hashicorp/terraform-provider-aws
### [`v4.62.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4620-April-6-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.61.0...v4.62.0)
FEATURES:
- **New Data Source:** `aws_ec2_transit_gateway_attachments` ([#29644](https://togithub.com/hashicorp/terraform-provider-aws/issues/29644))
- **New Data Source:** `aws_ec2_transit_gateway_route_table_associations` ([#29642](https://togithub.com/hashicorp/terraform-provider-aws/issues/29642))
- **New Data Source:** `aws_ec2_transit_gateway_route_table_propagations` ([#29640](https://togithub.com/hashicorp/terraform-provider-aws/issues/29640))
- **New Data Source:** `aws_oam_link` ([#30401](https://togithub.com/hashicorp/terraform-provider-aws/issues/30401))
- **New Data Source:** `aws_oam_links` ([#30401](https://togithub.com/hashicorp/terraform-provider-aws/issues/30401))
- **New Data Source:** `aws_quicksight_data_set` ([#30422](https://togithub.com/hashicorp/terraform-provider-aws/issues/30422))
- **New Data Source:** `aws_vpclattice_service` ([#30490](https://togithub.com/hashicorp/terraform-provider-aws/issues/30490))
- **New Resource:** `aws_inspector2_member_association` ([#28921](https://togithub.com/hashicorp/terraform-provider-aws/issues/28921))
- **New Resource:** `aws_lightsail_distribution` ([#30124](https://togithub.com/hashicorp/terraform-provider-aws/issues/30124))
- **New Resource:** `aws_quicksight_account_subscription` ([#30359](https://togithub.com/hashicorp/terraform-provider-aws/issues/30359))
- **New Resource:** `aws_quicksight_data_set` ([#30349](https://togithub.com/hashicorp/terraform-provider-aws/issues/30349))
- **New Resource:** `aws_quicksight_folder` ([#30400](https://togithub.com/hashicorp/terraform-provider-aws/issues/30400))
- **New Resource:** `aws_vpclattice_service` ([#30429](https://togithub.com/hashicorp/terraform-provider-aws/issues/30429))
- **New Resource:** `aws_vpclattice_service_network` ([#35969](https://togithub.com/hashicorp/terraform-provider-aws/issues/35969))
ENHANCEMENTS:
- data-source/aws_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515))
- data-source/aws_secretsmanager_secret: Add `rotation_rules.duration` and `rotation_rules.schedule_expression` attributes ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425))
- data-source/aws_secretsmanager_secret_rotation: Add `rotation_rules.duration` and `rotation_rules.schedule_expression` attributes ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425))
- resource/aws_default_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515))
- resource/aws_emrserverless_application: Add `image_configuration` field ([#30398](https://togithub.com/hashicorp/terraform-provider-aws/issues/30398))
- resource/aws_imagebuilder_container_recipe: Add `platform_override` field ([#30398](https://togithub.com/hashicorp/terraform-provider-aws/issues/30398))
- resource/aws_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515))
- resource/aws_s3\_bucket: Enable S3-compatible providers with no support for bucket tagging ([#30151](https://togithub.com/hashicorp/terraform-provider-aws/issues/30151))
- resource/aws_sagemaker_endpoint_configuration: Add `name_prefix` argument ([#28785](https://togithub.com/hashicorp/terraform-provider-aws/issues/28785))
- resource/aws_sagemaker_feature_group: Add `table_format` to the `offline_store_config` configuration block ([#30118](https://togithub.com/hashicorp/terraform-provider-aws/issues/30118))
- resource/aws_secretsmanager_secret: Add `duration` and `schedule_expression` attributes to `rotation_rules` configuration block ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425))
- resource/aws_secretsmanager_secret_rotation: Add `duration` and `schedule_expression` attributes to `rotation_rules` configuration block ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425))
BUG FIXES:
- resource/aws_ce_cost_category: Fixed `effective_start` being reset on any changes despite `effective_start` having the same value ([#30369](https://togithub.com/hashicorp/terraform-provider-aws/issues/30369))
- resource/aws_db_instance: Fix crash when updating `password` ([#30379](https://togithub.com/hashicorp/terraform-provider-aws/issues/30379))
- resource/aws_glue_crawler: Fix InvalidInputException error string matching ([#30370](https://togithub.com/hashicorp/terraform-provider-aws/issues/30370))
- resource/aws_glue_trigger: Fix InvalidInputException error string matching ([#30370](https://togithub.com/hashicorp/terraform-provider-aws/issues/30370))
- resource/aws_medialive_channel: Fix attribute `certificate_mode` spelling in `rtmp_output_settings` ([#30224](https://togithub.com/hashicorp/terraform-provider-aws/issues/30224))
- resource/aws_rds_cluster: Fix crash when updating `master_password` ([#30379](https://togithub.com/hashicorp/terraform-provider-aws/issues/30379))
- resource/aws_rds_cluster: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247))
- resource/aws_rds_cluster: Send `db_instance_parameter_group_name` on all modify requests when set ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247))
- resource/aws_rds_cluster_instance: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247))
- resource/aws_rds_instance: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247))
- resource/aws_s3\_bucket_lifecycle_configuration: Allow `rule.filter.object_size_greater_than` = 0 ([#29857](https://togithub.com/hashicorp/terraform-provider-aws/issues/29857))
- resource/aws_scheduler_schedule: Mark `arn` property of `dead_letter_config` as a required property ([#30360](https://togithub.com/hashicorp/terraform-provider-aws/issues/30360))
### [`v4.61.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4610-March-30-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.60.0...v4.61.0)
FEATURES:
- **New Data Source:** `aws_appmesh_gateway_route` ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- **New Data Source:** `aws_appmesh_virtual_node` ([#27545](https://togithub.com/hashicorp/terraform-provider-aws/issues/27545))
- **New Data Source:** `aws_appmesh_virtual_router` ([#26908](https://togithub.com/hashicorp/terraform-provider-aws/issues/26908))
- **New Data Source:** `aws_globalaccelerator_custom_routing_accelerator` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- **New Data Source:** `aws_oam_sink` ([#30258](https://togithub.com/hashicorp/terraform-provider-aws/issues/30258))
- **New Data Source:** `aws_oam_sinks` ([#30258](https://togithub.com/hashicorp/terraform-provider-aws/issues/30258))
- **New Data Source:** `aws_ssmincidents_replication_set` ([#29769](https://togithub.com/hashicorp/terraform-provider-aws/issues/29769))
- **New Resource:** `aws_globalaccelerator_custom_routing_accelerator` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- **New Resource:** `aws_globalaccelerator_custom_routing_endpoint_group` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- **New Resource:** `aws_globalaccelerator_custom_routing_listener` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- **New Resource:** `aws_rbin_rule` ([#25926](https://togithub.com/hashicorp/terraform-provider-aws/issues/25926))
- **New Resource:** `aws_sns_topic_data_protection_policy` ([#30008](https://togithub.com/hashicorp/terraform-provider-aws/issues/30008))
- **New Resource:** `aws_ssmincidents_replication_set` ([#29769](https://togithub.com/hashicorp/terraform-provider-aws/issues/29769))
ENHANCEMENTS:
- data-source/aws_db_instance: Add `master_user_secret` attribute ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848))
- data-source/aws_globalaccelerator_accelerator: Add `dual_stack_dns_name` attribute ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- data-source/aws_rds_cluster: Add `master_user_secret` attribute ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848))
