties
│        │   └File: OutputFile (required)
│        └type OutputFile
│         ├  name: OutputFile
│         └ properties
│            └FileLocation: string
├[~] service aws-batch
│ └ resources
│    └[~] resource AWS::Batch::JobDefinition
│      └ types
│         └[~] type NodeRangeProperty
│           └ properties
│              └[-] EksProperties: EksProperties
├[~] service aws-kinesisfirehose
│ └ resources
│    └[~] resource AWS::KinesisFirehose::DeliveryStream
│      └ types
│         ├[~] type HttpEndpointDestinationConfiguration
│         │ └ properties
│         │    └[+] SecretsManagerConfiguration: SecretsManagerConfiguration
│         ├[~] type RedshiftDestinationConfiguration
│         │ └ properties
│         │    ├ Password: - string (required)
│         │    │           + string
│         │    ├[+] SecretsManagerConfiguration: SecretsManagerConfiguration
│         │    └ Username: - string (required)
│         │                + string
│         ├[+] type SecretsManagerConfiguration
│         │ ├  name: SecretsManagerConfiguration
│         │ └ properties
│         │    ├Enabled: boolean (required)
│         │    ├RoleARN: string
│         │    └SecretARN: string
│         ├[~] type SnowflakeDestinationConfiguration
│         │ └ properties
│         │    ├ PrivateKey: - string (required)
│         │    │             + string
│         │    ├[+] SecretsManagerConfiguration: SecretsManagerConfiguration
│         │    └ User: - string (required)
│         │            + string
│         └[~] type SplunkDestinationConfiguration
│           └ properties
│              ├ HECToken: - string (required)
│              │           + string
│              └[+] SecretsManagerConfiguration: SecretsManagerConfiguration
└[~] service aws-mediapackagev2
  └ resources
     ├[~] resource AWS::MediaPackageV2::Channel
     │ └ attributes
     │    └[+] IngestEndpointUrls: Array<string>
     └[~] resource AWS::MediaPackageV2::OriginEndpoint
       └ attributes
          ├[+] DashManifestUrls: Array<string>
          ├[+] HlsManifestUrls: Array<string>
          └[+] LowLatencyHlsManifestUrls: Array<string>
```
…PI call (#30061)

### Issue # (if applicable)

Closes #29918.

### Reason for this change

It would be useful if we could call AWS API across regions from a Step Functions state machine. Currently it is not officially supported even with AWS SDK integration tasks.

Our usecase is to automate a cross-region failover scenario in a multi-region application. This requires you to orchestrate multiple API calls for both active and standby regions (e.g. failover Aurora DB cluster, rewrite AppConfig parameter, etc), and it would be great if we can manage these operations in a single state machine.

### Description of changes

This PR adds a new construct `CallAwsServiceCrossRegion` that deploys 1. a Lambda function to call AWS API in different regions 2. SFn task to call the function.

Because most properties are compatible with the existing `CallAwsService` construct, you can use the new construct by just adding the `region` property.

Additionally, it also allows to set `endpoint` to override AWS API endpoint, because some AWS APIs requires you to override it. (e.g. [Route53 ARC](https://docs.aws.amazon.com/r53recovery/latest/dg/getting-started-cli-routing.control-state.html))

### Description of how you validated changes

Added unit tests and integ tests.

### Checklist
- [X] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Add Anthropic's Claude 3.5 Sonnet model.

Ref
* https://aws.amazon.com/about-aws/whats-new/2024/06/anthropic-claude-3-5-sonnet-model-bedrock/
* https://docs.aws.amazon.com/bedrock/latest/userguide/model-ids.html

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…#30359)

### Issue # (if applicable)

Closes #22985 .

### Reason for this change
At the moment, L2 Construct does not support a tracing setting for the AppRunner Service.


### Description of changes
* Add `ObservabilityConfiguration` Class
* Add `observabilityConfiguration` property to the `Service` Class



### Description of how you validated changes
Add unit tests and integ tests.


### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)
----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…bled` is broken (#30624)

### Issue # (if applicable)

None

### Reason for this change

The documentation link of `crossZoneEnabled` is broken due to unnecessary hyphen.

