Change | Description | Date |
---|
New resource | The following resource was added: AWS::Connect::AgentStatus | September 13, 2024 |
New resource | The following resource was added: AWS::Connect::UserHierarchyStructure | September 13, 2024 |
New resource | The following resource was added: AWS::DataZone::EnvironmentActions .
-
AWS::DataZone::EnvironmentActions
-
Use the AWS::DataZone::EnvironmentActions resource to specify the
details about a particular action configured for an environment in Amazon DataZone.
| September 13, 2024 |
Updated resource | The following resource was updated: AWS::Pipes::Pipe. | September 10, 2024 |
New resource | The following resources were added: AWS::MSK::Replicator ReplicationTopicNameConfiguration. | September 10, 2024 |
New resource | The following structure was added: AWS::ApplicationSignals::ServiceLevelObjective RequestBasedSli | September 6, 2024 |
New resource | The following structure was added: AWS::ApplicationSignals::ServiceLevelObjective RequestBasedSliMetric | September 6, 2024 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi | September 4, 2024 |
Updated resource | The following property was added to the AWS::SES::ReceiptRule S3Action
resource:
-
AWS::SES::ReceiptRule S3Action
-
Use the IamRoleArn property to access the resources
in the Deliver to S3 action (Amazon S3 bucket,
SNS topic, and KMS key) and to write to an S3 bucket that exists in
a region where SES Email receiving isn't
available.
| August 29, 2024 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | August 27, 2024 |
Visualize your scanned resources and generated templates | You can now streamline your Infrastructure as Code (IaC) generator workflows by visualizing scan summary
details and previewing the generated templates before deploying your infrastructure stack. For more information, see View the scan summary in the CloudFormation console and Create a CloudFormation stack from scanned resources. | August 22, 2024 |
Updated resource | The following resource was updated: AWS::IVS::Stage
-
AWS::IVS::Stage
-
Use the AutoParticipantRecordingConfiguration property to specify a configuration
for individual participant recording.
| August 20, 2024 |
New resource | The following resource was added: AWS::IVS::PublicKey | August 20, 2024 |
Updated resource | The following resource was updated: AWS::Lambda::Function.
-
AWS::Lambda::Function
-
Use the RecursiveLoop property to allow Lambda functions to be invoked in a recursive loop.
| August 19, 2024 |
Updated resource | The following resource was updated: AWS::Bedrock::Guardrail.
-
AWS::Bedrock::Guardrail
-
The AWS::Bedrock::Guardrail resource was updated to support the contextual grounding filter.
| August 15, 2024 |
Added support for user log export | Added S3Configuration and FirehoseConfiguration to LogDeliveryConfiguration.
Adds support for log export to Amazon S3 and Amazon Data Firehose. | August 8, 2024 |
New resource | The following resource was added: AWS::SSMQuickSetup::ConfigurationManager
-
AWS::SSMQuickSetup::ConfigurationManager
-
Creates a Quick Setup configuration manager resource. This resource is a collection of desired state configurations for multiple configuration definitions and summaries describing the deployments of those definitions. Quick Setup is a capability of Systems Manager.
For more information about Quick Setup, see Systems Manager
Quick Setup in the Systems Manager User Guide.
| July 31, 2024 |
Amazon EventBridge integration with AWS CloudFormation Git sync | AWS CloudFormation Git sync now publishes sync status changes as events to Amazon EventBridge. For more information, see Repository Sync Status Change event detail and Resource Sync Status Change event detail. | July 29, 2024 |
Updated resource | The following resource was updated: AWS::CodeCommit::Repository
| July 25, 2024 |
Updated resource | The following resource was updated: AWS::KinesisFirehose::DeliveryStream. | July 25, 2024 |
Updated resources | The following resources were updated: AWS::CleanRooms::ConfiguredTable
and AWS::CleanRooms::ConfiguredTableAssociation . | July 24, 2024 |
Updated resources | The following resources were updated: AWS::EntityResolution::MatchingWorkflow and AWS::EntityResolution::SchemaMapping . | July 23, 2024 |
New resources | The following resources were added: AWS::CleanRooms::IDMappingTable and
AWS::CleanRooms::IdNamespaceAssociation . | July 23, 2024 |
Updated resource | The following resource was updated:
AWS::WorkSpacesWeb::UserSettings .
-
AWS::WorkSpacesWeb::UserSettings
-
Use the DeepLinkAllowed property to specify whether the user can use deep links that open automatically when connecting to a session.
| July 22, 2024 |
New resources | The following resources were added: AWS::Bedrock::Prompt , AWS::Bedrock::PromptVersion , AWS::Bedrock::Flow , AWS::Bedrock::FlowVersion , and AWS::Bedrock::FlowAlias . | July 10, 2024 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
AirflowVersion
-
The AirflowVersion property has been updated to include a new valid value for Apache Airflow version 2.9.2.
| July 9, 2024 |
New resource | The following resource was released: AWS::LaunchWizard::Deployment . Use AWS::LaunchWizard::Deployment to create a Launch Wizard
deployment. | July 3, 2024 |
New resources | The following resources were added:
AWS::SES::MailManagerAddonInstance ,
AWS::SES::MailManagerAddonSubscription ,
AWS::SES::MailManagerArchive ,
AWS::SES::MailManagerIngressPoint ,
AWS::SES::MailManagerRelay ,
AWS::SES::MailManagerRuleSet , and
AWS::SES::MailManagerTrafficPolicy .
-
AWS::SES::MailManagerAddonInstance
-
Use the AWS::SES::MailManagerAddonInstance resource
to create an Add On instance which represents the actual deployment
and configuration of the Add On functionality within your Mail
Manager environment.
-
AWS::SES::MailManagerAddonSubscription
-
Use the AWS::SES::MailManagerAddonSubscription
resource to create an Add On subscription which represents the
acceptance of the Add On's terms of use and any additional
pricing.
-
AWS::SES::MailManagerArchive
-
Use the AWS::SES::MailManagerArchive resource to
create a new email archive resource for storing and retaining
emails.
-
AWS::SES::MailManagerIngressPoint
-
Use the AWS::SES::MailManagerIngressPoint resource to
provision an ingress endpoint which serves as the entry point for
incoming emails, allowing you to define how emails are received and
processed within your AWS environment.
-
AWS::SES::MailManagerRelay
-
Use the AWS::SES::MailManagerRelay resource to create
an SMTP relay which can be used within a Mail Manager rule set to
forward incoming emails to defined relay destinations.
-
AWS::SES::MailManagerRuleSet
-
Use the AWS::SES::MailManagerRuleSet resource to
create a rule set for a Mail Manager ingress endpoint which contains
a list of rules that are evaluated sequentially for each
email.
-
AWS::SES::MailManagerTrafficPolicy
-
Use the AWS::SES::MailManagerTrafficPolicy resource
to create a traffic policy for a Mail Manager ingress endpoint which
contains policy statements used to evaluate whether incoming emails
should be allowed or denied.
| June 30, 2024 |
New resource | The following resource was added: AWS::WorkSpaces::WorkspacesPool
| June 27, 2024 |
New resource type | The following resource type was added: AWS::AppTest::TestCase . | June 26, 2024 |
New resource | The following resource was added: AWS::GuardDuty::MalwareProtectionPlan
-
AWS::GuardDuty::MalwareProtectionPlan
-
Use AWS::GuardDuty::MalwareProtectionPlan resource
to configure Malware Protection for S3 that helps you detect potential malware in the newly uploaded objects
in your selected S3 buckets.
| June 13, 2024 |
New resource | The following resource was added: AWS::ApplicationSignals::ServiceLevelObjective | June 12, 2024 |
Updated resource | The following resource was updated:
AWS::CloudFormation::CustomResource . | June 10, 2024 |
New resources | The following resources were added: AWS::ECS::Cluster ManagedStorageConfiguration | June 10, 2024 |
Updated resource | The following resource was updated: AWS::AutoScaling::ScalingPolicy.
-
AWS::AutoScaling::ScalingPolicy
-
Use the AWS::AutoScaling::ScalingPolicy property to use metric math to
customize the metrics that you include in your target tracking policies.
| June 6, 2024 |
Updated resource | The following resource was updated: AWS::Pipes::Pipe. | June 4, 2024 |
Updated resource | The following resource was updated: AWS::Bedrock::Agent. | June 3, 2024 |
New resources | The following resources were added: AWS::SecurityHub::ConfigurationPolicy , AWS::SecurityHub::FindingAggregator ,
AWS::SecurityHub::OrganizationConfiguration , and AWS::SecurityHub::PolicyAssociation . | May 30, 2024 |
New resource | The following resource was added: AWS::SecurityLake::SubscriptionNotification
| May 29, 2024 |
New resource | The following resources were added: AWS::DataZone::GroupProfile ,
AWS::DataZone::ProjectMembership , and
AWS::DataZone::UserProfile . | May 15, 2024 |
New resource | The following resource was added: AWS::SecurityHub::SecurityControl . | May 15, 2024 |
AWS CloudTrail event stack operation root causes | AWS CloudFormation improves the troubleshooting experience for stack operations with a new
AWS CloudTrail deep-link integration. This feature directly links stack operation events in
the CloudFormation Console to relevant CloudTrail events For more information, see Determine the cause of a stack failure | May 15, 2024 |
Updated resource | The following resource was updated: AWS::Events::EventBus.
-
AWS::Events::EventBus
-
Use the DeadLetterConfig property to specify configuration details of the Amazon SQS queue for EventBridge to use as a dead-letter queue (DLQ).
Use the KmsKeyIdentifier property to specify the AWS KMS
customer managed key for EventBridge to use for event encryption.
| May 14, 2024 |
Updated resource | The following resource was updated: AWS::Bedrock::Agent. | May 9, 2024 |
New resource | The following resource was added: AWS::Bedrock::GuardrailVersion . | May 6, 2024 |
New resource | The following resources were added:
AWS::SSO::Application , AWS::SSO::ApplicationAssignment , and AWS::SSO::Instance .
-
AWS::SSO::Application
-
Use the
AWS::SSO::Application
resource to create an application in
IAM Identity Center.
-
AWS::SSO::ApplicationAssignment
-
Use the
AWS::SSO::ApplicationAssignment
resource to describe an assignment of a principal of an application.
-
AWS::SSO::Instance
-
Use the
AWS::SSO::Instance
resource to create an instance of
IAM Identity Center for a standalone AWS account that is not managed by or a member AWS account in an organization.
| May 6, 2024 |
Updated resource | The following resource was updated: AWS::FMS::Policy.
-
AWS::FMS::Policy
-
The AWS::FMS::Policy resource now supports centralized management of Amazon Virtual Private Cloud network ACLs.
| May 3, 2024 |
Updated resource | The following properties were added to the AWS::DynamoDB::GlobalTable resource: ReadOnDemandThroughputSettings and WriteOnDemandThroughputSettings . | May 1, 2024 |
Updated resource | The following property was added to the AWS::DynamoDB::Table resource: OnDemandThroughput . | May 1, 2024 |
New resources | The following resources were added: AWS::QBusiness::Application ,
AWS::QBusiness::DataSource , AWS::QBusiness::Index ,
AWS::QBusiness::Plugin , AWS::QBusiness::Retriever , and
AWS::QBusiness::WebExperience . | April 30, 2024 |
New resources | The following property was updated: AWS::Route53Resolver::FirewallRuleGroup FirewallRule . | April 30, 2024 |
Updated resource | The following resources was updated: AWS::Oam::Link.
-
AWS::Oam::Sink
-
The AWS::Oam::Link resource was updated with a LinkConfiguration structure.
You can use this structure to specify that only a subset of metric namespaces or log groups are
to be shared with the monitoring account.
| April 26, 2024 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the AutomaticBackupReplicationKmsKeyId property to specify the AWS KMS key identifier for encryption of replicated automated backups.
| April 26, 2024 |
Updated resource | The following resource was updated: AWS::DataSync::Task . | April 24, 2024 |
New resource | The following resource was added: AWS::Bedrock::Guardrail . | April 24, 2024 |
New resources | The following resources were added: AWS::PaymentCryptography::Alias and
AWS::PaymentCryptography::Key . | April 23, 2024 |
Updated resources | The following resources were updated:
AWS::WorkSpacesWeb::BrowserSettings ,
AWS::WorkSpacesWeb::IpAccessSettings ,
AWS::WorkSpacesWeb::Portal , and
AWS::WorkSpacesWeb::UserSettings .
-
AWS::WorkSpacesWeb::BrowserSettings
-
Use the AdditionalEncryptionContext property to specify the additional encryption context of the browser settings.
Use the CustomerManagedKey property to specify the custom managed key of the browser settings.
-
AWS::WorkSpacesWeb::IpAccessSettings
-
Use the AdditionalEncryptionContext property to specify the additional encryption context of the IP access settings.
Use the CustomerManagedKey property to specify the custom managed key of the IP access settings.
-
AWS::WorkSpacesWeb::Portal
-
Use the AdditionalEncryptionContext property to specify the additional encryption context of the portal.
Use the CustomerManagedKey property to specify the custom managed key of the portal.
Use the InstanceType property to specify the type and resources of the underlying instance.
Use the MaxConcurrentSessions property to specify the maximum number of concurrent sessions for the portal.
-
AWS::WorkSpacesWeb::UserSettings
-
Use the AdditionalEncryptionContext property to specify the additional encryption context of the user settings.
Use the CustomerManagedKey property to specify the custom managed key of the user settings.
| April 22, 2024 |
New resource | The following resource was added: AWS::GlobalAccelerator::CrossAccountAttachment.
-
AWS::GlobalAccelerator::CrossAccountAttachment
-
Use the
AWS::GlobalAccelerator::CrossAccountAttachment resource to create a cross-account attachment to specify the principals
who have permission to work with resources in accelerators in their own account, and the resources that those principals can
work with.
| April 22, 2024 |
New resource | The following resources were added: AWS::SecurityLake::AwsLogSource , AWS::SecurityLake::DataLake , AWS::SecurityLake::Subscriber .
-
AWS::SecurityLake::AwsLogSource
-
Use the AWS::SecurityLake::AWSLogSource to add a natively supported AWS service as an Amazon Security Lake source.
-
AWS::SecurityLake::DataLake
-
Use the AWS::SecurityLake::DataLake resource to initialize an Amazon Security Lake instance with the provided (or default) configuration.
-
AWS::SecurityLake::Subscriber
-
Use the AWS::SecurityLake::Subscriber resource to create subscription permission for accounts that are already enabled in Amazon Security Lake.
| April 12, 2024 |
Updated resource | The following resource was updated: AWS::CloudWatch::AnomalyDetector
-
AWS::CloudWatch::AnomalyDetector
-
In the AnomalyDetector
resource, the MetricCharacteristics object was added to enable you to specify parameters to provide information
about your metric to CloudWatch to help it build more accurate anomaly detection models. Currently, this object includes the
PeriodicSpikes parameter. Use this parameter if values for this metric consistently include spikes that should not be considered to be anomalies.
| April 11, 2024 |
Updated resource | The following resource was updated: AWS::KMS::Key .
-
AWS::KMS::Key
-
Added support to specify a custom rotation period for automatic key rotations.
| April 11, 2024 |
Updated resource | The following resource was updated: AWS::CleanRooms::ConfiguredTable .
AWS::CleanRooms::PrivacyBudgetTemplate
-
AWS::CleanRooms::ConfiguredTable
-
Use the DifferentialPrivacy property to specify the name of
the column that contains the unique identifier of your users, whose privacy
you want to protect.
| April 10, 2024 |
New resource | The following resource was added:
AWS::CleanRooms::PrivacyBudgetTemplate . | April 10, 2024 |
New resources | The following resources were added: AWS::IVS::EncoderConfigration, AWS::IVS::PlaybackRestrictionPolicy, AWS::IVS::StorageConfigration | April 9, 2024 |
Updated resource | The following resource was updated: AWS::CloudWatch::Alarm
-
AWS::CloudWatch::Alarm
-
The Tags property was added so that you can use AWS CloudFormation to apply tags to metric
alarms.
| April 5, 2024 |
Updated resource | The following resource was updated: AWS::CloudWatch::CompositeAlarm | April 5, 2024 |
New resources | The following resources were added: AWS::Bedrock::Agent , AWS::Bedrock::AgentAlias , AWS::Bedrock::KnowledgeBase , and AWS::Bedrock::DataSource . | April 4, 2024 |
New resources | The following resources were added: AWS::SecurityHub::DelegatedAdmin , AWS::SecurityHub::Insight ,
and AWS::SecurityHub::ProductSubscription . | April 3, 2024 |
New resource | The following resource was added: AWS::CleanRoomsML::TrainingDataset. | April 3, 2024 |
New resources | The following resources were added:
-
AWS::Deadline::Farm
-
Use the AWS::Deadline::Farm resource to create a farm that contains the
queues and fleets that process you jobs. For more information, see AWS Deadline Cloud farms.
-
AWS::Deadline::Fleet
-
Use the AWS::Deadline::Fleet resource to define a fleet of worker hosts
that process the tasks for your jobs. For more information, see Manage AWS Deadline Cloud fleets.
-
AWS::Deadline::LicenseEndpoint
-
Use the AWS::Deadline::LicenseEndpoint resource to integrate licensed
software with your jobs. For more information, see Connect customer-managed fleets to a license endpoint.
-
AWS::Deadline::MeteredProduct
-
Use the AWS::Deadline::MeteredProduct resource to associate a licensed
application with a license endpoint.
-
AWS::Deadline::Queue
-
Use the AWS::Deadline::Queue resource to create queues for your farm.
Jobs are submitted to a queue, and the queue sends the tasks in the job to a
worker fleet for processing. For more information, see Queues.
-
AWS::Deadline::QueueEnvironment
-
Use the AWS::Deadline::QueueEnvironment resource to create to create a
processing environment for workers processing tasks from the queue. For more
information, see Create a queue environment.
-
AWS::Deadline::QueueFleetAssociation
-
Use the AWS::Deadline::QueueFleetAssociation resource to associate a
worker fleet with a queue. Workers in the fleet process tasks for the jobs
in the queue. For more information, see Associate a queue and fleet.
-
AWS::Deadline::StorageProfile
-
Use the AWS::Deadline::StorageProfile resource to specify the operating
system, file type, and file location of resources used by a farm. For more
information, see Storage profiles in AWS Deadline Cloud
.
| April 2, 2024 |
New resource | The following new resource has been added: AWS::CodeConnections::Connection | April 2, 2024 |
New and updated resources | The following resources were added: AWS::EntityResolution::IdNamespace and AWS::EntityResolution::PolicyStatement . The following resource was updated: AWS::EntityResolution::IdMappingWorkflow . | April 2, 2024 |
Updated resource | The following resource was updated: AWS::InternetMonitor::Monitor . | March 29, 2024 |
New resource | The following resource was added: AWS::APS::Scraper.
-
AWS::APS::Scraper
-
Use the AWS::APS::Scraper resource to create or update
an Amazon Managed Service for Prometheus scraper. A scraper is a metrics collector
that pulls metrics from Amazon EKS and sends them to your
Amazon Managed Service for Prometheus workspace.
For more information, see Using
an AWS managed collector in the
Amazon Managed Service for Prometheus
User Guide.
| March 29, 2024 |
Updated resource | The following resource was updated: AWS::CloudWatch::AnomalyDetector SingleMetricAnomalyDetector | March 28, 2024 |
New resource | The following resource was added: AWS::BCMDataExports::Export .
-
AWS::BCMDataExports::Export
-
Use the Export and Tags property to specify the data query, delivery preference, and any optional resource tags.
| March 28, 2024 |
Updated resource | The following resource was updated: AWS::RDS::Integration
-
AWS::RDS::Integration
-
Use the DataFilter property to specify which tables from the source database are sent to the target Amazon Redshift data warehouse.
Use the Description property to provide a description of the integration.
| March 27, 2024 |
New resource | The following resource was added: AWS::AppIntegrations::Application | March 25, 2024 |
Updated resources | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Use the AssociationConfig property to increase the body inspection size limit beyond the new default limit of 16 KB for some regional resources. Prior to this, you could only increase the limit for CloudFront distributions.
| March 21, 2024 |
Updated resource | The following resource was updated: AWS::DataSync::Task .
-
AWS::DataSync::Task
-
Use the ManifestConfig property to configure a manifest that lists the files or objects that you want to transfer.
| March 20, 2024 |
Updated resource | The following property was added to the AWS::DynamoDB::GlobalTable.ReplicaSpecification and AWS::DynamoDB::GlobalTable.ReplicaStreamSpecification resources: ResourcePolicy . | March 20, 2024 |
Updated resource | The following property was added to the AWS::DynamoDB::Table and AWS::DynamoDB::Table.StreamSpecification resources: ResourcePolicy . | March 20, 2024 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
Use the EvaluationWindowSec property in RateBasedStatement to specify the amount of time to include in request counts.
-
AWS::WAFv2::RuleGroup
-
Use the EvaluationWindowSec property in RateBasedStatement to specify the amount of time to include in request counts.
| March 19, 2024 |
AWS CloudFormation introduces the CONFIGURATION_COMPLETE event to enable faster
workflows involving creation of resources | AWS CloudFormation added the CONFIGURATION_COMPLETE event to enable faster workflows
involving the creation of resources. | March 11, 2024 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
Use the JA3Fingerprint property in FieldToMatch to perform an exact match against the web request's JA3 fingerprint.
-
AWS::WAFv2::RuleGroup
-
Use the JA3Fingerprint property in FieldToMatch to perform an exact match against the web request's JA3 fingerprint.
| March 7, 2024 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi,
AWS::AppSync::Resolver, AWS::AppSync::DataSource
AWS::AppSync::GraphQLApi
Added support for enhanced metrics logging.
AWS::AppSync::Resolver
Added support for enhanced metrics logging.
AWS::AppSync::DataSource
Added support for enhanced metrics logging. | March 7, 2024 |
Updated resource | The following resource was updated: AWS::Amplify::Domain
-
AWS::Amplify::Domain
-
Use the Certificate property to specify the SSL/TLS certificate for the domain association.
Use the CertificateSettings property to specify the type of SSL/TLS certificate to use for your custom domain.
| March 1, 2024 |
New resource | The following resource was added: AWS::Timestream::InfluxDBInstance. | March 1, 2024 |
Updated resources | The following resource was updated: AWS::Batch:JobDefinition . Use the support for multi-container jobs. The following resources were added or
updated: | February 29, 2024 |
Updated resource | The following resource was updated: AWS::APS::Workspace.
-
AWS::APS::Workspace
-
You can use the optional KmsKeyArn property to
specify a customer-managed KMS key to use when encrypting data
in your Amazon Managed Service for Prometheus workspace.
For more information, see Encryption at rest in the
Amazon Managed Service for Prometheus
User Guide.
| February 23, 2024 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi | February 15, 2024 |
Updated resource | The following resource was updated: AWS::CodePipeline::Pipeline.
-
AWS::CodePipeline::Pipeline
-
Added new trigger filtering on branches, file paths, pull request status. Added
new PARALLEL and QUEUED execution modes for V2 type pipelines. Added field for
manual timeout configuration in minutes.
| February 15, 2024 |
Updated resource | The following resources were updated: AWS::IoTSiteWise::Asset and
AWS::IoTSiteWise::AssetModel. | February 15, 2024 |
New properties | The following properties were added: AWS::Route53::RecordSet GeoProximityLocation and AWS::Route53::RecordSetGroup GeoProximityLocation. | February 15, 2024 |
New resources | The following resources were added:
AWS::NeptuneGraph::Graph and
AWS::NeptuneGraph::PrivateGraphEndpoint . | February 13, 2024 |
Updated resources | The following resources were updated: AWS::FSx::Filesystem and AWS::FSx::Volume
-
AWS::FSx::Filesystem
-
Use the HAPairs and ThroughputCapacityPerHAPair
AWS::FSx::FileSystem OntapConfiguration properties to create
a scale out FSx for ONTAP file system.
-
AWS::FSx::Volume
-
Use the AggregateConfiguration , SizeInBytes , and VolumeStyle
AWS::FSx::Volume OntapConfiguration properties when creating FSx for ONTAP volumes.
| February 9, 2024 |
Updated resource | The following resource was updated: AWS::IoT::DomainConfiguration. | February 9, 2024 |
Updated resource | The following resource was updated: AWS::Cassandra::Table .
-
AWS::Cassandra::Table.AutoScalingSpecifications
-
Use the AWS::Cassandra::Table.AutoScalingSpecifications property to specify auto scaling settings for a
table in provisioned capacity mode in Amazon Keyspaces (for Apache Cassandra).
-
AWS::Cassandra::Table.ReplicaSpecification
-
The AWS::Cassandra::Table.ReplicaSpecification property allows you to define different settings for replicas of a
multi-Region table in Amazon Keyspaces (for Apache Cassandra).
| February 2, 2024 |
Generate AWS CloudFormation templates and AWS CDK applications from existing AWS
resources | With the CloudFormation IaC generator, you can generate a template using resources
provisioned in your account that are not already managed by CloudFormation. | February 2, 2024 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | January 29, 2024 |
Updated resource | The following resource was updated: AWS::GroundStation::MissionProfile. | January 29, 2024 |
New resource | The following resource was added: AWS::RDS::Integration
-
AWS::RDS::Integration
-
Use the AdditionalEncryptionContext property for an optional set of non-secret keyāvalue pairs that contain additional contextual information about the data.
Use the IntegrationName property for the name of the integration.
Use the KMSKeyId property for the AWS KMS key identifier for the key to use to encrypt the integration.
Use the SourceArn property for the ARN of the database to use as the source for replication.
Use the Tags property for a list of tags.