- resource/aws_appmesh_gateway_route: Add `header`, `path` and `query_parameter` to the `spec.http_route.match` and `spec.http2_route.match` configuration blocks ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_appmesh_gateway_route: Add `port` to the `spec.grpc_route.action.target`, `spec.http_route.action.target` and `spec.http2_route.action.target` configuration blocks to support Virtual Services with multiple listeners ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_appmesh_gateway_route: Add `priority` to the `spec` configuration block ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_appmesh_route: Add `path` and `query_parameter` to the `spec.http_route.match` and `spec.http2_route.match` configuration blocks ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_appmesh_route: `spec.http_route.match.prefix` and `spec.http2_route.match.prefix` are Optional ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_appmesh_virtual_node: Add `ip_preference` and `response_type` to the `spec.service_discovery.dns` configuration block ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_db_instance: Add `manage_master_user_password`, `master_user_secret` and `master_user_secret_kms_key_id` arguments to support RDS managed master password in Secrets Manager ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848))
- resource/aws_globalaccelerator_accelerator: Add `dual_stack_dns_name` attribute ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922))
- resource/aws_lakeformation_lf_tag: Increase values MaxItem up to 1000 to match with AWS real limit ([#26546](https://togithub.com/hashicorp/terraform-provider-aws/issues/26546))
- resource/aws_rds_cluster: Add `manage_master_user_password`, `master_user_secret` and `master_user_secret_kms_key_id` arguments to support RDS managed master password in Secrets Manager ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848))
- resource/aws_sagemaker_endpoint_configuration: Add `production_variants.enable_ssm_access` and `shadow_production_variants.enable_ssm_access` arguments ([#30267](https://togithub.com/hashicorp/terraform-provider-aws/issues/30267))
BUG FIXES:
- datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.container_overrides.*.environment` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214))
- datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.container_overrides.*.resource_requirements` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214))
- datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.inference_accelerator_overrides` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214))
- resource/aws_appmesh_virtual_router: `spec.listener` is Optional ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064))
- resource/aws_fsx_openzfs_file_system: Fix `iops` validation in `disk_iops_configuration` to allow values for `SINGLE_AZ_1` and `SINGLE_AZ_2` ([#30299](https://togithub.com/hashicorp/terraform-provider-aws/issues/30299))
- resource/aws_lakeformation_lf_tag: Fix support for lf-tag keys with colons in the name ([#28258](https://togithub.com/hashicorp/terraform-provider-aws/issues/28258))
- resource/aws_launch_template: Allow `metadata_options` to be applied when `http_endpoint` is not configured ([#30107](https://togithub.com/hashicorp/terraform-provider-aws/issues/30107))
- resource/aws_ssm_activation: Fix IAM eventual consistency errors on resource Create ([#30280](https://togithub.com/hashicorp/terraform-provider-aws/issues/30280))
- resource/aws_ssm_document: Correctly set `default_version`, `document_version`, `hash`, `latest_version` and `parameter` as Computed when `content` changes ([#28489](https://togithub.com/hashicorp/terraform-provider-aws/issues/28489))
- resource/aws_wafv2\_ip_set: Fix `DiffSuppress` on `addresses` to detect changes for unknown values ([#30352](https://togithub.com/hashicorp/terraform-provider-aws/issues/30352))
### [`v4.60.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4600-March-24-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.59.0...v4.60.0)
FEATURES:
- **New Data Source:** `aws_appmesh_route` ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695))
- **New Data Source:** `aws_appmesh_virtual_gateway` ([#27057](https://togithub.com/hashicorp/terraform-provider-aws/issues/27057))
- **New Resource:** `aws_cognito_managed_user_pool_client` ([#30140](https://togithub.com/hashicorp/terraform-provider-aws/issues/30140))
- **New Resource:** `aws_oam_link` ([#30125](https://togithub.com/hashicorp/terraform-provider-aws/issues/30125))
- **New Resource:** `aws_sesv2_contact_list` ([#30094](https://togithub.com/hashicorp/terraform-provider-aws/issues/30094))
ENHANCEMENTS:
- data-source/aws_ecs_cluster: Add `tags` attribute ([#30073](https://togithub.com/hashicorp/terraform-provider-aws/issues/30073))
- resource/aws_appmesh_virtual_gateway: Add `logging.access_log.file.format` configuration block ([#29315](https://togithub.com/hashicorp/terraform-provider-aws/issues/29315))
- resource/aws_appmesh_virtual_node: Add `logging.access_log.file.format` configuration block ([#29315](https://togithub.com/hashicorp/terraform-provider-aws/issues/29315))
- resource/aws_rds_cluster: Conflict `snapshot_identifier` and `global_cluster_identifier` attributes, preventing misleading results on restore ([#30158](https://togithub.com/hashicorp/terraform-provider-aws/issues/30158))
- resource/aws_securityhub_account: Add `enable_default_standards` argument ([#13477](https://togithub.com/hashicorp/terraform-provider-aws/issues/13477))
- resource/aws_securityhub_member: `email` is Optional ([#19065](https://togithub.com/hashicorp/terraform-provider-aws/issues/19065))
BUG FIXES:
- data-source/aws_appmesh_mesh: Don't attempt to list tags if the current AWS account is not the mesh owner ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695))
- data-source/aws_appmesh_virtual_service: Don't attempt to list tags if the current AWS account is not the mesh owner ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695))
- resource/aws_apigateway_domain_name: Add ability to update `mutual_tls_authentication.truststore_uri` in place ([#30081](https://togithub.com/hashicorp/terraform-provider-aws/issues/30081))
- resource/aws_apigatewayv2\_domain_name: Add ability to update `mutual_tls_authentication.truststore_uri` in place ([#30081](https://togithub.com/hashicorp/terraform-provider-aws/issues/30081))
- resource/aws_appmesh_gateway_route: Use configured `mesh_owner` when deleting shared gateway route ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_appmesh_route: Use configured `mesh_owner` value when deleting shared route ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_appmesh_virtual_gateway: Use configured `mesh_owner` value when deleting shared virtual gateway ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_appmesh_virtual_node: Use configured `mesh_owner` value when deleting shared virtual node ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_appmesh_virtual_router: Use configured `mesh_owner` value when deleting shared virtual router ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_appmesh_virtual_service: Use configured `mesh_owner` value when deleting shared virtual service ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362))
- resource/aws_cognito_risk_configuration: Adds validation to `risk_exception_configuration` and requires at least one of `account_takeover_risk_configuration`, `compromised_credentials_risk_configuration`, or `risk_exception_configuration`. ([#30074](https://togithub.com/hashicorp/terraform-provider-aws/issues/30074))
- resource/aws_medialive_channel: Change `TypeSet` to `TypeList` on `video_description`, to get more precise actions from plan output ([#30064](https://togithub.com/hashicorp/terraform-provider-aws/issues/30064))
- resource/aws_medialive_channel: Fix type casting for `h264_settings` in `video_descriptions` ([#30063](https://togithub.com/hashicorp/terraform-provider-aws/issues/30063))
- resource/aws_medialive_channel: Fix type casting of `program_num`, `segmentation_time` and `fragment_time` for `m2ts_settings` ([#30025](https://togithub.com/hashicorp/terraform-provider-aws/issues/30025))
- resource/aws_opsworks_application: Don't return an error like `deleting OpsWorks Application (...): %!s()` after successful Delete ([#30101](https://togithub.com/hashicorp/terraform-provider-aws/issues/30101))
- resource/aws_pinpoint_app: Don't return an error like `deleting Pinpoint Application (...): %!s()` after successful Delete ([#30101](https://togithub.com/hashicorp/terraform-provider-aws/issues/30101))
