service/docdb-elastic: Updates service API and documentation
service/eks: Updates service API
service/migrationhuborchestrator: Updates service API and documentation
service/models.lex.v2: Updates service API and documentation
service/quicksight: Updates service API and documentation
TooltipTarget for Combo chart visuals; ColumnConfiguration limit increase to 2000; Documentation Update
service/sagemaker: Updates service API and documentation
Adds support for ModelDataSource in Model Packages to support unzipped models. Adds support to specify SourceUri for models which allows registration of models without mandating a container for hosting. Using SourceUri, customers can decouple the model from hosting information during registration.
service/securitylake: Updates service API and documentation
Release v1.50.28 (2024-02-28)
Service Client Updates
service/batch: Updates service API and documentation
This release adds Batch support for configuration of multicontainer jobs in ECS, Fargate, and EKS. This support is available for all types of jobs, including both array jobs and multi-node parallel jobs.
service/bedrock-agent-runtime: Updates service API and documentation
service/ce: Updates service API and documentation
service/ec2: Updates service API and documentation
This release increases the range of MaxResults for GetNetworkInsightsAccessScopeAnalysisFindings to 1,000.
service/iot: Updates service API and documentation
This release reduces the maximum results returned per query invocation from 500 to 100 for the SearchIndex API. This change has no implications as long as the API is invoked until the nextToken is NULL.
service/wafv2: Updates service API and documentation
Release v1.50.27 (2024-02-27)
Service Client Updates
service/amplifyuibuilder: Updates service API and documentation
Release v1.50.26 (2024-02-26)
Service Client Updates
service/apigateway: Updates service documentation
Documentation updates for Amazon API Gateway.
service/drs: Updates service API and documentation
service/kafkaconnect: Updates service API and documentation
service/rds: Updates service API, documentation, waiters, paginators, and examples
This release adds support for gp3 data volumes for Multi-AZ DB Clusters.
api: Exclusively use GET /sys/plugins/catalog endpoint for listing plugins, and add details field to list responses. [GH-17347]
auth: GET /sys/auth/:name endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
auth: GET /sys/auth endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
auth: POST /sys/auth/:type endpoint response contains a warning for Deprecated auth methods. [GH-17058]
auth: auth enable returns an error and POST /sys/auth/:type endpoint reports an error for Pending Removal auth methods. [GH-17005]
core/entities: Fixed stranding of aliases upon entity merge, and require explicit selection of which aliases should be kept when some must be deleted [GH-16539]
core: Bump Go version to 1.19.2.
core: Validate input parameters for vault operator init command. Vault 1.12 CLI version is needed to run operator init now. [GH-16379]
identity: a request to /identity/group that includes member_group_ids that contains a cycle will now be responded to with a 400 rather than 500 [GH-15912]
licensing (enterprise): Terminated licenses will no longer result in shutdown. Instead, upgrades will not be allowed if the license termination time is before the build date of the binary.