Use the TargetArn property for the ARN of the Redshift data warehouse to use as the target for replication.
| January 29, 2024 |
New resource | The following resource was added: AWS::InspectorV2::CisScanConfiguration. | January 23, 2024 |
New property | The following property was added: AWS::ECS::Service TimeoutConfiguration. | January 22, 2024 |
New properties | The following properties were added: AWS::ECS::Service ServiceConnectTlsConfiguration
and AWS::ECS::Service ServiceConnectTlsCertificateAuthority. | January 22, 2024 |
New resources | The following property was updated: AWS::Route53Resolver::FirewallRuleGroup FirewallRule . | January 19, 2024 |
Updated resource | The following property was added to the AWS::DynamoDB::GlobalTable resource:
KinesisStreamSpecification
| January 18, 2024 |
Updated resource | The following property was added to the AWS::DynamoDB::Table resource:
KinesisStreamSpecification
| January 18, 2024 |
New resource | The following resources were added: AWS::DataZone::DataSource ,
AWS::DataZone::Domain , AWS::DataZone::Environment ,
AWS::DataZone::EnvironmentBlueprintConfiguration ,
AWS::DataZone::EnvironmentProfile , AWS::DataZone::Project ,
AWS::DataZone::SubscriptionTarget .
-
AWS::DataZone::DataSource
-
Use the AWS::DataZone::DataSource resource to specify an
Amazon DataZone data source that is used to import technical metadata of
assets (data) from the source databases or data warehouses into Amazon
DataZone.
-
AWS::DataZone::Domain
-
Use the AWS::DataZone::Domain resource to specify an Amazon
DataZone domain. You can use domains to organize your assets, users, and
their projects.
-
AWS::DataZone::Environment
-
Use the AWS::DataZone::Environment resource to specify an
Amazon DataZone environment, which is a collection of zero or more
configured resources with a given set of IAM principals who can operate on
those resources.
-
AWS::DataZone::EnvironmentBlueprintConfiguration
-
Use the AWS::DataZone::EnvironmentBlueprintConfiguration
resource to specify the configuration details of an environment
blueprint.
-
AWS::DataZone::EnvironmentProfile
-
Use the AWS::DataZone::EnvironmentProfile resource to
specify the details of an environment profile.
-
AWS::DataZone::Project
-
Use the AWS::DataZone::Project resource to specify an Amazon
DataZone project. Projects enable a group of users to collaborate on various
business use cases that involve publishing, discovering, subscribing to, and
consuming data in the Amazon DataZone catalog. Project members consume
assets from the Amazon DataZone catalog and produce new assets using one or
more analytical workflows.
-
AWS::DataZone::SubscriptionTarget
-
Use the AWS::DataZone::SubscriptionTarget resource to
specify an Amazon DataZone subscription target. Subscription targets enable
you to access the data to which you have subscribed in your projects. A
subscription target specifies the location (for example, a database or a
schema) and the required permissions (for example, an IAM role) that Amazon
DataZone can use to establish a connection with the source data and to
create the necessary grants so that members of the Amazon DataZone project
can start querying the data to which they have subscribed.
| January 18, 2024 |
New resource | The following resource was added: AWS::IVS::Stage
-
AWS::IVS::Stage
-
Use the Stage resource to specify a stage, a virtual space where participants can exchange video in real time.
| January 18, 2024 |
Added properties | Added PreTokenGenerationConfig to AWS::Cognito::UserPool LambdaConfig and AWS::Cognito::UserPool PreTokenGenerationConfig.
Adds support for access token customization Lambda functions. | January 18, 2024 |
Updated resource | The following resource was updated: AWS::Logs::AccountPolicy. | January 15, 2024 |
New resource | The following resource was added: AWS::NetworkFirewall::TLSInspectionConfiguration
-
AWS::NetworkFirewall::TLSInspectionConfiguration
-
Use the AWS::NetworkFirewall::TLSInspectionConfiguration resource to specify a TLS inspection configuration for Network Firewall to use to decrypt traffic for inspection. Network Firewall re-encrypts the traffic before sending it to its destination.
| January 10, 2024 |
Updated resources | The following resource was added: AWS::MediaTailor::Channel.TimeShiftConfiguration
-
AWS::MediaTailor::Channel
-
Use the AWS::MediaTailor::Channel.TimeShiftConfiguration resource for configuration for time-shifted viewing.
| December 27, 2023 |
updated resources | The following resources were added: AWS::Pinpoint::GCMChannel DefaultAuthenticationMethod and AWS::Pinpoint::GCMChannel DefaultAuthenticationMethod ServiceJson . | December 26, 2023 |
New resource | The following resource was added: AWS::Connect::PredefinedAttribute | December 22, 2023 |
Updated resource | The following resource was updated: AWS::CodeCommit::Repository
| December 21, 2023 |
New resources | The following resources were updated: AWS::Route53Resolver::ResolverEndpoint and AAWS::Route53Resolver::ResolverRule TargetAddress . | December 20, 2023 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi
-
AWS::AppSync::GraphQLApi
-
Use the IntrospectionConfig property to enable or disable
introspection.
Use the ResolverCountLimit property to set the maximum
number of resolvers that can be invoked in a single request.
Use the QueryDepthLimit property to set the maximum depth a
query can have in a single request.
| December 19, 2023 |
New resource | The following resource was added: AWS::IoT::CertificateProvider. | December 19, 2023 |
Updated resource | The following resource was updated: AWS::EKS::Cluster
-
AWS::EKS::Cluster
-
Use the AccessConfig property to enable
access entries, the aws-auth
ConfigMap, or both for the cluster.
An access entry allows an IAM user or role to access your cluster. Access
entries can replace the need to maintain the aws-auth
ConfigMap for authentication. You have the following options for
authorizing an IAM user or role to access Kubernetes objects on your cluster: Kubernetes
role-based access control (RBAC), Amazon EKS API, or both.
| December 15, 2023 |
New resource | The following resource was added: AWS::EKS::AccessEntry
-
AWS::EKS::AccessEntry
-
Use the AccessEntry resource to create an access
entry on your cluster. Access entries allow:
-
Amazon EC2 nodes and nodes created from Fargate profiles to join your cluster.
-
IAMroles used for any other purpose or
IAM users to authenticate to your cluster
and access Kubernetes objects on your cluster.
| December 15, 2023 |
Updated resource | The following resource was updated: AWS::EFS::FileSystem
-
AWS::EFS::FileSystem
-
Use the ReplicationOverwriteProtection property for the new
FileSystemProtection property type to enable or
disable a file system's replication overwrite protection.
Use the TransitionToArchive property to define the
lifecycle policy for transitioning files into Archive
storage.
| December 14, 2023 |
New resource | The following resources were added: AWS::B2BI::Capability
-
AWS::B2BI::Capability
-
Use the Capability resource to specify trading capabilities for the B2BI service.
-
AWS::B2BI::Transformer
-
Use the Transformer resource to describe how to process incoming EDI (electronic data interchange) for the B2BI service.
-
AWS::B2BI::Profile
-
Use the Profile resource to specify details about one of your private networks for the B2BI service.
-
AWS::B2BI::Partnership
-
Use the Partnership resource to specify the connection between a profile and a trading partner for the B2BI service.
| December 14, 2023 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi | December 13, 2023 |
Updated resource | The following resource was updated: AWS::ApplicationAutoScaling::ScalingPolicy. | December 7, 2023 |
Updated resource | The following resource was updated: AWS::CloudTrail::EventDataStore
-
AWS::CloudTrail::EventDataStore
-
Use the FederationEnabled property to specify whether you want to federate the event data store. Federating an event data store lets you view the metadata associated with the event data store in the AWS Glue
Data Catalog and run
SQL queries against your event data using Amazon Athena. The table metadata stored in the AWS Glue Data Catalog
lets the Athena query engine know how to find, read, and process the data that you want to query. For more information about Lake query federation, see Federate an event data store.
-
AWS::CloudTrail::EventDataStore
-
If the FederationEnabled property is set to true , use the FederationRoleArn property to specify the ARN for the federation role. The federation role must exist in your account and provide the required minimum permissions.
| December 7, 2023 |
Updated resource | The following resource was updated: AWS::SNS::Topic.
-
DeliveryStatusLogging
-
Use the DeliveryStatusLogging to log the delivery status of
messages sent from your Amazon SNS topic to subscribed endpoints with the
following supported delivery protocols:
-
Amazon Kinesis Data Firehose
-
Amazon Simple Queue Service
-
AWS Lambda
-
HTTP
-
Platform application endpoint
| December 7, 2023 |
New resource | The following resource was added: AWS::SNS::Topic LoggingConfig.
-
LoggingConfig
-
The LoggingConfig property type specifies the
Delivery status logging configuration for an
AWS::SNS::Topic .
| December 7, 2023 |
Updated resources | The following resources were updated: AWS::CleanRooms::AnalysisTemplate ,
AWS::CleanRooms::Collaboration ,
AWS::CleanRooms::ConfiguredTable ,
AWS::CleanRooms::Collaboration and
AWS::CleanRooms::Membership . | December 5, 2023 |
Updated resource | The following resource was updated:AWS::BillingConductor::CustomLineItem AccountId. | December 5, 2023 |
New resource | The following resource was added: AWS::WorkSpacesThinClient::Environment. | December 5, 2023 |
Updated resource | The following resource was updated:
AWS::CodeDeploy::DeploymentConfig . | December 4, 2023 |
New resource | The following resource was released: AWS::ARCZonalShift::ZonalAutoshiftConfiguration. Use AWS::ARCZonalShift::ZonalAutoshiftConfiguration to authorize AWS to shift away
resource traffic for an application from an Availability Zone during events, on your behalf, to help reduce time to recovery.
In addition, configure options for required weekly practice runs in zonal autoshift. Practice runs test the safety of
shifting away your application traffic from one Availability Zone in an AWS Region. | December 1, 2023 |
New resource | The following resources were added: AWS::S3Express::DirectoryBucket and AWS::S3Express::BucketPolicy. | December 1, 2023 |
Updated resources |
AWS::ElastiCache::ServerlessCache . | November 27, 2023 |
Updated resource | The following resources were updated: AWS::CodeStarConnections::RepositoryLink and
SyncConfiguration | November 27, 2023 |
Updated resource | The following resource was updated: AWS::AccessAnalyzer::Analyzer | November 27, 2023 |
New resource | The following resource was added: AWS::Backup::RestoreTestingPlan | November 27, 2023 |
New resource | The following resource was added: AWS::Backup::RestoreTestingSelection | November 27, 2023 |
Updated resource | The following resource was updated: AWS::ManagedBlockchain::Accessor | November 26, 2023 |
New resource | The following resource was added:
AWS::EKS::PodIdentityAssociation
-
AWS::EKS::PodIdentityAssociation
-
Use the PodIdentityAssociation to create an EKS Pod
Identity association to give IAM credentials to pods
through service accounts. The previous method to do the same, IAM
roles for service accounts, could only be managed inside
Kubernetes.
| November 26, 2023 |
Updated resource | The following resource was updated: AWS::CodePipeline::Pipeline. | November 19, 2023 |
New resource | The following properties and return values have been added:
-
EndpointManagement
-
The EndpointManagement property has added, letting you choose how you want to manage the Amazon VPC endpoints associated with your environment. You can choose
to manage your own endpoints or let Amazon MWAAmanage them on your behalf.
-
Return values
-
Amazon MWAA is adding CeleryExecutorQueue , DatabaseVpcEndpointService , and WebserverVpcEndpointService as
return values you can use in your templates.
| November 19, 2023 |
Updated resources | The AWS::Transfer::Server and AWS::Transfer::User resources have been updated. | November 17, 2023 |
New resource | The following parameters were added to the AWS::IoT::SecurityProfile resource. | November 17, 2023 |
New resources | The following resources were updated: AWS::ECR::PullThroughCacheRule
-
AWS::ECR::PullThroughCacheRule
-
The AWS::ECR::PullThroughCacheRule property was
updated to include the required properties to create a pull through
cache rule for an upstream registry that requires
authentication.
| November 16, 2023 |
Updated resource | The following resource was updated: AWS::CloudTrail::EventDataStore
-
AWS::CloudTrail::EventDataStore
-
Use the BillingMode property to specify the billing mode to use for the event data store. The billing mode determines
the cost for ingesting events and storing events, and the default and maximum retention period for the event data store. For more information, see
Event data store pricing options in the
AWS CloudTrail User Guide.
| November 15, 2023 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup.
-
AWS::AutoScaling::AutoScalingGroup
-
Use the InstanceMaintenancePolicy property to meet specific
capacity requirements during events that lead to instance replacement, such as
health check failures or an instance refresh.
| November 15, 2023 |
Updated resource | The following resource was updated: AWS::Grafana::Workspace .
-
AWS::Grafana::Workspace
-
Use the PluginAdminEnabled property of the
AWS::Grafana::Workspace resource to allow workspace
admins to install, uninstall, or update plugins in the
Amazon Managed Grafana workspace.
| November 15, 2023 |
New resource | The following resource was added: AWS::OpenSearchServerless::LifecyclePolicy. | November 15, 2023 |
Updated resource | The following resource was updated: AWS::Pipes::Pipe. | November 14, 2023 |
Updated resource | The following resource was updated: AWS::CloudTrail::EventDataStore
-
AWS::CloudTrail::EventDataStore
-
Use the InsightsDestination property to specify the ARN (or ID suffix of the ARN) of the destination event data store that logs Insights events.
-
AWS::CloudTrail::EventDataStore InsightSelector
-
Use the AWS::CloudTrail::EventDataStore InsightSelector property to specify
the types of Insights events you want to collect in your destination event data store. ApiCallRateInsight and ApiErrorRateInsight are valid Insights types.
| November 10, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the AutomaticBackupReplicationRegion property for the destination Region for the backup replication of the DB instance.
| November 9, 2023 |
Updated resource | The following resource was updated: AWS::EC2::IPAM. | November 8, 2023 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
AirflowVersion
-
The AirflowVersion property has been updated to include a new valid value for Apache Airflow version 2.7.2.
| November 6, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::Service | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::AutoScalingConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::ObservabilityConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::Service | November 3, 2023 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcIngressConnection | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcIngressConnection | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcConnector | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::AutoScalingConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcConnector | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::ObservabilityConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::AutoScalingConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcIngressConnection | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::Service | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::ObservabilityConfiguration | November 3, 2023 |
Updated resource | The documentation for the following resource was updated: AWS::AppRunner::VpcConnector | November 3, 2023 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | November 3, 2023 |
Updated resource | The following resource was updated:
AWS::EMRServerless::Application MonitoringConfiguration . | November 3, 2023 |
New attribute | The following attribute was added: AWS::SNS::Topic.ArchivePolicy.
-
AWS::SNS::Topic
-
Use the AWS::SNS::Topic.ArchivePolicy attribute to archive
messages to an SNS topic. Only supported for FIFO topics.
| October 26, 2023 |
New resource | The following parameter was added: DestinationPackageVersions to the
AWS::IoT::JobTemplate resource in the Ningxia (cn-northest-1) Region. It is still
available in the Beijing (cn-north-1) Region and other Regions where Service Package
Catalog has been deployed.
-
DestinationPackageVersions
-
Use the DestinationPackageVersions paremeter in the AWS::IoT::JobTemplate
resource to indentify the package version Amazon Resource Names (ARNs) that
are installed on the deviceās reserved named shadow ($package) when the job
successfully completes.
| October 25, 2023 |
Updated resource | The following property was updated: AWS::EKS::Cluster
-
AWS::EKS::Cluster ResourcesVpcConfig
-
You can change the SubnetIds and SecurityGroupIds property values once the cluster is
created without interruptions. Previously, changing these property values required replacement.
| October 24, 2023 |
Updated resources | The following resources were updated:
AWS::EntityResolution::MatchingWorkflow and
AWS::EntityResolution::SchemaMapping .
-
AWS::EntityResolution::MatchingWorkflow
-
Use the AWS::EntityResolution::MatchingWorkflow
IntermediateSourceConfiguration property to temporarily
store your data while it processes.
Use the AWS::EntityResolution::MatchingWorkflow
ProviderProperties property to specify configuration
parameters to use with a provider service.
| October 19, 2023 |
Updated resource | The following resources were updated: AWS::MSK::Configuration and AWS::MSK::BatchScramSecret. | October 19, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Use the EnableMachineLearning property in AWSManagedRulesBotControlRuleSet to indicate whether to use
machine learning (ML) to analyze your web traffic for bot-related activity. This setting applies only to the targeted protection level of the Bot Control managed rule group.
| October 19, 2023 |
New resource | The following resource was added:
AWS::EntityResolution::IdMappingWorkflow . | October 19, 2023 |
New resource | The following resources were added: AWS::MSK::Replicator.
-
AWS::MSK::Replicator
-
Use the Replicator property to create an MSK Replicator to reliably replicate data across Amazon MSK clusters.
| October 19, 2023 |
Added properties | Added AWS::Cognito::LogDeliveryConfiguration and associated parameters for CloudWatch
Logs configuration in user pools. | October 19, 2023 |
Updated resource | The following resource was updated: AWS::IoT::TopicRule KafkaAction. | October 12, 2023 |
Updated resource | The following resource was added: AWS::IoT::SoftwarePackageVersion.
-
AWS::IoT::SoftwarePackageVersion
-
Use the AWS::IoT::SoftwarePackageVersion resource to create a package
version.
Note: The software package must exist
before creating the package version.
| October 12, 2023 |
Updated resource | The following resource was updated: AWS::Lambda::Function.
-
AWS::Lambda::Function VpcConfig
-
Use the Ipv6AllowedForDualStack property to allow outbound IPv6 traffic on VPC functions that are connected to dual-stack subnets.
| October 12, 2023 |
New resource | The following resource was added: AWS::IoT::SoftwarePackage. | October 12, 2023 |
New resource | The following paremeter was added: DestinationPackageVersions to the
AWS::IoT::JobTemplate resource in the Beijing (cn-north-1) Region and other Regions
where Service Package Catalog has been deployed except for the the Ningxia
(cn-northest-1) Region.
-
DestinationPackageVersions
-
Use the DestinationPackageVersions paremeter in the AWS::IoT::JobTemplate
resource to indentify the package version Amazon Resource Names (ARNs) that
are installed on the deviceās reserved named shadow ($package) when the job
successfully completes.
| October 12, 2023 |
Updated resource | The following resource was updated: AWS::InternetMonitor::Monitor .
-
AWS::InternetMonitor::Monitor
-
Use Monitor.Resources to add or remove resources when making an update. If Monitor.Resources is non-empty during an update, Monitor.ResourcesToAdd and Monitor.ResourcesToRemove must be empty.
| October 6, 2023 |
Updated resource |
The following resource was updated: AWS::ServiceCatalog::PortfolioPrincipalAssociation.
| October 5, 2023 |
Updated resources | The following resources were updated: AWS::Lightsail::Disk and AWS::Lightsail::Container
-
AWS::Lightsail::Container PrivateRegistryAccess
-
Use the PrivateRegistryAccess property to describe the configuration for a Lightsail container service to access private container image repositories, such as Amazon Elastic Container Registry (Amazon ECR) private repositories.
| September 28, 2023 |
Updated resource | The following resource was updated: AWS::EFS::FileSystem.
-
AWS::EFS::FileSystem
-
Use the ReplicationConfiguration property to specify a replication configuration
for a file system.
Use the ReplicationDestination property to specify the
destination file system for a replication configuration.
| September 21, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the DomainAuthSecretArn property to find the ARN for the Secrets Manager with the details for the user joining the domain.
Use the DomainDnsIps property for the IP addresses of the Active Directory domain controllers.
Use the DomainFqdn property for the fully qualified domain name (FQDN) of an Active Directory domain.
Use the DomainOu property for the Active Directory organizational unit for your DB instance to join.
| September 21, 2023 |
New resource | The following resource was added: AWS::Connect::SecurityProfile | September 21, 2023 |
New resource | Use the following resource to create a data store in AWS HealthImaging. | September 21, 2023 |
Updated resources | The following resources were updated: AWS::AppStream::Fleet and
AWS::AppStream::Fleet ComputeCapacity .
-
AWS::AppStream::Fleet
-
Use the MaxSessionsPerInstance property to specify the maximum number of user sessions on an instance. This is applicable only for multi-session fleets.
-
AWS::AppStream::Fleet ComputeCapacity
-
Use the DesiredSessions property to specify the desired capacity in terms of number of user sessions for a multi-session fleet.
-
AWS::AppStream::ApplicationFleetAssociation
-
Use the AWS::AppStream::ApplicationFleetAssociation resource to specify an association between an application and fleet.
| September 14, 2023 |
Updated resources | The following resources were added: AWS::MediaPackageV2::Channel, AWS::MediaPackageV2::ChannelGroup, AWS::MediaPackageV2::ChannelPolicy, AWS::MediaPackageV2::OriginEndpoint, and AWS::MediaPackageV2::OriginEndpointPolicy. | September 14, 2023 |
Updated resource | The following resource was updated: AWS::BillingConductor::CustomLineItem LineItemFilter. | September 7, 2023 |
Updated resource | The following resource was updated: AWS::CleanRooms::Membership .
-
AWS::CleanRooms::Membership
-
Use the MembershipProtectedQueryOutputConfiguration ,
MembershipProtectedQueryResultConfiguration , and
ProtectedQueryS3OutputConfiguration properties to specify
configurations for protected query results.
| September 7, 2023 |
New resource | The following resource was added: AWS::Connect::View
-
AWS::Connect::View
-
Use the AWS::Connect::View resource to create a
customer-managed view in the specified instance.
| September 7, 2023 |
New resource | The following resource was added: AWS::Connect::ViewVersion
-
AWS::Connect::ViewVersion
-
Use the AWS::Connect::ViewVersion resource to create a
version for the specified customer-managed view within the specified
instance.
| September 7, 2023 |
Updated resource | The following resource was updated: AWS::CloudFormation::Stack .
-
AWS::CloudFormation::Stack
-
The Capabilities , ChangeSetId ,
CreationTime , Description ,
DisableRollback , EnableTerminationProtection ,
LastUpdateTime , Outputs , ParentId ,
RoleARN , RootId , StackId ,
StackName , StackPolicyBody ,
StackPolicyURL , StackStatus ,
StackStatusReason , and TemplateBody properties
can be accessed only when using AWS Cloud Control API.
| August 31, 2023 |
Updated resource | The following resource was updated: AWS::DataSync::Task .
-
AWS::DataSync::Task
-
Use the TaskReportConfig property to configure task reports, which can help you monitor and audit your DataSync transfers.
| August 31, 2023 |
New resource | The following resource was added: AWS::CleanRooms::AnalysisTemplate
| August 31, 2023 |
New resource | The following resource was added: AWS::PCAConnectorAD::Connector | August 31, 2023 |
New resource | The following resource was added:
AWS::PCAConnectorAD::DirectoryRegistration | August 31, 2023 |
New resource | The following resource was added: AWS::PCAConnectorAD::ServicePrincipalName | August 31, 2023 |
New resource | The following resource was added:
AWS::PCAConnectorAD::TemplateGroupAccessControlEntry | August 31, 2023 |
New resource | The following resource was added: AWS::PCAConnectorAD::Template | August 31, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Added guidance for managing web ACLs that you use with Shield Advanced automatic application layer DDoS mitigation.
| August 30, 2023 |
Updated resource | The following resource was updated:
AWS::CleanRooms::ConfiguredTable .
-
AWS::CleanRooms::ConfiguredTable
-
Use the AnalysisRuleCustom property to specify a configured
table resource with the custom analysis rule type in AWS Clean Rooms.
| August 24, 2023 |
Updated resource | The following resource was updated:
AWS::EMRServerless::Application . | August 24, 2023 |
New resources | The following resource was added:
AWS::EntityResolution::MatchingWorkflow . | August 24, 2023 |
New resources | The following resources were added: AWS::WorkSpacesWeb::BrowserSettings ,
AWS::WorkSpacesWeb::IdentityProvider ,
AWS::WorkSpacesWeb::IpAccessSettings ,
AWS::WorkSpacesWeb::NetworkSettings ,
AWS::WorkSpacesWeb::Portal , AWS::WorkSpacesWeb::TrustStore ,
AWS::WorkSpacesWeb::UserAccessLoggingSettings , and
AWS::WorkSpacesWeb::UserSettings . | August 24, 2023 |
Updated resource | AWS::NetworkManager::ConnectPeer was updated. | August 23, 2023 |
Updated resources | The following resources were added: AWS::MediaTailor::Channel, AWS::MediaTailor::ChannelPolicy, AWS::MediaTailor::LiveSource, AWS::MediaTailor::SourceLocation, and AWS::MediaTailor::VodSource | August 17, 2023 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi | August 17, 2023 |
Updated resource | The following resource was updated: AWS::FSx::Filesystem
-
AWS::FSx::Filesystem
-
The AWS::FSx::FileSystem OpenZFSConfiguration and AWS::FSx::FileSystem WindowsConfiguration resources were updated.
| August 17, 2023 |
New resources | The following resource was added:
AWS::EntityResolution::SchemaMapping . | August 17, 2023 |
New resource | The following resource was added: AWS::EC2::InstanceConnectEndpoint. | August 17, 2023 |
New resource | The following resource was added: AWS::Route53Resolver::OutpostResolver | August 17, 2023 |
Updated resource | The following resource was updated: AWS::EC2::LaunchTemplate NetworkInterface. | August 10, 2023 |
Updated resource | The following resource was updated: AWS::IVS::RecordingConfiguration | August 10, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Use the AWSManagedRulesACFPRuleSet property to configure
your use of the account creation fraud prevention (ACFP) managed rule group, in a managed rule group reference statement.
For protected CloudFront distributions, in addition to inspecting account registration and account creation requests,
you can also use ACFP to block new account creation attempts from clients that have recently submitted too many failed account creation attempts.
Use the EnableRegexInPath setting in the AWSManagedRulesATPRuleSet property to enable the use
of regex in the login page path specification.
| August 10, 2023 |
New resource | The following resource was added: AWS::Connect::TrafficDistributionGroup | August 10, 2023 |
New resource | The following resource was added: AWS::DataSync::LocationAzureBlob. | August 10, 2023 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
AirflowVersion
-
The AirflowVersion property has been updated to include a new valid value for Apache Airflow version 2.6.3.
| August 9, 2023 |
New resources | The following resource was updated: AWS::Batch:JobDefinition . | August 8, 2023 |
Updated resource | The following resource was updated: AWS::BillingConductor::BillingGroup AccountGrouping. | August 3, 2023 |
Updated resource | The following resources were added: AWS::DMS::ReplicationConfig , AWS::DMS::ComputeConfig .