- resource/aws_placement_group: Change `spread_level` to Computed ([#28596](https://togithub.com/hashicorp/terraform-provider-aws/issues/28596))
- resource/aws_security_group: Improve respect for delete timeout set by user and retry of certain errors ([#30114](https://togithub.com/hashicorp/terraform-provider-aws/issues/30114))
- resource/aws_transfer_server: Fix error refreshing `protocol_details.as2_transports` value ([#30115](https://togithub.com/hashicorp/terraform-provider-aws/issues/30115))
### [`v4.59.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4590-March-16-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.58.0...v4.59.0)
NOTES:
- resource/aws_connect_queue: The `quick_connect_ids_associated` attribute is being deprecated in favor of `quick_connect_ids` ([#26151](https://togithub.com/hashicorp/terraform-provider-aws/issues/26151))
- resource/aws_connect_routing_profile: The `queue_configs_associated` attribute is being deprecated in favor of `queue_configs` ([#26151](https://togithub.com/hashicorp/terraform-provider-aws/issues/26151))
FEATURES:
- **New Data Source:** `aws_ec2_public_ipv4_pool` ([#28245](https://togithub.com/hashicorp/terraform-provider-aws/issues/28245))
- **New Data Source:** `aws_ec2_public_ipv4_pools` ([#28245](https://togithub.com/hashicorp/terraform-provider-aws/issues/28245))
- **New Data Source:** `aws_servicecatalog_provisioning_artifacts` ([#25535](https://togithub.com/hashicorp/terraform-provider-aws/issues/25535))
- **New Resource:** `aws_codegurureviewer_repository_association` ([#29656](https://togithub.com/hashicorp/terraform-provider-aws/issues/29656))
- **New Resource:** `aws_emr_block_public_access_configuration` ([#29968](https://togithub.com/hashicorp/terraform-provider-aws/issues/29968))
- **New Resource:** `aws_kms_key_policy` ([#29923](https://togithub.com/hashicorp/terraform-provider-aws/issues/29923))
- **New Resource:** `aws_oam_sink` ([#29670](https://togithub.com/hashicorp/terraform-provider-aws/issues/29670))
- **New Resource:** `aws_oam_sink_policy` ([#30020](https://togithub.com/hashicorp/terraform-provider-aws/issues/30020))
ENHANCEMENTS:
- aws_cognito_user_pool_domain: Add ability to update `certificate_arn` in place ([#25275](https://togithub.com/hashicorp/terraform-provider-aws/issues/25275))
- data-source/aws_aws_lb: Add `enable_xff_client_port`, `xff_header_processing_mode` and `enable_tls_version_and_cipher_suite_headers` attributes ([#29792](https://togithub.com/hashicorp/terraform-provider-aws/issues/29792))
- data-source/aws_ce_cost_category: Add `default_value` attribute ([#29291](https://togithub.com/hashicorp/terraform-provider-aws/issues/29291))
- data-source/aws_dynamodb_table: Add `deletion_protection_enabled` attribute ([#29924](https://togithub.com/hashicorp/terraform-provider-aws/issues/29924))
- data-source/aws_opensearch_domain: Add `dashboard_endpoint` attribute ([#29867](https://togithub.com/hashicorp/terraform-provider-aws/issues/29867))
- resource/aws_amplify_domain_association: Add `enable_auto_sub_domain` argument ([#29814](https://togithub.com/hashicorp/terraform-provider-aws/issues/29814))
- resource/aws_appflow_flow: Add attribute `preserve_source_data_typing` to `s3_output_format_config` in `s3` ([#27616](https://togithub.com/hashicorp/terraform-provider-aws/issues/27616))
- resource/aws_appsync_datasource: Add `event_bridge_config` argument to support AppSync EventBridge data sources ([#30042](https://togithub.com/hashicorp/terraform-provider-aws/issues/30042))
- resource/aws_aws_lb: Add `enable_xff_client_port`, `xff_header_processing_mode` and `enable_tls_version_and_cipher_suite_headers` arguments ([#29792](https://togithub.com/hashicorp/terraform-provider-aws/issues/29792))
- resource/aws_batch_compute_environment: Allow a maximum of 2 `compute_resources.ec2_configuration`s ([#27207](https://togithub.com/hashicorp/terraform-provider-aws/issues/27207))
- resource/aws_cloudwatch_metric_alarm: Add `period` parameter to `metric_query` ([#29896](https://togithub.com/hashicorp/terraform-provider-aws/issues/29896))
- resource/aws_cloudwatch_metric_alarm: Add validation to `period` parameter of `metric_query.metric` ([#29896](https://togithub.com/hashicorp/terraform-provider-aws/issues/29896))
- resource/aws_cognito_user_pool_domain: Add `cloudfront_distribution` and `cloudfront_distribution_zone_id` attributes ([#27790](https://togithub.com/hashicorp/terraform-provider-aws/issues/27790))
- resource/aws_dynamodb_table: Add `deletion_protection_enabled` argument ([#29924](https://togithub.com/hashicorp/terraform-provider-aws/issues/29924))
- resource/aws_ecs_task_definition: Add `arn_without_revision` attribute ([#27351](https://togithub.com/hashicorp/terraform-provider-aws/issues/27351))
- resource/aws_elasticache_user: Add `authentication_mode` argument ([#28928](https://togithub.com/hashicorp/terraform-provider-aws/issues/28928))
- resource/aws_fms_policy: Add `description` argument ([#29926](https://togithub.com/hashicorp/terraform-provider-aws/issues/29926))
- resource/aws_fsx_openzfs_file_system: Add support for `SINGLE_AZ_2` `deployment_type` ([#28583](https://togithub.com/hashicorp/terraform-provider-aws/issues/28583))
- resource/aws_glue_crawler: Add `create_native_delta_table` attribute to the `delta_target` configuration block ([#29566](https://togithub.com/hashicorp/terraform-provider-aws/issues/29566))
- resource/aws_inspector2\_organization_configuration: Add `lambda` attribute to `auto_enable` configuration block ([#28961](https://togithub.com/hashicorp/terraform-provider-aws/issues/28961))
- resource/aws_instance: Add ability to update `private_dns_name_options` in place ([#26305](https://togithub.com/hashicorp/terraform-provider-aws/issues/26305))
- resource/aws_lb_target_group: Add `load_balancing_cross_zone_enabled` argument ([#29920](https://togithub.com/hashicorp/terraform-provider-aws/issues/29920))
- resource/aws_opensearch_domain: Add `dashboard_endpoint` attribute ([#29867](https://togithub.com/hashicorp/terraform-provider-aws/issues/29867))
- resource/aws_qldb_ledger: Add configurable timeouts ([#29635](https://togithub.com/hashicorp/terraform-provider-aws/issues/29635))
- resource/aws_s3\_bucket: Add error handling for `XNotImplemented` errors when reading `acceleration_status`, `request_payer`, `lifecycle_rule`, `logging`, or `replication_configuration` into terraform state. ([#29632](https://togithub.com/hashicorp/terraform-provider-aws/issues/29632))
- resource/aws_securityhub_organization_configuration: Add `auto_enable_standards` attribute ([#29773](https://togithub.com/hashicorp/terraform-provider-aws/issues/29773))
- resource/aws_wafv2\_web_acl_association: Add configurable timeout for Create ([#30002](https://togithub.com/hashicorp/terraform-provider-aws/issues/30002))
BUG FIXES:
- data-source/aws_opensearch_domain: Add missing `advanced_security_options.anonymous_auth_enabled` attribute ([#26746](https://togithub.com/hashicorp/terraform-provider-aws/issues/26746))
- resource/aws_api_gateway_integration: Fix bug that cleared unchanged `cache_key_parameters` values on Update ([#29991](https://togithub.com/hashicorp/terraform-provider-aws/issues/29991))
- resource/aws_apigatewayv2\_integration: Retry errors like `ConflictException: Unable to complete operation due to concurrent modification. Please try again later.` ([#29735](https://togithub.com/hashicorp/terraform-provider-aws/issues/29735))
- resource/aws_budgets_action: Extend and add configurable timeouts for create and update ([#29976](https://togithub.com/hashicorp/terraform-provider-aws/issues/29976))
- resource/aws_cognito_user_pool: Remove [Computed](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#computed) from `lambda_config.custom_email_sender` and `lambda_config.custom_sms_sender` allowing their values to be removed ([#29047](https://togithub.com/hashicorp/terraform-provider-aws/issues/29047))
- resource/aws_cognito_user_pool: `account_recovery_setting.recovery_mechanism` is Optional+Computed ([#22302](https://togithub.com/hashicorp/terraform-provider-aws/issues/22302))
