hashicorp/terraform-provider-aws (aws)
### [`v5.15.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5150-August-31-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.14.0...v5.15.0)
ENHANCEMENTS:
- data-source/aws_efs_file_system: Add `name` attribute ([#33243](https://togithub.com/hashicorp/terraform-provider-aws/issues/33243))
- data-source/aws_lakeformation_data_lake_settings: Add `read_only_admins` attribute ([#33189](https://togithub.com/hashicorp/terraform-provider-aws/issues/33189))
- data-source/aws_opensearch_domain: Add `cluster_config.multi_az_with_standby_enabled` attribute ([#33031](https://togithub.com/hashicorp/terraform-provider-aws/issues/33031))
- resource/aws_cloudformation_stack_set: Support resource import with `call_as = "DELEGATED_ADMIN"` via *StackSetName*,*CallAs* syntax for `import` block or `terraform import` command ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092))
- resource/aws_cloudformation_stack_set_instance: Support resource import with `call_as = "DELEGATED_ADMIN"` via *StackSetName*,*AccountID*,*Region*,*CallAs* syntax for `import` block or `terraform import` command ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092))
- resource/aws_datasync_location_fsx_openzfs_file_system: Fix `setting protocol: Invalid address to set` errors ([#33225](https://togithub.com/hashicorp/terraform-provider-aws/issues/33225))
- resource/aws_efs_file_system: Add `name` attribute ([#33243](https://togithub.com/hashicorp/terraform-provider-aws/issues/33243))
- resource/aws_fsx_openzfs_file_system: Add `endpoint_ip_address_range`, `preferred_subnet_id` and `route_table_ids` arguments to support the [Multi-AZ deployment type](https://docs.aws.amazon.com/fsx/latest/OpenZFSGuide/availability-durability.html#choosing-single-or-multi) ([#33245](https://togithub.com/hashicorp/terraform-provider-aws/issues/33245))
- resource/aws_lakeformation_data_lake_settings: Add `read_only_admins` argument ([#33189](https://togithub.com/hashicorp/terraform-provider-aws/issues/33189))
- resource/aws_opensearch_domain: Add `cluster_config.multi_az_with_standby_enabled` argument ([#33031](https://togithub.com/hashicorp/terraform-provider-aws/issues/33031))
- resource/aws_wafv2\_rule_group: Add `name_prefix` argument ([#33206](https://togithub.com/hashicorp/terraform-provider-aws/issues/33206))
- resource/aws_wafv2\_web_acl: Add `statement.managed_rule_group_statement.managed_rule_group_configs.aws_managed_rules_atp_rule_set.enable_regex_in_path` argument ([#33217](https://togithub.com/hashicorp/terraform-provider-aws/issues/33217))
BUG FIXES:
- provider: Correctly use old and new tag values when updating `tags` that are `computed` ([#33226](https://togithub.com/hashicorp/terraform-provider-aws/issues/33226))
- resource/aws_appflow_connector_profile: Fix validation on `oauth2` in `custom_connector_profile` ([#33192](https://togithub.com/hashicorp/terraform-provider-aws/issues/33192))
- resource/aws_cloudformation_stack_set: Fix `Can only set RetainStacksOnAccountRemoval if AutoDeployment is enabled` errors ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092))
- resource/aws_cloudwatch_event_bus_policy: Fix error during plan when the associated aws_cloudwatch_event_bus resource is manually deleted ([#33203](https://togithub.com/hashicorp/terraform-provider-aws/issues/33203))
- resource/aws_codeartifact_domain: Change the type of asset_size_bytes to `TypeString` instead of `TypeInt` to prevent `value out of range` panic ([#33220](https://togithub.com/hashicorp/terraform-provider-aws/issues/33220))
- resource/aws_efs_file_system_policy: Retry IAM eventual consistency errors ([#21734](https://togithub.com/hashicorp/terraform-provider-aws/issues/21734))
- resource/aws_fsx_openzfs_file_system: Wait for administrative action completion when updating root volume ([#33245](https://togithub.com/hashicorp/terraform-provider-aws/issues/33245))
- resource/aws_iot_thing_type: Fix error during plan when resource is manually deleted ([#33203](https://togithub.com/hashicorp/terraform-provider-aws/issues/33203))
- resource/aws_kms_key: Fix `tag propagation: timeout while waiting for state to become 'TRUE'` errors when any tag value is empty (`""`) ([#33226](https://togithub.com/hashicorp/terraform-provider-aws/issues/33226))