The following resources were updated: AWS::DMS::RedshiftSettings , AWS::DMS::ComputeConfig . | August 3, 2023 |
Updated resource | The following resource was updated: AWS::EC2::NetworkInterface. | August 3, 2023 |
Updated resource | The following resource was updated: AWS::SQS::QueueInlinePolicy | August 3, 2023 |
New and updated resources | The AWS::Transfer::Connector As2Config resource has been updated with several new parameters.
Also, the AWS::Transfer::Connector Sftp2Config resource has been added.
-
AWS::Transfer::Connector SftpConfig
-
Use the SftpConfig resource to specify values for a connector. The connector establishes a relationship between your AWS storage and a partner's SFTP server.
| August 3, 2023 |
New resource | The following resource was added: AWS::SNS::TopicInlinePolicy. | August 2, 2023 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
Use the AggregateKeyType and CustomKeys properties in rate based rules to configure custom web request aggregation for rate limiting.
-
AWS::WAFv2::RuleGroup
-
Use the AggregateKeyType and CustomKeys properties in rate based rules to configure custom web request aggregation for rate limiting.
| July 27, 2023 |
Fn::ForEach intrinsic function
| The Fn::ForEach intrinsic function introduces looping capabilities to
your AWS CloudFormation templates. With Fn::ForEach , you can replicate parts of your
templates with minimal lines of code. You can use Fn::ForEach to simplify
your template layout and make it easier and faster for you and your peers to review your
code. For more information, see Fn::ForEach . | July 25, 2023 |
Detailed StackSet drift information | The following APIs allow users to see which stack instances have drifted from the
StackSet template and which resources have drifted. | July 24, 2023 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
Use the SnapLockConfiguration resource to create an ONTAP SnapLock volume.
| July 20, 2023 |
New resources | The following resources were added: AWS::IAM::GroupPolicy ,
AWS::IAM::RolePolicy , and AWS::IAM::UserPolicy .
-
AWS::IAM::GroupPolicy
-
Use the AWS::IAM::GroupPolicy resource to specify an inline
policy document that is embedded in the IAM group.
-
AWS::IAM::RolePolicy
-
Use the AWS::IAM::RolePolicy resource to specify an inline
policy document that is embedded in the IAM role.
-
AWS::IAM::UserPolicy
-
Use the AWS::IAM::UserPolicy resource to specify an inline
policy document that is embedded in the IAM user.
| July 20, 2023 |
New resource | The following resource was added: AWS::Logs::LogAnomalyDetector.
-
AWS::Logs::LogAnomalyDetector
-
Use the AWS::Logs::LogAnomalyDetector resource to create or update a log anomaly detector.
A log anomaly detector anomaly scans the log events ingested into the log group and finds
anomalies in the log data. For more information,
see
Log anomaly detection.
| July 20, 2023 |
New resource | The following resource was added: AWS::Logs::AccountPolicy.
-
AWS::Logs::AccountPolicy
-
Use the AWS::Logs::AccountPolicy resource to create or update an account-level data protection
policy that applies to all log groups in the account. A data protection policy can help
safeguard sensitive data that's ingested by your log groups by auditing and masking the sensitive
log data.. For more information,
see
Protect sensitive log data with masking.
| July 20, 2023 |
New resource | The following resource was added: AWS::Connect::RoutingProfile
-
AWS::Connect::RoutingProfile
-
Use the AWS::Connect::RoutingProfile resource to create a
routing profile for the specified Amazon Connect instance.
| July 20, 2023 |
New resource | The following resource was added: AWS::Connect::Queue
-
AWS::Connect::Queue
-
Use the AWS::Connect::Queue resource to create a queue for
the specified Amazon Connect instance.
| July 20, 2023 |
Updated resource | The following resource was updated: AWS::CleanRooms::ConfiguredTable
| July 13, 2023 |
Updated resource | The following resource was updated: AWS::InternetMonitor::Monitor .
-
AWS::InternetMonitor::Monitor
-
Use Monitor.HealthEventsConfig to set the threshold for when Internet Monitor creates a health event. You can set
the threshold for the availability score, performance score, or both.
| July 13, 2023 |
Updated resource | The following resource was updated: AWS::IoT::JobTemplate. | July 13, 2023 |
Updated resource | The following resource was updated: AWS::IoT::JobTemplate. | July 13, 2023 |
Updated resource | The following resource was updated: AWS::SageMaker::Endpoint.
-
AWS::SageMaker::Endpoint
-
Use the RollingUpdatePolicy in the AWS::SageMaker::Endpoint resource to create a new
rolling deployment for updating a SageMaker endpoint.
| July 13, 2023 |
New resource | The following resource was added: AWS::Transfer::Server StructuredLogDestination | July 6, 2023 |
Updated resources | The following resource was updated: AWS::AppStream::AppBlock
| June 29, 2023 |
Updated resource | The following resource was updated: AWS::EC2::KeyPair. | June 29, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Use the AssociationConfig property to increase the body inspection size limit for CloudFront distributions beyond the new default size limit of 16 KB. This update doesn't affect protections for regional resources.
| June 29, 2023 |
New resources | The following resource was added: AWS::AppStream::AppBlockBuilder
| June 29, 2023 |
New resources | The following resources were added: AWS::VerifiedPermissions::IdentitySource,
AWS::VerifiedPermissions::Policy, AWS::VerifiedPermissions::PolicyStore, and
AWS::VerifiedPermissions::PolicyTemplate. | June 29, 2023 |
New resource | The following new resource was added: AWS::Comprehend::DocumentClassifier. Use the
AWS::Comprehend::DocumentClassifier resource to create and train custom document classifiers in Amazon Comprehend. | June 29, 2023 |
Updated resource | The following resource was updated: AWS::Cassandra::Keyspace . | June 26, 2023 |
New resources | The following resources were added:
AWS::StepFunctions::StateMachineAlias
and
AWS::StepFunctions::StateMachineVersion
. | June 22, 2023 |
New resource | The following resource was added: AWS::AppRunner::AutoScalingConfiguration | June 22, 2023 |
New resource | The following resource was added:
AWS::Organizations::Organization.
| June 22, 2023 |
New and updated resources | The following resource was updated: AWS::SecurityHub::Hub. The following resource was added: AWS::SecurityHub::Standard. | June 22, 2023 |
Updated resources | The following resource was updated: AWS::WAFv2::WebACLAssociation. | June 17, 2023 |
Updated resource | The following resource was updated: AWS::IVS::Channel
-
AWS::IVS::Channel
-
Use the preset property to set a transcode preset, based on bandwidth delivery, for the channel. Available only for advanced channel types.
| June 15, 2023 |
Updated resource | The following resource was updated: AWS::S3::Bucket. | June 15, 2023 |
New resources | The following resources were added: AWS::CleanRooms::Collaboration ,
AWS::CleanRooms::ConfiguredTable ,
AWS::CleanRooms::ConfiguredTableAssociation , and
AWS::CleanRooms::Membership . | June 15, 2023 |
New resources | The following resources were added: AWS::MediaConnect::Bridge ,
AWS::MediaConnect::BridgeOutput ,
AWS::MediaConnect::BridgeSource , and
AWS::MediaConnect::Gateway .
-
AWS::MediaConnect::Bridge
-
Use the AWS::MediaConnect::Bridge resource to create a
connection between your data center instance and the cloud.
-
AWS::MediaConnect::BridgeOutput
-
Use the AWS::MediaConnect::BridgeOutput resource
to add new outputs to an existing bridge.
-
AWS::MediaConnect::BridgeSource
-
Use the AWS::MediaConnect::BridgeSource resource
to add new sources to an existing bridge.
-
AWS::MediaConnect::Gateway
-
Use the AWS::MediaConnect::Gateway resource to
create a gateway. The gateway is a logical grouping of Instances and Bridges. Each gateway utilizes user-defined IP information for communication between data centers and the cloud.
| June 15, 2023 |
New resource | The following resource was added: AWS::RDS::CustomDBEngineVersion
-
AWS::RDS::CustomDBEngineVersion
-
The DatabaseInstallationFilesS3BucketName property is the name of an
Amazon S3 bucket that contains database installation files for your CEV.
The DatabaseInstallationFilesS3Prefix property is the Amazon S3
directory that contains the database installation files for your CEV.
Use the Description property to provide an optional description of your CEV.
Use the Engine property to indicate the database engine to use for your custom engine version (CEV).
Use the EngineVersion property to indicate the name of your CEV in the format 19.customized_string .
Use the KMSKeyId property for the AWS KMS key identifier for an encrypted CEV.
The Manifest property is the CEV manifest, which is a JSON document that describes the installation .zip files stored in Amazon S3.
The Status property provides the status of a custom engine version (CEV).
The Tags property allows you to add metadata to your RDS resource.
| June 15, 2023 |
New resource | The following resource was added: AWS::SecurityHub::AutomationRule. | June 15, 2023 |
Updated resource | The following resource was updated: AWS::CloudTrail::EventDataStore | June 8, 2023 |
Updated resource | The following resource was updated: AWS::CustomerProfiles::EventStream. | June 8, 2023 |
New resource | The following resource was added: AWS::Athena::CapacityReservation
-
AWS::Athena::CapacityReservation
-
Use the AWS::Athena::CapacityReservation resource to
specify dedicated processing capacity for the queries you run in
Athena. You can assign one or more workgroups to the reservation.
Capacity is fully managed by Athena and held for you as long as you
require.
| June 8, 2023 |
New Properties | The following properties were added: AWS::Omics::Workflow.Accelerators, AWS::Omics::RunGroup.MaxGpus, AWS::Omics::AnnotationStore.SchemaItem, and AWS::Omics::SequenceStore.FallbackLocation.
-
AWS::Omics::Workflow
-
Use the AWS::Omics::Workflow.Accelerators property to specify the accelerator used for your workflow in
Amazon Omics.
-
AWS::Omics::RunGroup
-
Use the AWS::Omics::RunGroup.MaxGpus property to specify the max GPUs for your run group in Amazon
Omics.
-
AWS::Omics::AnnotationStore
-
Use the AWS::Omics::AnnotationStore.SchemaItem property to specify a schema item.
Omics.
-
AWS::Omics::SequenceStore
-
Use the AWS::Omics::SequenceStore.FallbackLocation property update to specify a fallback location for files that don't upload successfully.
Omics.
| June 8, 2023 |
AWS CloudFormation StackSets APIs to control AWS Organizations trust access | AWS CloudFormation StackSets provides customers with the following APIs for managing AWS Organizations
trust access:
-
ActivateOrganizationsAccess
-
Activate trusted access with AWS Organizations. With trusted access between
StackSets and Organizations activated, the management account has permissions to
create and manage StackSets for your organization.
-
DeactivateOrganizationsAccess
-
Deactivates trusted access with AWS Organizations. If trusted access is
deactivated, the management account does not have permissions to create
and manage service-managed StackSets for your organization.
-
DescribeOrganizationsAccess
-
Retrieves information about the account's
OrganizationAccess status. This API can be called either
by the management account or the delegated administrator by using the
CallAs parameter. This API can also be called without the
CallAs parameter by the management account.
| June 5, 2023 |
Updated resource | The following resource was updated: AWS::GroundStation::DataflowEndpointGroup. | June 2, 2023 |
Updated resource | The following resource was updated: AWS::CustomerProfiles::CalculatedAttributeDefinition. | June 1, 2023 |
Updated resource | The following resource was added: AWS::Detective::Graph
-
AWS::Detective::Graph
-
AutoEnableMembers indicates whether to automatically enable new organization accounts as member accounts in the organization behavior graph.
| June 1, 2023 |
Updated resource | The following resource was updated: AWS::IoTFleetWise::Campaign
-
AWS::IoTFleetWise::Campaign
-
The AWS::IoTFleetWise::Campaign resource now supports sending vehicle data to Amazon S3 or Amazon Timestream.
| June 1, 2023 |
Updated resource | The following resource was updated: AWS::RefactorSpaces::Route. | June 1, 2023 |
Updated resource | The following resource was updated: AWS::WorkSpaces::ConnectionAlias
| June 1, 2023 |
New resource | The following resource was updated: AWS::Detective::OrganizationAdmin | June 1, 2023 |
Added resource | The following resource was added: AWS::Cognito::IdentityPoolPrincipalTag
-
AWS::Cognito::IdentityPoolPrincipalTag
-
AWS::Cognito::IdentityPoolPrincipalTag is a map of identity pool user claims to
principal tags that you want to apply to your user's temporary session.
| May 26, 2023 |
Updated resource | The following resource was updated: AWS::Grafana::Workspace .
-
AWS::Grafana::Workspace
-
Use the GrafanaVersion property of the
AWS::Grafana::Workspace resource to configure the
version of Grafana to support in your Amazon Managed Grafana
workspace.
| May 25, 2023 |
Updated resource | The following resource was updated: AWS::OpenSearchService::Domain.
-
AWS::OpenSearchService::Domain
-
Use the MultiAZWithStandbyEnabled property within
ClusterConfig to deploy a domain with the Multi-AZ with Standby
option.
| May 25, 2023 |
Updated resource | The ScalingMode property was revised for the
AWS::SES::DedicatedIpPool resource:
-
AWS::SES::DedicatedIpPool
-
The ScalingMode property changed its Update
requires: definition from
Replacement to Some
interruptions.
| May 25, 2023 |
New resources | The following resources were updated: AWS::AppSync::GraphQLApi
-
AWS::AppSync::GraphQLApi
-
Use the ApiType property to specify whether the type of a GraphQL API is
standard or merged.
Use the MergedApiExecutionRoleArn property to specify the service role ARN for a
merged API.
Use the OwnerContact property to specify the owner contact information for an
API resource.
The following resources were added: AWS::AppSync::SourceApiAssociation | May 25, 2023 |
New resources | The following resources were added: AWS::Shield::DRTAccess , AWS::Shield::ProactiveEngagement , AWS::Shield::Protection , and AWS::Shield::ProtectionGroup .
-
AWS::Shield::DRTAccess
-
Use the AWS::Shield::DRTAccess resource to give permissions to the Shield response team (SRT) to access
your account and your resource protections. This permits them to help you mitigate distributed denial of service (DDoS) attacks.
-
AWS::Shield::ProactiveEngagement
-
Use the AWS::Shield::ProactiveEngagement resource to enable and disable authorization for the
the Shield Response Team (SRT) to contact you and to initiate proactive support for potential attacks.
-
AWS::Shield::Protection
-
Use the AWS::Shield::Protection resource to enable Shield Advanced protections for a specific AWS resource.
-
AWS::Shield::ProtectionGroup
-
Use the AWS::Shield::ProtectionGroup resource to combine the management of selected protected resources, to
improve the accuracy of detection and reduce false positives.
| May 25, 2023 |
Updated resource | The following resource was added: AWS::Glue::DataQualityRuleset | May 23, 2023 |
Updated resources | The following resource was updated: AWS::NetworkFirewall::FirewallPolicy
-
AWS::NetworkFirewall::FirewallPolicy
-
Use the PolicyVariables property to set your one or more CIDRs as your HOME_NET if your firewall uses a centralized deployment model.
Use the IPSet property specify list of IP addresses and address ranges, in CIDR notation for use with IPSets .
| May 18, 2023 |
Updated resource | The following resource was updated: AWS::Transfer::Server | May 18, 2023 |
New resource | The following resource was added: AWS::Connect::Prompt
-
AWS::Connect::Prompt
-
Use the AWS::Connect::Prompt resource to create a prompt for
the specified Amazon Connect instance.
| May 18, 2023 |
New resource | The following resource was added: AWS::QuickSight::Topic. | May 18, 2023 |
Updated resources |
AWS::ElastiCache::ReplicationGroup .
-
AWS::ElastiCache::ReplicationGroup.ClusterMode
-
To modify cluster mode from Disabled to Enabled, you must first set the cluster mode to Compatible.
Compatible mode allows your Redis OSS clients to connect using both cluster mode enabled and cluster mode disabled.
After you migrate all Redis OSS clients to use cluster mode enabled, you can then complete cluster mode
configuration and set the cluster mode to Enabled. For more information, see Modify cluster mode.
| May 11, 2023 |
Updated resources | Additional details were added for specifying resource-based policies and sampling rules.
-
AWS::XRay::ResourcePolicy
-
Use the ResourcePolicy resource to specify a resource-based policy which enables access to specific X-Ray resources.
-
AWS::XRay::SamplingRule
-
Use the AWS::XRay::SamplingRule resource to specify
an X-Ray sampling rule.
| May 11, 2023 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | May 11, 2023 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | May 11, 2023 |
New resources | The following resources were added:AWS::LakeFormation::DataLakeSettings.CreateDatabaseDefaultPermissions, AWS::LakeFormation::DataLakeSettings.CreateTableDefaultPermissions, AWS::LakeFormation::DataLakeSettings.DataLakePrincipal, AWS::LakeFormation::DataLakeSettings ExternalDataFilteringAllowList, AWS::LakeFormation::DataLakeSettings Permissions, AWS::LakeFormation::DataLakeSettings PrincipalPermissions | May 11, 2023 |
New resource | The following resource was added: AWS::IoT::ThingGroup. | May 11, 2023 |
New resource | The following resource was added: AWS::IoT::BillingGroup. | May 11, 2023 |
New resource | The following resource was added: AWS::IoT::ThingType. | May 11, 2023 |
New resource | The following resource was added: AWS::OSIS::Pipeline. | May 11, 2023 |
Updated resources | The following resources were updated: AWS::DeviceFarm::Project.
-
AWS::DeviceFarm::Project
-
Use the AWS::DeviceFarm::Project VpcConfig resource to specify the VPC
security groups and subnets that are attached to a project.
| May 4, 2023 |
Updated resource | The following resources were updated: AWS::AppSync::GraphQLApi | May 4, 2023 |
Updated resource | The following resource was updated: AWS::CloudWatch::MetricStreamFilter | May 4, 2023 |
New resources | The following resource was added: AWS::BackupGateway::Hypervisor. | May 4, 2023 |
New resources | The following resources were added: AWS::Proton::EnvironmentAccountConnection ,
AWS::Proton::EnvironmentTemplate and AWS::Proton::ServiceTemplate . | May 4, 2023 |
New resource | The following resource was added: AWS::QuickSight::VPCConnection. | May 4, 2023 |
New resources | The following resources were added: AWS::EC2::VerifiedAccessInstance, AWS::EC2::VerifiedAccessGroup, AWS::EC2::VerifiedAccessEndpoint and AWS::EC2::VerifiedAccessTrustProvider. | April 28, 2023 |
Updated resource | The following resource was updated: AWS::MSK::Cluster.
-
AWS::MSK::Cluster
-
Use the VpcConnectivity property to specify VPC connection control settings for brokers.
Use the VpcConnectivityClientAuthentication property to get all client authentication information for VpcConnectivity.
Use the VpcConnectivitySasl property to get details for SASL client authentication for VpcConnectivity.
Use the VpcConnectivityIam property to get details for IAM client authentication for VpcConnectivity.
Use the VpcConnectivity.Iam.Enabled property get details about whether IAM authentication is on or off.
Use the VpcConnectivityTls property to get details for TLS client authentication for VpcConnectivity.
Use the VpcConnectivityTls.Enabled property get details about whether TLS authentication is on or off.
Use the VpcConnectivityScram property to get details for SCRAM client authentication for VpcConnectivity.
Use the VpcConnectivityScram.Enabled property get details about whether SCRAM authentication is on or off.
Use the ConnectivityInfo.VpcConnectivity property to get details for VPC connection control settings for brokers.
| April 27, 2023 |
New resource | The following resource was added: AWS::DataSync::StorageSystem.
-
AWS::DataSync::StorageSystem
-
Use the AWS::DataSync::StorageSystem resource to create an
AWS resource for an on-premises storage system that
DataSync Discovery can collect information about.
| April 27, 2023 |
New resource | The following resource was added: AWS::IoT::DomainConfiguration TlsConfig. | April 27, 2023 |
New resource | The following resources were added: AWS::MSK::ClusterPolicy and AWS::MSK::VpcConnection. | April 27, 2023 |
New resource | The following resource was added: AWS::Connect::EvaluationForm
-
AWS::Connect::EvaluationForm
-
Use the AWS::Connect::EvaluationForm resource to create an
evaluation form for the specified Amazon Connect instance.
| April 25, 2023 |
Updated resource | The following resource was updated: AWS::InternetMonitor::Monitor . | April 20, 2023 |
Updated resource | The following resources was updated: AWS::SSMContacts::Contact and
AWS::SSMContacts::Rotation | April 20, 2023 |
Updated resource | The following resource was updated: AWS::IVS::Channel
-
AWS::IVS::Channel
-
Use the InsecureIngest property to control whether a channel allows insecure RTMP ingest.
| April 20, 2023 |
New resource | The following resource was added: AWS::FraudDetector::List.
-
AWS::FraudDetector::List
-
Use the AWS::FraudDetector::List resource to create a list of input data. After creating the list, use the list in a rule to allow or deny access or a transaction.
| April 20, 2023 |
New resource | Added new resource type AWS::RAM::Permission
-
AWS::RAM::Permission
-
Creates a customer managed permission that you can then assign to
resource shares and applies to resources of the specified resource
type that are included in the share.
| April 19, 2023 |
Updated resource | The AWS::GuardDuty::Detector resource was updated. | April 13, 2023 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
StartupScriptS3Path
-
Amazon MWAA adds the StartupScriptS3Path property. This property specifies the relative path to a shell script that you upload to your environment's Amazon S3 bucket.
-
StartupScriptS3ObjectVersion
-
Amazon MWAA adds the StartupScriptS3ObjectVersion property. This property specifies the version ID for the shell script that you upload to your environment's Amazon S3 bucket.
-
AirflowVersion
-
The AirflowVersion property has been updated to include a new valid value for Apache Airflow version 2.5.1.
| April 13, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the SourceDBClusterIdentifier property as the identifier of the Multi-AZ DB cluster that will act as the source for the read replica.
| April 13, 2023 |
New resource | The following resource was added: AWS::QuickSight::RefreshSchedule. | April 13, 2023 |
New resource | The following resource was added: AWS::AppConfig::Extension
-
AWS::AppConfig::Extension
-
This resource lets you creates an AWS AppConfig extension. An extension
augments your ability to inject logic or behavior at different points during the
AWS AppConfig workflow of creating or deploying a configuration.
| April 12, 2023 |
New resource | The following resource was added: AWS::AppConfig::ExtensionAssociation
-
AWS::AppConfig::ExtensionAssociation
-
This resource lets you creates an AWS AppConfig extension association.
An extension association is a specified relationship between an extension and an
AWS AppConfig resource, such as an application or a configuration profile.
| April 12, 2023 |
New resources | The following resources were added: AWS::IoTWireless::WirelessDeviceImportTask | April 7, 2023 |
Updated resource | The following resource was updated: AWS::InternetMonitor::Monitor .
-
AWS::InternetMonitor::Monitor
-
Use Monitor.InternetMeasurementsLogDelivery to publish internet measurements to another location in addition to CloudWatch Logs,
such as an Amazon S3 bucket.
| April 6, 2023 |
Updated resource | The following resource was updated: AWS::Lambda::Url.
-
AWS::Lambda::Url
-
Use the InvokeMode property to stream responses from your functions.
| April 6, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
Use the RestoreToTime property for the date and time to restore the DB cluster to.
| April 6, 2023 |
New resources | The following resources were added: AWS::SSMContacts::Plan and
AWS::SSMContacts::Rotation
-
AWS::SSMContacts::Plan
-
Use the AWS::SSMContacts::Plan resource to specify the
stages that an escalation plan or engagement plan engages contacts and
contact methods in.
-
AWS::SSMContacts::Rotation
-
Use the AWS::SSMContacts::Rotation resource to specify a
rotation in an on-call schedule.
| April 6, 2023 |
Updated resources | The following resources were updated: AWS::RefactorSpaces::Application,
AWS::RefactorSpaces::Environment, AWS::RefactorSpaces::Route,
AWS::RefactorSpaces::Service. | March 30, 2023 |
Updated resource | The resource AWS::GuardDuty::Detector was updated. | March 30, 2023 |
Updated resource | The following resource was added: AWS::SageMaker::InferenceExperiment.
-
AWS::SageMaker::InferenceExperiment
-
Use the AWS::SageMaker::InferenceExperiment resource to create a new
inference experiment for comparing model variants on a SageMaker endpoint.
| March 30, 2023 |
Updated resources | The following resources were updated: AWS::Route53Resolver::ResolverEndpoint
AWS::Route53Resolver::ResolverEndpoint IpAddressRequest ,
and AWS::Route53Resolver::ResolverRule TargetAddress
| March 23, 2023 |
Updated resource | The following resource was updated: AWS::OpenSearchService::Domain.
-
AWS::OpenSearchService::Domain
-
Use the SoftwareUpdateOptions , OffPeakWindowOptions , WindowStartTime , and OffPeakWindow properties to configure an off-peak window for the domain.
| March 23, 2023 |
Updated resource | The following resource was updated: AWS::S3ObjectLambda::AccessPoint. | March 23, 2023 |
New resources | The following resources were added: AWS::VpcLattice::AccessLogSubscription,
AWS::VpcLattice::AuthPolicy, AWS::VpcLattice::Listener, AWS::VpcLattice::ResourcePolicy,
AWS::VpcLattice::Rule, AWS::VpcLattice::Service, AWS::VpcLattice::ServiceNetwork,
AWS::VpcLattice::ServiceNetworkServiceAssociation,
AWS::VpcLattice::ServiceNetworkVpcAssociation, AWS::VpcLattice::TargetGroup | March 22, 2023 |
Updated resource | The following resource was updated: AWS::Cassandra::Table . | March 16, 2023 |
Updated resource | The following resource was updated: AWS::RUM::AppMonitor. | March 16, 2023 |
New resource | The following new resource was added: AWS::Comprehend::Flywheel. Use the
AWS::Comprehend::Flywheel resource to create a flywheel for an Amazon Comprehend model. | March 16, 2023 |
Updated resource | The following resource was updated: AWS::Logs::LogGroup.