plugins: Add plugin version to auth register, list, and mount table [GH-16856]
plugins: GET /sys/plugins/catalog/:type/:name endpoint contains deprecation status for builtin plugins. [GH-17077]
plugins: GET /sys/plugins/catalog/:type/:name endpoint now returns an additional version field in the response data. [GH-16688]
plugins: GET /sys/plugins/catalog/ endpoint contains deprecation status in detailed list. [GH-17077]
plugins: GET /sys/plugins/catalog endpoint now returns an additional detailed field in the response data with a list of additional plugin metadata. [GH-16688]
plugins: plugin info displays deprecation status for builtin plugins. [GH-17077]
plugins: plugin list now accepts a -detailed flag, which display deprecation status and version info. [GH-17077]
secrets/azure: Removed deprecated AAD graph API support from the secrets engine. [GH-17180]
secrets: All database-specific (standalone DB) secrets engines are now marked Pending Removal. [GH-17038]
secrets: GET /sys/mounts/:name endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
secrets: GET /sys/mounts endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
secrets: POST /sys/mounts/:type endpoint response contains a warning for Deprecated secrets engines. [GH-17058]
secrets: secrets enable returns an error and POST /sys/mount/:type endpoint reports an error for Pending Removal secrets engines. [GH-17005]
FEATURES:
GCP Cloud KMS support for managed keys: Managed keys now support using GCP Cloud KMS keys
LDAP Secrets Engine: Adds the ldap secrets engine with service account check-out functionality for all supported schemas. [GH-17152]
OCSP Responder: PKI mounts now have an OCSP responder that implements a subset of RFC6960, answering single serial number OCSP requests for a specific cluster's revoked certificates in a mount. [GH-16723]
Redis DB Engine: Adding the new Redis database engine that supports the generation of static and dynamic user roles and root credential rotation on a stand alone Redis server. [GH-17070]
Redis ElastiCache DB Plugin: Added Redis ElastiCache as a built-in plugin. [GH-17075]
Secrets/auth plugin multiplexing: manage multiple plugin configurations with a single plugin process [GH-14946]
Transform Key Import (BYOK): The transform secrets engine now supports importing keys for tokenization and FPE transformations
HCP (enterprise): Adding foundational support for self-managed vault nodes to securely communicate with HashiCorp Cloud Platform as an opt-in feature
ui: UI support for Okta Number Challenge. [GH-15998]
IMPROVEMENTS:
:core/managed-keys (enterprise): Allow operators to specify PSS signatures and/or hash algorithm for the test/sign api
activity (enterprise): Added new clients unit tests to test accuracy of estimates
agent/auto-auth: Add exit_on_err which when set to true, will cause Agent to exit if any errors are encountered during authentication. [GH-17091]
agent: Added disable_idle_connections configuration to disable leaving idle connections open in auto-auth, caching and templating. [GH-15986]
agent: Added disable_keep_alives configuration to disable keep alives in auto-auth, caching and templating. [GH-16479]
agent: JWT auto auth now supports a remove_jwt_after_reading config option which defaults to true. [GH-11969]
secrets/pki: Vault’s TLS certificate auth method did not initially load the optionally-configured CRL issued by the role’s CA into memory on startup, resulting in the revocation list not being checked, if the CRL has not yet been retrieved. This vulnerability, CVE-2022-41316, is fixed in Vault 1.12.0, 1.11.4, 1.10.7, and 1.9.10. [HSEC-2022-24]
CHANGES:
api: Exclusively use GET /sys/plugins/catalog endpoint for listing plugins, and add details field to list responses. [GH-17347]
auth: GET /sys/auth/:name endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
auth: GET /sys/auth endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
auth: POST /sys/auth/:type endpoint response contains a warning for Deprecated auth methods. [GH-17058]
auth: auth enable returns an error and POST /sys/auth/:type endpoint reports an error for Pending Removal auth methods. [GH-17005]
core/entities: Fixed stranding of aliases upon entity merge, and require explicit selection of which aliases should be kept when some must be deleted [GH-16539]
core: Bump Go version to 1.19.2.
core: Validate input parameters for vault operator init command. Vault 1.12 CLI version is needed to run operator init now. [GH-16379]
identity: a request to /identity/group that includes member_group_ids that contains a cycle will now be responded to with a 400 rather than 500 [GH-15912]
licensing (enterprise): Terminated licenses will no longer result in shutdown. Instead, upgrades will not be allowed if the license expiration time is before the build date of the binary.