- resource/aws_wafv2\_web_acl: Prevent deletion of the AWS-managed `ShieldMitigationRuleGroup` rule on resource Update ([#33216](https://togithub.com/hashicorp/terraform-provider-aws/issues/33216))
### [`v5.14.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5140-August-24-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.13.1...v5.14.0)
NOTES:
- data-source/aws_iam_policy_document: In some cases, `statement.*.condition` blocks with the same `test` and `variable` arguments were incorrectly handled by the provider. Since this results in unexpected IAM Policies being submitted to AWS, we have updated the logic to merge `values` lists in this case. This may cause existing IAM Policy documents to report a difference. However, those policies are likely not what was originally intended. ([#33093](https://togithub.com/hashicorp/terraform-provider-aws/issues/33093))
FEATURES:
- **New Resource:** `aws_datasync_location_azure_blob` ([#32632](https://togithub.com/hashicorp/terraform-provider-aws/issues/32632))
- **New Resource:** `aws_datasync_location_fsx_ontap_file_system` ([#32632](https://togithub.com/hashicorp/terraform-provider-aws/issues/32632))
ENHANCEMENTS:
- data-source/aws_dms_endpoint: Fix crash when specified endpoint not found ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158))
- data-source/aws_dms_replication_instance: Add `network_type` attribute ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158))
- data-source/aws_ec2\_network_insights_path: Add `destination_arn` and `source_arn` attributes ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168))
- resource/aws_dms_replication_instance: Add `network_type` argument ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158))
- resource/aws_ec2\_network_insights_path: Add `destination_arn` and `source_arn` attributes ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168))
- resource/aws_finspace_kx_environment: Add `transit_gateway_configuration.*.attachment_network_acl_configuration` argument. ([#33123](https://togithub.com/hashicorp/terraform-provider-aws/issues/33123))
- resource/aws_medialive_channel: Updates schemas for `selector_settings` for `audio_selector` and `selector_settings` for `caption_selector` ([#32714](https://togithub.com/hashicorp/terraform-provider-aws/issues/32714))
- resource/aws_ssoadmin_account_assignment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
- resource/aws_ssoadmin_customer_managed_policy_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
- resource/aws_ssoadmin_managed_policy_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
- resource/aws_ssoadmin_permission_set: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
- resource/aws_ssoadmin_permission_set_inline_policy: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
- resource/aws_ssoadmin_permissions_boundary_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121))
BUG FIXES:
- data-source/aws_iam_policy_document: Fix inconsistent handling of `condition` blocks with duplicated `test` and `variable` arguments ([#33093](https://togithub.com/hashicorp/terraform-provider-aws/issues/33093))
- resource/aws_ec2\_host: Fixed a bug that caused resource recreation when specifying an `outpost_arn` without an `asset_id` ([#33142](https://togithub.com/hashicorp/terraform-provider-aws/issues/33142))
- resource/aws_ec2\_network_insights_analysis: Fix `setting forward_path_components: Invalid address to set` errors ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168))
- resource/aws_ec2\_network_insights_path: Avoid recreating resource when passing an ARN as `source` or `destination` ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168))
- resource/aws_ec2\_network_insights_path: Retry `AnalysisExistsForNetworkInsightsPath` errors on resource Delete ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168))
- resource/aws_kms_key: Fix `tag propagation: timeout while waiting for state to become 'TRUE'` errors when [`ignore_tags`](https://registry.terraform.io/providers/hashicorp/aws/latest/docs#ignore_tags) has been configured ([#33167](https://togithub.com/hashicorp/terraform-provider-aws/issues/33167))
- resource/aws_licensemanager_license_configuration: Surface `InvalidParameterValueException` errors during resource Delete ([#32845](https://togithub.com/hashicorp/terraform-provider-aws/issues/32845))
- resource/aws_msk_cluster_policy: Fix `Current cluster policy version needed for Update` errors ([#33118](https://togithub.com/hashicorp/terraform-provider-aws/issues/33118))