-
AWS::Wisdom::KnowledgeBase
-
The AppIntegrationsConfiguration:ObjectFields parameter is optional
if ObjectConfiguration is included in the provided DataIntegration.
| March 13, 2023 |
updated resources | The following resources were updated: AWS::Pinpoint::ApplicationSettings Limits and AWS::Pinpoint::Campaign Limits. | March 9, 2023 |
Updated resource | The following resource was updated: AWS::ServiceCatalog::CloudFormationProduct.
-
AWS::ServiceCatalog::CloudFormationProduct
-
Use the ProvisioningArtifactProperties property to specify information about a provisioning artifact (also known as a version) for a product.
Use the SourceConnection property to specify details about the productās connection.
| March 9, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACLAssociation. | March 6, 2023 |
Updated resource | The following resource was updated: AWS::Lambda::EventSourceMapping.
-
AWS::Lambda::EventSourceMapping
-
Use the DocumentDBEventSourceConfig property to define specific configuration settings for a DocumentDB
event source, such as the database name.
| March 2, 2023 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
Use the AWSManagedRulesATPRuleSet property to configure
your use of the Fraud Control account takeover prevention (ATP) managed rule group in a managed rule group reference statement.
For protected CloudFront distributions, in addition to inspecting login requests, you can now use ATP to block new login attempts
from clients that have recently submitted too many failed login attempts.
| March 2, 2023 |
New resources | The following resources were added: AWS::IVSChat::Room and
AWS::IVSChat::LoggingConfiguration
-
AWS::IVSChat::Room
-
Use the AWS::IVSChat::Room resource to specify and Amazon IVS Chat
Room.
-
AWS::IVSChat::LoggingConfiguration
-
Use the AWS::IVSChat::LoggingConfiguration resource to specify and
Amazon IVS Chat Logging Configuration, which stores configuration information
related to loggin your chat session to a data store.
| March 2, 2023 |
New resource | The following resource was released: AWS::SystemsManagerSAP::Application . Use AWS::SystemsManagerSAP::Application to register an SAP
application with AWS Systems Manager for SAP. | March 2, 2023 |
New resource | The following resource was released: AWS::InternetMonitor::Monitor. Use AWS::InternetMonitor::Monitor to create a monitor in Amazon CloudWatch Internet Monitor
to provide visibility into the performance and availability between your applications
hosted on AWS and your end users, and to reduce the time it takes for you to diagnose internet issues. | February 28, 2023 |
Updated resource | The following resource was updated: AWS::IoT::JobTemplate.
-
AWS::IoT::JobTemplate
-
The AWS::IoT::JobTemplate resource adds MaintenaceWindows, StartTime, and
DurationInMinutes properties.
| February 23, 2023 |
New resource | A new resource was added to Network Manager: AWS::NetworkManager::TransitGatewayRouteTableAttachment | February 23, 2023 |
New resource | The following resource was added:
AWS::Organizations::ResourcePolicy.
-
AWS::Organizations::ResourcePolicy
-
Use the AWS::Organizations::ResourcePolicy resource
to create or update a resource-based delegation policy that
delegates policy management for AWS Organizations to specified
member accounts to perform policy actions that are by default
available only to the organization management account.
| February 16, 2023 |
Updated resource | The following resource was updated: AWS::DataSync::LocationObjectStorage.
-
AWS::DataSync::LocationObjectStorage
-
Use the ServerCertificate property to specify a certificate
for authenticating with an object storage system that uses a private or
self-signed certificate authority (CA).
| February 9, 2023 |
Updated resource | The following resource was added: AWS::SageMaker::Space.
-
AWS::SageMaker::Space
-
Use the AWS::SageMaker::Space resource to create a new
shared space for use in a Domain.
| February 9, 2023 |
Updated resource | The following resource was updated: AWS::SNS::Topic.
-
AWS::SNS::Topic
-
Use the TracingConfig property send X-Ray segment data to a
topic owner account.
| February 8, 2023 |
New resources | The following resources were added: AWS::Omics::Workflow, AWS::Omics::RunGroup,
AWS::Omics::AnnotationStore, AWS::Omics::ReferenceStore, AWS::Omics::VariantStore, and
AWS::Omics::SequenceStore. | February 3, 2023 |
Updated resources | The following resources were updated: AWS::NetworkFirewall::FirewallPolicy and AWS::NetworkFirewall::RuleGroup
-
AWS::NetworkFirewall::FirewallPolicy
-
Use the IPAddressType property to configure your firewall endpoint as IPv4,IPv6, or dualstack.
-
AWS::NetworkFirewall::RuleGroup
-
The StatefulRule$Action property now the REJECT option. With REJECT , Network Firewall drops TCP traffic that matches the conditions of the stateful rule, and sends a TCP reset packet back to sender of the packet.
| February 2, 2023 |
Updated resource | The following resources were updated: AWS::AppSync::DataSource | February 2, 2023 |
Updated resource | The following resource was updated: AWS::DataSync::LocationS3.
-
AWS::DataSync::LocationS3
-
Use the S3StorageClass property to specify the S3 Glacier
Instant Retrieval storage class (GLACIER_INSTANT_RETRIEVAL ) for
data transferred to your S3 bucket.
| February 2, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the CertificateDetails property for the details of the DB instance's
server certificate.
| February 2, 2023 |
Updated resource | The following resource was added: AWS::SageMaker::ModelCard. | February 2, 2023 |
New resources | The following new resources were added: AWS::CloudTrail::Channel and AWS::CloudTrail::ResourcePolicy | February 2, 2023 |
New resource | The following resource was added: AWS::Connect::IntegrationAssociation | February 2, 2023 |
New resource | The following resource was added: AWS::Connect::ApprovedOrigin | February 2, 2023 |
New resource | The following resource was added: AWS::Connect::SecurityKey | February 2, 2023 |
New resource | The following resource was added: AWS::SimSpaceWeaver::Simulation. | February 2, 2023 |
DescribeStackSet API | The DescribeStackSet API has a new parameter to the list of
Regions where a given stack set is deployed. For more information, see DescribeStackSet . | February 1, 2023 |
Updated resource | The following resource was updated: AWS::Lambda::Function.
-
AWS::Lambda::Function
-
Use the RuntimeManagementConfig to define how your function gets runtime version updates. Lambda releases new runtime versions that include security updates, bug fixes, and new features. You can now control when your functions get updated to the new runtime versions.
| January 26, 2023 |
Updated resource | The following resource was updated: AWS::OpenSearchService::Domain. | January 26, 2023 |
New resource | A new resource was added to Network Manager: AWS::NetworkManager::TransitGatewayPeering | January 26, 2023 |
Updated resource | The following resource was updated:
AWS::KendraRanking::ExecutionPlan
-
AWS::KendraRanking::ExecutionPlan
-
Create a rescore execution plan, which is an Amazon Kendra
Intelligent Ranking resource used for provisioning the
Rescore API. Amazon Kendra Intelligent Ranking
rescores or re-ranks a search service's results using semantic
search.
| January 20, 2023 |
Updated resource | The following resource was updated: AWS::CloudWatch::MetricStream.
-
AWS::CloudWatch::MetricStream
-
In the MetricStream
resource, use IncludeLinkedAccountsMetrics to specify whether the metric stream
should metric streams from source accounts, if the metric stream is created in a
monitoring account.
| January 19, 2023 |
Updated resource | The following resource was updated: AWS::Lambda::EventSourceMapping. | January 19, 2023 |
Updated resource | The following resource was updated: AWS::AuditManager::Assessment
| January 12, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
The ManageMasterUserPassword property indicates whether to
manage the master user password with AWS Secrets Manager.
The MasterUserSecret property 4has the secret managed by RDS in
AWS Secrets Manager for the master user password.
| January 12, 2023 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
The ManageMasterUserPassword property indicates whether to
manage the master user password with AWS Secrets Manager.
The MasterUserSecret property 4has the secret managed by RDS in
AWS Secrets Manager for the master user password.
| January 12, 2023 |
Fn::FindInMap enhancements | Adding the AWS::LanguageExtensions transform in a AWS CloudFormation template
allows you to use intrinsic functions to define the fields of Fn::FindInMap. You can
also use a new optional field to return a default value if a mapping isn't
found. For more information, see Fn::FindInMap enhancements. | January 11, 2023 |
Updated resource | The following resource was updated: AWS::CloudFront::ResponseHeadersPolicy. | January 5, 2023 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
AirflowVersion
-
The AirflowVersion property has been updated to include a new valid value for Apache Airflow version 2.4.3.
| January 5, 2023 |
Updated resource | The following resource was updated:
AWS::EMRServerless::Application .
-
AWS::EMRServerless::Application
-
Use the ImageConfigurationInput property to specify
your custom image configuration for all worker types.
Use the WorkerTypeSpecificationInput property to
specify the configuration for a worker type.
| January 3, 2023 |
Updated resource | The following property type was updated: AWS::Lex::Bot. | December 30, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Filesystem
-
AWS::FSx::Filesystem
-
The AWS::FSx::FileSystem resource returns a file system's Amazon Resource Name (ARN).
| December 29, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
Use the CopyTagsToBackups
AWS::FSx::Volume OntapConfiguration property to specify whether an ONTAP volume's tags get copied to backups.
| December 29, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
Use the OntapVolumeType
AWS::FSx::Volume OntapConfiguration property to specify the type of ONTAP volume to create.
| December 29, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
Use the SnapshotPolicy
AWS::FSx::Volume OntapConfiguration property to specify the snapshot policy for the volume you are creating.
| December 29, 2022 |
Updated resources | The following resources were updated: AWS::NetworkFirewall::FirewallPolicy and AWS::NetworkFirewall::RuleGroup
-
AWS::NetworkFirewall::FirewallPolicy
-
Use the StatefulDefaultActions property to establish default actions to take on a packet that doesn't match any stateful rules when using strict rule ordering.
Use the StatefulEngineOptions property to govern how Network Firewall handles stateful rules.
-
AWS::NetworkFirewall::RuleGroup
-
The StatefulRuleGroupReference property now includes Priority and StatefulRuleGroupOverride fields.
Use the StatefulRuleOptions property to govern how Network Firewall handles stateful rules.
Use the ReferenceSets property to configure IP set references for your stateful rules.
| December 22, 2022 |
Updated resource | The following resource was updated: AWS::Grafana::Workspace .
-
AWS::Grafana::Workspace
-
Use the vpcConfiguration property of the
AWS::Grafana::Workspace resource to configure a
connection to a private VPC from your Amazon Managed Grafana
workspace.
| December 22, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
The Endpoint property specifies the connection endpoint.
The DBSystemId return value is the Oracle system ID (Oracle SID) for a container database (CDB).
| December 22, 2022 |
Updated resource | The following resource was added: AWS::SageMaker::Project.
-
AWS::SageMaker::FeatureGroup
-
Use the AWS::SageMaker::FeatureGroup resource to
create a new feature group using either an Apache Iceberg or Glue
table format.
| December 22, 2022 |
Updated resource | The following resource was updated: AWS::Backup::ReportPlan | December 21, 2022 |
Updated resources | The following resources were updated: AWS::M2::Application and AWS::M2::Environment. | December 15, 2022 |
Updated resources | The following resources were updated: AWS::RefactorSpaces::Application,
AWS::RefactorSpaces::Environment, AWS::RefactorSpaces::Route,
AWS::RefactorSpaces::Service. | December 15, 2022 |
Updated resource | The following resource was updated:
AWS::SSMIncidents::AWS::SSMIncidents::ReplicationSet
| December 15, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the DBClusterSnapshotIdentifier property as the identifier for the RDS for MySQL Multi-AZ DB cluster snapshot to restore from.
Use the RestoreTime property to specify the date and time to restore from.
Use the SourceDbiResourceId property to specify the resource ID of the source DB instance from which to restore.
Use the SourceDBInstanceAutomatedBackupsArn property to specify the Amazon Resource Name (ARN) of the replicated automated backups from which to restore.
Use the UseLatestRestorableTime property to specify a value that indicates whether the DB instance is restored from the latest backup time.
| December 15, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
Use the SecondsBeforeTimeout value in ScalingConfiguration property syntax to
define the amount of time (seconds) that Aurora Serverless v1 tries to find a scaling point to perform seamless scaling before enforcing the timeout action.
The DBSystemId property is reserved for future use.
| December 15, 2022 |
New resource | The following resources were added: AWS::DocDBElastic::Cluster.
-
AWS::DocDBElastic::Cluster
-
Use the
AWS::DocDBElastic::Cluster resource to create an elastic cluster in the Amazon DocumentDB database service.
| December 15, 2022 |
New resources | A property was added to VpcOptions in Network Manager: AWS::NetworkManager::VpcAttachment VpcOptions | December 14, 2022 |
New resource | The following resource was added: AWS::Connect::Rule | December 12, 2022 |
Updated resource | The following resource was updated: AWS::FIS::ExperimentTemplate. The following resource was added: AWS::FIS::TargetAccountConfiguration. | December 11, 2022 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
Use the ChallengeConfig property to configure request evaluations for rules that
use the Challenge action.
Use the TokenDomains property to specify additional domains to accept in web request tokens.
Use the RuleActionOverride property in rule group reference statements to override individual rule actions
to any valid action. This replaces the ExcludedRule property, which only allows override to Count .
Use the AWSManagedRulesBotControlRuleSet property to configure
your use of the Bot Control managed rule group in a managed rule group reference statement.
-
AWS::WAFv2::RuleGroup
-
Use the ChallengeConfig property to configure request evaluations for rules that
use the Challenge action.
| December 8, 2022 |
New resources | The following resources were added: AWS::Grafana::Workspace .
-
AWS::Grafana::Workspace
-
Use the AWS::Grafana::Workspace resource to create an
Amazon Managed Grafana workspace in your AWS
account. An Amazon Managed Grafana workspace allows you to view and
monitor metrics and alerts for your system.
| December 8, 2022 |
New resource | The following resources were added: AWS::OpenSearchServerless::AccessPolicy,
AWS::OpenSearchServerless::Collection, AWS::OpenSearchServerless::SecurityConfig,
AWS::OpenSearchServerless::SecurityPolicy,
AWS::OpenSearchServerless::VpcEndpoint. | December 8, 2022 |
New resources | The following resource was added: AWS::IoTTwinMaker::SyncJob. | December 6, 2022 |
Updated resources | The following resources were updated: AWS::ECS::TaskDefinition. | December 2, 2022 |
Updated resources | The following resources were updated: AWS::ECS::TaskDefinition. | December 2, 2022 |
Updated resource | The following resource was updated: AWS::Logs::LogGroup. | December 2, 2022 |
Updated resource | The following resource was updated: AWS::Logs::LogGroup. | December 2, 2022 |
Updated resource | The following resource was updated: AWS::SSMIncidents::ResponsePlan
-
AWS::SSMIncidents::ResponsePlan
-
Use the Integration resource to specify information
about third-party services integrated into the response plan, such
as PagerDuty.
Use the PagerDuty resource to provide details about
the PagerDuty configuration for a response plan.
| December 2, 2022 |
Updated resource | The following resource was updated: AWS::Lambda::Function.
-
AWS::Lambda::Function
-
Use the SnapStart property to specify the function's AWS Lambda SnapStart setting. SnapStart creates a snapshot of the initialized execution environment when you publish a function version.
| December 2, 2022 |
New resources | The following properties were added: AWS::ECS::Cluster ServiceConnectDefaults,
AWS::ECS::Service ServiceConnectClientAlias, and AWS::ECS::Service
ServiceConnectConfiguration. | December 2, 2022 |
New resources | The following resources were added: AWS::Pipes::Pipe.
-
AWS::Pipes::Pipe
-
Use the
AWS::Pipes::Pipe resource to specify a new Amazon EventBridge Pipes pipe.
| December 2, 2022 |
New resources | The following resources were added: AWS::Oam::Sink and AWS::Oam::Link.
-
AWS::Oam::Sink
-
Use the AWS::Oam::Sink resource to specify a sink, which is an attachment
point in a monitoring account that source accounts can create links to. Use the
AWS::Oam::Link resource to specify a link from a source account to a monitoring
account sink. For more information,
see CloudWatch cross-account observability.
| December 2, 2022 |
New resource | The following resource was added: AWS::EC2::NetworkPerformanceMetricSubscription. | December 2, 2022 |
New resource | The following resource was added: AWS::IoT::TopicRule RepublishActionHeaders. | December 2, 2022 |
Updated resource | The following resource was updated: AWS::S3::AccessPoint.
-
AWS::S3::AccessPoint
-
Use AWS::S3::AccessPoint BucketAccountId to specify which AWS account is associated with the S3 bucket associated with an access
point.
| November 30, 2022 |
Updated resources | The following properties were added: AWS::IoTTwinMaker::ComponentType.PropertyGroups, and Entity.PropertyGroup. | November 17, 2022 |
Updated resources | The following resources were updated: AWS::Amplify::App and AWS::Amplify::Branch
-
AWS::Amplify::App
-
Use the Platform property to specify the platform type for the
Amplify app.
-
AWS::Amplify::Branch
-
Use the Framework property to specify the framework for the Amplify
app.
| November 17, 2022 |
Updated resource | The following resources were updated: AWS::AppSync::Resolver and
AWS::AppSync::FunctionConfiguration | November 17, 2022 |
Updated resource | The following resource was updated: AWS::CloudFront::Distribution. | November 17, 2022 |
Updated resource | The following resource was updated: AWS::CloudTrail::EventDataStore | November 17, 2022 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | November 17, 2022 |
Updated resource | The following resource was updated:
AWS::EMRServerless::Application . | November 17, 2022 |
Updated resource | The following resource was updated: AWS::IVS::RecordingConfiguration | November 17, 2022 |
Updated resource | The following resource was updated: AWS::S3::StorageLens. | November 17, 2022 |
New resources | The following resources were added: AWS::Organizations::Account ,
AWS::Organizations::OrganizationalUnit , and
AWS::Organizations::Policy .
-
AWS::Organizations::Account
-
Use the AWS::Organizations::Account resource to
create an AWS account that is automatically a member
of the organization whose credentials made the request.
-
AWS::Organizations::OrganizationalUnit
-
Use the AWS::Organizations::OrganizationalUnit
resource to create an organizational unit (OU) within a root or
parent OU in AWS Organizations.
-
AWS::Organizations::Policy
-
Use the AWS::Organizations::Policy resource to create
a policy of a specified type that you can attach to a root, an
organizational unit (OU), or an individual AWS account in AWS Organizations.
| November 17, 2022 |
New resource | The following resource was added: AWS::XRay::ResourcePolicy.
-
AWS::XRay::ResourcePolicy
-
Use the ResourcePolicy resource to specify a resource-based policy which enables access to specific X-Ray resources.
| November 17, 2022 |
New Resource | The following resource was added: AWS::CloudFront::ContinuousDeploymentPolicy. | November 17, 2022 |
Managing StackSets events with AWS CloudFormation and Amazon EventBridge | AWS CloudFormation StackSets launch event notifications via Amazon EventBridge. You can trigger
event-driven actions after creating, updating, or deleting your CloudFormation stack
sets For more information, see Managing
events with AWS CloudFormation and Amazon EventBridge. | November 16, 2022 |
New property | The following property was added: AWS::GreengrassV2::Deployment.ParentTargetArn. | November 15, 2022 |
New resources for Amazon EventBridge Scheduler | The following resources were added: AWS::Scheduler::Schedule , AWS::Scheduler::ScheduleGroups . | November 11, 2022 |
Updated resources | The following resources were updated: AWS::AppStream::DirectoryConfig
-
AWS::AppStream::DirectoryConfig
RSS
-
Use the CertificateBasedAuthProperties property to specify the certificate-based authentication properties used to authenticate SAML 2.0 Identity Provider (IdP) user identities to Active Directory domain-joined streaming instances.
| November 10, 2022 |
Updated resources | The following resources were updated: AWS::Batch::ComputeEnvironment and AWS::Batch::JobDefinition
| November 10, 2022 |
Updated resources | The following resources were updated: AWS::EC2::SpotFleet, AWS::EC2::EC2Fleet, and AWS::EC2::LaunchTemplate. | November 10, 2022 |
Updated resources | The following resource was updated: AWS::EC2::LaunchTemplate. | November 10, 2022 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | November 10, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the StorageThroughput property to specify the storage throughput value for the DB instance. This setting is applicable only for gp3 storage type.
| November 10, 2022 |
New resources | The following resources were added: AWS::MemoryDB::Cluster.DataTiering | November 10, 2022 |
Launch of Resource Explorer | Initially added the resources for AWS Resource Explorer. | November 7, 2022 |
Improved insights on stack instances for stack set operations | AWS CloudFormation StackSets provides more detailed information on stack instances for stack
set operations:
-
DescribeStackSetOperation
-
You can now use DescribeStackSetOperation to provide the
count of failed stack instances for stack set operations during
deployment.
-
ListStackInstances
-
You can now use the filtering option LastOperationID to
list stack instances for stack set operations.
| November 4, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
Use the TimeoutAction value in ScalingConfiguration property syntax to define the action to take when the timeout is reached.
The DBClusterArn return value is the Amazon Resource Name (ARN) for the DB cluster.
The DBClusterResourceId return value is the AWS Region-unique, immutable identifier for the DB cluster.
| November 3, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the ReplicaMode property to define the open mode of an Oracle read replica.
The DBInstanceArn return value is the Amazon Resource Name (ARN) for the your instance.
The DbiResourceId return value is the AWS Region-unique, immutable identifier for the DB instance.
| November 3, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBClusterParameterGroup | November 3, 2022 |
Updated resource | The following resource was updated: AWS::RDS::OptionGroup | November 3, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance | November 3, 2022 |
New resource | The following resource and properties were added: AWS::SES::VdmAttributes,
AWS::SES::ConfigurationSet VdmOptions . | November 3, 2022 |
New resource | The following resource was added:
AWS::SupportApp::SlackWorkspaceConfiguration. | November 3, 2022 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup.
-
AWS::AutoScaling::AutoScalingGroup
-
Use the DefaultInstanceWarmup property to unify all the warm-up and
cooldown settings for an Auto Scaling group and optimize the performance of scaling
policies that scale continuously, such as target tracking and step scaling
policies.
| November 2, 2022 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | October 31, 2022 |
New resource | The following resource was added: AWS::AppRunner::VpcIngressConnection | October 31, 2022 |
New resource | The following resource was added: AWS::IoT::TopicRule LocationAction. | October 31, 2022 |
Updated resource | The following resource was updated: AWS::Connect::User UserIdentityInfo
-
AWS::Connect::User UserIdentityInfo
-
Use the Mobile property to specify the user's mobile number.
Use the SecondaryEmail property to specify the user's
secondary email address.
| October 27, 2022 |
Updated resource | The following resource was updated: AWS::RUM::AppMonitor. | October 27, 2022 |
Updated resource | The following resource was updated: AWS::Cognito::UserPoolClient
-
AWS::Cognito::UserPool
-
The DeletionProtection property of a user pool prevents accidental
deletion of user pools.
| October 24, 2022 |
Updated resource | The following property was added to the AWS::SES::DedicatedIpPool resource: | October 20, 2022 |
New resources | The following resources were added: AWS::AmplifyUIBuilder::Form. | October 20, 2022 |
New resource | The following new resource was added: AWS::FSx::DataRepositoryAssociation
| October 20, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
Use the Domain property to specify the directory ID of the Active Directory to create the DB cluster.
Use the DomainIAMRoleName property to specify the name of the IAM role to use when making API calls to the Directory Service.
Use the NetworkType property to indicate the network type of the DB cluster.
The following properties now supported for Multi-AZ DB clusters: AllocatedStorage, AutoMinorVersionUpgrade, BackupRetentionPeriod, CopyTagsToSnapshot,
DatabaseName, DBClusterIdentifier, DBClusterInstanceClass, DBClusterParameterGroupName, DBSubnetGroupName, DeletionProtection, EnableCloudwatchLogsExports,
Engine, EngineVersion, Iops, KmsKeyId, MasterUsername, MasterUserPassword, MonitoringInterval, MonitoringRoleArn, PerformanceInsightsEnabled,
PerformanceInsightsKmsKeyId, PerformanceInsightsRetentionPeriod, Port, PreferredBackupWindow, PreferredMaintenanceWindow, PubliclyAccessible,
StorageEncrypted, StorageType, Tags, and VpcSecurityGroupIds
| October 13, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance | October 13, 2022 |
Updated resource | The following resource was updated: AWS::Connect::PhoneNumber
-
AWS::Connect::PhoneNumber
-
Use the AWS::Connect::PhoneNumber resource to claim a phone
number to an Amazon Connect instance or traffic distribution
group.
| October 10, 2022 |
New resource | The following resources were added: AWS::GreengrassV2::Deployment.
-
AWS::GreengrassV2::Deployment
-
Use the AWS::GreengrassV2::Deployment resource to create a new
deployment to your core devices in AWS IoT Greengrass.
| October 6, 2022 |
New and updated resources | The following resources were added: AWS::Transfer::Agreement, AWS::Transfer::Connector, AWS::Transfer::Certificate, and
AWS::Transfer::Profile. The following resource was updated: AWS::Transfer::Server WorkflowDetails
-
AWS::Transfer::Agreement
-
Use the Agreement resource to specify an agreement between trading partners in AWS Transfer Family.
-
AWS::Transfer::Certificate
-
Use the Certificate resource to import signing and encryption certificates for AS2 in AWS Transfer Family.
-
AWS::Transfer::Connector
-
Use the Connector resource to create an entity that captures the parameters for an outbound AS2 connection in AWS Transfer Family.
-
AWS::Transfer::Profile
-
Use the Profile resource to specify local and partner profiles for servers in AWS Transfer Family that use the AS2 protocol.
-
AWS::Transfer::Server WorkflowDetails
-
Use the OnPartialUpload parameter to trigger a workflow in the case a transfer is interrupted and does not complete.
| October 6, 2022 |
Updated resource | The following resource was updated: AWS::KMS::Key .
-
AWS::KMS::Key
-
If you change the value of an immutable property of an existing
AWS::KMS::Key resource, the request to update the resource fails.
Previously, changing the value of an immutable property caused the existing
AWS::KMS::Key to be deleted and replaced.