plugins: Add plugin version to auth register, list, and mount table [GH-16856]
plugins: GET /sys/plugins/catalog/:type/:name endpoint contains deprecation status for builtin plugins. [GH-17077]
plugins: GET /sys/plugins/catalog/:type/:name endpoint now returns an additional version field in the response data. [GH-16688]
plugins: GET /sys/plugins/catalog/ endpoint contains deprecation status in detailed list. [GH-17077]
plugins: GET /sys/plugins/catalog endpoint now returns an additional detailed field in the response data with a list of additional plugin metadata. [GH-16688]
plugins: plugin info displays deprecation status for builtin plugins. [GH-17077]
plugins: plugin list now accepts a -detailed flag, which display deprecation status and version info. [GH-17077]
secrets/azure: Removed deprecated AAD graph API support from the secrets engine. [GH-17180]
secrets: All database-specific (standalone DB) secrets engines are now marked Pending Removal. [GH-17038]
secrets: GET /sys/mounts/:name endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
secrets: GET /sys/mounts endpoint now returns an additional deprecation_status field in the response data for builtins. [GH-16849]
secrets: POST /sys/mounts/:type endpoint response contains a warning for Deprecated secrets engines. [GH-17058]
secrets: secrets enable returns an error and POST /sys/mount/:type endpoint reports an error for Pending Removal secrets engines. [GH-17005]
FEATURES:
GCP Cloud KMS support for managed keys: Managed keys now support using GCP Cloud KMS keys
LDAP Secrets Engine: Adds the ldap secrets engine with service account check-out functionality for all supported schemas. [GH-17152]
OCSP Responder: PKI mounts now have an OCSP responder that implements a subset of RFC6960, answering single serial number OCSP requests for a specific cluster's revoked certificates in a mount. [GH-16723]
Redis DB Engine: Adding the new Redis database engine that supports the generation of static and dynamic user roles and root credential rotation on a stand alone Redis server. [GH-17070]
Redis ElastiCache DB Plugin: Added Redis ElastiCache as a built-in plugin. [GH-17075]
Secrets/auth plugin multiplexing: manage multiple plugin configurations with a single plugin process [GH-14946]
Transform Key Import (BYOK): The transform secrets engine now supports importing keys for tokenization and FPE transformations
HCP (enterprise): Adding foundational support for self-managed vault nodes to securely communicate with HashiCorp Cloud Platform as an opt-in feature
ui: UI support for Okta Number Challenge. [GH-15998]
Plugin Versioning: Vault supports registering, managing, and running plugins with semantic versions specified.
IMPROVEMENTS:
core/managed-keys (enterprise): Allow operators to specify PSS signatures and/or hash algorithm for the test/sign api
activity (enterprise): Added new clients unit tests to test accuracy of estimates
The module prometheus/common v0.48.0 introduced a bug when used together with client_golang. If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.
[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445#1449
[FEATURE] collectors: Add version collector. #1422#1427
The module prometheus/common v0.48.0 introduced a bug when used together with client_golang. If your project uses client_golang and you want to use prometheus/common v0.48.0 or higher, please update client_golang to v1.19.0.
[CHANGE] Minimum required go version is now 1.20 (we also test client_golang against new 1.22 version). #1445#1449
[FEATURE] collectors: Add version collector. #1422#1427
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the gomod group with 9 updates:
1.50.101.50.291.11.01.12.01.18.01.19.00.16.00.17.00.161.00.167.00.0.0-20240116215550-a9fa1716bcac0.0.0-20240205150955-31a09d3470140.29.10.29.20.29.10.29.20.29.10.29.2Updates
github.com/aws/aws-sdk-gofrom 1.50.10 to 1.50.29Release notes
Sourced from github.com/aws/aws-sdk-go's releases.
... (truncated)
Commits
3d2694dRelease v1.50.29 (2024-02-29) (#5186)b79e466Release v1.50.28 (2024-02-28) (#5185)1a86d22Release v1.50.27 (2024-02-27) (#5183)b6d006cRelease v1.50.26 (2024-02-26) (#5180)eb54f13Release v1.50.25 (2024-02-23) (#5179)e9c8c66Release v1.50.24 (2024-02-22) (#5178)8ff3ae1Release v1.50.23 (2024-02-21) (#5177)9db5306Release v1.50.22 (2024-02-20) (#5174)a886d18Release v1.50.21 (2024-02-19) (#5173)d322949Release v1.50.20 (2024-02-16) (#5172)Updates
github.com/hashicorp/vault/apifrom 1.11.0 to 1.12.0Release notes
Sourced from github.com/hashicorp/vault/api's releases.