- resource/aws_quicksight_analysis: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120))
- resource/aws_quicksight_analysis: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122))
- resource/aws_quicksight_analysis: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161))
- resource/aws_quicksight_dashboard: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120))
- resource/aws_quicksight_dashboard: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122))
- resource/aws_quicksight_dashboard: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161))
- resource/aws_quicksight_template: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120))
- resource/aws_quicksight_template: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122))
- resource/aws_quicksight_template: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161))
- resource/aws_route53\_zone: Skip disabling DNS SEC in unsupported partitions ([#33103](https://togithub.com/hashicorp/terraform-provider-aws/issues/33103))
- resource/aws_s3\_object: Mark `acl` as Computed. This suppresses the diffs shown when migrating resources with no configured `acl` attribute value from v4.67.0 (or earlier) ([#33138](https://togithub.com/hashicorp/terraform-provider-aws/issues/33138))
- resource/aws_s3\_object_copy: Mark `acl` as Computed. This suppresses the diffs shown when migrating resources with no configured `acl` attribute value from v4.67.0 (or earlier) ([#33138](https://togithub.com/hashicorp/terraform-provider-aws/issues/33138))
- resource/aws_securityhub_account: Remove default value (`SECURITY_CONTROL`) for `control_finding_generator` argument and mark as Computed ([#33095](https://togithub.com/hashicorp/terraform-provider-aws/issues/33095))
### [`v5.13.1`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5131-August-18-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.13.0...v5.13.1)
BUG FIXES:
- resource/aws_lambda_layer_version: Change `source_code_hash` back to [ForceNew](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#forcenew). This fixes `doesn't support update` errors ([#33097](https://togithub.com/hashicorp/terraform-provider-aws/issues/33097))
- resource/aws_organizations_organization: Fix `current Organization ID (o-xxxxxxxxxx) does not match` errors on resource Read ([#33091](https://togithub.com/hashicorp/terraform-provider-aws/issues/33091))
### [`v5.13.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5130-August-18-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.12.0...v5.13.0)
FEATURES:
- **New Resource:** `aws_msk_cluster_policy` ([#32848](https://togithub.com/hashicorp/terraform-provider-aws/issues/32848))
- **New Resource:** `aws_opensearch_vpc_endpoint` ([#32435](https://togithub.com/hashicorp/terraform-provider-aws/issues/32435))
- **New Resource:** `aws_ram_sharing_with_organization` ([#25433](https://togithub.com/hashicorp/terraform-provider-aws/issues/25433))
ENHANCEMENTS:
- data-source/aws_imagebuilder_image_pipeline: Add `image_scanning_configuration` attribute ([#33005](https://togithub.com/hashicorp/terraform-provider-aws/issues/33005))
- data-source/aws_ram_resource_share: Add `resource_arns` attribute ([#22591](https://togithub.com/hashicorp/terraform-provider-aws/issues/22591))
- provider: Adds the `s3_us_east_1_regional_endpoint` attribute to support using the regional S3 API endpoint in `us-east-1`. ([#33024](https://togithub.com/hashicorp/terraform-provider-aws/issues/33024))
- resource/aws_appstream_fleet: Retry ConcurrentModificationException errors during creation ([#32958](https://togithub.com/hashicorp/terraform-provider-aws/issues/32958))
- resource/aws_dms_endpoint: Add `babelfish` as an `engine_name` option ([#32975](https://togithub.com/hashicorp/terraform-provider-aws/issues/32975))
- resource/aws_imagebuilder_image_pipeline: Add `image_scanning_configuration` configuration block ([#33005](https://togithub.com/hashicorp/terraform-provider-aws/issues/33005))
- resource/aws_lb: Changes to `security_groups` for Network Load Balancers force a new resource if either the old or new set of security group IDs is empty ([#32987](https://togithub.com/hashicorp/terraform-provider-aws/issues/32987))
- resource/aws_rds_global_cluster: Add plan-time validation of `global_cluster_identifier` ([#30996](https://togithub.com/hashicorp/terraform-provider-aws/issues/30996))