This change does not affect the AWS::KMS::Alias or
AWS::KMS::ReplicaKey resources. If you change an immutable property
of these resources, the resource is deleted and replaced.
| September 30, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBCluster
-
AWS::RDS::DBCluster
-
Use the ServerlessV2ScalingConfiguration property to specify the scaling configuration of an Aurora Serverless V2 DB cluster.
The DBClusterResourceId return value is the AWS Region-unique, immutable identifier for the DB cluster.
Use the DBInstanceParameterGroupName property to specify the name of the DB parameter group to apply to all instances of the DB cluster.
| September 29, 2022 |
Updated resource | The following resource was updated: AWS::RDS::DBInstance
-
AWS::RDS::DBInstance
-
Use the NcharCharacterSetName property to specify the name of the NCHAR character set for the Oracle DB instance.
Use the CustomIAMInstanceProfile property to specify the instance profile associated with the underlying Amazon EC2
instance of an RDS Custom DB instance.
| September 29, 2022 |
New resources | The following resources were added: AWS::IdentityStore::Group and AWS::IdentityStore::GroupMembership. | September 29, 2022 |
New resource | The following resource was added: AWS::CloudFront::MonitoringSubscription. | September 29, 2022 |
Updated resource | The following resource was updated: AWS::IoT::CACertificate. | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::Campaign | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::DecoderManifest | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::Fleet | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::ModelManifest | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::SignalCatalog | September 22, 2022 |
New resource | The following resource was added: AWS::IoTFleetWise::Vehicle | September 22, 2022 |
Updated resource | The following resource was updated: AWS::Cognito::UserPoolClient
-
AWS::Cognito::UserPoolClient
-
The AuthSessionValidity property of a user pool client makes it
possible to increase the duration of a prompt for authentication input like a
password or MFA code.
| September 15, 2022 |
Updated resource | The following property was updated: AWS::EKS::Cluster
-
AWS::EKS::Cluster
-
Use the OutpostConfig property to specify the
configuration of your local Amazon EKS cluster on an
Outpost.
| September 15, 2022 |
New resource | A new parameter was added to the AWS::Evidently::Project. | September 15, 2022 |
Updated resources | The following resource was updated: AWS::EC2::LaunchTemplate. | September 8, 2022 |
Updated resource | The following resource was updated: AWS::KMS::Key .
-
AWS::KMS::Key
-
Add full AWS::KMS::Key support to Middle East (UAE) Region (me-central-1), including support for using a CloudFormation template to
create and manage asymmetric KMS keys and multi-Region KMS keys (primary or replica).
| September 8, 2022 |
Updated resource | The following resource was updated: AWS::OpenSearchService::Domain.
-
AWS::OpenSearchService::Domain
-
Use the Throughput property to specify the throughput of the EBS volumes attached to data nodes. This propertly applies only to the
gp3 volume type.
| September 8, 2022 |
Updated resource | The following resource was updated: AWS::SNS::Topic.
-
AWS::SNS::Topic
-
Use the DataProtectionPolicy property to attach a
DataProtectionPolicy to an SNS topic.
| September 8, 2022 |
New resource | The following resource was added: AWS::CloudFront::OriginAccessControl. | September 8, 2022 |
New resource | The following resource was added: AWS::Connect::InstanceStorageConfig | September 1, 2022 |
New resource | The following resource was added: AWS::ControlTower::EnabledControl. | September 1, 2022 |
New resource | The following resource was added: AWS::Macie::AllowList .
-
AWS::Macie::AllowList
-
Use the AWS::Macie::AllowList resource to specify
text or a text pattern for Amazon Macie to ignore when
it inspects data sources for sensitive data.
| September 1, 2022 |
Updated resource | The following resource was updated: AWS::APS::Workspace.
-
AWS::APS::Workspace
-
Use the LoggingConfiguration property to specify
Amazon Managed Service for Prometheus workspace logging
configuration.
| August 30, 2022 |
Updated resources | The following resources were updated: AWS::AppMesh::VirtualNode,
AWS::AppMesh::VirtualGateway, AWS::AppMesh::GatewayRoute and AWS::AppMesh::Route
-
AWS::AppMesh::VirtualNode
-
Use the Format property to represent the specified format
for the logs. The format is either json_format or
text_format .
Use the JsonFormatRef resource to represent object that
represents the key value pairs for the JSON.
Use the LoggingFormat resource to represent object that
represents the format for the logs.
-
AWS::AppMesh::VirtualGateway
-
Use the VirtualGatewayFileAccessLogFormat property to
represent the specified format for the logs. The format is either
json_format or text_format .
Use the JsonFormatRef resource to represent object that
represents the key value pairs for the JSON.
Use the LoggingFormat resource to represent object that
represents the format for the logs.
-
AWS::AppMesh::GatewayRoute
-
Use the Port property to represent the port number of the
gateway route target.
-
AWS::AppMesh::Route
-
Use the Port property to represent the port number of the
gateway route target.
Use the Port property to represent an object that is the
criteria for determining a request match.
Use the TcpRouteMatch resource to represent an object that
is the TCP route to match.
| August 25, 2022 |
Updated resource | The following resource was updated: AWS::MediaPackage::OriginEndpoint. | August 25, 2022 |
New resource | The following resource was added: AWS::Connect::Instance | August 25, 2022 |
New resource | The following resource was added:
AWS::SupportApp::SlackChannelConfiguration. | August 25, 2022 |
New resource | The following resource was added: AWS::SupportApp::AccountAlias.
-
AWS::SupportApp::AccountAlias
-
Use the AWS::SupportApp::AccountAlias resource to
specify your alias name. You can use this alias to identify your
AWS account in the AWS Support App.
| August 25, 2022 |
Fn::ToJsonString intrinsic function | The Fn::ToJsonString intrinsic function converts an object or array
to its corresponding JSON string. For more information, see Fn::ToJsonString . | August 24, 2022 |
Fn::Length intrinsic function | The Fn::Length intrinsic function returns the number of elements
within an array or an intrinsic function that returns an array. For more information, see Fn::Length . | August 24, 2022 |
AWS::LanguageExtensions transform | The AWS::LanguageExtensions transform is a macro hosted by AWS CloudFormation that
lets you use intrinsic functions and other functionalities not included by default in
AWS CloudFormation. For more information, see AWS::LanguageExtensions transform. | August 24, 2022 |
Updated resources | The following resource was updated: AWS::WAFv2::WebACLAssociation. | August 23, 2022 |
Updated resource | The following resource was updated: AWS::FMS::Policy.
-
AWS::FMS::Policy
-
The AWS::FMS::Policy resource now allows you to manage third-party firewalls, as well as AWS Network Firewall policies that use centralized or distributed deployment models.
| August 18, 2022 |
Updated resource | The following resource was updated: AWS::Lambda::EventSourceMapping.
-
AWS::Lambda::EventSourceMapping
-
Use the SelfManagedKafkaEventSourceConfig property to define specific configuration settings for a self-managed
Kafka event source, such as the consumer group ID. Use the AmazonManagedKafkaEventSourceConfig property to define
specific configuration settings for an MSK event source, such as the consumer group ID.
| August 18, 2022 |
New resource | The following resource was added:
AWS::DynamoDB::Table.ImportSourceSpecification | August 18, 2022 |
Updated resource | The following resource was updated: AWS::CloudFront::Distribution. | August 15, 2022 |
Updated resource | The following resources were updated: AWS::GuardDuty::Filter,
AWS::GuardDuty::IPSet, and AWS::GuardDuty::ThreatIntelSet
-
AWS::GuardDuty::Filter
-
Use Tags property to specify metadata
to add to a new filter resource.
Use Rank property to specify position
of the filter in the list of the current
filters.
-
AWS::GuardDuty::IPSet
-
Use Tags property to specify metadata
to add to a new IP set resource.
-
AWS::GuardDuty::ThreatIntelSet
-
Use Tags property to specify metadata
to add to a new threat list resource.
| August 15, 2022 |
New resources | The following resources were added: AWS::M2::Application and
AWS::M2::Environment.
-
AWS::M2::Application
-
Use the AWS::M2::Application resource to specify an
application in the AWS Mainframe Modernization service.
-
AWS::M2::Environment
-
Use the AWS::M2::Environment resource to specify a runtime
environment in the AWS Mainframe Modernization service.
| August 11, 2022 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup. | August 4, 2022 |
Updated resource | The following resource was updated: AWS::GuardDuty::Detector
-
AWS::GuardDuty::Detector
-
Use the CFNDataSourceConfigurations
property to specify the data source when detector is
created.
Use the
CFNMalwareProtectionConfiguration
property to specify enabling Malware Protection data
source.
Use the
CFNScanEc2InstanceWithFindingsConfiguration
property to specify enabling data source as Malware
Protection for EC2 findings.
| August 4, 2022 |
Updated resource | The following resource was updated: AWS::IoT::CACertificate.
-
AWS::IoT::CACertificate
-
The AWS::IoT::CACertificate resource adds RegistrationConfig type in
RegistrationConfig property.
| August 4, 2022 |
Updated resource | The following resource was updated: AWS::IoT::ProvisioningTemplate. | August 4, 2022 |
Updated resource | The following resource was updated: AWS::RedshiftServerless::Workgroup | July 28, 2022 |
Updated resource | The following resource was updated: | July 28, 2022 |
Updates to resource | The following resource was updated: AWS::SSO::PermissionSet .
-
AWS::SSO::PermissionSet
-
Use the CustomerManagedPolicyReferences and
PermissionsBoundary properties of the
AWS::SSO::PermissionSet resource to assign customer
managed policies and permissions boundaries in IAM Identity Center.
| July 21, 2022 |
Updated resources | The following resource was updated: AWS::EC2::PlacementGroup. | July 21, 2022 |
Updated resource | The following resource was updated: AWS::MediaPackage::OriginEndpoint. | July 21, 2022 |
New resource | The AWS::Evidently::Segment resource was added. | July 21, 2022 |
New resource | The following resource was added: AWS::Synthetics::Group.
-
AWS::Synthetics::Group
-
Use the AWS::Synthetics::Group resource to create a group.
You can use groups to associate canaries with
each other, including cross-Region canaries. Using groups can help you with managing
and automating your canaries, and you can also view aggregated run results and statistics
for all canaries in a group.
| July 21, 2022 |
Managing events with AWS CloudFormation and Amazon EventBridge | Receive notifications when specific AWS CloudFormation events such as object creation or
deletion occur in an AWS CloudFormation with EventBridge. For more information, see Managing
events with Amazon EventBridge. | July 20, 2022 |
Updated resource | The following resource was updated: AWS::KMS::Key .
-
AWS::KMS::Key
-
Added support for SM2 key pairs (China Regions only), including the SM2 value for the KeySpec property.
| July 14, 2022 |
Updated resource | The following resource was updated: AWS::SageMaker::NotebookInstance
-
AWS::SageMaker::NotebookInstance
-
Use the InstanceMetadataServiceConfiguration property
to specify information about the IMDS configuration of the notebook
instance.
Use the
InstanceMetadataServiceConfiguration.MinimumInstanceMetadataServiceVersion
property to specify the minimum IMDS version that the notebook
instance supports.
| July 14, 2022 |
New resources | Use these resources to manage your Amazon Redshift Serverless instance. | July 12, 2022 |
Account level | AWS CloudFormation announces the general availability of account filter
type, a feature that allows customers to limit deployment targets to
individual accounts or include additional accounts with provided OUs. For more information, see Account
level targets. | July 7, 2022 |
Updated resource | The following resource was updated: AWS::RefactorSpaces::Route. | June 30, 2022 |
New resources | The following resources were added: AWS::LakeFormation::DataCellsFilter, AWS::LakeFormation::TagAssociation, documentation target="AWS::LakeFormation::Tag, AWS::LakeFormation::PrincipalPermissions | June 30, 2022 |
New resource | The following resource was added: AWS::DataSync::LocationFSxONTAP. | June 30, 2022 |
New resource | The following resource was added: AWS::IoT::CACertificate | June 30, 2022 |
New resource | The following resource was added: AWS::SES::DedicatedIpPool. | June 30, 2022 |
New resource | The following resource and properties were added: AWS::SES::EmailIdentity,
AWS::SES::EmailIdentity ConfigurationSetAttributes, AWS::SES::EmailIdentity
DkimAttributes, AWS::SES::EmailIdentity DkimSigningAttributes,
AWS::SES::EmailIdentity FeedbackAttributes, and AWS::SES::EmailIdentity
MailFromAttributes. | June 30, 2022 |
Updated resources | The following resources were updated: AWS::AppStream::Stack
-
AWS::AppStream::Stack
-
Use the StreamingExperienceSettings property to specify the streaming protocol you want your stack to prefer. This can be UDP or TCP. Currently, UDP is only supported in the Windows native client.
| June 28, 2022 |
New resource | The following resource was added: AWS::CloudTrail::EventDataStore
-
AWS::CloudTrail::EventDataStore
-
Use the EventDataStore resource to specify an event data
store in CloudTrail Lake. Event data stores are immutable collections
of events based on criteria that you select by applying advanced event
selectors. For
more information, see Working with
CloudTrail Lake in the
AWS CloudTrail
User Guide.
-
AWS::CloudTrail::EventDataStore.AdvancedEventSelector
-
Use the AdvancedEventSelector property to specify
fine-grained event properties for data events that you want to log to an
event data store. For more information, see Data events in the
AWS CloudTrail User
Guide.
-
AWS::CloudTrail::EventDataStore.AdvancedFieldSelector
-
Use the AdvancedFieldSelector property to specify
fine-grained event properties for data events that you want to log to an
event data store. An AdvancedFieldSelector is a single selector
statement within an advanced event selector. For more information, see
Data events in the
AWS CloudTrail User
Guide.
| June 23, 2022 |
New resource | The following resources were added: AWS::ConnectCampaigns::Campaign | June 23, 2022 |
Updated resources | The following resources were updated: AWS::MediaTailor::Channel, AWS::MediaTailor::LiveSource, AWS::MediaTailor::SourceLocation, and AWS::MediaTailor::VodSource. | June 22, 2022 |
Updated resources | The following resource was updated: AWS::MediaTailor::PlaybackConfiguration.
-
AWS::MediaTailor::PlaybackConfiguration
-
Added DashConfiguration.ManifestEndpointPrefix , HlsConfiguration.ManifestEndpointPrefix , PlaybackConfigurationArn , PlaybackEndpointPrefix , and SessionInitializationEndpointPrefix return values.
| June 16, 2022 |
New resources | The following resource and properties were added: AWS::Route53::CidrCollection, AWS::Route53::RecordSet.CidrRoutingConfig, and AWS::Route53::RecordSetGroup CidrRoutingConfig | June 16, 2022 |
Updated resources | The following resource was updated: AWS::EC2::LaunchTemplate. | June 9, 2022 |
Updated resource | The following resource was updated: AWS::DataSync::LocationEFS.
-
AWS::DataSync::LocationEFS
-
Use the AccessPointArn property to specify an access point for your Amazon EFS file system.
Use the FileSystemAccessRoleArn property to specify an IAM role that DataSync assumes when mounting your file system.
Use the InTransitEncryption property to specify whether you want DataSync to use Transport Layer Security (TLS) 1.2 encryption when it copies data to or from your file system.
| June 9, 2022 |
Updated resource | The following property was added to the AWS::SES::ConfigurationSetEventDestination
resource: | June 9, 2022 |
Updated resource | The following properties were updated to SES API v2 for the
AWS::SES::ConfigurationSet resource: | June 9, 2022 |
New resource | The following resources were added: AWS::Connect::TaskTemplate | June 9, 2022 |
Updated resource | The following resource was updated: | May 26, 2022 |
New resource | The following resource was added:
AWS::EMRServerless::Application . | May 26, 2022 |
New resources | The following resources were added: AWS::IoTWireless::NetworkAnalyzerConfiguration | May 25, 2022 |
Updated resource | The following resource was updated: AWS::Cognito::UserPoolClient
-
AWS::Cognito::UserPoolClient
-
The EnablePropagateAdditionalUserContextData property of a user
pool client makes it possible to pass IP address information to advanced security
features with unauthenticated API requests.
| May 20, 2022 |
Updated resources | The following resources were updated: AWS::AppMesh::VirtualNode and
AWS::AppMesh::Mesh
-
AWS::AppMesh::VirtualNode
-
Use the DnsServiceDiscovery property to represent the DNS
service discovery information for your virtual node.
Use the AwsCloudMapServiceDiscovery property to represent
the AWS Cloud Map service discovery information for your virtual
node.
-
AWS::AppMesh::Mesh
-
Use the MeshServiceDiscovery resource to represent the
service discovery information for a service mesh.
| May 19, 2022 |
Updated resources | The following resources were updated: AWS::Lightsail::LoadBalancer and AWS::Lightsail::LoadBalancerTlsCertificate | May 19, 2022 |
Updated resource | The following resource was updated: AWS::Synthetics::Canary.
-
AWS::Synthetics::Canary
-
The DeleteLambdaResourcesOnCanaryDeletion parameter was added. You can specify this parameter
when you create or update a canary to have the canary's Lambda resources deleted when the
canary is deleted.
| May 12, 2022 |
Updated resource | The following resource was updated: AWS::DataSync::Task.
-
AWS::DataSync::Task
-
In the Options property type, use the ObjectTags property to specify whether object tags are maintained when transferring between object storage systems.
| May 12, 2022 |
New resource | The following resource was added: AWS::IoT::RoleAlias | May 12, 2022 |
New resources | New resources were added to Network Manager:
AWS::NetworkManager::CoreNetwork, AWS::NetworkManager::ConnectAttachment, AWS::NetworkManager::ConnectPeer, AWS::NetworkManager::SiteToSiteVpnAttachment, and AWS::NetworkManager::VpcAttachment.
| May 11, 2022 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
Use the Cookies property to specify that a rule statement should inspect the cookies in web requests.
Use the CookieMatchPattern property to specify a subset of all cookies for inspection.
Use the Headers property to specify that a rule statement should inspect the headers in web requests.
Use the HeaderMatchPattern property to specify a subset of all headers for inspection.
In the Body property type, use the OversizeHandling property to specify how to handle web requests that have oversize body contents.
In the JsonBody property type, use the OversizeHandling property to specify how to handle web requests that have oversize body contents.
-
AWS::WAFv2::RuleGroup
-
Use the Cookies property to specify that a rule statement should inspect the cookies in web requests.
Use the CookieMatchPattern property to specify a subset of all cookies for inspection.
Use the Headers property to specify that a rule statement should inspect the headers in web requests.
Use the HeaderMatchPattern property to specify a subset of all headers for inspection.
In the Body property type, use the OversizeHandling property to specify how to handle web requests that have oversize body contents.
In the JsonBody property type, use the OversizeHandling property to specify how to handle web requests that have oversize body contents.
| May 5, 2022 |
New resource | The following resource was added: AWS::Rekognition::StreamProcessor.
-
AWS::Rekognition::StreamProcessor
-
The AWS::Rekognition::StreamProcessor type creates a stream processor used to detect
and recognize faces or to detect connected home
labels in a streaming video.
| May 5, 2022 |
New resource | The following resources were added: AWS::VoiceID::Domain | May 5, 2022 |
New resource | The following resource was added: AWS::EC2::KeyPair. | April 28, 2022 |
New resource | The following resource was added: AWS::Route53Profiles::Profile .
-
AWS::Route53Profiles::Profile
-
Added the AWS::Route53Profiles::Profile resource was added to support the shareing of Route 53 configurations
across VPCs and AWS accounts.
| April 24, 2022 |
New resource | The following resource was added: AWS::Route53Profiles::ProfileAssociation . | April 24, 2022 |
New resource | The following resource was added: AWS::Route53Profiles::ProfileAssociation . | April 24, 2022 |
Updated resources | The following resource was updated: AWS::Batch::ComputeEnvironment
-
AWS::Batch::ComputeEnvironment
-
Use the ReplaceComputeEnvironment property to specify
whether the compute environment should be replaced if an update is made that
requires replacing the instances in the compute environment.
Use the UpdatePolicy property to specify the infrastructure
update policy for the compute environment.
-
AWS::Batch::JobDefinition
-
Added a JobQueueArn attribute to the return values.
| April 21, 2022 |
Updated resource | New parameters were added to AWS::Evidently::Experiment and
AWS::Evidently::Launch | April 21, 2022 |
New resources | The following resources were added: AWS::IoTTwinMaker::ComponentType, AWS::IoTTwinMaker::Entity, AWS::IoTTwinMaker::Scene, and AWS::IoTTwinMaker::Workspace | April 21, 2022 |
New resource | The following resources were added: AWS::Connect::PhoneNumber | April 21, 2022 |
Updated resource | The following resource was updated: AWS::KMS::Key .
-
AWS::KMS::Key
-
Added support for HMAC KMS keys, including new HMAC values for the KeySpec property
and the GENERATE_VERIFY_MAC value for the KeyUsage property.
You can also use the AWS::KMS::ReplicaKey resource to create a replica of
a multi-Region HMAC key. However, the properties of this resource did not change. | April 19, 2022 |
Updated resources | The following resources were updated: AWS::AppStream::Fleet
-
AWS::AppStream::Fleet
-
Use the SessionScriptS3Location property to specify the S3 location of the session scripts configuration zip file. This only applies to Elastic fleets.
| April 14, 2022 |
Updated resource | The following resource was updated: AWS::CloudWatch::MetricStream. | April 14, 2022 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | April 12, 2022 |
New resource | The following resource was added: AWS::AppRunner::ObservabilityConfiguration | April 12, 2022 |
Updated resources | The following resource was updated: AWS::EC2::LaunchTemplate.
-
AWS::EC2::LaunchTemplate NetworkInterface
-
Use the Ipv4PrefixCount or Ipv4Prefixes properties
to assign IPv4 prefixes to a network interface.
Use the Ipv6PrefixCount or Ipv6Prefixes properties
to assign IPv6 prefixes to a network interface.
| April 7, 2022 |
New resource | The following resource was added: AWS::Events::Endpoint.
-
AWS::Events::Endpoint
-
Use the AWS::Events::Endpoint resource to create a Amazon EventBridge global endpoint and mae your application Regional-fault tolerant.
| April 7, 2022 |
New resource | The following resource was added: AWS::Lambda::Url.
-
AWS::Lambda::Url
-
Use the Url resource to add a function URL endpoint to your Lambda function.
| April 7, 2022 |
Updated resource | The following resources were updated: AWS::SageMaker::Domain,
AWS::SageMaker::UserProfile
-
AWS::SageMaker::Domain
-
Use the UserSettings.RStudioServerProAppSettings
property to configure user interaction with the
RStudioServerPro app.
Use the RStudioServerProAppSettings property to
configure user interaction with the RStudioServerPro
app.
Use the RStudioServerProAppSettings.AccessStatus
property to indicate whether the current user has access to the
RStudioServerPro app.
Use the RStudioServerProAppSettings.UserGroup
property to indicate the level of permissions that the user has
within the RStudioServerPro app.
Use the RStudioServerProDomainSettings property to
configure the RStudioServerPro Domain-level app.
Use the
RStudioServerProDomainSettings.DefaultResourceSpec
property to define the default InstanceType ,
SageMakerImageArn and
SageMakerImageVersionArn for the Domain.
Use the
RStudioServerProDomainSettings.DomainExecutionRoleArn
property to indicate the ARN of the execution role for the
RStudioServerPro Domain-level app.
Use the
RStudioServerProDomainSettings.RStudioConnectUrl
property to indicate a URL pointing to an RStudio Connect
server.
Use the
RStudioServerProDomainSettings.RStudioPackageManagerUrl
property to indicate a URL pointing to an RStudio Package Manager
server.
Use the DomainSettings property to indicate a
collection of settings that apply to the SageMaker
Domain .
Use the DomainSettings.RStudioServerProDomainSettings
property to configure the RStudioServerPro Domain-level
app.
Use the DomainSettings.SecurityGroupIds property to
indicate security groups for the Amazon Virtual Private Cloud
(Amazon VPC) that the Domain uses for communication
between Domain-level apps and user apps.
-
AWS::SageMaker::UserProfile
-
Use the UserSettings.RStudioServerProAppSettings
property to configure user interaction with the
RStudioServerPro app.
Use the RStudioServerProAppSettings property to
configure user interaction with the RStudioServerPro
app.
Use the RStudioServerProAppSettings.AccessStatus
property to indicate whether the current user has access to the
RStudioServerPro app.
Use the RStudioServerProAppSettings.UserGroup
property to indicate the level of permissions that the user has
within the RStudioServerPro app.
| March 31, 2022 |
New resource | The following resource was added: AWS::DataSync::LocationFSxOpenZFS. | March 31, 2022 |
Updated resource |
The following resource was updated: AWS::ServiceCatalog::CloudFormationProduct ProvisioningArtifactProperties.
| March 30, 2022 |
Updated resource | The following resource was updated: AWS::Lambda::Function.
-
AWS::Lambda::Function
-
Use the EphemeralStorage property to set the function's ephemeral (/tmp) storage to any any whole number between 512 and 10240 MB.
| March 24, 2022 |
Updated resource | The following property type was updated: AWS::Lex::Bot.
-
AWS::Lex::Bot
-
Use the AudioLogSetting property to configure
logging of audio conversation with your users.
Use the AudioLogSetting property to configure the
Lambda functions used for each of your
bot's locales.
Use the ConversationLogsSettings property to manage
logging that saves audio, text, and metadata of the
conversations with your users.
Use the CustomVocabulary property to define custom
vocabularies for your slot types.
Use the LambdaCodeHook property to specify a Lambda function that verifies requests to the bot
or fulfills the user's request.
Use the S3BucketLogDestination property to configure
the Amazon S3 bucket to hold audio conversation
logs.
Use the SlotValueSelectionSetting property to
configure advanced settings for recognizing slot
values.
Use the TestBotAliasSettings property to configure
the alias used for testing a bot.