https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_elasticloadbalancingv2.NetworkLoadBalancer.html#crosszoneenabled

<img width="732" alt="スクリーンショット 2024-06-23 0 33 20" src="https://github.com/aws/aws-cdk/assets/64848616/5096bf05-4e6e-4e72-a882-1e8d1a817ff5">

### Description of changes

Removed unnecessary hyphen.

### Description of how you validated changes

None

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Add new minor version.
Ref: https://aws.amazon.com/about-aws/whats-new/2024/06/amazon-rds-mysql-new-minor-version-8-0-37/

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…aged Termination Protection is disable (#30335)

Let AsgCapacityProvider use IAutoScalingGroup only when Managed Termination Protection is disable.

The code will throw an exception with a clear message when the user specify a self managed ASG using `AutoScalingGroup.fromAutoScalingGroupName` and let the Managed Termination Protection enabled.

It will also throw a clear exception when calling `Cluster.addAsgCapacityProvider` with an `AsgCapacityProvider` created with an imported ASG.

### Issue # (if applicable)

Closes #29174.

### Reason for this change

As there is no clear fix to the original issue, this change's purpose it to bring clarity to the users about what is not allowed when using the L2 Constructs `AsgCapacityProvider` and `Cluster` with an imported ASG.

### Description of changes

This change will replace non explicit exception, caused by missing methods, by clear error messages.

### Description of how you validated changes

Added unit tests.

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Removed unnecessary hyphens before links in the @see section of the document.
Unnecessary hyphens are breaking the links in the document.

Same as #30624.

Ref:

https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_ecs.BaseServiceProps.html#launchtype

https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_eks.NodegroupOptions.html#instancetypes

https://docs.aws.amazon.com/cdk/api/v2/docs/aws-cdk-lib.aws_eks.NodegroupOptions.html#launchtemplatespec

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…d due to lack of a permission (#30630)

### Issue # (if applicable)

Closes #26640

### Reason for this change
According to the [docs](https://docs.aws.amazon.com/apprunner/latest/dg/security_iam_service-with-iam.html#security_iam_service-with-iam-roles), required permissions for an App Runner's AccessRole to access images in ECR repository are the followings:

1. "ecr:GetDownloadUrlForLayer",
2. "ecr:BatchCheckLayerAvailability",
3. "ecr:BatchGetImage",
4. "ecr:DescribeImages",
5. "ecr:GetAuthorizationToken"

No.1~3 are granted by the [grantPull](https://github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/aws-ecr/lib/repository.ts#L385) method of `ecr.Repository`.

https://github.com/aws/aws-cdk/blob/main/packages/%40aws-cdk/aws-apprunner-alpha/lib/service.ts#L1303

Permission for No.5 is granted by the following.
**Note** : It is correct that the resources here is set to `*`(Ref: [docs](https://docs.aws.amazon.com/apprunner/latest/dg/security_iam_service-with-iam.html#security_iam_service-with-iam-roles))
> If you create your own custom policy for your access role, be sure to specify "Resource": "*" for the ecr:GetAuthorizationToken action. Tokens can be used to access any Amazon ECR registry that you have access to.

https://github.com/aws/aws-cdk/blob/main/packages/%40aws-cdk/aws-apprunner-alpha/lib/service.ts#L1368

At the moment, No.4 permission is missing. So we need to add.


### Description of changes
Add a `ecr:DescribeImages` permisison to the AccessRole.



### Description of how you validated changes
Update a unit test and a integ test.



### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Ran npm-check-updates and yarn upgrade to keep the `yarn.lock` file up-to-date.
We were seeing build failures (most likely) caused by nx version mismatches. This PR aligns those versions.

### Checklist
- [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…M_3 (#30670)

### Description of changes

Fixed typo in the comment at CodeBuildImage.AMAZON_LINUX_2_ARM_3.