BUG FIXES:
- data-source/aws_ecr_repository: Correctly set `most_recent_image_tags` when only a single image is found ([#31757](https://togithub.com/hashicorp/terraform-provider-aws/issues/31757))
- resource/aws_budgets_budget_action: No longer times out when creating a non-triggered action ([#33015](https://togithub.com/hashicorp/terraform-provider-aws/issues/33015))
- resource/aws_cloudformation_stack: Marks `outputs` as Computed when there are potential changes. ([#33059](https://togithub.com/hashicorp/terraform-provider-aws/issues/33059))
- resource/aws_cloudwatch_event_rule: Fix ARN-based partner event bus rule ID parsing error ([#30293](https://togithub.com/hashicorp/terraform-provider-aws/issues/30293))
- resource/aws_ecr_registry_scanning_configuration: Correctly delete rules on resource Update ([#31449](https://togithub.com/hashicorp/terraform-provider-aws/issues/31449))
- resource/aws_lambda_layer_version: Fix bug causing new version to be created on every apply when `source_code_hash` is used but not changed ([#32535](https://togithub.com/hashicorp/terraform-provider-aws/issues/32535))
- resource/aws_lb_listener_certificate: Remove from state when listener not found ([#32412](https://togithub.com/hashicorp/terraform-provider-aws/issues/32412))
- resource/aws_organizations_organization: Ensure that the Organization ID specified in `terraform import` is the current Organization ([#31796](https://togithub.com/hashicorp/terraform-provider-aws/issues/31796))
- resource/aws_quicksight_analysis: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012))
- resource/aws_quicksight_analysis: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040))
- resource/aws_quicksight_analysis: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023))
- resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018))
- resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018))
- resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018))
- resource/aws_quicksight_analysis: Raise limit for maximum allowed `visuals` blocks per sheet to 50 ([#32856](https://togithub.com/hashicorp/terraform-provider-aws/issues/32856))
- resource/aws_quicksight_dashboard: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012))
- resource/aws_quicksight_dashboard: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040))
- resource/aws_quicksight_dashboard: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023))
- resource/aws_quicksight_data_set: Change permission attribute type from TypeList to TypeSet ([#32984](https://togithub.com/hashicorp/terraform-provider-aws/issues/32984))
- resource/aws_quicksight_template: Adjust max items of `definition.*.calculated_fields` to 500 ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012))
- resource/aws_quicksight_template: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012))
- resource/aws_quicksight_template: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040))
- resource/aws_quicksight_template: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023))
- resource/aws_s3\_bucket_logging: Fix perpetual drift when `expected_bucket_owner` is configured ([#32989](https://togithub.com/hashicorp/terraform-provider-aws/issues/32989))
- resource/aws_sagemaker_domain: Fix validation on `s3_kms_key_id` in `sharing_settings` and `kms_key_id` ([#32661](https://togithub.com/hashicorp/terraform-provider-aws/issues/32661))
- resource/aws_subnet: Fix allowing IPv6 to be enabled in an update after initial creation with IPv4 only ([#32896](https://togithub.com/hashicorp/terraform-provider-aws/issues/32896))
- resource/aws_wafv2\_web_acl: Adds `rule_group_reference_statement.rule_action_override.action_to_use.challenge` argument ([#31127](https://togithub.com/hashicorp/terraform-provider-aws/issues/31127))
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
5.12.0->5.15.0Release Notes
hashicorp/terraform-provider-aws (aws)