- resource/aws_ecr_repository: Fix unhandled errors and nil output on read ([#30067](https://togithub.com/hashicorp/terraform-provider-aws/issues/30067))
- resource/aws_elasticache_user: Change `user_id` to [ForceNew](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#forcenew) ([#28928](https://togithub.com/hashicorp/terraform-provider-aws/issues/28928))
- resource/aws_elasticsearch_domain: Remove upper bound validation for `ebs_options.throughput` as the 1,000 MB/s limit can be raised ([#27598](https://togithub.com/hashicorp/terraform-provider-aws/issues/27598))
- resource/aws_lambda_function: Fix empty environment variable update ([#29839](https://togithub.com/hashicorp/terraform-provider-aws/issues/29839))
- resource/aws_lightsail_domain_entry: Allow for the domain entry to begin with an underscore. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056))
- resource/aws_lightsail_domain_entry: Moved the error handling of an improperly formatted ID to be before attempting to access the id_parts. This will cause a proper empty resource message instead of a panic when ID is not properly formed. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056))
- resource/aws_lightsail_instance: Added a check to ensure that the availability_zone value is within the current region of the provider. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056))
- resource/aws_lightsail_instance: Fix `name` validation to allow instances to start with a numeric character ([#29903](https://togithub.com/hashicorp/terraform-provider-aws/issues/29903))
- resource/aws_medialive_channel: Fix setting of `bitrate` and `sample_rate` for `aac_settings`. ([#29807](https://togithub.com/hashicorp/terraform-provider-aws/issues/29807))
- resource/aws_medialive_channel: Fix setting of `bitrate` for `eac3_settings`. ([#29809](https://togithub.com/hashicorp/terraform-provider-aws/issues/29809))
- resource/aws_medialive_channel: Fix spelling for attribute `audio_only_timecode_control` and correct type for `event_id` in `ms_smooth_group_settings` ([#29917](https://togithub.com/hashicorp/terraform-provider-aws/issues/29917))
- resource/aws_medialive_channel: Removed `Compute` flag from `audio_normalization_settings` and `remix_settings` in `audio_descriptions` ([#29859](https://togithub.com/hashicorp/terraform-provider-aws/issues/29859))
- resource/aws_medialive_channel: Removed `Computed` flag from `aac_settings`, ´ac3\_settings` , `eac3\_atmos_settings` , `eac3\_settings` , `mp2\_settings` , `pass_through_settings`and`wav_settings`in`codec_settings\`. ([#29825](https://togithub.com/hashicorp/terraform-provider-aws/issues/29825))
- resource/aws_neptune_cluster: Change lower bound validation for `serverless_v2_scaling_configuration.min_capacity` to 1 Neptune Capacity Unit (NCU) ([#29999](https://togithub.com/hashicorp/terraform-provider-aws/issues/29999))
- resource/aws_network_acl_association: Add retry to read step, resolving `empty result` error ([#26838](https://togithub.com/hashicorp/terraform-provider-aws/issues/26838))
- resource/aws_opensearch_domain: Remove upper bound validation for `ebs_options.throughput` as the 1,000 MB/s limit can be raised ([#27598](https://togithub.com/hashicorp/terraform-provider-aws/issues/27598))
- resource/aws_route: Allow `destination_ipv6_cidr_block` to be specified for a `vpc_endpoint_id` target ([#29994](https://togithub.com/hashicorp/terraform-provider-aws/issues/29994))
- resource/aws_sagemaker_endpoint_configuration: Fix `variant_name` generation when unset ([#29915](https://togithub.com/hashicorp/terraform-provider-aws/issues/29915))
### [`v4.58.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4580-March-10-2023)
[Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.57.1...v4.58.0)
FEATURES:
- **New Data Source:** `aws_ecs_task_execution` ([#29783](https://togithub.com/hashicorp/terraform-provider-aws/issues/29783))
- **New Data Source:** `aws_licensemanager_grants` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741))
- **New Data Source:** `aws_licensemanager_received_license` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741))
- **New Data Source:** `aws_licensemanager_received_licenses` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741))
- **New Resource:** `aws_licensemanager_grant` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741))
- **New Resource:** `aws_licensemanager_grant_accepter` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741))
ENHANCEMENTS:
- data-source/aws_ec2\_transit_gateway_attachment: Add `association_state` and `association_transit_gateway_route_table_id` attributes ([#29648](https://togithub.com/hashicorp/terraform-provider-aws/issues/29648))
- data-source/aws_instances: Add `ipv6_addresses` attribute ([#29794](https://togithub.com/hashicorp/terraform-provider-aws/issues/29794))
- resource/aws_acm_certificate: Change `options` to `Computed` ([#29763](https://togithub.com/hashicorp/terraform-provider-aws/issues/29763))
- resource/aws_amplify_domain_association: Add `enable_auto_sub_domain` argument ([#29814](https://togithub.com/hashicorp/terraform-provider-aws/issues/29814))
- resource/aws_cloudhsm_v2\_hsm: Enforce `ExactlyOneOf` for `availability_zone` and `subnet_id` arguments ([#20891](https://togithub.com/hashicorp/terraform-provider-aws/issues/20891))
- resource/aws_db_instance: Add `listener_endpoint` attribute ([#28434](https://togithub.com/hashicorp/terraform-provider-aws/issues/28434))
- resource/aws_db_instance: Add plan time validations for `backup_retention_period`, `monitoring_interval`, and `monitoring_role_arn` ([#28434](https://togithub.com/hashicorp/terraform-provider-aws/issues/28434))
- resource/aws_flow_log: Add `deliver_cross_account_role` argument ([#29254](https://togithub.com/hashicorp/terraform-provider-aws/issues/29254))
- resource/aws_grafana_workspace: Add `network_access_control` argument ([#29793](https://togithub.com/hashicorp/terraform-provider-aws/issues/29793))
- resource/aws_sesv2\_configuration_set: Add `vdm_options` argument ([#28812](https://togithub.com/hashicorp/terraform-provider-aws/issues/28812))
- resource/aws_transfer_server: Add `protocol_details` argument ([#28621](https://togithub.com/hashicorp/terraform-provider-aws/issues/28621))
- resource/aws_transfer_workflow: Add `decrypt_step_details` to the `on_exception_steps` and `steps` configuration blocks ([#29692](https://togithub.com/hashicorp/terraform-provider-aws/issues/29692))
- resource/db_snapshot: Add `shared_accounts` argument ([#28424](https://togithub.com/hashicorp/terraform-provider-aws/issues/28424))
BUG FIXES:
- resource/aws_acm_certificate: Update `options.certificate_transparency_logging_preference` in place rather than replacing the resource ([#29763](https://togithub.com/hashicorp/terraform-provider-aws/issues/29763))
- resource/aws_batch_job_definition: Prevents perpetual diff when container properties environment variable has empty value. ([#29820](https://togithub.com/hashicorp/terraform-provider-aws/issues/29820))
- resource/aws_elastic_beanstalk_configuration_template: Map errors like `InvalidParameterValue: No Platform named '...' found.` to `resource.NotFoundError` so `terraform refesh` correctly removes the resource from state ([#29863](https://togithub.com/hashicorp/terraform-provider-aws/issues/29863))
- resource/aws_flow_log: Fix IAM eventual consistency errors on resource Create ([#29254](https://togithub.com/hashicorp/terraform-provider-aws/issues/29254))
- resource/aws_grafana_workspace: Allow removing `vpc_configuration` ([#29793](https://togithub.com/hashicorp/terraform-provider-aws/issues/29793))
- resource/aws_medialive_channel: Fix setting of the `include_fec` attribute in `fec_output_settings` ([#29808](https://togithub.com/hashicorp/terraform-provider-aws/issues/29808))
- resource/aws_medialive_channel: Fix setting of the `video_pid` attribute in `m2ts_settings` ([#29824](https://togithub.com/hashicorp/terraform-provider-aws/issues/29824))
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
[ ] If you want to rebase/retry this PR, check this box
This PR has been generated by Mend Renovate. View repository job log here.