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
)

Bumps [tj-actions/changed-files](https://github.com/tj-actions/changed-files) from 44.5.2 to 44.5.5.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/releases">tj-actions/changed-files's releases</a>.</em></p>
<blockquote>
<h2>v44.5.5</h2>
<h2>What's Changed</h2>
<ul>
<li>Upgraded to v44.5.4 by <a href="https://github.com/tj-actions-bot"><code>@​tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2165">tj-actions/changed-files#2165</a></li>
<li>chore: remove debug lines by <a href="https://github.com/jackton1"><code>@​jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2166">tj-actions/changed-files#2166</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v44...v44.5.5">https://github.com/tj-actions/changed-files/compare/v44...v44.5.5</a></p>
<h2>v44.5.4</h2>
<h2>What's Changed</h2>
<ul>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.7 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2156">tj-actions/changed-files#2156</a></li>
<li>fix(deps): update dependency <code>@​octokit/rest</code> to v21 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2158">tj-actions/changed-files#2158</a></li>
<li>Upgraded to v44.5.3 by <a href="https://github.com/tj-actions-bot"><code>@​tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2154">tj-actions/changed-files#2154</a></li>
<li>chore(deps-dev): bump <code>@​types/uuid</code> from 9.0.8 to 10.0.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2160">tj-actions/changed-files#2160</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.8 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2162">tj-actions/changed-files#2162</a></li>
<li>fix: error using since_last_remote_commit with the first PR commit by <a href="https://github.com/jackton1"><code>@​jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2163">tj-actions/changed-files#2163</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a href="https://github.com/tj-actions/changed-files/compare/v44...v44.5.4">https://github.com/tj-actions/changed-files/compare/v44...v44.5.4</a></p>
<h2>v44.5.3</h2>
<h2>What's Changed</h2>
<ul>
<li>Upgraded to v44.5.2 by <a href="https://github.com/tj-actions-bot"><code>@​tj-actions-bot</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2116">tj-actions/changed-files#2116</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.12.14 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2118">tj-actions/changed-files#2118</a></li>
<li>chore(deps): update dependency prettier to v3.3.0 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2119">tj-actions/changed-files#2119</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.0 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2121">tj-actions/changed-files#2121</a></li>
<li>fix(deps): update dependency yaml to v2.4.3 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2120">tj-actions/changed-files#2120</a></li>
<li>chore: downgrade tj-actions/eslint-changed-files pending move to eslint 9 by <a href="https://github.com/jackton1"><code>@​jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2124">tj-actions/changed-files#2124</a></li>
<li>chore(deps): update tj-actions/eslint-changed-files action to v25 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2125">tj-actions/changed-files#2125</a></li>
<li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2122">tj-actions/changed-files#2122</a></li>
<li>chore(deps): update dependency eslint-plugin-github to v5 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2126">tj-actions/changed-files#2126</a></li>
<li>chore(deps): update typescript-eslint monorepo to v7.12.0 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2127">tj-actions/changed-files#2127</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.1 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2128">tj-actions/changed-files#2128</a></li>
<li>chore(deps): update dependency eslint-plugin-github to v5.0.1 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2129">tj-actions/changed-files#2129</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.2 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2130">tj-actions/changed-files#2130</a></li>
<li>chore(deps): update dependency prettier to v3.3.1 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2131">tj-actions/changed-files#2131</a></li>
<li>chore(deps): update dependency eslint-plugin-jest to v28.6.0 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2132">tj-actions/changed-files#2132</a></li>
<li>chore(deps): update dependency <code>@​types/lodash</code> to v4.17.5 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2134">tj-actions/changed-files#2134</a></li>
<li>fix(deps): update dependency yaml to v2.4.4 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2135">tj-actions/changed-files#2135</a></li>
<li>fix(deps): update dependency yaml to v2.4.5 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2136">tj-actions/changed-files#2136</a></li>
<li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2137">tj-actions/changed-files#2137</a></li>