### [`v5.15.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5150-August-31-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.14.0...v5.15.0) ENHANCEMENTS: - data-source/aws_efs_file_system: Add `name` attribute ([#33243](https://togithub.com/hashicorp/terraform-provider-aws/issues/33243)) - data-source/aws_lakeformation_data_lake_settings: Add `read_only_admins` attribute ([#33189](https://togithub.com/hashicorp/terraform-provider-aws/issues/33189)) - data-source/aws_opensearch_domain: Add `cluster_config.multi_az_with_standby_enabled` attribute ([#33031](https://togithub.com/hashicorp/terraform-provider-aws/issues/33031)) - resource/aws_cloudformation_stack_set: Support resource import with `call_as = "DELEGATED_ADMIN"` via *StackSetName*,*CallAs* syntax for `import` block or `terraform import` command ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092)) - resource/aws_cloudformation_stack_set_instance: Support resource import with `call_as = "DELEGATED_ADMIN"` via *StackSetName*,*AccountID*,*Region*,*CallAs* syntax for `import` block or `terraform import` command ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092)) - resource/aws_datasync_location_fsx_openzfs_file_system: Fix `setting protocol: Invalid address to set` errors ([#33225](https://togithub.com/hashicorp/terraform-provider-aws/issues/33225)) - resource/aws_efs_file_system: Add `name` attribute ([#33243](https://togithub.com/hashicorp/terraform-provider-aws/issues/33243)) - resource/aws_fsx_openzfs_file_system: Add `endpoint_ip_address_range`, `preferred_subnet_id` and `route_table_ids` arguments to support the [Multi-AZ deployment type](https://docs.aws.amazon.com/fsx/latest/OpenZFSGuide/availability-durability.html#choosing-single-or-multi) ([#33245](https://togithub.com/hashicorp/terraform-provider-aws/issues/33245)) - resource/aws_lakeformation_data_lake_settings: Add `read_only_admins` argument ([#33189](https://togithub.com/hashicorp/terraform-provider-aws/issues/33189)) - resource/aws_opensearch_domain: Add `cluster_config.multi_az_with_standby_enabled` argument ([#33031](https://togithub.com/hashicorp/terraform-provider-aws/issues/33031)) - resource/aws_wafv2\_rule_group: Add `name_prefix` argument ([#33206](https://togithub.com/hashicorp/terraform-provider-aws/issues/33206)) - resource/aws_wafv2\_web_acl: Add `statement.managed_rule_group_statement.managed_rule_group_configs.aws_managed_rules_atp_rule_set.enable_regex_in_path` argument ([#33217](https://togithub.com/hashicorp/terraform-provider-aws/issues/33217)) BUG FIXES: - provider: Correctly use old and new tag values when updating `tags` that are `computed` ([#33226](https://togithub.com/hashicorp/terraform-provider-aws/issues/33226)) - resource/aws_appflow_connector_profile: Fix validation on `oauth2` in `custom_connector_profile` ([#33192](https://togithub.com/hashicorp/terraform-provider-aws/issues/33192)) - resource/aws_cloudformation_stack_set: Fix `Can only set RetainStacksOnAccountRemoval if AutoDeployment is enabled` errors ([#19092](https://togithub.com/hashicorp/terraform-provider-aws/issues/19092)) - resource/aws_cloudwatch_event_bus_policy: Fix error during plan when the associated aws_cloudwatch_event_bus resource is manually deleted ([#33203](https://togithub.com/hashicorp/terraform-provider-aws/issues/33203)) - resource/aws_codeartifact_domain: Change the type of asset_size_bytes to `TypeString` instead of `TypeInt` to prevent `value out of range` panic ([#33220](https://togithub.com/hashicorp/terraform-provider-aws/issues/33220)) - resource/aws_efs_file_system_policy: Retry IAM eventual consistency errors ([#21734](https://togithub.com/hashicorp/terraform-provider-aws/issues/21734)) - resource/aws_fsx_openzfs_file_system: Wait for administrative action completion when updating root volume ([#33245](https://togithub.com/hashicorp/terraform-provider-aws/issues/33245)) - resource/aws_iot_thing_type: Fix error during plan when resource is manually deleted ([#33203](https://togithub.com/hashicorp/terraform-provider-aws/issues/33203)) - resource/aws_kms_key: Fix `tag propagation: timeout while waiting for state to become 'TRUE'` errors when any tag value is empty (`""`) ([#33226](https://togithub.com/hashicorp/terraform-provider-aws/issues/33226)) - resource/aws_wafv2\_web_acl: Prevent deletion of the AWS-managed `ShieldMitigationRuleGroup` rule on resource Update ([#33216](https://togithub.com/hashicorp/terraform-provider-aws/issues/33216)) ### [`v5.14.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5140-August-24-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.13.1...v5.14.0) NOTES: - data-source/aws_iam_policy_document: In some cases, `statement.