Use the TextLogSetting property to configure text
logs for conversations.
| March 24, 2022 |
New resource | The following resource was added: AWS::IoTEvents::AlarmModel. | March 24, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Filesystem
-
AWS::FSx::Filesystem
-
FSx for OpenZFS file system root volumes now support the LZ4 DataCompressionType .
| March 17, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
FSx for OpenZFS volumes now support the LZ4 DataCompressionType .
| March 17, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
FSx for OpenZFS volumes now support using the value 0 to un-set the StorageCapacityQuotaGiB for a volume.
| March 17, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
FSx for OpenZFS volumes now support using the value 0 to un-set the StorageCapacityReservationGiB for a volume.
| March 17, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Volume
-
AWS::FSx::Volume
-
FSx for OpenZFS volumes now support setting the suggested block size for a volume.
| March 17, 2022 |
Updated resource | The following resource was updated: AWS::FSx::Filesystem | March 17, 2022 |
Updated resource | The following resource was updated: AWS::FIS::ExperimentTemplate.
-
AWS::FIS::ExperimentTemplate
-
Use the LogConfiguration property to configure experiment logging.
Use the Parameters property to specify criteria used to identify target resources.
| March 11, 2022 |
Updated resource | The following resource was updated: AWS::AutoScaling::ScalingPolicy.
-
AWS::AutoScaling::ScalingPolicy
-
Use the AWS::AutoScaling::ScalingPolicy property to specify custom
metrics when you create predictive scaling policies. You can also use metric math to
further customize the metrics that you include in your policy.
| March 10, 2022 |
Updated resource | The following resource was updated:
AWS::StepFunctions::StateMachine
| March 10, 2022 |
New resources | The following resources were added: AWS::Personalize::Dataset , AWS::Personalize::Dataset DatasetImportJob ,
AWS::Personalize::DatasetGroup , AWS::Personalize::Schema , AWS::Personalize::Solution ,
and AWS::Personalize::Solution SolutionConfig . | March 10, 2022 |
Updated resources | The following resources were updated: AWS::RedshiftServerless::Workgroup and AWS::RedshiftServerless::Namespace | March 9, 2022 |
New resource | The following resource was added:
AWS::EKS::IdentityProviderConfig
-
AWS::EKS::IdentityProviderConfig
-
Use the OidcIdentityProviderConfig resources to
specify an identity provider config and RequiredClaim
to specify required claims.
| March 7, 2022 |
Updated resources | The following resources were updated: AWS::DataBrew::Job
-
AWS::DataBrew::Job
-
Add MaxOutputFiles parameter to the Output data type to specify the maximum number
of files to be generated by a profile job and written to the output folder.
| March 3, 2022 |
Added resource | The following resource was added: AWS::ManagedBlockchain::Accessor | March 2, 2022 |
Updated resources | The following resources were updated: AWS::Batch::ComputeEnvironment, and AWS::Batch::JobQueue
| February 24, 2022 |
Updated resource | The following resource was updated: AWS::AutoScaling::WarmPool.
-
AWS::AutoScaling::WarmPool
-
Use the PoolState property to specify Hibernated to
stop instances in a warm pool without deleting their RAM contents. Use the
InstanceReusePolicy property to return instances to the warm pool on
scale in, instead of always terminating instance capacity that you will need
later.
| February 24, 2022 |
Updated resource | The following resource was updated:
-
AWS::Transfer::Server
-
Use the PreAuthenticationLoginBanner property to specify a string to display when users connect to a server, before they authenticate.
Use the PostAuthenticationLoginBanner property to specify a string to display when users connect to a server, after they authenticate.
| February 24, 2022 |
New resource | The following resource was added: AWS::DataSync::LocationFSxLustre. | February 24, 2022 |
Updated resource | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
You can now define ManagedRuleGroupConfigs for a ManagedRuleGroupStatement , to provide
configuration specific to the managed rule group. This is required to use the managed rule group, AWSManagedRulesATPRuleSet .
| February 17, 2022 |
New resources | The following new resources were added to Network Manager: AWS::NetworkManager::ConnectAttachment, AWS::NetworkManager::ConnectPeer, AWS::NetworkManager::CoreNetwork, AWS::NetworkManager::SiteToSiteVPNAttachment, and AWS::NetworkManager::VPCAttachment. | February 17, 2022 |
Updated resources | The following resource was updated: AWS::EC2::LaunchTemplate. | February 10, 2022 |
New resources | The following resources were added:
AWS::CloudFormation::HookDefaultVersion ,
AWS::CloudFormation::HookTypeConfig , and
AWS::CloudFormation::HookVersion . | February 10, 2022 |
New resources | The following resources were added: AWS::ECR::PullThroughCacheRule
-
AWS::ECR::PullThroughCacheRule
-
Use the AWS::ECR::PullThroughCacheRule property to
create a pull through cache rule for your private registry. Pull
through cache rules provide a way to cache images from an external
public registry in your private registry
| February 10, 2022 |
CloudFormation registry | AWS CloudFormation announces the general availability of
hooks, a feature that allows customers to invoke custom logic
to automate actions or inspect resource configurations prior to a create, update or
delete stack operation. For more information, see Developing hooks
in the User Guide for Extension Development. | February 10, 2022 |
Updated resource | The following resource was updated: AWS::AppRunner::Service | February 8, 2022 |
New resource | The following resource was added: AWS::AppRunner::VpcConnector | February 8, 2022 |
Updated resource | The following resource was updated: AWS::Events::Rule. | February 3, 2022 |
New properties | The following properties were added under AWS::ApplicationInsights::Application.ConfigurationDetails:
-
HANAPrometheusExporter
-
Use the HANAPrometheusExporter property of the
AWS::ApplicationInsights::Application resource to
define the HANA DB Prometheus Exporter settings.
-
HAClusterPrometheusExporter
-
Use the HAClusterPrometheusExporter property of the
AWS::ApplicationInsights::Application resource to
define the HA Cluster Prometheus Exporter settings.
| February 3, 2022 |
Updated resource | The following resource was updated: RotationRules
| January 31, 2022 |
Updated resources | The following resource was updated: AWS::CustomerProfiles::Integration. | January 27, 2022 |
Updated resources | The following resources were updated:
AWS::Location::GeofenceCollection ,
AWS::Location::Map ,
AWS::Location::PlaceIndex ,
AWS::Location::RouteCalculator , and
AWS::Location::Tracker . | January 27, 2022 |
Updated resource | The following resource was updated: AWS::IVS::RecordingConfiguration
-
AWS::IVS::RecordingConfiguration
-
Use the ThumbnailConfiguration property to specify an
Amazon IVS ThumbnailConfiguration, which stores configuration
information related to generating thumbnail images for your live stream.
| January 27, 2022 |
New resource | The following resource was added: AWS::AppIntegrations::DataIntegration | January 27, 2022 |
New collection resource | The following resource was added: AWS::Rekognition::Collection.
-
AWS::Rekognition::Collection
-
The AWS::Rekognition::Collection type creates a server-side container called a collection. You can use a collection
to store information about detected faces and search for known faces in images, stored videos, and streaming videos.
| January 27, 2022 |
New resources | The following resources were added: AWS::Forecast::Dataset and AWS::Forecast::DatasetGroup. | January 23, 2022 |
Updated resources | The following resources were updated: AWS::DataBrew::Job
-
AWS::DataBrew::Job
-
Add BucketOwner parameter to the S3Location data type to define the owner of
the specified S3 bucket.
| January 20, 2022 |
Updated resource | The following resources were updated:
AWS::Location::Tracker , | January 20, 2022 |
New resources | The following resources were added: AWS::Lightsail::Certificate, AWS::Lightsail::Container, and AWS::Lightsail::Distribution
-
AWS::Lightsail::Certificate
-
Use the AWS::Lightsail::Certificate resource to specify an Amazon Lightsail certificate that you can use with a Lightsail content delivery network (CDN) distribution and a Lightsail container service.
-
AWS::Lightsail::Container
-
Use the AWS::Lightsail::Container resource to specify an Amazon Lightsail container service.
-
AWS::Lightsail::Distribution
-
Use the AWS::Lightsail::Distribution resource to specify an Amazon Lightsail CDN distribution.
| January 20, 2022 |
New resource | The following resource was added: AWS::KafkaConnect::Connector | January 20, 2022 |
Updated resource | The following resources were updated: AWS::AppSync::Resolver and
AWS::AppSync::FunctionConfiguration
-
AWS::AppSync::Resolver
-
Use the MaxBatchSize property to specify the maximum number of resolver request
inputs that will be sent to a single AWS Lambda function in a
BatchInvoke operation.
-
AWS::AppSync::FunctionConfiguration
-
Use the MaxBatchSize property to specify the maximum number of resolver request
inputs that will be sent to a single AWS Lambda function in a
BatchInvoke operation.
| January 13, 2022 |
Updated resource | The following resource was updated: AWS::FMS::Policy.
-
AWS::FMS::Policy
-
The AWS::FMS::Policy resource now allows you to manage Shield Advanced automatic application layer DDoS mitigation for Shield Advanced policies that you use for Amazon CloudFront distributions.
| January 7, 2022 |
Updated resource | The following property was updated: AWS::EKS::Cluster
KubernetesNetworkConfig
| January 6, 2022 |
Updated resource | The following property type was updated: AWS::Lex::Bot.
-
AWS::Lex::Bot
-
In the ExternalSourceSetting property type, use the
GrammarSlotTypeSetting property to
specify that the slot type is defined by an external
grammar.
In the GrammarSlotTypeSetting property type, use
the Source property to specify the location
of a file that contains a grammar defining the slot
type.
In the GrammarSlotTypeSource property type, use the
KmsKeyArn , S3BucketName ,
and S3ObjectKey properties to specify the
S3 bucket location of a file that contains a grammar
defining the slot type.
| January 6, 2022 |
New resources | The following resources were added: AWS::Lightsail::Alarm, AWS::Lightsail::Bucket, AWS::Lightsail::LoadBalancer, and AWS::Lightsail::LoadBalancerTlsCertificate | January 6, 2022 |
New resource | The following resource was added: AWS::InspectorV2::Filter. | January 6, 2022 |
New resource | The following resource is new: AWS::IoT::JobTemplate | January 6, 2022 |
New resources | The following resources were added:
AWS::AppStream::ApplicationEntitlementAssociation and
AWS::AppStream::Entitlement
| January 5, 2022 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
You can now use single regular expression (regex) match statements with RegexMatchStatement . You can
now specify a CAPTCHA rule action.
-
AWS::WAFv2::RuleGroup
-
You can now use single regular expression (regex) match statements with RegexMatchStatement . You can
now specify a CAPTCHA rule action.
| December 9, 2021 |
Updated resource | The following resource was updated: AWS::Kinesis::Stream.
-
AWS::Kinesis::Stream
-
Use the StreamModeDetails property to specify the capacity
mode to which you want to set your data stream. Currently, in
Kinesis Data Streams, you can choose between an on-demand capacity mode and a provisioned capacity mode for your data
streams.
| December 9, 2021 |
Properties updated | For the AWS::Chatbot::SlackChannelConfiguration resource, the GuardrailPolicies property was updated and the UserRoleRequired property was added. | December 9, 2021 |
New resources | The following resources were added: AWS::Lex:Bot,
AWS::Lex::BotAlias, AWS::Lex::BotVersion, and
AWS::Lex::ResourcePolicy.
-
AWS::Lex::Bot
-
Use the AWS::Lex::Bot resource to
specify an Amazon Lex chatbot.
-
AWS::Lex::BotAlias
-
Use the AWS::Lex::BotAlias resource to
specify an alias for an Amazon Lex
chatbot.
-
AWS::Lex::BotVersion
-
Use the AWS::Lex::BotVersion resource to
specify a version of an Amazon Lex
chatbot.
-
AWS::Lex::ResourcePolicy
-
Use the AWS::Lex::ResourcePolicy
resource to specify a new resource policy for an Amazon Lex chatbot.
| December 9, 2021 |
Updated resource | The following resources were updated: AWS::GameLift::GameSessionQueue, AWS::GameLift::MatchmakingConfiguration, AWS::GameLift::MatchmakingRuleSet, AWS::GameLift::Script | December 8, 2021 |
New resources | The following resources were added: AWS::AppSync::DomainName and
AWS::AppSync::DomainNameApiAssociation | December 6, 2021 |
Updated resources | The following resource was updated: AWS::WAFv2::LoggingConfiguration.
-
AWS::WAFv2::LoggingConfiguration
-
You can now log web ACL traffic to an Amazon CloudWatch Logs log group or an Amazon Simple Storage Service (Amazon S3) bucket. These options
are in addition to the existing option of logging to an Amazon Data Firehose.
| December 3, 2021 |
Updated resource | The following resource was updated: AWS::S3::StorageLens. | December 3, 2021 |
Updated resource | The following resource was updated: AWS::S3::Bucket OwnershipControlsRule.
-
AWS::S3::Bucket OwnershipControlsRule
-
Updated ObjectOwnership property to add a new allowed value:
BucketOwnerEnforced . You can apply this S3 Object Ownership setting
to disable access control lists (ACLs) and take ownership of all the objects in your
bucket.
| December 3, 2021 |
Updated resource | The following resource was updated: AWS::SageMaker::EndpointConfig
-
AWS::SageMaker::EndpointConfig
-
Use the ServerlessConfig property to specify a
serverless configuration for a serverless endpoint.
Use the MaxConcurrency property to specify the
maximum concurrent invocations for a serverless endpoint.
Use the MemorySizeInMB property to specify the memory
size (in MB) for a serverless endpoint.
| December 3, 2021 |
New resources | The following resources were added: AWS::AmplifyUIBuilder::Component and AWS::AmplifyUIBuilder::Theme.
-
AWS::AmplifyUIBuilder::Component
-
Use the
AWS::AmplifyUIBuilder::Component resource to specify a component within an Amplify app.
-
AWS::AmplifyUIBuilder::Theme
-
Use the
AWS::AmplifyUIBuilder::Theme resource to specify a collection of style settings to apply globally to the components in an Amplify app.
| December 3, 2021 |
New resources | The following resources were added: | December 3, 2021 |
New resource | The following resources were added: AWS::Evidently::Experiment, AWS::Evidently::Feature,
AWS::Evidently::Launch, and AWS::Evidently::Project
-
Evidently resource type reference
-
Use Amazon CloudWatch Evidently to safely validate new features by serving them to a
specified percentage
of your users while you roll out the feature. You can monitor the performance of the new feature
to help you decide when to ramp up traffic to your users. This helps you
reduce risk and identify unintended consequences before you fully launch the feature.
You can also conduct A/B experiments to make feature design decisions based on evidence
and data.
For more information,
see
Perform launches and A/B experiments with CloudWatch Evidently.
| December 3, 2021 |
New resource | The following resources were added: AWS::Connect::ContactFlow and
AWS::Connect::ContactFlowModule | December 3, 2021 |
New resource | The following new resource was added: AWS::FSx::Snapshot
-
AWS::FSx::Snapshot
-
Use the Snapshot resource to create a snapshot of an FSx for ONTAP or Amazon FSx for OpenZFS volume.
| December 3, 2021 |
New resource | The following new resource was added: AWS::FSx::StorageVirtualMachine | December 3, 2021 |
New resource | The following new resource was added: AWS::FSx::Volume
-
AWS::FSx::Volume
-
Use the Volume resource to create an FSx for ONTAP or Amazon FSx for OpenZFS volume.
| December 3, 2021 |
New resource | The following resource was added: AWS::RUM::AppMonitor. | December 3, 2021 |
New resource | The following resource was added: AWS::Timestream::ScheduledQuery.
-
AWS::Timestream::ScheduledQuery
-
Use the AWS::Timestream::ScheduledQuery resource to create a new
scheduled query for an existing table in Amazon Timestream.
| December 3, 2021 |
Updated resource | The following resource was updated:
AWS::SES::ConfigurationSetEventDestination
-
AWS::SES::ConfigurationSetEventDestination
-
Use the new property SnsDestination with the
ConfigurationSetEventDestination resource as an
event destination associated with a configuration set which enables
you to publish email sending events.
In the property type EventDestination, new property
SnsDestination specifies the topic ARN associated
with an Amazon Simple Notification Service (Amazon SNS) event
destination.
| November 25, 2021 |
Updated resources |
AWS::ElastiCache::ReplicationGroup.
-
AWS::ElastiCache::ReplicationGroup
-
The data-tiering-enabled parameter enables data tiering. Data tiering is only supported for
replication groups using the r6gd node type. If you elect not to use data-tiering, set the parameter to
no-data-tiering-enabled. For more information, see Data tiering.
| November 23, 2021 |
Updated resource | The following resource was updated: AWS::Logs::LogGroup. | November 22, 2021 |
Updated resources | The following resources were updated: AWS::AppStream::Fleet
-
AWS::AppStream::Fleet
-
Use the FleetType property to specify an ELASTIC fleet.
Use the Platform property to specify platform of the fleet.
Use the MaxConcurrentSessions property to specify the maximum concurrent sessions of an Elastic fleet.
Use the UsbDeviceFilterStrings property to specify the USB device filter strings for an Elastic fleet..
| November 18, 2021 |
Updated resources | The following resources were updated: AWS::DataBrew::Job,
AWS::DataBrew::Ruleset
-
AWS::DataBrew::Job
-
Updates to support the following features: handling personally
identifiable information (PII), data quality rules, and custom SQL
queries.
| November 18, 2021 |
Updated resources | The following resources were updated:
-
AWS::Transfer::Server
-
Use the IdentityProviderType resource to specify a the identity provider to use with your AWS Transfer Family server. A new type, LAMBDA , was added.
| November 18, 2021 |
Updated resource | The following resource was updated: AWS::FinSpace::Environment
-
AWS::FinSpace::Environment
-
Use the DataBundles property to specify a list of data bundles to install.
Use the SuperuserParameters property to specify configuration information of the superuser.
| November 18, 2021 |
Updated resource | The following resource was updated: AWS::FSx::FileSystem
-
AWS::FSx::FileSystem
-
Use ONTAP for the FileSystemType, to use an ONTAP file system. Use
OntapConfiguration parameter to configure an Amazon
FSx ONTAP file system.
| November 18, 2021 |
New resources | The following resources were added: AWS::AppStream::Application ,
AWS::AppStream::AppBlock , and
AWS::AppStream::ApplicationFleetAssociation
| November 18, 2021 |
New resource | The following resource was updated: AWS::FSx::FileSystem
-
AWS::FSx::FileSystem
-
Use the FileSystemTypeVersion attribute to specify
the file system version of an Amazon FSx for Lustre file
system.
| November 18, 2021 |
New resource | The following resource was added:
-
AWS::Transfer::Workflow
-
Use the Workflow resource to specify a managed workflow for file processing using AWS Transfer Family.
| November 18, 2021 |
New resource | The following resource was added: AWS::SSM::ResourcePolicy
-
AWS::SSM::ResourcePolicy
-
Creates or updates a Systems Manager resource policy. A resource policy helps you to
define the IAM entity (for example, an AWS account) that can manage your Systems Manager
resources. Currently, OpsItemGroup is the only resource that supports Systems Manager resource
policies. The resource policy for OpsItemGroup enables AWS accounts to view and
interact with OpsCenter operational work items (OpsItems). OpsCenter is a capability of Systems Manager.
For more information about OpsCenter, see Systems Manager
OpsCenter in the Systems Manager User Guide.
| November 17, 2021 |
Updated resource | The following resource was updated: AWS::Location::Tracker
-
AWS::Location::Tracker
-
Use the PositionFiltering property to specify how
you want positions in your tracker to be filtered.
| November 12, 2021 |
Updated resources | The following resources were updated: AWS::Batch::ComputeEnvironment, AWS::Batch::JobDefinition, and AWS::Batch::JobQueue
| November 11, 2021 |
Updated resources | The following resource was updated: AWS::SageMaker::Endpoint
-
AWS::SageMaker::Endpoint
-
Use the DeploymentConfig property to specify the
deployment configuration for an endpoint, which contains the desired
deployment strategy and rollback configurations.
Use the AutoRollbackConfig property to specify the
the automatic rollback configuration for handling endpoint
deployment failures and recovery.
Use the Alarm property to specify a list of
CloudWatch alarms that are configured to monitor metrics on an
endpoint.
Use the AlarmName property to specify the name of a
CloudWatch alarm in your account.
Use the BlueGreenUpdatePolicy property to specify the
update policy for a blue/green deployment.
Use the MaximumExecutionTimeoutInSeconds property to
specify the maximum execution timeout for a blue/green
deployment.
Use the TerminationWaitInSeconds property to specify
additional waiting time in seconds after the completion of an
endpoint deployment before terminating the old endpoint fleet
Use the TrafficRoutingConfig property to specify the
traffic routing strategy during a blue/green endpoint
deployment.
Use the CanarySize property to specify the batch size
for the first step to turn on traffic on the new endpoint
fleet.
Use the LinearStepSize property to specify the batch
size for each step to turn on traffic on the new endpoint
fleet
Use the Type property to specify the traffic routing
strategy type (all at once, canary, or linear).
Use the WaitIntervalInSeconds property to specify the
waiting time (in seconds) between incremental steps to turn on
traffic on the new endpoint fleet.
Use the CapacitySize property to specify the endpoint
capacity to activate for production.
Use the Type property to specify the endpoint
capacity type to use (instance count or capacity percent).
Use the Value property to specify the capacity size,
either as a number of instances or a capacity percentage.
Use the RetainDeploymentConfig property to specify
whether to reuse the last deployment configuration. The default
value is false (the configuration is not reused)
| November 11, 2021 |
New resources | The following resource was added: AWS::Batch::SchedulingPolicy
| November 11, 2021 |
New resources | The following resources were added: AWS::IoTWireless::FuotaTask, AWS::IoTWireless::MulticastGroup | November 11, 2021 |
Updated resource | The following resource was updated: AWS::Backup::BackupSelection
-
AWS::Backup::BackupSelection
-
The BackupSelection resource type supports a number of new
resource assignment options, including StringLike and the
ability to exclude resources from your backup plans.
| November 10, 2021 |
Updated resource | The following resource was updated: AWS::EKS::Cluster
-
AWS::EKS::Cluster ClusterLogging
-
Use the ClusterLogging property to specify the
cluster control plane configuration for your cluster.
-
AWS::EKS::Cluster Logging
-
Use the Logging property to enable or disable
exporting the Kubernetes control plane logs for your cluster to
CloudWatch Log.
-
AWS::EKS::Cluster LoggingTypeConfig
-
Use the LoggingTypeConfig property to specify the
enabled logging type.
-
AWS::EKS::Cluster ResourcesVpcConfig
-
Use the EndpointPrivateAccess property to enable or
disable private access for your cluster's Kubernetes API server
endpoint.
Use the EndpointPublicAccess property to enable or
disable public access to your cluster's Kubernetes API server
endpoint.
Use the PublicAccessCidrs property to specify the
CIDR blocks that are allowed access to your cluster's public
Kubernetes API server endpoint.
| November 10, 2021 |
Updated resources | The following resources were updated: AWS::EC2::SpotFleet and
AWS::EC2::EC2Fleet. | November 4, 2021 |
Updated resources | The following resources were updated: AWS::NetworkFirewall::FirewallPolicy and AWS::NetworkFirewall::RuleGroup
-
AWS::NetworkFirewall::FirewallPolicy
-
Use the StatefulDefaultActions property to establish default actions to take on a packet that doesn't match any stateful rules when using strict rule ordering.
Use the StatefulEngineOptions property to govern how Network Firewall handles stateful rules.
-
AWS::NetworkFirewall::RuleGroup
-
Use the StatefulRuleOptions property to govern how Network Firewall handles stateful rules.
| November 4, 2021 |
Updated resources | The following resource was updated: AWS::Pinpoint::Campaign. | November 4, 2021 |
Updated resource | The following resource was updated: AWS::CloudFront::Distribution. | November 4, 2021 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
TagMap
-
The TagMap property has been removed the service resource specification.
| November 4, 2021 |
Updated resource | The following resource was updated: AWS::Redshift. | November 4, 2021 |
New resources | The following resource was added: AWS::Pinpoint::InAppTemplate. | November 4, 2021 |
New resource | The following resource was added: AWS::CloudFront::ResponseHeadersPolicy. | November 4, 2021 |
New resource | The following resource was added: AWS::DataSync::LocationHDFS.
-
AWS::DataSync::LocationHDFS
-
Use the AWS::DataSync::LocationHDFS resource to specify an
endpoint for a Hadoop Distributed File System (HDFS).
| November 4, 2021 |
New resource | The following resource was added: AWS::EC2::CapacityReservationFleet. | November 4, 2021 |
Updated resource | The following resource was updated: AWS::EC2::EC2Fleet.
-
InstanceRequirementsRequest
-
Use the InstanceRequirementsRequest property to specify
instance attributes, which Amazon EC2 uses to identify instance
types.
| October 28, 2021 |
Updated resource | The following resource was updated: AWS::EC2::SpotFleet.
-
InstanceRequirementsRequest
-
Use the InstanceRequirementsRequest property to specify
instance attributes, which Amazon EC2 uses to identify instance
types.
| October 28, 2021 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | October 28, 2021 |
New resources | The following resources were added: AWS::Lightsail::Database and AWS::Lightsail::StaticIp
-
AWS::Lightsail::Database
-
Use the AWS::Lightsail::Database resource to specify an
Amazon Lightsail database.
-
AWS::Lightsail::StaticIp
-
Use the AWS::Lightsail::StaticIp resource to specify a
static IP that can be attached to an Amazon Lightsail instance
that is in the same AWS Region and Availability
Zone.
| October 28, 2021 |
Updated resource | The following resources were updated: AWS::MediaConnect::Flow.Source ,
AWS::MediaConnect::FlowOutput
| October 27, 2021 |
Updated resource | The following resource was updated: AWS::FMS::Policy.