This PR contains the following updates:
~> 4.57.0->~> 4.62.0Release Notes
hashicorp/terraform-provider-aws
### [`v4.62.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4620-April-6-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.61.0...v4.62.0) FEATURES: - **New Data Source:** `aws_ec2_transit_gateway_attachments` ([#29644](https://togithub.com/hashicorp/terraform-provider-aws/issues/29644)) - **New Data Source:** `aws_ec2_transit_gateway_route_table_associations` ([#29642](https://togithub.com/hashicorp/terraform-provider-aws/issues/29642)) - **New Data Source:** `aws_ec2_transit_gateway_route_table_propagations` ([#29640](https://togithub.com/hashicorp/terraform-provider-aws/issues/29640)) - **New Data Source:** `aws_oam_link` ([#30401](https://togithub.com/hashicorp/terraform-provider-aws/issues/30401)) - **New Data Source:** `aws_oam_links` ([#30401](https://togithub.com/hashicorp/terraform-provider-aws/issues/30401)) - **New Data Source:** `aws_quicksight_data_set` ([#30422](https://togithub.com/hashicorp/terraform-provider-aws/issues/30422)) - **New Data Source:** `aws_vpclattice_service` ([#30490](https://togithub.com/hashicorp/terraform-provider-aws/issues/30490)) - **New Resource:** `aws_inspector2_member_association` ([#28921](https://togithub.com/hashicorp/terraform-provider-aws/issues/28921)) - **New Resource:** `aws_lightsail_distribution` ([#30124](https://togithub.com/hashicorp/terraform-provider-aws/issues/30124)) - **New Resource:** `aws_quicksight_account_subscription` ([#30359](https://togithub.com/hashicorp/terraform-provider-aws/issues/30359)) - **New Resource:** `aws_quicksight_data_set` ([#30349](https://togithub.com/hashicorp/terraform-provider-aws/issues/30349)) - **New Resource:** `aws_quicksight_folder` ([#30400](https://togithub.com/hashicorp/terraform-provider-aws/issues/30400)) - **New Resource:** `aws_vpclattice_service` ([#30429](https://togithub.com/hashicorp/terraform-provider-aws/issues/30429)) - **New Resource:** `aws_vpclattice_service_network` ([#35969](https://togithub.com/hashicorp/terraform-provider-aws/issues/35969)) ENHANCEMENTS: - data-source/aws_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515)) - data-source/aws_secretsmanager_secret: Add `rotation_rules.duration` and `rotation_rules.schedule_expression` attributes ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425)) - data-source/aws_secretsmanager_secret_rotation: Add `rotation_rules.duration` and `rotation_rules.schedule_expression` attributes ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425)) - resource/aws_default_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515)) - resource/aws_emrserverless_application: Add `image_configuration` field ([#30398](https://togithub.com/hashicorp/terraform-provider-aws/issues/30398)) - resource/aws_imagebuilder_container_recipe: Add `platform_override` field ([#30398](https://togithub.com/hashicorp/terraform-provider-aws/issues/30398)) - resource/aws_route_table: Ignore routes managed by VPC Lattice ([#30515](https://togithub.com/hashicorp/terraform-provider-aws/issues/30515)) - resource/aws_s3\_bucket: Enable S3-compatible providers with no support for bucket tagging ([#30151](https://togithub.com/hashicorp/terraform-provider-aws/issues/30151)) - resource/aws_sagemaker_endpoint_configuration: Add `name_prefix` argument ([#28785](https://togithub.com/hashicorp/terraform-provider-aws/issues/28785)) - resource/aws_sagemaker_feature_group: Add `table_format` to the `offline_store_config` configuration block ([#30118](https://togithub.com/hashicorp/terraform-provider-aws/issues/30118)) - resource/aws_secretsmanager_secret: Add `duration` and `schedule_expression` attributes to `rotation_rules` configuration block ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425)) - resource/aws_secretsmanager_secret_rotation: Add `duration` and `schedule_expression` attributes to `rotation_rules` configuration block ([#30425](https://togithub.com/hashicorp/terraform-provider-aws/issues/30425)) BUG FIXES: - resource/aws_ce_cost_category: Fixed `effective_start` being reset on any changes despite `effective_start` having the same value ([#30369](https://togithub.com/hashicorp/terraform-provider-aws/issues/30369)) - resource/aws_db_instance: Fix crash when updating `password` ([#30379](https://togithub.com/hashicorp/terraform-provider-aws/issues/30379)) - resource/aws_glue_crawler: Fix InvalidInputException error string matching ([#30370](https://togithub.com/hashicorp/terraform-provider-aws/issues/30370)) - resource/aws_glue_trigger: Fix InvalidInputException error string matching ([#30370](https://togithub.com/hashicorp/terraform-provider-aws/issues/30370)) - resource/aws_medialive_channel: Fix attribute `certificate_mode` spelling in `rtmp_output_settings` ([#30224](https://togithub.com/hashicorp/terraform-provider-aws/issues/30224)) - resource/aws_rds_cluster: Fix crash when updating `master_password` ([#30379](https://togithub.com/hashicorp/terraform-provider-aws/issues/30379)) - resource/aws_rds_cluster: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247)) - resource/aws_rds_cluster: Send `db_instance_parameter_group_name` on all modify requests when set ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247)) - resource/aws_rds_cluster_instance: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247)) - resource/aws_rds_instance: Fix inconsistent final plan errors when `engine_version` updates are not applied immediately ([#30247](https://togithub.com/hashicorp/terraform-provider-aws/issues/30247)) - resource/aws_s3\_bucket_lifecycle_configuration: Allow `rule.filter.object_size_greater_than` = 0 ([#29857](https://togithub.com/hashicorp/terraform-provider-aws/issues/29857)) - resource/aws_scheduler_schedule: Mark `arn` property of `dead_letter_config` as a required property ([#30360](https://togithub.com/hashicorp/terraform-provider-aws/issues/30360)) ### [`v4.61.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4610-March-30-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.60.0...v4.61.0) FEATURES: - **New Data Source:** `aws_appmesh_gateway_route` ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - **New Data Source:** `aws_appmesh_virtual_node` ([#27545](https://togithub.com/hashicorp/terraform-provider-aws/issues/27545)) - **New Data Source:** `aws_appmesh_virtual_router` ([#26908](https://togithub.com/hashicorp/terraform-provider-aws/issues/26908)) - **New Data Source:** `aws_globalaccelerator_custom_routing_accelerator` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - **New Data Source:** `aws_oam_sink` ([#30258](https://togithub.com/hashicorp/terraform-provider-aws/issues/30258)) - **New Data Source:** `aws_oam_sinks` ([#30258](https://togithub.com/hashicorp/terraform-provider-aws/issues/30258)) - **New Data Source:** `aws_ssmincidents_replication_set` ([#29769](https://togithub.com/hashicorp/terraform-provider-aws/issues/29769)) - **New Resource:** `aws_globalaccelerator_custom_routing_accelerator` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - **New Resource:** `aws_globalaccelerator_custom_routing_endpoint_group` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - **New Resource:** `aws_globalaccelerator_custom_routing_listener` ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - **New Resource:** `aws_rbin_rule` ([#25926](https://togithub.com/hashicorp/terraform-provider-aws/issues/25926)) - **New Resource:** `aws_sns_topic_data_protection_policy` ([#30008](https://togithub.com/hashicorp/terraform-provider-aws/issues/30008)) - **New Resource:** `aws_ssmincidents_replication_set` ([#29769](https://togithub.com/hashicorp/terraform-provider-aws/issues/29769)) ENHANCEMENTS: - data-source/aws_db_instance: Add `master_user_secret` attribute ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848)) - data-source/aws_globalaccelerator_accelerator: Add `dual_stack_dns_name` attribute ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - data-source/aws_rds_cluster: Add `master_user_secret` attribute ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848)) - resource/aws_appmesh_gateway_route: Add `header`, `path` and `query_parameter` to the `spec.http_route.match` and `spec.http2_route.match` configuration blocks ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_appmesh_gateway_route: Add `port` to the `spec.grpc_route.action.target`, `spec.http_route.action.target` and `spec.http2_route.action.target` configuration blocks to support Virtual Services with multiple listeners ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_appmesh_gateway_route: Add `priority` to the `spec` configuration block ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_appmesh_route: Add `path` and `query_parameter` to the `spec.http_route.match` and `spec.http2_route.match` configuration blocks ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_appmesh_route: `spec.http_route.match.prefix` and `spec.http2_route.match.prefix` are Optional ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_appmesh_virtual_node: Add `ip_preference` and `response_type` to the `spec.service_discovery.dns` configuration block ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_db_instance: Add `manage_master_user_password`, `master_user_secret` and `master_user_secret_kms_key_id` arguments to support RDS managed master password in Secrets Manager ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848)) - resource/aws_globalaccelerator_accelerator: Add `dual_stack_dns_name` attribute ([#28922](https://togithub.com/hashicorp/terraform-provider-aws/issues/28922)) - resource/aws_lakeformation_lf_tag: Increase values MaxItem up to 1000 to match with AWS real limit ([#26546](https://togithub.com/hashicorp/terraform-provider-aws/issues/26546)) - resource/aws_rds_cluster: Add `manage_master_user_password`, `master_user_secret` and `master_user_secret_kms_key_id` arguments to support RDS managed master password in Secrets Manager ([#28848](https://togithub.com/hashicorp/terraform-provider-aws/issues/28848)) - resource/aws_sagemaker_endpoint_configuration: Add `production_variants.enable_ssm_access` and `shadow_production_variants.enable_ssm_access` arguments ([#30267](https://togithub.com/hashicorp/terraform-provider-aws/issues/30267)) BUG FIXES: - datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.container_overrides.*.environment` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214)) - datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.container_overrides.*.resource_requirements` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214)) - datasource/aws_ecs_task_execution: Fix type assertion panic on `overrides.0.inference_accelerator_overrides` attribute ([#30214](https://togithub.com/hashicorp/terraform-provider-aws/issues/30214)) - resource/aws_appmesh_virtual_router: `spec.listener` is Optional ([#29064](https://togithub.com/hashicorp/terraform-provider-aws/issues/29064)) - resource/aws_fsx_openzfs_file_system: Fix `iops` validation in `disk_iops_configuration` to allow values for `SINGLE_AZ_1` and `SINGLE_AZ_2` ([#30299](https://togithub.com/hashicorp/terraform-provider-aws/issues/30299)) - resource/aws_lakeformation_lf_tag: Fix support for lf-tag keys with colons in the name ([#28258](https://togithub.com/hashicorp/terraform-provider-aws/issues/28258)) - resource/aws_launch_template: Allow `metadata_options` to be applied when `http_endpoint` is not configured ([#30107](https://togithub.com/hashicorp/terraform-provider-aws/issues/30107)) - resource/aws_ssm_activation: Fix IAM eventual consistency errors on resource Create ([#30280](https://togithub.com/hashicorp/terraform-provider-aws/issues/30280)) - resource/aws_ssm_document: Correctly set `default_version`, `document_version`, `hash`, `latest_version` and `parameter` as Computed when `content` changes ([#28489](https://togithub.com/hashicorp/terraform-provider-aws/issues/28489)) - resource/aws_wafv2\_ip_set: Fix `DiffSuppress` on `addresses` to detect changes for unknown values ([#30352](https://togithub.com/hashicorp/terraform-provider-aws/issues/30352)) ### [`v4.60.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4600-March-24-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.59.0...v4.60.0) FEATURES: - **New Data Source:** `aws_appmesh_route` ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695)) - **New Data Source:** `aws_appmesh_virtual_gateway` ([#27057](https://togithub.com/hashicorp/terraform-provider-aws/issues/27057)) - **New Resource:** `aws_cognito_managed_user_pool_client` ([#30140](https://togithub.com/hashicorp/terraform-provider-aws/issues/30140)) - **New Resource:** `aws_oam_link` ([#30125](https://togithub.com/hashicorp/terraform-provider-aws/issues/30125)) - **New Resource:** `aws_sesv2_contact_list` ([#30094](https://togithub.com/hashicorp/terraform-provider-aws/issues/30094)) ENHANCEMENTS: - data-source/aws_ecs_cluster: Add `tags` attribute ([#30073](https://togithub.com/hashicorp/terraform-provider-aws/issues/30073)) - resource/aws_appmesh_virtual_gateway: Add `logging.access_log.file.format` configuration block ([#29315](https://togithub.com/hashicorp/terraform-provider-aws/issues/29315)) - resource/aws_appmesh_virtual_node: Add `logging.access_log.file.format` configuration block ([#29315](https://togithub.com/hashicorp/terraform-provider-aws/issues/29315)) - resource/aws_rds_cluster: Conflict `snapshot_identifier` and `global_cluster_identifier` attributes, preventing misleading results on restore ([#30158](https://togithub.com/hashicorp/terraform-provider-aws/issues/30158)) - resource/aws_securityhub_account: Add `enable_default_standards` argument ([#13477](https://togithub.com/hashicorp/terraform-provider-aws/issues/13477)) - resource/aws_securityhub_member: `email` is Optional ([#19065](https://togithub.com/hashicorp/terraform-provider-aws/issues/19065)) BUG FIXES: - data-source/aws_appmesh_mesh: Don't attempt to list tags if the current AWS account is not the mesh owner ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695)) - data-source/aws_appmesh_virtual_service: Don't attempt to list tags if the current AWS account is not the mesh owner ([#26695](https://togithub.com/hashicorp/terraform-provider-aws/issues/26695)) - resource/aws_apigateway_domain_name: Add ability to update `mutual_tls_authentication.truststore_uri` in place ([#30081](https://togithub.com/hashicorp/terraform-provider-aws/issues/30081)) - resource/aws_apigatewayv2\_domain_name: Add ability to update `mutual_tls_authentication.truststore_uri` in place ([#30081](https://togithub.com/hashicorp/terraform-provider-aws/issues/30081)) - resource/aws_appmesh_gateway_route: Use configured `mesh_owner` when deleting shared gateway route ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_appmesh_route: Use configured `mesh_owner` value when deleting shared route ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_appmesh_virtual_gateway: Use configured `mesh_owner` value when deleting shared virtual gateway ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_appmesh_virtual_node: Use configured `mesh_owner` value when deleting shared virtual node ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_appmesh_virtual_router: Use configured `mesh_owner` value when deleting shared virtual router ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_appmesh_virtual_service: Use configured `mesh_owner` value when deleting shared virtual service ([#29362](https://togithub.com/hashicorp/terraform-provider-aws/issues/29362)) - resource/aws_cognito_risk_configuration: Adds validation to `risk_exception_configuration` and requires at least one of `account_takeover_risk_configuration`, `compromised_credentials_risk_configuration`, or `risk_exception_configuration`. ([#30074](https://togithub.com/hashicorp/terraform-provider-aws/issues/30074)) - resource/aws_medialive_channel: Change `TypeSet` to `TypeList` on `video_description`, to get more precise actions from plan output ([#30064](https://togithub.com/hashicorp/terraform-provider-aws/issues/30064)) - resource/aws_medialive_channel: Fix type casting for `h264_settings` in `video_descriptions` ([#30063](https://togithub.com/hashicorp/terraform-provider-aws/issues/30063)) - resource/aws_medialive_channel: Fix type casting of `program_num`, `segmentation_time` and `fragment_time` for `m2ts_settings` ([#30025](https://togithub.com/hashicorp/terraform-provider-aws/issues/30025)) - resource/aws_opsworks_application: Don't return an error like `deleting OpsWorks Application (...): %!s()` after successful Delete ([#30101](https://togithub.com/hashicorp/terraform-provider-aws/issues/30101)) - resource/aws_pinpoint_app: Don't return an error like `deleting Pinpoint Application (...): %!s()` after successful Delete ([#30101](https://togithub.com/hashicorp/terraform-provider-aws/issues/30101)) - resource/aws_placement_group: Change `spread_level` to Computed ([#28596](https://togithub.com/hashicorp/terraform-provider-aws/issues/28596)) - resource/aws_security_group: Improve respect for delete timeout set by user and retry of certain errors ([#30114](https://togithub.com/hashicorp/terraform-provider-aws/issues/30114)) - resource/aws_transfer_server: Fix error refreshing `protocol_details.as2_transports` value ([#30115](https://togithub.com/hashicorp/terraform-provider-aws/issues/30115)) ### [`v4.59.