*.condition` blocks with the same `test` and `variable` arguments were incorrectly handled by the provider. Since this results in unexpected IAM Policies being submitted to AWS, we have updated the logic to merge `values` lists in this case. This may cause existing IAM Policy documents to report a difference. However, those policies are likely not what was originally intended. ([#33093](https://togithub.com/hashicorp/terraform-provider-aws/issues/33093)) FEATURES: - **New Resource:** `aws_datasync_location_azure_blob` ([#32632](https://togithub.com/hashicorp/terraform-provider-aws/issues/32632)) - **New Resource:** `aws_datasync_location_fsx_ontap_file_system` ([#32632](https://togithub.com/hashicorp/terraform-provider-aws/issues/32632)) ENHANCEMENTS: - data-source/aws_dms_endpoint: Fix crash when specified endpoint not found ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158)) - data-source/aws_dms_replication_instance: Add `network_type` attribute ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158)) - data-source/aws_ec2\_network_insights_path: Add `destination_arn` and `source_arn` attributes ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168)) - resource/aws_dms_replication_instance: Add `network_type` argument ([#33158](https://togithub.com/hashicorp/terraform-provider-aws/issues/33158)) - resource/aws_ec2\_network_insights_path: Add `destination_arn` and `source_arn` attributes ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168)) - resource/aws_finspace_kx_environment: Add `transit_gateway_configuration.*.attachment_network_acl_configuration` argument. ([#33123](https://togithub.com/hashicorp/terraform-provider-aws/issues/33123)) - resource/aws_medialive_channel: Updates schemas for `selector_settings` for `audio_selector` and `selector_settings` for `caption_selector` ([#32714](https://togithub.com/hashicorp/terraform-provider-aws/issues/32714)) - resource/aws_ssoadmin_account_assignment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) - resource/aws_ssoadmin_customer_managed_policy_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) - resource/aws_ssoadmin_managed_policy_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) - resource/aws_ssoadmin_permission_set: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) - resource/aws_ssoadmin_permission_set_inline_policy: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) - resource/aws_ssoadmin_permissions_boundary_attachment: Add configurable timeouts ([#33121](https://togithub.com/hashicorp/terraform-provider-aws/issues/33121)) BUG FIXES: - data-source/aws_iam_policy_document: Fix inconsistent handling of `condition` blocks with duplicated `test` and `variable` arguments ([#33093](https://togithub.com/hashicorp/terraform-provider-aws/issues/33093)) - resource/aws_ec2\_host: Fixed a bug that caused resource recreation when specifying an `outpost_arn` without an `asset_id` ([#33142](https://togithub.com/hashicorp/terraform-provider-aws/issues/33142)) - resource/aws_ec2\_network_insights_analysis: Fix `setting forward_path_components: Invalid address to set` errors ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168)) - resource/aws_ec2\_network_insights_path: Avoid recreating resource when passing an ARN as `source` or `destination` ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168)) - resource/aws_ec2\_network_insights_path: Retry `AnalysisExistsForNetworkInsightsPath` errors on resource Delete ([#33168](https://togithub.com/hashicorp/terraform-provider-aws/issues/33168)) - resource/aws_kms_key: Fix `tag propagation: timeout while waiting for state to become 'TRUE'` errors when [`ignore_tags`](https://registry.terraform.io/providers/hashicorp/aws/latest/docs#ignore_tags) has been configured ([#33167](https://togithub.com/hashicorp/terraform-provider-aws/issues/33167)) - resource/aws_licensemanager_license_configuration: Surface `InvalidParameterValueException` errors during resource Delete ([#32845](https://togithub.com/hashicorp/terraform-provider-aws/issues/32845)) - resource/aws_msk_cluster_policy: Fix `Current cluster policy version needed for Update` errors ([#33118](https://togithub.com/hashicorp/terraform-provider-aws/issues/33118)) - resource/aws_quicksight_analysis: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120)) - resource/aws_quicksight_analysis: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122)) - resource/aws_quicksight_analysis: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161)) - resource/aws_quicksight_dashboard: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120)) - resource/aws_quicksight_dashboard: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122)) - resource/aws_quicksight_dashboard: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161)) - resource/aws_quicksight_template: Change `definition.