<li>chore(deps): update typescript-eslint monorepo to v7.13.0 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2138">tj-actions/changed-files#2138</a></li>
<li>chore: Update README.md by <a href="https://github.com/jackton1"><code>@​jackton1</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2139">tj-actions/changed-files#2139</a></li>
<li>chore(deps): update dependency prettier to v3.3.2 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2141">tj-actions/changed-files#2141</a></li>
<li>chore(deps): update dependency ts-jest to v29.1.5 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2142">tj-actions/changed-files#2142</a></li>
<li>chore(deps): lock file maintenance by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2143">tj-actions/changed-files#2143</a></li>
<li>chore(deps): update typescript-eslint monorepo to v7.13.1 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2144">tj-actions/changed-files#2144</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.3 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2145">tj-actions/changed-files#2145</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.4 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2147">tj-actions/changed-files#2147</a></li>
<li>chore(deps): update dependency <code>@​types/node</code> to v20.14.5 by <a href="https://github.com/renovate"><code>@​renovate</code></a> in <a href="https://redirect.github.com/tj-actions/changed-files/pull/2149">tj-actions/changed-files#2149</a></li>
</ul>

</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/tj-actions/changed-files/blob/main/HISTORY.md">tj-actions/changed-files's changelog</a>.</em></p>
<blockquote>
<h1>Changelog</h1>
<h1><a href="https://github.com/tj-actions/changed-files/compare/v44.5.4...v44.5.5">44.5.5</a> - (2024-06-24)</h1>
<h2>⚙️ Miscellaneous Tasks</h2>
<ul>
<li>Remove debug lines (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2166">#2166</a>) (<a href="https://github.com/tj-actions/changed-files/commit/cc733854b1f224978ef800d29e4709d5ee2883e4">cc73385</a>)  - (Tonye Jack)</li>
</ul>
<h2>⬆️ Upgrades</h2>
<ul>
<li>Upgraded to v44.5.4 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2165">#2165</a>)</li>
</ul>
<p>Co-authored-by: jackton1 <a href="mailto:[email protected]">[email protected]</a> (<a href="https://github.com/tj-actions/changed-files/commit/0b99ecfd4efe684550ba7ef222cdf6b36964c890">0b99ecf</a>)  - (tj-actions[bot])</p>
<h1><a href="https://github.com/tj-actions/changed-files/compare/v44.5.3...v44.5.4">44.5.4</a> - (2024-06-23)</h1>
<h2>🐛 Bug Fixes</h2>
<ul>
<li>Error using since_last_remote_commit with the first PR commit (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2163">#2163</a>) (<a href="https://github.com/tj-actions/changed-files/commit/cc3bbb0c526f8ee1d282f8c5f9f4e50745a5b457">cc3bbb0</a>)  - (Tonye Jack)</li>
<li><strong>deps:</strong> Update dependency <code>@​octokit/rest</code> to v21 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2158">#2158</a>) (<a href="https://github.com/tj-actions/changed-files/commit/7891350b8e5530e6284113b15f753f9673276d1c">7891350</a>)  - (renovate[bot])</li>
</ul>
<h2>⚙️ Miscellaneous Tasks</h2>
<ul>
<li><strong>deps:</strong> Update dependency <code>@​types/node</code> to v20.14.8 (<a href="https://github.com/tj-actions/changed-files/commit/373db58d9d98a3002e86f6881421378d7be4de26">373db58</a>)  - (renovate[bot])</li>
<li><strong>deps-dev:</strong> Bump <code>@​types/uuid</code> from 9.0.8 to 10.0.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2160">#2160</a>) (<a href="https://github.com/tj-actions/changed-files/commit/9161a8dcde05a2a3b845745c47574885a33fd5e5">9161a8d</a>)  - (dependabot[bot])</li>
<li><strong>deps:</strong> Update dependency <code>@​types/node</code> to v20.14.7 (<a href="https://github.com/tj-actions/changed-files/commit/457e041909e8e6db7872dbc85f43d3fea4a72f72">457e041</a>)  - (renovate[bot])</li>
</ul>
<h2>⬆️ Upgrades</h2>
<ul>
<li>Upgraded to v44.5.3 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2154">#2154</a>)</li>
</ul>
<p>Co-authored-by: jackton1 <a href="mailto:[email protected]">[email protected]</a> (<a href="https://github.com/tj-actions/changed-files/commit/e13fb92d451df65cea1041a85dd4a3b24153d155">e13fb92</a>)  - (tj-actions[bot])</p>
<h1><a href="https://github.com/tj-actions/changed-files/compare/v44.5.2...v44.5.3">44.5.3</a> - (2024-06-19)</h1>
<h2>🐛 Bug Fixes</h2>
<ul>
<li><strong>deps:</strong> Update dependency yaml to v2.4.5 (<a href="https://github.com/tj-actions/changed-files/commit/57a81a39f3c336e860a2312a2487a8a2e6d495ce">57a81a3</a>)  - (renovate[bot])</li>
<li><strong>deps:</strong> Update dependency yaml to v2.4.4 (<a href="https://github.com/tj-actions/changed-files/commit/3de07763cf5f7eb991d59ca7894be8df0f36c80c">3de0776</a>)  - (renovate[bot])</li>
<li><strong>deps:</strong> Update dependency yaml to v2.4.3 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2120">#2120</a>) (<a href="https://github.com/tj-actions/changed-files/commit/60268df189b72237cfcbe6ec2937367ef2b2b75d">60268df</a>)  - (renovate[bot])</li>
</ul>
<h2>➕ Add</h2>
<ul>
<li>Added missing changes and modified dist assets.