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4590-March-16-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.58.0...v4.59.0) NOTES: - resource/aws_connect_queue: The `quick_connect_ids_associated` attribute is being deprecated in favor of `quick_connect_ids` ([#26151](https://togithub.com/hashicorp/terraform-provider-aws/issues/26151)) - resource/aws_connect_routing_profile: The `queue_configs_associated` attribute is being deprecated in favor of `queue_configs` ([#26151](https://togithub.com/hashicorp/terraform-provider-aws/issues/26151)) FEATURES: - **New Data Source:** `aws_ec2_public_ipv4_pool` ([#28245](https://togithub.com/hashicorp/terraform-provider-aws/issues/28245)) - **New Data Source:** `aws_ec2_public_ipv4_pools` ([#28245](https://togithub.com/hashicorp/terraform-provider-aws/issues/28245)) - **New Data Source:** `aws_servicecatalog_provisioning_artifacts` ([#25535](https://togithub.com/hashicorp/terraform-provider-aws/issues/25535)) - **New Resource:** `aws_codegurureviewer_repository_association` ([#29656](https://togithub.com/hashicorp/terraform-provider-aws/issues/29656)) - **New Resource:** `aws_emr_block_public_access_configuration` ([#29968](https://togithub.com/hashicorp/terraform-provider-aws/issues/29968)) - **New Resource:** `aws_kms_key_policy` ([#29923](https://togithub.com/hashicorp/terraform-provider-aws/issues/29923)) - **New Resource:** `aws_oam_sink` ([#29670](https://togithub.com/hashicorp/terraform-provider-aws/issues/29670)) - **New Resource:** `aws_oam_sink_policy` ([#30020](https://togithub.com/hashicorp/terraform-provider-aws/issues/30020)) ENHANCEMENTS: - aws_cognito_user_pool_domain: Add ability to update `certificate_arn` in place ([#25275](https://togithub.com/hashicorp/terraform-provider-aws/issues/25275)) - data-source/aws_aws_lb: Add `enable_xff_client_port`, `xff_header_processing_mode` and `enable_tls_version_and_cipher_suite_headers` attributes ([#29792](https://togithub.com/hashicorp/terraform-provider-aws/issues/29792)) - data-source/aws_ce_cost_category: Add `default_value` attribute ([#29291](https://togithub.com/hashicorp/terraform-provider-aws/issues/29291)) - data-source/aws_dynamodb_table: Add `deletion_protection_enabled` attribute ([#29924](https://togithub.com/hashicorp/terraform-provider-aws/issues/29924)) - data-source/aws_opensearch_domain: Add `dashboard_endpoint` attribute ([#29867](https://togithub.com/hashicorp/terraform-provider-aws/issues/29867)) - resource/aws_amplify_domain_association: Add `enable_auto_sub_domain` argument ([#29814](https://togithub.com/hashicorp/terraform-provider-aws/issues/29814)) - resource/aws_appflow_flow: Add attribute `preserve_source_data_typing` to `s3_output_format_config` in `s3` ([#27616](https://togithub.com/hashicorp/terraform-provider-aws/issues/27616)) - resource/aws_appsync_datasource: Add `event_bridge_config` argument to support AppSync EventBridge data sources ([#30042](https://togithub.com/hashicorp/terraform-provider-aws/issues/30042)) - resource/aws_aws_lb: Add `enable_xff_client_port`, `xff_header_processing_mode` and `enable_tls_version_and_cipher_suite_headers` arguments ([#29792](https://togithub.com/hashicorp/terraform-provider-aws/issues/29792)) - resource/aws_batch_compute_environment: Allow a maximum of 2 `compute_resources.ec2_configuration`s ([#27207](https://togithub.com/hashicorp/terraform-provider-aws/issues/27207)) - resource/aws_cloudwatch_metric_alarm: Add `period` parameter to `metric_query` ([#29896](https://togithub.com/hashicorp/terraform-provider-aws/issues/29896)) - resource/aws_cloudwatch_metric_alarm: Add validation to `period` parameter of `metric_query.metric` ([#29896](https://togithub.com/hashicorp/terraform-provider-aws/issues/29896)) - resource/aws_cognito_user_pool_domain: Add `cloudfront_distribution` and `cloudfront_distribution_zone_id` attributes ([#27790](https://togithub.com/hashicorp/terraform-provider-aws/issues/27790)) - resource/aws_dynamodb_table: Add `deletion_protection_enabled` argument ([#29924](https://togithub.com/hashicorp/terraform-provider-aws/issues/29924)) - resource/aws_ecs_task_definition: Add `arn_without_revision` attribute ([#27351](https://togithub.com/hashicorp/terraform-provider-aws/issues/27351)) - resource/aws_elasticache_user: Add `authentication_mode` argument ([#28928](https://togithub.com/hashicorp/terraform-provider-aws/issues/28928)) - resource/aws_fms_policy: Add `description` argument ([#29926](https://togithub.com/hashicorp/terraform-provider-aws/issues/29926)) - resource/aws_fsx_openzfs_file_system: Add support for `SINGLE_AZ_2` `deployment_type` ([#28583](https://togithub.com/hashicorp/terraform-provider-aws/issues/28583)) - resource/aws_glue_crawler: Add `create_native_delta_table` attribute to the `delta_target` configuration block ([#29566](https://togithub.com/hashicorp/terraform-provider-aws/issues/29566)) - resource/aws_inspector2\_organization_configuration: Add `lambda` attribute to `auto_enable` configuration block ([#28961](https://togithub.com/hashicorp/terraform-provider-aws/issues/28961)) - resource/aws_instance: Add ability to update `private_dns_name_options` in place ([#26305](https://togithub.com/hashicorp/terraform-provider-aws/issues/26305)) - resource/aws_lb_target_group: Add `load_balancing_cross_zone_enabled` argument ([#29920](https://togithub.com/hashicorp/terraform-provider-aws/issues/29920)) - resource/aws_opensearch_domain: Add `dashboard_endpoint` attribute ([#29867](https://togithub.com/hashicorp/terraform-provider-aws/issues/29867)) - resource/aws_qldb_ledger: Add configurable timeouts ([#29635](https://togithub.com/hashicorp/terraform-provider-aws/issues/29635)) - resource/aws_s3\_bucket: Add error handling for `XNotImplemented` errors when reading `acceleration_status`, `request_payer`, `lifecycle_rule`, `logging`, or `replication_configuration` into terraform state. ([#29632](https://togithub.com/hashicorp/terraform-provider-aws/issues/29632)) - resource/aws_securityhub_organization_configuration: Add `auto_enable_standards` attribute ([#29773](https://togithub.com/hashicorp/terraform-provider-aws/issues/29773)) - resource/aws_wafv2\_web_acl_association: Add configurable timeout for Create ([#30002](https://togithub.com/hashicorp/terraform-provider-aws/issues/30002)) BUG FIXES: - data-source/aws_opensearch_domain: Add missing `advanced_security_options.anonymous_auth_enabled` attribute ([#26746](https://togithub.com/hashicorp/terraform-provider-aws/issues/26746)) - resource/aws_api_gateway_integration: Fix bug that cleared unchanged `cache_key_parameters` values on Update ([#29991](https://togithub.com/hashicorp/terraform-provider-aws/issues/29991)) - resource/aws_apigatewayv2\_integration: Retry errors like `ConflictException: Unable to complete operation due to concurrent modification. Please try again later.