*.parameter_declarations` to a set type, preventing persistent differences ([#33120](https://togithub.com/hashicorp/terraform-provider-aws/issues/33120)) - resource/aws_quicksight_template: Fixed a bug that caused errors related to the `word_orientation` argument when using word cloud visuals. ([#33122](https://togithub.com/hashicorp/terraform-provider-aws/issues/33122)) - resource/aws_quicksight_template: Skip setting `definition.*.parameter_declarations.*.*_parameter_declaration.static_values` when empty, preventing persistent differences. ([#33161](https://togithub.com/hashicorp/terraform-provider-aws/issues/33161)) - resource/aws_route53\_zone: Skip disabling DNS SEC in unsupported partitions ([#33103](https://togithub.com/hashicorp/terraform-provider-aws/issues/33103)) - resource/aws_s3\_object: Mark `acl` as Computed. This suppresses the diffs shown when migrating resources with no configured `acl` attribute value from v4.67.0 (or earlier) ([#33138](https://togithub.com/hashicorp/terraform-provider-aws/issues/33138)) - resource/aws_s3\_object_copy: Mark `acl` as Computed. This suppresses the diffs shown when migrating resources with no configured `acl` attribute value from v4.67.0 (or earlier) ([#33138](https://togithub.com/hashicorp/terraform-provider-aws/issues/33138)) - resource/aws_securityhub_account: Remove default value (`SECURITY_CONTROL`) for `control_finding_generator` argument and mark as Computed ([#33095](https://togithub.com/hashicorp/terraform-provider-aws/issues/33095)) ### [`v5.13.1`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5131-August-18-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.13.0...v5.13.1) BUG FIXES: - resource/aws_lambda_layer_version: Change `source_code_hash` back to [ForceNew](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#forcenew). This fixes `doesn't support update` errors ([#33097](https://togithub.com/hashicorp/terraform-provider-aws/issues/33097)) - resource/aws_organizations_organization: Fix `current Organization ID (o-xxxxxxxxxx) does not match` errors on resource Read ([#33091](https://togithub.com/hashicorp/terraform-provider-aws/issues/33091)) ### [`v5.13.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#5130-August-18-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v5.12.0...v5.13.0) FEATURES: - **New Resource:** `aws_msk_cluster_policy` ([#32848](https://togithub.com/hashicorp/terraform-provider-aws/issues/32848)) - **New Resource:** `aws_opensearch_vpc_endpoint` ([#32435](https://togithub.com/hashicorp/terraform-provider-aws/issues/32435)) - **New Resource:** `aws_ram_sharing_with_organization` ([#25433](https://togithub.com/hashicorp/terraform-provider-aws/issues/25433)) ENHANCEMENTS: - data-source/aws_imagebuilder_image_pipeline: Add `image_scanning_configuration` attribute ([#33005](https://togithub.com/hashicorp/terraform-provider-aws/issues/33005)) - data-source/aws_ram_resource_share: Add `resource_arns` attribute ([#22591](https://togithub.com/hashicorp/terraform-provider-aws/issues/22591)) - provider: Adds the `s3_us_east_1_regional_endpoint` attribute to support using the regional S3 API endpoint in `us-east-1`. ([#33024](https://togithub.com/hashicorp/terraform-provider-aws/issues/33024)) - resource/aws_appstream_fleet: Retry ConcurrentModificationException errors during creation ([#32958](https://togithub.com/hashicorp/terraform-provider-aws/issues/32958)) - resource/aws_dms_endpoint: Add `babelfish` as an `engine_name` option ([#32975](https://togithub.com/hashicorp/terraform-provider-aws/issues/32975)) - resource/aws_imagebuilder_image_pipeline: Add `image_scanning_configuration` configuration block ([#33005](https://togithub.com/hashicorp/terraform-provider-aws/issues/33005)) - resource/aws_lb: Changes to `security_groups` for Network Load Balancers force a new resource if either the old or new set of security group IDs is empty ([#32987](https://togithub.com/hashicorp/terraform-provider-aws/issues/32987)) - resource/aws_rds_global_cluster: Add plan-time validation