(<a href="https://github.com/tj-actions/changed-files/commit/2972fe4d6b07bd6de22186555c2046a94a3aa302">2972fe4</a>)  - (GitHub Action)</li>
<li>Added missing changes and modified dist assets.
(<a href="https://github.com/tj-actions/changed-files/commit/1d8732f877032fb30b668e90ed6e4256ce87e263">1d8732f</a>)  - (GitHub Action)</li>
</ul>
<h2>⚙️ Miscellaneous Tasks</h2>

</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/tj-actions/changed-files/commit/cc733854b1f224978ef800d29e4709d5ee2883e4"><code>cc73385</code></a> chore: remove debug lines (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2166">#2166</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/0b99ecfd4efe684550ba7ef222cdf6b36964c890"><code>0b99ecf</code></a> Upgraded to v44.5.4 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2165">#2165</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/cc3bbb0c526f8ee1d282f8c5f9f4e50745a5b457"><code>cc3bbb0</code></a> fix: error using since_last_remote_commit with the first PR commit (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2163">#2163</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/373db58d9d98a3002e86f6881421378d7be4de26"><code>373db58</code></a> chore(deps): update dependency <code>@​types/node</code> to v20.14.8</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/9161a8dcde05a2a3b845745c47574885a33fd5e5"><code>9161a8d</code></a> chore(deps-dev): bump <code>@​types/uuid</code> from 9.0.8 to 10.0.0 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2160">#2160</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/e13fb92d451df65cea1041a85dd4a3b24153d155"><code>e13fb92</code></a> Upgraded to v44.5.3 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2154">#2154</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/7891350b8e5530e6284113b15f753f9673276d1c"><code>7891350</code></a> fix(deps): update dependency <code>@​octokit/rest</code> to v21 (<a href="https://redirect.github.com/tj-actions/changed-files/issues/2158">#2158</a>)</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/457e041909e8e6db7872dbc85f43d3fea4a72f72"><code>457e041</code></a> chore(deps): update dependency <code>@​types/node</code> to v20.14.7</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/eaf854ef0c266753e1abec356dcf17d92695b251"><code>eaf854e</code></a> chore(deps): update dependency <code>@​types/node</code> to v20.14.6</li>
<li><a href="https://github.com/tj-actions/changed-files/commit/681bf9250661435d933b9a002c1e488cb0b36392"><code>681bf92</code></a> chore(deps): update peter-evans/create-pull-request action to v6.1.0</li>
<li>Additional commits viewable in <a href="https://github.com/tj-actions/changed-files/compare/d6babd6899969df1a11d14c368283ea4436bca78...cc733854b1f224978ef800d29e4709d5ee2883e4">compare view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=tj-actions/changed-files&package-manager=github_actions&previous-version=44.5.2&new-version=44.5.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)


</details>
Ran npm-check-updates and yarn upgrade to keep the `yarn.lock` file up-to-date.
mergify bot and others added 11 commits July 2, 2024 01:27
…test function version (#29856)

### Issue # (if applicable)

Closes #20177

### Reason for this change



`fn.grantInvoke()` will grant invoke permission to invoke both the latest version and all pervious version of the lambda function. We can see this behavior could bring some security concern for some of our customers.