` ([#29735](https://togithub.com/hashicorp/terraform-provider-aws/issues/29735)) - resource/aws_budgets_action: Extend and add configurable timeouts for create and update ([#29976](https://togithub.com/hashicorp/terraform-provider-aws/issues/29976)) - resource/aws_cognito_user_pool: Remove [Computed](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#computed) from `lambda_config.custom_email_sender` and `lambda_config.custom_sms_sender` allowing their values to be removed ([#29047](https://togithub.com/hashicorp/terraform-provider-aws/issues/29047)) - resource/aws_cognito_user_pool: `account_recovery_setting.recovery_mechanism` is Optional+Computed ([#22302](https://togithub.com/hashicorp/terraform-provider-aws/issues/22302)) - resource/aws_ecr_repository: Fix unhandled errors and nil output on read ([#30067](https://togithub.com/hashicorp/terraform-provider-aws/issues/30067)) - resource/aws_elasticache_user: Change `user_id` to [ForceNew](https://developer.hashicorp.com/terraform/plugin/sdkv2/schemas/schema-behaviors#forcenew) ([#28928](https://togithub.com/hashicorp/terraform-provider-aws/issues/28928)) - resource/aws_elasticsearch_domain: Remove upper bound validation for `ebs_options.throughput` as the 1,000 MB/s limit can be raised ([#27598](https://togithub.com/hashicorp/terraform-provider-aws/issues/27598)) - resource/aws_lambda_function: Fix empty environment variable update ([#29839](https://togithub.com/hashicorp/terraform-provider-aws/issues/29839)) - resource/aws_lightsail_domain_entry: Allow for the domain entry to begin with an underscore. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056)) - resource/aws_lightsail_domain_entry: Moved the error handling of an improperly formatted ID to be before attempting to access the id_parts. This will cause a proper empty resource message instead of a panic when ID is not properly formed. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056)) - resource/aws_lightsail_instance: Added a check to ensure that the availability_zone value is within the current region of the provider. ([#30056](https://togithub.com/hashicorp/terraform-provider-aws/issues/30056)) - resource/aws_lightsail_instance: Fix `name` validation to allow instances to start with a numeric character ([#29903](https://togithub.com/hashicorp/terraform-provider-aws/issues/29903)) - resource/aws_medialive_channel: Fix setting of `bitrate` and `sample_rate` for `aac_settings`. ([#29807](https://togithub.com/hashicorp/terraform-provider-aws/issues/29807)) - resource/aws_medialive_channel: Fix setting of `bitrate` for `eac3_settings`. ([#29809](https://togithub.com/hashicorp/terraform-provider-aws/issues/29809)) - resource/aws_medialive_channel: Fix spelling for attribute `audio_only_timecode_control` and correct type for `event_id` in `ms_smooth_group_settings` ([#29917](https://togithub.com/hashicorp/terraform-provider-aws/issues/29917)) - resource/aws_medialive_channel: Removed `Compute` flag from `audio_normalization_settings` and `remix_settings` in `audio_descriptions` ([#29859](https://togithub.com/hashicorp/terraform-provider-aws/issues/29859)) - resource/aws_medialive_channel: Removed `Computed` flag from `aac_settings`, ´ac3\_settings` , `eac3\_atmos_settings` , `eac3\_settings` , `mp2\_settings` , `pass_through_settings`and`wav_settings`in`codec_settings\`. ([#29825](https://togithub.com/hashicorp/terraform-provider-aws/issues/29825)) - resource/aws_neptune_cluster: Change lower bound validation for `serverless_v2_scaling_configuration.min_capacity` to 1 Neptune Capacity Unit (NCU) ([#29999](https://togithub.com/hashicorp/terraform-provider-aws/issues/29999)) - resource/aws_network_acl_association: Add retry to read step, resolving `empty result` error ([#26838](https://togithub.com/hashicorp/terraform-provider-aws/issues/26838)) - resource/aws_opensearch_domain: Remove upper bound validation for `ebs_options.throughput` as the 1,000 MB/s limit can be raised ([#27598](https://togithub.com/hashicorp/terraform-provider-aws/issues/27598)) - resource/aws_route: Allow `destination_ipv6_cidr_block` to be specified for a `vpc_endpoint_id` target ([#29994](https://togithub.com/hashicorp/terraform-provider-aws/issues/29994)) - resource/aws_sagemaker_endpoint_configuration: Fix `variant_name` generation when unset ([#29915](https://togithub.com/hashicorp/terraform-provider-aws/issues/29915)) ### [`v4.58.0`](https://togithub.com/hashicorp/terraform-provider-aws/blob/HEAD/CHANGELOG.md#4580-March-10-2023) [Compare Source](https://togithub.com/hashicorp/terraform-provider-aws/compare/v4.57.1...v4.58.0) FEATURES: - **New Data Source:** `aws_ecs_task_execution` ([#29783](https://togithub.com/hashicorp/terraform-provider-aws/issues/29783)) - **New Data Source:** `aws_licensemanager_grants` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741)) - **New Data Source:** `aws_licensemanager_received_license` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741)) - **New Data Source:** `aws_licensemanager_received_licenses` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741)) - **New Resource:** `aws_licensemanager_grant` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741)) - **New Resource:** `aws_licensemanager_grant_accepter` ([#29741](https://togithub.com/hashicorp/terraform-provider-aws/issues/29741)) ENHANCEMENTS: - data-source/aws_ec2\_transit_gateway_attachment: Add `association_state` and `association_transit_gateway_route_table_id` attributes ([#29648](https://togithub.com/hashicorp/terraform-provider-aws/issues/29648)) - data-source/aws_instances: Add `ipv6_addresses` attribute ([#29794](https://togithub.com/hashicorp/terraform-provider-aws/issues/29794)) - resource/aws_acm_certificate: Change `options` to `Computed` ([#29763](https://togithub.com/hashicorp/terraform-provider-aws/issues/29763)) - resource/aws_amplify_domain_association: Add `enable_auto_sub_domain` argument ([#29814](https://togithub.com/hashicorp/terraform-provider-aws/issues/29814)) - resource/aws_cloudhsm_v2\_hsm: Enforce `ExactlyOneOf` for `availability_zone` and `subnet_id` arguments ([#20891](https://togithub.com/hashicorp/terraform-provider-aws/issues/20891)) - resource/aws_db_instance: Add `listener_endpoint` attribute ([#28434](https://togithub.com/hashicorp/terraform-provider-aws/issues/28434)) - resource/aws_db_instance: Add plan time validations for `backup_retention_period`, `monitoring_interval`, and `monitoring_role_arn` ([#28434](https://togithub.com/hashicorp/terraform-provider-aws/issues/28434)) - resource/aws_flow_log: Add `deliver_cross_account_role` argument ([#29254](https://togithub.com/hashicorp/terraform-provider-aws/issues/29254)) - resource/aws_grafana_workspace: Add `network_access_control` argument ([#29793](https://togithub.com/hashicorp/terraform-provider-aws/issues/29793)) - resource/aws_sesv2\_configuration_set: Add `vdm_options` argument ([#28812](https://togithub.com/hashicorp/terraform-provider-aws/issues/28812)) - resource/aws_transfer_server: Add `protocol_details` argument ([#28621](https://togithub.com/hashicorp/terraform-provider-aws/issues/28621)) - resource/aws_transfer_workflow: Add `decrypt_step_details` to the `on_exception_steps` and `steps` configuration blocks ([#29692](https://togithub.com/hashicorp/terraform-provider-aws/issues/29692)) - resource/db_snapshot: Add `shared_accounts` argument ([#28424](https://togithub.com/hashicorp/terraform-provider-aws/issues/28424)) BUG FIXES: - resource/aws_acm_certificate: Update `options.certificate_transparency_logging_preference` in place rather than replacing the resource ([#29763](https://togithub.com/hashicorp/terraform-provider-aws/issues/29763)) - resource/aws_batch_job_definition: Prevents perpetual diff when container properties environment variable has empty value. ([#29820](https://togithub.com/hashicorp/terraform-provider-aws/issues/29820)) - resource/aws_elastic_beanstalk_configuration_template: Map errors like `InvalidParameterValue: No Platform named '...' found.` to `resource.NotFoundError` so `terraform refesh` correctly removes the resource from state ([#29863](https://togithub.com/hashicorp/terraform-provider-aws/issues/29863)) - resource/aws_flow_log: Fix IAM eventual consistency errors on resource Create ([#29254](https://togithub.com/hashicorp/terraform-provider-aws/issues/29254)) - resource/aws_grafana_workspace: Allow removing `vpc_configuration` ([#29793](https://togithub.com/hashicorp/terraform-provider-aws/issues/29793)) - resource/aws_medialive_channel: Fix setting of the `include_fec` attribute in `fec_output_settings` ([#29808](https://togithub.com/hashicorp/terraform-provider-aws/issues/29808)) - resource/aws_medialive_channel: Fix setting of the `video_pid` attribute in `m2ts_settings` ([#29824](https://togithub.com/hashicorp/terraform-provider-aws/issues/29824))Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.