-
AWS::FMS::Policy
-
The AWS::FMS::Policy resource now allows you to automatically remove protections from resources that leave policy scope.
| October 21, 2021 |
Updated resource | The following resource was updated: AWS::Cassandra::Table . | October 21, 2021 |
Updated resource | The following resource was updated: AWS::SageMaker::NotebookInstance | October 21, 2021 |
New resources | Use these resources to deploy computer vision applications to an AWS Panorama Appliance. | October 21, 2021 |
New resource | The following resource was added: AWS::Rekognition:Project. | October 21, 2021 |
New resources | The following resources were added: AWS::DeviceFarm::DevicePool, AWS::DeviceFarm::InstanceProfile,
AWS::DeviceFarm::NetworkProfile, AWS::DeviceFarm::Project AWS::DeviceFarm::TestGridProject, and
AWS::DeviceFarm::VPCEConfiguration. | October 14, 2021 |
New resource | The following resources were added: AWS::Wisdom::Assistant ,
AWS::Wisdom::AssistantAssociation , and
AWS::Wisdom::KnowledgeBase
| October 14, 2021 |
Updated resource | The following resource was updated: AWS::CodeBuild::Project ProjectBuildBatchConfig | October 13, 2021 |
New resource | The following resources were added: AWS::Connect::HoursOfOperation,
AWS::Connect::User, AWS::Connect::UserHierarchyGroup | October 12, 2021 |
Updated resource | The following resource was updated: AWS::Backup::BackupVault
-
AWS::Backup::BackupVault
-
Use the LockConfiguration property to specify the
configuration of AWS Backup; Vault Lock.
-
AWS::Backup::Framework
-
Use the Framework property to specify the configuration of
an AWS Backup; Audit Manager framework.
-
AWS::Backup::ReportPlan
-
Use the Report Plan property to specify the configuration of
an AWS Backup; Audit Manager report plan.
| October 7, 2021 |
New resources | The following resources were added: AWS::Lightsail::Disk and AWS::Lightsail::Instance
-
AWS::Lightsail::Instance
-
Use the AWS::Lightsail::Instance resource to specify an
Amazon Lightsail instance.
-
AWS::Lightsail::Disk
-
Use the AWS::Lightsail::Disk resource to specify a disk that
can be attached to an Amazon Lightsail instance that is in the
same AWS Region and Availability Zone.
| October 7, 2021 |
New resource | The following resource was added: AWS::IoT::JobTemplate.
-
AWS::IoT::JobTemplate
-
Use the AWS::IoT::DomainConfJobTemplateiguration resource to
specify a job template in AWS IoT Core.
| October 7, 2021 |
New resource | The following resource was added: AWS::Route53Resolver::ResolverConfig
| October 7, 2021 |
Updated resources | The following resources were updated: AWS::ECR::ReplicationConfiguration
-
AWS::ECR::ReplicationConfiguration
-
Use the AWS::ECR::ReplicationConfiguration property
to configure replication for the contents of a private repository.
Support has been added to specify repository filters on a
replication rule.
| September 30, 2021 |
Updated resource | The following resource was updated: AWS::KinesisFirehose::DeliveryStream.
-
AWS::KinesisFirehose::DeliveryStream
-
Use the AmazonopensearchserviceDestinationConfiguration
property type to specify the destination in Amazon OpenSearch Service. You
can specify only one destination.
| September 30, 2021 |
Updated resource | The following resources were updated: AWS::Lambda::LayerVersion and AWS::Lambda::Function.
-
AWS::Lambda::Function
-
Use the Architectures property to set the instruction set architecture for the function.
| September 30, 2021 |
Updated resource | The following resource was updated: AWS::APS::Workspace. | September 30, 2021 |
New resource | The following resource was added: AWS::APS::RuleGroupsNamespace. | September 30, 2021 |
Updated resource | The following resource was updated: AWS::AppSync::DataSource
-
AWS::AppSync::DataSource
-
Use the OpenSearchServiceConfig property to specify the configuration for an
Amazon OpenSearch Service domain for an AWS AppSync data source.
| September 23, 2021 |
New resources | The following resources were added: AWS::MemoryDB::Cluster, AWS::MemoryDB::ACL,
AWS::MemoryDB::ParameterGroup, AWS::MemoryDB::SubnetGroup, and
AWS::MemoryDB::User. | September 23, 2021 |
Updated resources | The following resource was updated: AWS::EMR::Studio.
-
AWS::EMR::Studio
-
Use the
IdpAuthUrl property to specify the authentication endpoint of your identity provider (IdP) when you use IAM authentication and want to let federated users log in to an Amazon EMR Studio with the Studio URL and credentials from your IdP.
Use the IdpRelayStateParameterName property to specify the name that your identity provider uses for its RelayState parameter.
Use the UserRole property only when you set AuthMode to SSO .
| September 17, 2021 |
Updated resource | The following resource was updated: AWS::S3::Bucket. | September 17, 2021 |
Updated resource | The following resource was added: AWS::ACMPCA::Permission.
-
AWS::ACMPCA::Permission
-
Use the AWS::ACMPCA::Permission object to grant
permissions on a private CA to the AWS Certificate Manager (ACM) service principal (acm.amazonaws.com). These
permissions allow ACM to issue and renew ACM certificates that
reside in the same AWS account as the CA.
| September 16, 2021 |
New resources | The following resource was added: AWS::OpenSearchService::Domain. | September 16, 2021 |
New resource | The following resource was added: AWS::APS::Workspace. | September 16, 2021 |
Updated resource | The following resource was updated: AWS::SQS::Queue
RedriveAllowPolicy includes the parameters for the dead-letter queue redrive
permission. It defines which source queues can specify dead-letter queues as a JSON
object. | September 9, 2021 |
Updated resource | The following resource was updated: AWS::Cassandra::Table .
-
AWS::Cassandra::Table
-
Use the AWS::Cassandra::Table resource to add new regular columns to existing tables in Amazon Keyspaces (for Apache
Cassandra).
| September 3, 2021 |
Updated resources | The following resource was updated: AWS::Transfer::Server | September 2, 2021 |
Updated resource | The following resource was updated: AWS::DataSync::Task. | September 2, 2021 |
Updated resource | The following resource was Updated: AWS::EventSchemas::Discoverer . | September 2, 2021 |
Updated resource | The following resource was updated: AWS::KinesisFirehose::DeliveryStream. | September 2, 2021 |
Updated resource | The following resource was added: AWS::ACMPCA::CertificateAuthority
OcspConfiguration. The following resource was updated:
AWS::ACMPCA::CertificateAuthority RevocationConfiguration. | September 2, 2021 |
New resource | The following resource is new: AWS::IoT::FleetMetric | September 2, 2021 |
New resource | The following resources were added: AWS::S3::MultiRegionAccessPoint and
AWS::S3::MultiRegionAccessPointPolicy. | September 2, 2021 |
Terminology change |
AWS KMS is replacing the term customer master key
(CMK) with
AWS KMS key
and KMS key.
The concept has not changed. To prevent breaking changes, AWS KMS is keeping
some variations of this term. | August 30, 2021 |
Stack failure options | You can iteratively develop your applications when provisioning failures are
encountered by starting from the point of failure without rolling back successfully
provisioned resources. By specifying stack failure options, you can troubleshoot
resources in a CREATE_FAILED or UPDATE_FAILED status. You
can provision failure options for all stack deployments and change set
operations. For more information, see Stack
failure options. | August 30, 2021 |
Updated resource | The following resource was updated: AWS::CodeBuild::Project | August 19, 2021 |
Updated resource | The following resource was updated: AWS::AutoScaling::ScalingPolicy.
-
AWS::AutoScaling::ScalingPolicy
-
Use the PredictiveScalingConfiguration property to specify a
predictive scaling policy configuration for an Auto Scaling group.
| August 19, 2021 |
Updated resource | The following resource was updated: AWS::SageMaker::EndpointConfig
-
AWS::SageMaker::EndpointConfig
-
In the AsyncInferenceClientConfig property type, use the
MaxConcurrentInvocationsPerInstance property to set
the maximum number of concurent requests.
In the AsyncInferenceConfig property type, use the
ClientConfig to configure the behavior of the
client SageMaker uses. Use OutputConfig to spcify
invocation outputs.
In the AsyncInferenceNotificationConfig property, use the
ErrorTopic and SuccessTopic to define
Amazon SNS topics to post a notification if the inference fails or
completes successfully, respectively.
In the OutputConfig property type use the
KmsKeyId to encrypt the asynchronous inference
output. Use NotificationConfig to specify the
notification configuration and S3OutputPath to specify
the output location in S3.
| August 19, 2021 |
Updated resource | The following resource was updated: AWS::Elasticsearch::Domain. | August 17, 2021 |
Updated resources | The following resource was updated: AWS::WAFv2::WebACL.
-
AWS::WAFv2::WebACL
-
You can now specify the version to use for managed rule groups. For information, see ManagedRuleGroupStatement .
| August 12, 2021 |
Updated resource | The following resource was updated: AWS::ApiGateway::DomainName.
-
AWS::ApiGateway::DomainName
-
Use the OwnershipVerificationCertificateArn property to specify the certificate ARN used to verify ownership of the domain using mutual TLS.
| August 12, 2021 |
Updated resource | The following resource was updated: AWS::LookoutEquipment::InferenceScheduler | August 12, 2021 |
Updated resource | The following resource was updated: AWS::SageMaker::Model.
-
AWS::SageMaker::Model
-
In the ImageConfig property type, use the
RepositoryAuthConfig property to specify an
authentication configuration for the private docker registry where
your model image is hosted.
| August 12, 2021 |
Updated resource | The following resource was added: AWS::WAFv2::LoggingConfiguration. | August 12, 2021 |
Updated resource | The following resource was updated: AWS::AppSync::GraphQLApi
-
AWS::AppSync::GraphQLApi
-
Use the LambdaAuthorizerConfig property to specify the configuration for AWS Lambda function authorization.
| August 5, 2021 |
Updated resource | The following resource was updated: AWS::FSx::FileSystem
-
AWS::FSx::FileSystem
-
In the WindowsConfiguration property type, use the
AuditLogConfiguration property to enable audit
event logging of end-user accesses of files, folders, and file
shares on an Amazon FSx Windows File Server instance.
| August 5, 2021 |
New resource | The following resource was added: AWS::Athena::PreparedStatement
-
AWS::Athena::PreparedStatement
-
Use the AWS::Athena::PreparedStatement resource to
specify a prepared statement for use with SQL queries in Athena. Use
prepared statements for repeated execution of the same query with
different query parameters. A prepared statement contains parameter
placeholders whose values are supplied at execution time.
| August 5, 2021 |
Updated resource | The following resource was updated: AWS::DataBrew::Job
-
AWS::DataBrew::Job
-
Use the AWS::DataBrew::Job.DatabaseOutputs property
type to define the output destination for a DataBrew
job to be written into.
Use the AWS::DataBrew::Job.ProfileConfiguration
property type to configure which statistics to include when running
DataBrew profile jobs.
| July 29, 2021 |
Updated resource | The following resource was updated: AWS::S3Outposts::EndPoint | July 29, 2021 |
New resource | The following resources were released: AWS::Route53RecoveryControl::Cluster, AWS::Route53RecoveryControl::ControlPanel, AWS::Route53RecoveryControl::RoutingControl, AWS::Route53RecoveryControl::SafetyRule | July 29, 2021 |
New resource | The following resources were released: AWS::Route53RecoveryReadiness::Cell, AWS::Route53RecoveryReadiness::ReadinessCheck, AWS::Route53RecoveryReadiness::RecoveryGroup, AWS::Route53RecoveryReadiness::ResourceSet
-
AWS::Route53RecoveryReadiness::Cell
-
Use the AWS::Route53RecoveryReadiness::Cell to define a single cell for an application.
-
AWS::Route53RecoveryReadiness::ReadinessCheck
-
Use the AWS::Route53RecoveryReadiness::ReadinessCheck to check application readiness for failover. Amazon Route 53 Application Recovery Controller uses readiness checks to
determine the readiness of the resources in a resource set.
-
AWS::Route53RecoveryReadiness::RecoveryGroup
-
Use the AWS::Route53RecoveryReadiness::RecoveryGroup to define a recovery group for an application. A recovery group models an application and includes cells that represent application replicas.
-
AWS::Route53RecoveryReadiness::ResourceSet
-
Use the AWS::Route53RecoveryReadiness::ResourceSet to define a group of resources of a single type that you can associate with a readiness check.
| July 29, 2021 |
Import stacks to stack set | The AWS CloudFormation stack import operation can import existing stacks
into new or existing stack sets, so that you can migrate existing stacks to a stack
set in one operation. For more information, see Importing stacks
into a stack set. | July 28, 2021 |
Updated resource | The following resource was updated: AWS::CloudWatch::Alarm.
-
AWS::CloudWatch::Alarm
-
In the MetricDataQuery property type, use the AccountId property to specify the ID of the account where the metrics are located, if this is a cross-account alarm.
| July 22, 2021 |
Updated resource | The following resource was updated: AWS::QLDB::Ledger
-
AWS::QLDB::Ledger
-
Use the KmsKey property to specify a customer managed AWS KMS key to use for encryption at rest in the ledger.
| July 22, 2021 |
New resources | The following resources were added: AWS::LookoutEquipment::InferenceScheduler | July 22, 2021 |
Updated resource | The following resource was updated: AWS::EC2::VPCCidrBlock.
-
AWS::EC2::VPCCidrBlock
-
Use the Ipv6CidrBlock property to specify an IPv6 CIDR block
from the IPv6 address pool.
Use the Ipv6Pool property to specify the ID of an IPv6
address pool from which to allocate the IPv6 CIDR block.
| July 21, 2021 |
Updated resource | The following resource was updated: AWS::Cassandra::Table . | July 21, 2021 |
New resource | The following resource was added : AWS::Logs::ResourcePolicy | July 15, 2021 |
Increased quota | The following AWS CloudFormation quota has been updated. | July 15, 2021 |
Updated resource | The following resource was updated: AWS::DataBrew::Job
-
AWS::DataBrew::Job
-
Use the AWS::DataBrew::Job.DataCatalogOutput property
type to define outputs from DataBrew recipe jobs to the
AWS Glue Data Catalog.
| July 9, 2021 |
Updated resources | The following resources were updated: AWS::ServiceDiscovery::PrivateDnsNamespace and
AWS::ServiceDiscovery::PublicDnsNamespace . | July 8, 2021 |
Updated resources | The following resources were updated: AWS::CodeDeploy::Application,
AWS::CodeDeploy::DeploymentConfig, and AWS::CodeDeploy::DeploymentGroup
-
AWS::CodeDeploy::Application
-
Use the Tags property to specify metadata to add to CodeDeploy applications.
-
AWS::CodeDeploy::DeploymentConfig
-
Use the TrafficRoutingConfig property to specify how deployment
traffic is routed.
Use the ComputePlatform property to specify the destination
platform type for the deployment (
Lambda
,
Server , or ECS ).
-
AWS::CodeDeploy::DeploymentGroup
-
Use the BlueGreenDeploymentConfiguration property to specify
information about blue/green deployment options for a deployment group.
Use the ECSServices property to specify the target Amazon ECS services in the deployment group.
| July 8, 2021 |
Updated resource | The following resource was updated: AWS::AutoScaling::LaunchConfiguration. | July 8, 2021 |
Updated resources | The following resources were updated: AWS::ImageBuilder::ContainerRecipe and AWS::ImageBuilder::DistributionConfiguration.
-
AWS::ImageBuilder::DistributionConfiguration
-
Use the LaunchTemplateConfiguration property to
use an Amazon EC2 launch template for specified accounts where you distribute your Image Builder image.
-
AWS::ImageBuilder::ContainerRecipe
-
-
Retrieve the container recipe Name attribute with the GN::GetAtt function.
-
Use the InstanceBlockDeviceMapping property to
define block device mappings for the build instance used to configure your image.
| July 1, 2021 |
China Rebrand Update | China rebrand updates | June 29, 2021 |
Updated resources | The following resource was updated: AWS::Transfer::Server ProtocolDetails | June 24, 2021 |
Updated resource | The following resource was updated: AWS::DAX::Cluster
-
AWS::DAX::Cluster
-
Use the ClusterEndpointEncryptionType to specify the encryption type of the cluster's endpoint.
| June 24, 2021 |
New resources | The following resources were added:
AWS::CloudFormation::PublicTypeVersion ,
AWS::CloudFormation::Publisher , and
AWS::CloudFormation::TypeActivation .
-
AWS::CloudFormation::PublicTypeVersion
-
Use the AWS::CloudFormation::PublicTypeVersion resource to
test and publish a registered extension as a public, third-party
extension.
-
AWS::CloudFormation::Publisher
-
Use the AWS::CloudFormation::Publisher resource to register
your account as a publisher of public extensions in the CloudFormation registry.
-
AWS::CloudFormation::TypeActivation
-
Use the AWS::CloudFormation::TypeActivation resource to
activate a public third-party extension, making it available for use in
CloudFormation operations.
| June 24, 2021 |
New resource | The following resource was added: AWS::Connect::QuickConnect | June 24, 2021 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
Schedulers
-
Use the Schedulers property to specify the number of Apache Airflow schedulers that run in an environment.
| June 21, 2021 |
Publish public third-party extensions | Use public extensions provided by third-party publishers, just as you would
extensions from AWS. For more information, see Using public
extensions. For information about publishing third-party public
extensions, see Publishing
extensions in the CloudFormation CLI User
Guide. | June 21, 2021 |
Updated resource | The following resource was updated: AWS::AutoScaling::ScheduledAction.
-
AWS::AutoScaling::ScheduledAction
-
Use the TimeZone property to create recurring scheduled actions in
the local time zone. If your time zone observes Daylight Saving Time (DST), the
recurring action automatically adjusts for Daylight Saving Time.
| June 18, 2021 |
Updated resources | The following resources were updated: AWS::AppMesh::VirtualNode,
AWS::AppMesh::GatewayRoute, and AWS::AppMesh::Route
-
AWS::AppMesh::VirtualNode
-
Use the DnsServiceDiscovery property to represent the DNS
service discovery information for your virtual node.
-
AWS::AppMesh::GatewayRoute
-
Use the GatewayRouteHostnameMatch property to represent the
gateway route hostname to match.
Use the GatewayRouteHostnameRewrite property to represent
the gateway route host name to rewrite.
Use the GrpcGatewayRouteMetadata property to represent the
metadata of the gateway route.
Use the GrpcGatewayRouteRewrite property to represent the
the gateway route to rewrite.
Use the GrpcMetadataMatchMethod property to represent the
method header to be matched.
Use the HttpGatewayRouteHeader property to represent the
HTTP header in the gateway route.
Use the HttpGatewayRoutePathRewrite property to represent
the path to rewrite.
Use the HttpGatewayRoutePrefixRewrite property to represent
the beginning characters of the route to rewrite.
Use the HttpGatewayRouteRewrite property to represent the
beginning characters of the route to rewrite.
Use the HttpGatewayRoutePathRewrite property to represent
the beginning characters of the route to rewrite.
-
AWS::AppMesh::Route
-
Use the HttpQueryParameter property to represent the query
parameter in the request.
| June 17, 2021 |
Updated resource | The following resource was updated: AWS::KMS::Key.
-
AWS::KMS::Key
-
Use the MultiRegionKey property to specify multi-Region primary
keys.
| June 17, 2021 |
New resource | The following resource was added: AWS::KMS::ReplicaKey.
-
AWS::KMS::ReplicaKey
-
Use the AWS::KMS::ReplicaKey resource to specify a replica of a
specified multi-Region primary key.
| June 17, 2021 |
Parallel Node Upgrade and Scale to Zero | In the NodegroupUpdateConfig, use either the MaxUnavailable and
MaxUnavailablePercentage values to define the number of nodes to upgrade in
parallel. In the scalingconfig, the minsize and desiredsize values can both be set
to zero. | June 16, 2021 |
Updated resource | The following resource was updated: AWS::EC2::NatGateway
-
AWS::EC2::NatGateway
-
Use the ConnectivityType property to indicate whether the
NAT gateway supports public or private connectivity.
| June 11, 2021 |
Updated resources | The following resource was updated: AWS::RAM:ResourceShare
-
AWS::RAM::ResourceShare
-
Use the PermissionArns property to specify the Amazon
Resource Names (ARNs) of the permissions to associate with the
resource share.
| June 10, 2021 |
Updated resource | The following resource was updated: AWS::KinesisAnalyticsV2::Application
-
AWS::KinesisAnalyticsV2::Application ApplicationConfiguration
-
You can use the ZeppelinApplicationConfiguration property to create Studio notebook applications that use Apache Zeppelin. You can use the notebook interactively, and you can deploy it as a continuously running streaming application with durable state and autoscaling features.
| June 10, 2021 |
Updated resource | The following resource was updated: AWS::SQS::Queue
-
AWS::SQS::Queue
-
You can now use the DeduplicationScope and
FifoThroughputLimit properties to enable higher throughput for FIFO
queues.
| June 10, 2021 |
Updated resource | The following resource was updated: AWS::SSM::Document
-
AWS::SSM::Document
-
Use the Attachments property to specify a list of key and value
pairs that describe attachments to a version of a document. Use the
Requires property to specify a list of SSM documents required by a
document. This parameter is used exclusively by AWS AppConfig. When a user creates
an AWS AppConfig configuration in an SSM document, the user must also specify a
required document for validation purposes. In this case, an ApplicationConfiguration
document requires an ApplicationConfigurationSchema document for validation
purposes. For more information, see Creating a configuration and a configuration profile in the
AWS AppConfig User Guide.
| June 10, 2021 |
Updated resource | The following resource was updated: AWS::FSx::FileSystem
-
AWS::FSx::FileSystem
-
Use the DNSName attribute to access the DNS name of
your Amazon FSx file system.
| June 7, 2021 |
New resource | The following resources were added:
AWS::Location::GeofenceCollection , AWS::Location::Map ,
AWS::Location::PlaceIndex ,
AWS::Location::RouteCalculator ,
AWS::Location::Tracker , and
AWS::Location::TrackerConsumer .
-
AWS::Location::GeofenceCollection
-
Use the AWS::Location::GeofenceCollection resource to
specify the ability to detect and act when a tracked device enters
or exits a defined geographical boundary.
-
AWS::Location::Map
-
Use the AWS::Location::Map resource to specify a map
resource in your AWS account, which provides map
tiles of different styles sourced from available data
providers.
-
AWS::Location::PlaceIndex
-
Use the AWS::Location::PlaceIndex resource to specify
a place index resource in your AWS account, which
supports Places functions with geospatial data sourced from your
chosen data provider.
-
AWS::Location::RouteCalculator
-
Use the AWS::Location::RouteCalculator resource to
specify a route calculator resource in your AWS
account.
-
AWS::Location::Tracker
-
Use the AWS::Location::Tracker resource to specify a tracker resource in your AWS account, which lets you receive current and historical location of devices.
-
AWS::Location::TrackerConsumer
-
Use the AWS::Location::TrackerConsumer resource to
specify an association between a geofence collection and a tracker
resource.
| June 7, 2021 |
Updated resources | The following resources were updated: AWS::MediaPackage::Channel, AWS::MediaPackage::OriginEndpoint, AWS::MediaPackage::PackagingConfiguration, and AWS::MediaPackage::PackagingGroup.
-
AWS::MediaPackage::Channel.
-
Use the EgressAccessLogs property to specify egress access logs for your channel.
Use the IngressAccessLogs property to specify ingress access logs for your channel.
-
AWS::MediaPackage::OriginEndpoint.
-
Use the CmafEncryption.ConstantInitializationVector property to specify an optional 128-bit, 16-byte hex value represented by a 32-character string, used in conjunction with the key for encrypting blocks. If you don't specify a value, then AWS Elemental MediaPackage creates the constant initialization vector (IV).
-
AWS::MediaPackage::PackagingConfiguration.
-
Use the CmafPackage.IncludeEncoderConfigurationInSegments property to place your encoder's metadata into every video segment instead of the init fragment, which is the default behavior. This lets you use different SPS/PPS/VPS settings for your assets during content playback.
-
AWS::MediaPackage::PackagingGroup.
-
Use the EgressAccessLogs property to configure egress access logs for your packaging group.
| May 27, 2021 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup. | May 27, 2021 |
Updated resource | The following resource was updated: AWS::FraudDetector::Detector. | May 27, 2021 |
Updated resource | The following resource was updated: AWS::FSx::FileSystem | May 27, 2021 |
Updated resource | The following resource was updated: AWS::MWAA::Environment
-
ModuleLoggingConfiguration
-
In the ModuleLoggingConfiguration property type, the CloudWatchLogGroupArn response property type for the CloudWatch Logs ARN where Apache Airflow DAG logs are published was removed from the request to enable logs, and is being returned in the response.
-
AirflowConfigurationOptions
-
In the AirflowConfigurationOptions property type, use a PrimitiveType of Json to add an Apache Airflow configuration option.
-
MinWorkers
-
Use the MinWorkers property to specify the minimum number of Apache Airflow workers that run in an environment.
| May 27, 2021 |
Updated resource | The following resource was updated: AWS::ACMPCA::CertificateAuthority. | May 27, 2021 |
Updated resource | The following resource was updated: AWS::QLDB::Ledger
-
AWS::QLDB::Ledger
-
The PermissionsMode property has changed so that an update requires no interruption.
| May 27, 2021 |
New resource | The following resource was added: AWS::CUR::ReportDefinition | May 27, 2021 |
Region availability | The following resources were updated: AWS::AmazonMQ::Broker
-
AWS::AmazonMQ::Broker
-
Amazon MQ for RabbitMQ is now available in the Amazon Web Services China (Bejing) and the Amazon Web Services China (Ningxia) Regions.
| May 26, 2021 |
New resources | The following resource was added: AWS::EC2::TransitGatewayPeeringAttachment.
-
AWS::EC2::TransitGatewayPeeringAttachment
-
Use the TransitGatewayPeeringAttachment resource to request
transit gateway peering attachment between the specified transit gateway
(requester) and a peer transit gateway (accepter).
| May 20, 2021 |
New resource | The following resource was added: AWS::AppRunner::Service | May 20, 2021 |
New resource | The following resource was added: AWS::IoTCoreDeviceAdvisor::SuiteDefinition
-
SuiteDefinition
-
Use the SuiteDefinition resource to create a new test suite configuration for Device Advisor.
| May 20, 2021 |
Updated resources | The following resource was updated:
AWS::CloudFormation::StackSet .