of `global_cluster_identifier` ([#30996](https://togithub.com/hashicorp/terraform-provider-aws/issues/30996)) BUG FIXES: - data-source/aws_ecr_repository: Correctly set `most_recent_image_tags` when only a single image is found ([#31757](https://togithub.com/hashicorp/terraform-provider-aws/issues/31757)) - resource/aws_budgets_budget_action: No longer times out when creating a non-triggered action ([#33015](https://togithub.com/hashicorp/terraform-provider-aws/issues/33015)) - resource/aws_cloudformation_stack: Marks `outputs` as Computed when there are potential changes. ([#33059](https://togithub.com/hashicorp/terraform-provider-aws/issues/33059)) - resource/aws_cloudwatch_event_rule: Fix ARN-based partner event bus rule ID parsing error ([#30293](https://togithub.com/hashicorp/terraform-provider-aws/issues/30293)) - resource/aws_ecr_registry_scanning_configuration: Correctly delete rules on resource Update ([#31449](https://togithub.com/hashicorp/terraform-provider-aws/issues/31449)) - resource/aws_lambda_layer_version: Fix bug causing new version to be created on every apply when `source_code_hash` is used but not changed ([#32535](https://togithub.com/hashicorp/terraform-provider-aws/issues/32535)) - resource/aws_lb_listener_certificate: Remove from state when listener not found ([#32412](https://togithub.com/hashicorp/terraform-provider-aws/issues/32412)) - resource/aws_organizations_organization: Ensure that the Organization ID specified in `terraform import` is the current Organization ([#31796](https://togithub.com/hashicorp/terraform-provider-aws/issues/31796)) - resource/aws_quicksight_analysis: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012)) - resource/aws_quicksight_analysis: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040)) - resource/aws_quicksight_analysis: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023)) - resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018)) - resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018)) - resource/aws_quicksight_analysis: Enable `font_configuration` to be set for table header styles ([#33018](https://togithub.com/hashicorp/terraform-provider-aws/issues/33018)) - resource/aws_quicksight_analysis: Raise limit for maximum allowed `visuals` blocks per sheet to 50 ([#32856](https://togithub.com/hashicorp/terraform-provider-aws/issues/32856)) - resource/aws_quicksight_dashboard: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012)) - resource/aws_quicksight_dashboard: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040)) - resource/aws_quicksight_dashboard: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023)) - resource/aws_quicksight_data_set: Change permission attribute type from TypeList to TypeSet ([#32984](https://togithub.com/hashicorp/terraform-provider-aws/issues/32984)) - resource/aws_quicksight_template: Adjust max items of `definition.*.calculated_fields` to 500 ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012)) - resource/aws_quicksight_template: Adjust max length of `definition.*.calculated_fields.*.expression` to 32000 characters ([#33012](https://togithub.com/hashicorp/terraform-provider-aws/issues/33012)) - resource/aws_quicksight_template: Convert `definition.*.calculated_fields` to a set type, preventing persistent differences ([#33040](https://togithub.com/hashicorp/terraform-provider-aws/issues/33040)) - resource/aws_quicksight_template: Convert `permissions` argument to TypeSet, preventing persistent differences ([#33023](https://togithub.com/hashicorp/terraform-provider-aws/issues/33023)) - resource/aws_s3\_bucket_logging: Fix perpetual drift when `expected_bucket_owner` is configured ([#32989](https://togithub.com/hashicorp/terraform-provider-aws/issues/32989)) - resource/aws_sagemaker_domain: Fix validation on `s3_kms_key_id` in `sharing_settings` and `kms_key_id` ([#32661](https://togithub.com/hashicorp/terraform-provider-aws/issues/32661)) - resource/aws_subnet: Fix allowing IPv6 to be enabled in an update after initial creation with IPv4 only ([#32896](https://togithub.com/hashicorp/terraform-provider-aws/issues/32896)) - resource/aws_wafv2\_web_acl: Adds `rule_group_reference_statement.rule_action_override.action_to_use.challenge` argument ([#31127](https://togithub.com/hashicorp/terraform-provider-aws/issues/31127))Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.