chore(deps): update terraform cloudposse/ecs-cluster/aws to v0.9.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
cloudposse/ecs-cluster/aws (source)	module	minor	0.4.1 -> 0.9.0

---

Release Notes

cloudposse/terraform-aws-ecs-cluster (cloudposse/ecs-cluster/aws)

v0.9.0

Compare Source

Adding the ability to change the instance reuse policy in an autoscale group @​ekawas-vrify (#​46)

what

Adding the ability to set the instance_reuse_policy so that warm pools can reuse instances on scale in if wanted.

why

I needed to be able to reuse my instances in a warm pool because the base images are quite large. The terraform-aws-ec2-autoscale-group module already supports it and this change exposes it.

references

v0.8.0

Compare Source

Added custom name to capacity provider @​carlolucadei (#​51)

what

We added the way to customize the capacity provider name

why

With the current change the default behaviour is preserved.
We applied this in order to avoid issues while creating a new capacity provider for another environment since for AWS it already exists due to a previous deploy ie in test env.

v0.7.0

Compare Source

feat: add throughput option to block_device_mappings @​Moncky (#​53)

what

This change adds the through put option to the ebs block_device_mappints object in the capacity_providers_fargate_ec2 variable

why

Support to tune the throughput of the ebs volumes was added to the autoscaling group module in version 0.37.1. As it is not defined in the option block here its not passed through during an execution.

references

Release notes for 0.37.1 of cloudposse/terraform-aws-ec2-autoscale-group

Closes #​52

🤖 Automatic Updates

Migrate new test account @​osterman (#​54)

what

• Update .github/settings.yml
• Update .github/chatops.yml files

why

• Re-apply .github/settings.yml from org level to get terratest environment
• Migrate to new test account

References

• DEV-388 Automate clean up of test account in new organization
• DEV-387 Update terratest to work on a shared workflow instead of a dispatch action
• DEV-386 Update terratest to use new testing account with GitHub OIDC

Update .github/settings.yml @​osterman (#​50)

what

• Update .github/settings.yml
• Drop .github/auto-release.yml files

why

• Re-apply .github/settings.yml from org level
• Use organization level auto-release settings

references

• DEV-1242 Add protected tags with Repository Rulesets on GitHub

Update .github/settings.yml @​osterman (#​48)

what

• Update .github/settings.yml
• Drop .github/auto-release.yml files

why

• Re-apply .github/settings.yml from org level
• Use organization level auto-release settings

references

• DEV-1242 Add protected tags with Repository Rulesets on GitHub

Update release workflow to allow pull-requests: write @​osterman (#​45)

what

• Update workflow (.github/workflows/release.yaml) to have permission to comment on PR

why

• So we can support commenting on PRs with a link to the release

Update GitHub Workflows to use shared workflows from '.github' repo @​osterman (#​43)

what

• Update workflows (.github/workflows) to use shared workflows from .github repo

why

• Reduce nested levels of reusable workflows

Update GitHub Workflows to Fix ReviewDog TFLint Action @​osterman (#​42)

what

• Update workflows (.github/workflows) to add issue: write permission needed by ReviewDog tflint action

why

• The ReviewDog action will comment with line-level suggestions based on linting failures

Update GitHub workflows @​osterman (#​41)

what

• Update workflows (.github/workflows/settings.yaml)

why

• Support new readme generation workflow.
• Generate banners

Use GitHub Action Workflows from `cloudposse/.github` Repo @​osterman (#​38)

what

• Install latest GitHub Action Workflows

why

• Use shared workflows from cldouposse/.github repository
• Simplify management of workflows from centralized hub of configuration

Bump google.golang.org/grpc from 1.49.0 to 1.56.3 in /test/src @​dependabot (#​36)

Bumps [google.golang.org/grpc](https://redirect.github.com/grpc/grpc-go) from 1.49.0 to 1.56.3.

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.56.3

Security

• server: prohibit more than MaxConcurrentStreams handlers from running at once (CVE-2023-44487)

  In addition to this change, applications should ensure they do not leave running tasks behind related to the RPC before returning from method handlers, or should enforce appropriate limits on any such work.

Release 1.56.2

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#​6374)

Release 1.56.1

• client: handle empty address lists correctly in addrConn.updateAddrs

Release 1.56.0

New Features

• client: support channel idleness using WithIdleTimeout dial option (#​6263)
  • This feature is currently disabled by default, but will be enabled with a 30 minute default in the future.
• client: when using pickfirst, keep channel state in TRANSIENT_FAILURE until it becomes READY (gRFC A62) (#​6306)
• xds: Add support for Custom LB Policies (gRFC A52) (#​6224)
• xds: support pick_first Custom LB policy (gRFC A62) (#​6314) (#​6317)
• client: add support for pickfirst address shuffling (gRFC A62) (#​6311)
• xds: Add support for String Matcher Header Matcher in RDS (#​6313)
• xds/outlierdetection: Add Channelz Logger to Outlier Detection LB (#​6145)
  • Special Thanks: @​​s-matyukevich
• xds: enable RLS in xDS by default (#​6343)
• orca: add support for application_utilization field and missing range checks on several metrics setters
• balancer/weightedroundrobin: add new LB policy for balancing between backends based on their load reports (gRFC A58) (#​6241)
• authz: add conversion of json to RBAC Audit Logging config (#​6192)
• authz: add support for stdout logger (#​6230 and #​6298)
• authz: support customizable audit functionality for authorization policy (#​6192 #​6230 #​6298 #​6158 #​6304 and #​6225)

Bug Fixes

• orca: fix a race at startup of out-of-band metric subscriptions that would cause the report interval to request 0 (#​6245)
• xds/xdsresource: Fix Outlier Detection Config Handling and correctly set xDS Defaults (#​6361)
• xds/outlierdetection: Fix Outlier Detection Config Handling by setting defaults in ParseConfig() (#​6361)