### Description of changes



We provides a new function `fn.grantInvokeLatestVersion()`  to grant invoke only to the Latest version of function and the unqualified lambda arn

Example:
```ts
// Grant permissions to a service
declare const fn: lambda.Function;
const principal = new iam.ServicePrincipal('my-service');

fn.grantInvokeLatestVersion(principal);

```

### Description of how you validated changes


Added unit tests and integration tests.
When using `fn.grantInvokeLatestVersion()` granted principle to invoke a function's past version, it will get the following error:
```
An error occurred (AccessDeniedException) when calling the Invoke operation: User: {$principle} is not authorized to perform: lambda:InvokeFunction on resource: {$LambdaArn:$version} because no identity-based policy allows the lambda:InvokeFunction action
```

### Alternative design (to discuss)
setup a `grantInvokeProp` including `grantVersionAccess` flag to pass in the `grantInvokeLatestVersion` instead using `grantVersionAccess` flag directly on `grantInvokeLatestVersion`
-> This is discussed in the comments, I agree having props will have future extensibility but usually for grant methods specifically we haven't seen before. So we will not add prop to the new function `grantInvokeLatestVersion`

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
…ations (under feature flag) (#30706)

### Issue # (if applicable)

Closes #28915 

### Reason for this change

Fix to address the issues deleting the existing S3 event notifications and adding new event notifications on top of existing notifications.

### Description of changes
We fixed the hashing logic used to identify old vs external S3 event notifications

### Description of how you validated changes
Manually tested, integration and unit tested the changes

yes

### Checklist
- [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Ran npm-check-updates and yarn upgrade to keep the `yarn.lock` file up-to-date.
This was causing integ test failures because 1.22 is no longer supported.


### Checklist
- [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
This test was failing due to the solution stack version not being supported any longer.

### Issue # (if applicable)

Closes #<issue number here>.

### Reason for this change



### Description of changes



### Description of how you validated changes



### Checklist
- [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
Note that the docstring in `aws-entities` states that the regions are
added in the order they went live. For several, that was not accurate so
I reordered them. This is unlikely to matter but I made the change so
that the documentation there would be factually correct.

Not all of these regions/partitions are live yet, but they have been
announced [here](https://aws.amazon.com/blogs/aws/category/regions/)

### Checklist
- [ ] My code adheres to the [CONTRIBUTING
GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and
[DESIGN
GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md)

----

*By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache-2.0 license*
@aws-cdk-automation aws-cdk-automation added auto-approve pr/no-squash This PR should be merged instead of squash-merging it labels Jul 5, 2024
@aws-cdk-automation aws-cdk-automation requested a review from a team July 5, 2024 18:53
@github-actions github-actions bot added the p2 label Jul 5, 2024
@aws-cdk-automation
Copy link
Collaborator Author

AWS CodeBuild CI Report

  • CodeBuild project: AutoBuildv2Project1C6BFA3F-wQm2hXv2jqQv
  • Commit ID: a923a59
  • Result: SUCCEEDED
  • Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

Copy link
Contributor

mergify bot commented Jul 5, 2024

Thank you for contributing! Your pull request will be automatically updated and merged without squashing (do not update manually, and be sure to allow changes to be pushed to your fork).

@aws-cdk-automation
Copy link
Collaborator Author

➡️ PR build request submitted to test-main-pipeline ⬅️

A maintainer must now check the pipeline and add the pr-linter/cli-integ-tested label once the pipeline succeeds.

@mergify mergify bot merged commit e5740c0 into v2-release Jul 5, 2024
12 checks passed
@mergify mergify bot deleted the bump/2.148.0 branch July 5, 2024 19:32
@aws-cdk-automation
Copy link
Collaborator Author

Comments on closed issues and PRs are hard for our team to see. If you need help, please open a new issue that references this one.

@aws aws locked as resolved and limited conversation to collaborators Jul 25, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
auto-approve p2 pr/no-squash This PR should be merged instead of squash-merging it
Projects
None yet
Development

Successfully merging this pull request may close these issues.