... (truncated)
Changelog
Sourced from github.com/hashicorp/vault/api's changelog.
... (truncated)
Commits
558abfaimport new sdk (#17488)6545e24bump sdk to 1.12.0 (#17487)2068a5fbackport of commit 495bf0a7ec21748d4b646932539910d9c2a3e8c8 (#17483)cb6652bbackport of commit 4625729de15bf9992d63dbfc1be7099a12286429 (#17479)90b89f9backport of commit c023246b9050955ca78b5b3affbf1afc9072a89e (#17473)cb5d319backport of #17340 (#17469)eb5f980backport of commit e9914734e14852264dedc235726ba036fa183223 (#17464)d463811Update 1.12 to go 1.19.2 (#17438)12df3b0backport of commit cfc6b436074140af83e11e896308b147b22a6609 (#17465)4d0c1ecbackport of commit 50a1f9e86a027af858a7c140288a9cc06f207053 (#17466)Updates
github.com/prometheus/client_golangfrom 1.18.0 to 1.19.0Release notes
Sourced from github.com/prometheus/client_golang's releases.
Changelog
Sourced from github.com/prometheus/client_golang's changelog.
Commits
77d4003Add 1.19.0 changelog (#1451)14259faMerge pull request #1448 from ywwg/owilliams/content-negotiation6d03920deps: bump prometheus/common version353395bRemove support for go 1.19 (#1449)9dd5d2aMerge pull request #1445 from kavu/add_go122_metrics_testc906a5eAdd support for Go 1.227ac9036Merge pull request #1440 from prometheus/dependabot/github_actions/github-act...8c7e30fMerge pull request #1441 from prometheus/dependabot/go_modules/tutorial/whats...08769f8Bump github.com/prometheus/common in /tutorial/whatsup83d5940Bump the github-actions group with 2 updatesUpdates
golang.org/x/oauth2from 0.16.0 to 0.17.0Commits
ebe81adgo.mod: update golang.org/x dependenciesadffd94google/internal/externalaccount: update serviceAccountImpersonationRE to supp...deefa7egoogle/downscope: add DownscopingConfig.UniverseDomain to support TPCUpdates
google.golang.org/apifrom 0.161.0 to 0.167.0Release notes
Sourced from google.golang.org/api's releases.
... (truncated)
Changelog
Sourced from google.golang.org/api's changelog.
... (truncated)
Commits
548436bchore(main): release 0.167.0 (#2428)55a9e5afeat(all): auto-regenerate discovery clients (#2429)f72b5affeat(all): auto-regenerate discovery clients (#2427)133e58bchore(main): release 0.166.0 (#2418)446a6bdfeat(all): auto-regenerate discovery clients (#2426)b7d596bchore(all): update all (#2423)124a535feat(all): auto-regenerate discovery clients (#2425)b3f9c38feat(all): auto-regenerate discovery clients (#2424)af6aa38feat(all): auto-regenerate discovery clients (#2421)762eb61feat(all): auto-regenerate discovery clients (#2420)Updates
google.golang.org/genprotofrom 0.0.0-20240116215550-a9fa1716bcac to 0.0.0-20240205150955-31a09d347014Commits
Updates
k8s.io/apifrom 0.29.1 to 0.29.2Commits
d473130Update dependencies to v0.29.2 tagf5eca04Merge pull request #122959RomanBednar/automated-cherry-pick-of-#122728fd1786fflag PersistentVolumeLastPhaseTransitionTime field as betaUpdates
k8s.io/apimachineryfrom 0.29.1 to 0.29.2Commits
Updates
k8s.io/client-gofrom 0.29.1 to 0.29.2Commits
62c5e9eUpdate dependencies to v0.29.2 tagDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show