API Changes

• orca: allow a ServerMetricsProvider to be passed to the ORCA service and ServerOption (#​6223)

Release 1.55.1

• status: To fix a panic, status.FromError now returns an error with codes.Unknown when the error implements the GRPCStatus() method, and calling GRPCStatus() returns nil. (#​6374)

Release 1.55.0

Behavior Changes

• xds: enable federation support by default (#​6151)
• status: status.Code and status.FromError handle wrapped errors (#​6031 and #​6150)

... (truncated)

Commits

• 1055b48 Update version.go to 1.56.3 (#​6713)
• 5efd7bd server: prohibit more than MaxConcurrentStreams handlers from running at once...
• bd1f038 Upgrade version.go to 1.56.3-dev (#​6434)
• faab873 Update version.go to v1.56.2 (#​6432)
• 6b0b291 status: fix panic when servers return a wrapped error with status OK (#​6374) ...
• ed56401 [PSM interop] Don't fail target if sub-target already failed (#​6390) (#​6405)
• cd6a794 Update version.go to v1.56.2-dev (#​6387)
• 5b67e5e Update version.go to v1.56.1 (#​6386)
• d0f5150 client: handle empty address lists correctly in addrConn.updateAddrs (#​6354) ...
• 997c1ea Change version to 1.56.1-dev (#​6345)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Add GitHub Settings @​osterman (#​31)

what

• Install a repository config (.github/settings.yaml)

why

• Programmatically manage GitHub repo settings

v0.6.1

Compare Source

ECS Cluster default Service Discovery Namespace support @​Benbentwo (#​29)

what

• add support for default service discovery namespace

why

• service discovery acts as a local DNS for all your ECS Services, it is often useful to have an entire cluster of services capable of speaking with one another.

references:

• https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/ecs_cluster#service_connect_defaults

🤖 Automatic Updates

Update Scaffolding @​osterman (#​28)

what

• Reran make readme to rebuild README.md from README.yaml
• Migrate to square badges
• Add scaffolding for repo settings and Mergify

why

• Upstream template changed in the .github repo
• Work better with repository rulesets
• Modernize look & feel

v0.6.0

Compare Source

Remove default empty value @​pagmerek (#​25)

what

• Remove default null field in mixed instances policy

why

According to terraform docs:

An optional attribute with a non-null default value is guaranteed to never have the value null within the receiving module. 
Terraform will substitute the default value both when a caller omits the attribute altogether and when a caller explicitly
sets it to null, thereby avoiding the need for additional checks to handle a possible null value. 

In ASG Cloudposse component here you can see that on any value that is not null it will create mixed_instances_policy

references

• related PR in ASG component: https://github.com/cloudposse/terraform-aws-ec2-autoscale-group/pull/126

v0.5.0

Compare Source

Add default null value for mixed_instances_policy @​pagmerek (#​23)

what

If no mixed_instances_policy is given for ECS cluster alb then we shouldn't set it to the { override = null } value. This causes AWS to see the ALB as one with mixed_instances_policy which disables options like Spot Instances or Warm Pools

why

Without that it is impossible to use Spot Instances / Warm Pools on EC2 capacity providers within this module

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[mergify]

/terratest

[mergify]

Merge Protections

Your pull request matches the following merge protections and will not be merged until they are valid.

🟠 Require terratest

Waiting checks: test/terratest.

This rule require terratest status

• check-success = test/terratest

[mergify]

Heads up! This pull request looks stale. It will be closed soon, if there are no new commits. ⏳

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media?

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

• Review comments: Directly reply to a review comment made by CodeRabbit. Example:
  • I pushed a fix in commit <commit_id>, please review it.
  • Generate unit testing code for this file.
  • Open a follow-up GitHub issue for this discussion.
• Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query. Examples:
  • @coderabbitai generate unit testing code for this file.
  • @coderabbitai modularize this function.
• PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
  • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
  • @coderabbitai read src/utils.ts and generate unit testing code.
  • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.
  • @coderabbitai help me debug CodeRabbit configuration file.

Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments.

CodeRabbit Commands (Invoked using PR comments)

• @coderabbitai pause to pause the reviews on a PR.
• @coderabbitai resume to resume the paused reviews.
• @coderabbitai review to trigger an incremental review. This is useful when automatic reviews are disabled for the repository.
• @coderabbitai full review to do a full review from scratch and review all the files again.
• @coderabbitai summary to regenerate the summary of the PR.
• @coderabbitai generate docstrings to generate docstrings for this PR. (Beta)
• @coderabbitai resolve resolve all the CodeRabbit review comments.
• @coderabbitai configuration to show the current CodeRabbit configuration for the repository.
• @coderabbitai help to get help.

Other keywords and placeholders

• Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
• Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
• Add @coderabbitai anywhere in the PR title to generate the title automatically.

CodeRabbit Configuration File (.coderabbit.yaml)

• You can programmatically configure CodeRabbit by adding a .coderabbit.yaml file to the root of your repository.
• Please see the configuration documentation for more information.
• If your editor has YAML language server enabled, you can add the path at the top of this file to enable auto-completion and validation: # yaml-language-server: $schema=https://coderabbit.ai/integrations/schema.v2.json

Documentation and Community

• Visit our Documentation for detailed information on how to use CodeRabbit.
• Join our Discord Community to get help, request features, and share feedback.
• Follow us on X/Twitter for updates and announcements.

[mergify]

Heads up! This pull request looks stale. It will be closed soon, if there are no new commits. ⏳

[mergify]

Heads up! This pull request looks stale. It will be closed soon, if there are no new commits. ⏳