-
AWS::CloudFormation::StackSet
-
Use the CallAs property type to specify whether you are
acting as an account administrator in the organization's management account
or as a delegated administrator in a member account.
| May 14, 2021 |
Updated resource | The following resource was updated: AWS::ECS::TaskDefinition. | May 14, 2021 |
Updated resource | The following resource was updated: AWS::ECS::CapacityProvider. | May 14, 2021 |
Updated resource | The following resource was updated: AWS::EKS::Nodegroup
-
AWS::EKS::Nodegroup
-
Use the Taints property to specify whether you want
to have the effect of No_Schedule ,
Prefer_No_Schedule , or No_Execute
applied to your node group.
| May 14, 2021 |
Updated resource | The following resource was updated: AWS::Elasticsearch::Domain.
-
AWS::Elasticsearch::Domain
-
Use the EncryptionAtRestOptions property to specify whether the domain should encrypt data at rest, and if so, the AWS Key Management Service (KMS) key to use.
Use the NodeToNodeEncryptionOptions property to specify whether node-to-node encryption is enabled.
| May 14, 2021 |
New resources | The following resources were added: AWS::SSMContacts::Contact and
AWS::SSMContacts::ContactChannel
-
AWS::SSMContacts::Contact
-
Use the AWS::SSMContacts::Contact resource to specify an
Incident Manager contact or escalation plan.
-
AWS::SSMContacts::ContactChannel
-
Use the AWS::SSMContacts::ContactChannel resource to specify
a contact channel as the method that Incident Manager uses to engage
your contact.
| May 14, 2021 |
New resource | The following resource was added: AWS::DynamoDB::GlobalTable | May 14, 2021 |
New resource | The following resources were added: AWS::SSMIncidents::ReplicationSet and
AWS::SSMIncidents::ResponsePlan
-
AWS::SSMIncidents::ReplicationSet
-
Use the ReplicationSet resource to specify a set of
Regions that Incident Manager data is replicated to and
the AWS KMS key used to encrypt the data.
-
AWS::SSMIncidents::ResponsePlan
-
Use the ResponsePlan resource to specify the details
of the response plan that are used when creating an incident.
| May 14, 2021 |
Updated resources | The following resources were updated: AWS::ECR::Repository
-
AWS::ECR::Repository
-
Use the AWS::ECR::Repository.EncryptionConfiguration
property to configure encryption for the contents of a private
repository.
| May 13, 2021 |
Updated resource | The following resource was updated: AWS::S3::Bucket.
-
AWS::S3::Bucket
-
Use the ExpiredObjectDeleteMarker property to specify whether
Amazon S3 will remove a delete marker with no noncurrent versions.
| May 13, 2021 |
Updated resource | The following resource was updated: AWS::CloudFront::Distribution. | May 6, 2021 |
Updated resource | The following resources were updated: AWS::GameLift:Fleet, AWS::GameLift::GameSessionQueue.
-
AWS::GameLift::Fleet
-
In the LocationCapacity property type, use DesiredEc2Instance to specify the number of desired EC2 instance and
MinSize and MaxSize to specify the minimum and maximum capacity size.
In the LocationConfiguration property type, use location Location to specify an AWS Region code and
LocationConfiguration to specify resource capacity settings in a specified fleet.
-
AWS::GameLift::GameSessionQueue
-
Use the
PriorityConfiguration property to specify priority destinations and locations for game session placements.
Use the
FilterConfiguration property to specify a list of locations where a queue is allowed to place new game sessions.
| May 6, 2021 |
Updated resource | The following resource was updated: AWS::IoT::TopicRule
-
AWS::IoT::TopicRule
-
Use the CloudwatchLogsAction property to specify a
Cloudwatch logs action.
Use the TimestreamAction property to specify a timestream
action.
Use the KafkaAction property to specify a kafka
action.
In the S3Action property, use the CannedAcl
value to specify a canned ACL action.
| May 6, 2021 |
Updated resource | The following resource was updated: AWS::ACMPCA::CertificateAuthority. | May 6, 2021 |
New resources | The following resources were added: AWS::FraudDetector::Detector, AWS::FraudDetector::EntityType, AWS::FraudDetector::EventType, AWS::FraudDetector::Label, AWS::FraudDetector::Outcome, and AWS::FraudDetector::Variable | May 6, 2021 |
New resources | The following resources were added: AWS::XRay::Group and AWS::XRay::SamplingRule. | May 6, 2021 |
New resource | The following resource was added: AWS::CloudFront::Function. | May 6, 2021 |
New resource | The following resource was added: AWS::FinSpace::Environment | May 6, 2021 |
Updated resource | The following resource was updated: AWS::Detective::Graph | April 29, 2021 |
New resource | The following resource was added: AWS::IoTFleetHub::Application
-
AWS::IoTFleetHub::Application
-
Use the AWS::IoTFleetHub::Application resource to create a Fleet Hub for AWS IoT Device Management web application.
| April 29, 2021 |
New resource | The following resource was added: AWS::SES::ContactList
-
AWS::SES::ContactList
-
Use the AWS::SES::ContactList resource to create a
list that contains contacts that have subscribed to a particular
topic or topics.
| April 29, 2021 |
Updated resources | The following resources were updated: AWS::IAM::InstanceProfile and
AWS::IAM::ManagedPolicy .
-
AWS::IAM::InstanceProfile
-
Use the Tags property to specify a list of tags that you
want to attach to the newly created instance profile.
-
AWS::IAM::ManagedPolicy
-
Use the Tags property to specify a list of tags that you
want to attach to the newly created managed policy.
| April 27, 2021 |
New resources | The following resources were added: AWS::IoTWireless::PartnerAccount, AWS::IoTWireless::TaskDefinition | April 26, 2021 |
New resources | The following resources were added: AWS::NimbleStudio::Studio,
AWS::NimbleStudio::StudioComponent, AWS::NimbleStudio::StreamingImage, and
AWS::NimbleStudio::LaunchProfile.
-
AWS::NimbleStudio::Studio
-
Use the AWS::NimbleStudio::Studio resource to specify
a studio resource.
-
AWS::NimbleStudio::StudioComponent
-
Use the AWS::NimbleStudio::StudioComponent resource
to configure studio components, including types of workstations,
render farms, license servers, and shared file systems.
-
AWS::NimbleStudio::StreamingImage
-
Use the AWS::NimbleStudio::StreamingImage resource to
configure a machine image, including operating system and software,
that can be launched as a virtual workstation in a streaming
session.
-
AWS::NimbleStudio::LaunchProfile
-
Use the AWS::NimbleStudio::LaunchProfile resource to
specify user access permissions to studio components.
| April 26, 2021 |
Updated resources |
AWS::ElastiCache::CacheCluster , AWS::ElastiCache::ReplicationGroup.
| April 22, 2021 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
You can now nest rule statements without using different names for statements at different levels. For example, instead of using AndStatementOne and AndStatementTwo to nest an AND rule statement inside another AND rule statement, you can use AndStatement for both. The new statement properties are AndStatement , NotStatement , OrStatement , RateBasedStatement , and Statement .
-
AWS::WAFv2::RuleGroup
-
You can now nest rule statements without using different names for statements at different levels. For example, instead of using AndStatementOne and AndStatementTwo to nest an AND rule statement inside another AND rule statement, you can use AndStatement for both. The new statement properties are AndStatement , NotStatement , OrStatement , RateBasedStatement , and Statement .
| April 22, 2021 |
Updated resource | The following resource was updated: AWS::ResourceGroups::Group
-
AWS::ResourceGroups::Group
-
Use the Configuration property to specify settings
for an AWS service that automatically apply to
members of the resource group.
| April 22, 2021 |
New resource | The following resource was added: AWS::AutoScaling::WarmPool. | April 22, 2021 |
Updated resources | The following resource was updated:
AWS::CloudFormation::StackSet .
-
AWS::CloudFormation::StackSet
-
Use the RegionConcurrencyType property type to specify the
concurrency type of deploying StackSets operations in Regions.
| April 15, 2021 |
Updated resource | The following resource was updated: AWS::ApiGateway::RestApi.
-
AWS::ApiGateway::RestApi
-
Use the Mode property to specify how API Gateway handles resource updates when you use OpenAPI to define your REST API.
| April 15, 2021 |
Updated resource | The following resource was updated: AWS::IVS::Channel
-
AWS::IVS::Channel
-
Use the RecordingConfiguration property to specify an
Amazon IVS RecordingConfiguration, which stores configuration
information related to recording your live stream to a data
store.
| April 15, 2021 |
New resources | The following resource was added:
AWS::EC2::EnclaveCertificateIamRoleAssociation. | April 15, 2021 |
New resource | The following resource was added: AWS::IVS::RecordingConfiguration
-
AWS::IVS::RecordingConfiguration
-
Use the AWS::IVS::RecordingConfiguration resource to
specify an Amazon IVS RecordingConfiguration, which stores
configuration information related to recording your live stream to a
data store.
| April 15, 2021 |
Reference macros in stack set templates | StackSets now supports creating or updating stack sets with self-managed
permissions from templates that reference macros. For more information about macros, see Using AWS
CloudFormation macros to perform custom processing on templates. | April 14, 2021 |
Use the latest value of an SSM parameter in a dynamic reference | When using dynamic references, you can now have CloudFormation use the latest
version of an SSM parameter whenever you create or update a stack. You are no longer
required to specify a specific version. For more details, see SSM parameters. | April 13, 2021 |
Updated resources |
AWS::ElastiCache::ParameterGroup , AWS::ElastiCache::SecurityGroup ,
AWS::ElastiCache::SubnetGroup.
| April 8, 2021 |
Updated resource | The following resource was updated: AWS::DynamoDB::Table.
-
AWS::DynamoDB::Table
-
Use the KinesisStreamSpecification property to
specify the Kinesis Data Streams configuration for a table.
| April 8, 2021 |
Modules support using period delimiters in resource names | You can now use a period as a delimiter in specifying the fully-qualified logical
name for a resource contained in a module. For more information, see Referencing resources in a module. | April 8, 2021 |
AWS CloudFormation StackSets now supports parallel region deployment | You can now choose to deploy StackSets into Regions sequentially or in
parallel. For more information, see Stack set operation options. | April 6, 2021 |
Updated resources | The following resources were updated: AWS::DataBrew::Dataset and
AWS::DataBrew::Job
-
AWS::DataBrew::Dataset
-
Use the CsvOptions property to define how DataBrew will read a comma-separated value (CSV) file when
creating a dataset from that file.
Use the DatabaseInputDefinition property to define
connection information for dataset input files stored in a database.
Use the DataCatalogInputDefinition property to define
how metadata stored in the AWS Glue Data Catalog is defined in
a DataBrew dataset.
Use the DatasetParameter property to define the type
and conditions for a parameter in the Amazon S3 path of
the dataset.
Use the DatetimeOptions property to define the
correct interpretation of datetime parameters used in the Amazon S3 path of a dataset.
Use the ExcelOptions property to define how DataBrew will interpret a Microsoft Excel file when
creating a dataset from that file.
Use the FilesLimit property to limit the number of
Amazon S3 files that should be selected for a dataset
from a connected Amazon S3 path.
Use the FilterExpression property to define parameter
conditions.
Use the FilterValue property to define a single entry
in the ValuesMap of a
FilterExpression .
Use the FormatOptions property to define the
structure of either comma-separated value (CSV), Excel, or JSON
input.
Use the Input property to define how DataBrew can find data, in either the AWS Glue Data Catalog or Amazon S3.
Use the JsonOptions property to define how input is
to be interpreted by AWS Glue DataBrew.
Use the PathOptions property to define how DataBrew selects files for a given Amazon S3
path in a dataset.
Use the PathParameter property to define the file
format of a dataset.
Use the S3Location property to define a single entry
in the path parameters of a dataset.
-
AWS::DataBrew::Job
-
Use the JobSample property to define the number of
rows on which a profile job is run.
Use the OutputLocation property to define the
location in Amazon S3 where the job writes its output.
Use the Recipe property to define the actions to be
performed on a dataset.
| April 1, 2021 |
Updated resources | The following resources were updated: AWS::WAFv2::WebACL and AWS::WAFv2::RuleGroup.
-
AWS::WAFv2::WebACL
-
You can now inspect a web request body as JSON. You can now add custom request and response handling to web ACL default action and rule action settings. You can now define labels for rules, which are added automatically to matching requests and that persist with requests during web ACL evaluation. You can match against labels using the new rule LabelMatchStatement . You can now add a scope-down statement to managed rule group statements.
-
AWS::WAFv2::RuleGroup
-
You can now inspect a web request body as JSON. You can now add custom request and response handling to rule action settings. You can now define labels for rules, which are added automatically to matching requests and that persist with requests during web ACL evaluation. You can match against labels using the new rule LabelMatchStatement .
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::Config::DeliveryChannel.
-
AWS::Config::DeliveryChannel
-
Use the S3KmsKeyArn property to specify the Amazon Resource Name (ARN) of the AWS Key Management Service (KMS) customer managed key (CMK) used to encrypt objects delivered by AWS Config.
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::ApiGateway::RestApi. | April 1, 2021 |
Updated resource | The following resource was updated: AWS::Budgets::BudgetsAction
-
AWS::Budgets::BudgetsAction
-
Use the AWS::Budgets::BudgetsAction resource to take predefined actions that are initiated when a budget threshold has been exceeded.
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::Cloud9::EnvironmentEC2 | April 1, 2021 |
Updated resource | The following resource was updated: AWS::EC2::LaunchTemplate. | April 1, 2021 |
Updated resource | The following resource was updated: AWS::ElasticBeanstalk::Environment.
-
AWS::ElasticBeanstalk::Environment
-
Use the OperationsRole property to specify the Amazon Resource Name (ARN) of an existing IAM role to be used as the environment's operations role.
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::Events::Rule.
-
AWS::Events::Rule
-
The SageMakerPipelineParameter property is a Name / Value pair of a parameter
to start execution of a SageMaker Model Building Pipeline to create an API
destination. An API destination defines an HTTP invocation endpoint to use as the
target of a rule.
The SageMakerPipelineParameters contains the SageMaker Model Building
Pipeline parameters to start execution of a SageMaker Model Building
Pipeline.
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::FMS::Policy.
-
AWS::FMS::Policy
-
The AWS::FMS::Policy resource now allows you to manage DNS Firewall policies for Amazon RouteĀ 53 Resolver DNS Firewall.
| April 1, 2021 |
Updated resource | The following resource was updated: AWS::GameLift::GameSessionQueue.
-
AWS::GameLift::GameSessionQueue
-
Use the
NotificationTarget property to specify an SNS topic ARN to publish game session placement events that are emitted by the queue.
Use the
CustomEventData property to specify a string value to add to all game session placement events that are emitted by the queue.
| April 1, 2021 |
New resources | The following resources were added: AWS::Route53Resolver::FirewallDomainList , AWS::Route53Resolver::FirewallRuleGroup , AWS::Route53Resolver::FirewallRuleGroupAssociation
| April 1, 2021 |
New resource | The following resource was added: AWS::CloudWatch::MetricStream. | April 1, 2021 |
New resource | The following resource was added : AWS::Logs::QueryDefinition | April 1, 2021 |
Updated resource | The following resource was updated: AWS::Batch::JobDefinition
| March 31, 2021 |
New resources | The following resources were added: AWS::LookoutMetrics::Alert | March 25, 2021 |
New resource | The following resource was added: AWS::AppIntegrations::EventIntegration | March 25, 2021 |
New resources | The following resources were added: AWS::CustomerProfiles::Domain,
AWS::CustomerProfiles::Integration and AWS::CustomerProfiles::ObjectType. | March 24, 2021 |
Updated resource | The following resource was updated: AWS::ServiceDiscovery::Service .
-
AWS::ServiceDiscovery::Service
-
Use the Type property to allow service instances in a service in a public or private DNS
namespace to only be discovered with the DiscoverInstances API operation.
| March 18, 2021 |
New resource | The following resource was added: AWS::FIS::ExperimentTemplate. | March 18, 2021 |
New resource | The following resources were added: AWS::S3ObjectLambda::AccessPoint and
AWS::S3ObjectLambda::AccessPointPolicy | March 18, 2021 |
New resources | The following resources were updated: AWS::ECS::Service.
-
AWS::ECS::Service
-
Use the AWS::ECS::Service resource and the
EnableExecuteCommand property to turn on ECS Exec for the
tasks in a service.
| March 16, 2021 |
New resources | The following resources were updated: AWS::ECS::Cluster
ExecuteCommandLogConfiguration. | March 16, 2021 |
New resources | The following resources were updated: AWS::ECS::Cluster
ExecuteCommandConfiguration. | March 16, 2021 |
Updated resource | The following resource was updated: AWS::Detective::MemberInvitation
-
AWS::Detective::MemberInvitation
-
Use the DisableEmailNotification property to prevent the sending of invitation emails to member accounts.
The term "master account" is changed to "administrator account."
| March 15, 2021 |
Updated resources | The following resources were updated: AWS::ECR::PublicRepository | March 11, 2021 |
Updated resource | The following resource was updated: AWS::CertificateManager::Account
-
AWS::CertificateManager::Account
-
Use the ExpiryEventsConfiguration property to specify
options for certificate expiration events associated with an AWS account.
| March 11, 2021 |
Updated resource | The following resource was updated: AWS::EFS::FileSystem
-
AWS::EFS::FileSystem
-
Use the AvailabilityZoneName property to create a file system that uses One Zone storage, which stores data
redundantly within a single Availability Zone within an AWS Region.
| March 11, 2021 |
New resources | The following resources were added: AWS::CE::AnomalySubscription and
AWS::CE::AnomalyMonitor.
-
AWS::CE::AnomalySubscription
-
Use the AWS::CE::AnomalySubscription resource to deliver
notifications about anomalies detected by a monitor that exceeds a threshold.
-
AWS::CE::AnomalyMonitor
-
Use the AWS::CE::AnomalyMonitor resource to continuously inspect
your account's cost data for anomalies, based on MonitorType and
MonitorSpecification .
| March 11, 2021 |
New resources | The following resources were updated:
AWS::ECS::ClusterCapacityProviderAssociations. | March 11, 2021 |
New resource | The following resource was added: AWS::RDS::DBProxyEndpoint. | March 11, 2021 |
Updated resource | The following resource was updated:
AWS::StepFunctions::StateMachine .
-
AWS::StepFunctions::StateMachine
-
The AWS::StepFunctions::StateMachine has a new Definition property that lets
you define your state machine in the language of your template file.
| March 10, 2021 |
Updated resource | The following resource was updated: AWS::AutoScaling::AutoScalingGroup. | March 8, 2021 |
Updated resource | The following new resource was updated: AWS::SecretsManager::Secret
-
AWS::SecretsManager::Secret
-
Use the ReplicaRegions property to replicate secrets into
additional Regions for resiliency and disaster recovery.
| March 4, 2021 |
New resource | The following resource was added: AWS::Events::ApiDestination.
-
AWS::Events::ApiDestination
-
Use the ApiDestination resource to create an API destination. An
API destination defines an HTTP invocation endpoint to use as the target of a
rule.
| March 4, 2021 |
New resource | The following resource was added: AWS::Events::Connection.
-
AWS::Events::Connection
-
Use the Connection resource to create a connection to use with Api
destinations. A connection defines the authorization method and parameters to use to
connect to the HTTP invocation endpoint for an Api destination.
| March 4, 2021 |
New resource | The following resources were added:
AWS::IoT::AccountAuditConfiguration,AWS::IoT::CustomMetric, AWS::IoT::Dimension,
AWS::IoT::MitigationAction, AWS::IoT::ScheduledAudit, AWS::IoT::SecurityProfile. | March 4, 2021 |
New resource | The following resources were added: AWS::S3Outposts::Bucket, AWS::S3Outposts::BucketPolicy,
AWS::S3Outposts::AccessPoint, and AWS::S3Outposts::EndPoint | March 4, 2021 |
Updated resource | The following resources were updated: AWS::IoTSiteWise::AccessPolicy and
AWS::IoTSiteWise::Portal. | March 2, 2021 |
Updated resource | The following resource was updated: AWS::IoTSiteWise::AssetModel. | March 1, 2021 |
Updated resource | The following resource was updated: AWS::DataBrew::Dataset Format. | February 25, 2021 |
Updated resource | The following resource was updated: AWS::ManagedBlockchain::Node | February 25, 2021 |
Updated resource | The following resource was updated: AWS::SageMaker::Model
-
AWS::SageMaker::Model
-
Use the InferenceExecutionConfig property to specify
details of how containers in a multi-container endpoint are
called.
| February 25, 2021 |
New resources | The following resource was added: AWS::EC2::TransitGatewayConnect. | February 25, 2021 |
New resources | The following resources were added: AWS::EMR::Studio and AWS::EMR::StudioSessionMapping.
-
AWS::EMR::Studio
-
Use the
AWS::EMR::Studio resource to create a new Amazon EMR Studio.
-
AWS::EMR::StudioSessionMapping
-
Use the
AWS::EMR::StudioSessionMapping resource to assign a user or group to an Amazon EMR Studio, and apply an IAM session policy to refine Studio permissions for that user or group.
| February 25, 2021 |
New resources | The following resources were added: AWS::IAM::OIDCProvider ,
AWS::IAM::SAMLProvider , AWS::IAM::ServerCertificate , and
AWS::IAM::VirtualMFADevice .
-
AWS::IAM::OIDCProvider
-
Use the AWS::IAM::OIDCProvider resource to create an IAM entity to describe an identity provider (IdP) that supports
OpenID Connect (OIDC).
-
AWS::IAM::SAMLProvider
-
Use the AWS::IAM::SAMLProvider resource to create an IAM resource that describes an identity provider (IdP) that
supports SAML 2.0.
-
AWS::IAM::ServerCertificate
-
Use the AWS::IAM::ServerCertificate resource to retrieve
information about the specified server certificate stored in IAM.
-
AWS::IAM::VirtualMFADevice
-
Use the AWS::IAM::VirtualMFADevice resource to create a new
virtual MFA device for the AWS account.
| February 25, 2021 |
New resources | The following resources were added: AWS::SageMaker::Image,
AWS::SageMaker::ImageVersion. | February 25, 2021 |
New resource | The following resource was added: AWS::EKS::Addon .
-
AWS::EKS::Addon
-
Use the AWS::EKS::Addon resource to create an Amazon EKS add-on.
| February 25, 2021 |
New attributes | The following parameters were added for 10DLC support: EntityId, TemplateId,
OriginationNumber. | February 24, 2021 |
Updated resource | The following resource was updated: AWS::DynamoDB::Table
-
AWS::DynamoDB::Table
-
Use the ContributorInsightsSpecification property to
enable or disable CloudWatch Contributor Insights on a
table or global secondary index.
| February 22, 2021 |
Updated resource | The following resource was updated: AWS::CodeCommit::Repository Code
-
AWS::CodeCommit::Repository Code
-
The behavior of the BranchName property on update has
changed to be consistent with all other aspects of
AWS:CodeCommit:Repository Code . All properties of
AWS:CodeCommit:Repository Code are ignored on
update, as they only apply to initial resource creation.
| February 19, 2021 |
Updated resources | The following resources were updated: AWS::AppMesh::VirtualNode and
AWS::AppMesh::VirtualGateway
-
AWS::AppMesh::VirtualNode
-
Use the ClientTlsCertificate property to represent the
client's certificate.
Use the SubjectAlternativeNames property to represent the
subject alternative names secured by the certificate.
Use the TlsValidationContextSdsTrust property to represent a
Transport Layer Security (TLS) Secret Discovery Service validation context
trust.
Use the ListenerTlsValidationContextTrust property to
represent a listener's Transport Layer Security (TLS) validation context
trust.
Use the SubjectAlternativeNameMatchers property to represent
the methods by which a subject alternative name on a peer Transport Layer
Security (TLS) certificate can be matched.
Use the ListenerTlsSdsCertificate property to represent the
listener's Secret Discovery Service certificate.
Use the ListenerTlsValidationContext property to represent a
listener's Transport Layer Security (TLS) validation context.
-
AWS::AppMesh::VirtualGateway
-
Use the VirtualGatewayListenerTlsValidationContextTrust
property to specify validation context trust.
Use the VirtualGatewayTlsValidationContextSdsTrust property
to represent a virtual gateway's listener's Transport Layer Security (TLS)
Secret Discovery Service validation context trust.
Use the SubjectAlternativeNames property represents the
subject alternative names secured by the certificate.
Use the VirtualGatewayListenerTlsSdsCertificate property to
represent the virtual gateway's listener's Secret Discovery Service
certificate.
Use the VirtualGatewayClientTlsCertificate property to
represent the virtual gateway's client's Transport Layer Security (TLS)
certificate.
Use the VirtualGatewayListenerTlsValidationContext property
to represent a virtual gateway's listener's Transport Layer Security (TLS)
validation context.
Use the SubjectAlternativeNameMatchers property to represent
the methods by which a subject alternative name on a peer Transport Layer
Security (TLS) certificate can be matched.
| February 18, 2021 |
Updated resources | The following resource was updated: AWS::IoTWireless::ServiceProfile
-
AWS::IoTWireless::ServiceProfile
-
Use the attributes of LoRaWANGetServiceProfileInfo with LoRaWANServiceProfile
instead as ReadOnly properties that you can return using Fn::GetAtt .
| February 18, 2021 |
Updated resources | The following resources were updated: AWS::Kendra::DataSource,
AWS::Kendra::Index.
-
AWS::Kendra::DataSource
-
Use the ConfluenceConfiguration property of the
resource to specify configuration information for indexing a
Confluence data source.
-
AWS::Kendra::DataSource
-
Use the GoogleDriveConfiguration property of the
resource to specify configuration information for indexing a Google
Drive data source.
-
AWS::Kendra::Index
-
Use the UserContextPolicy and
UserTokenConfiguration properties of the resource
to specify how Amazon Kendra uses user tokens for access to the
index.
| February 18, 2021 |
Updated resource | The following resource was updated: AWS::FSx::FileSystem | February 18, 2021 |
Updated resource | The following resource was updated: AWS::DataBrew::Job JobSample. | February 18, 2021 |
Updated resource | The following resource was updated: AWS::IoTAnalytics::Dataset.
-
AWS::IoTAnalytics::Dataset
-
Added the following properties: LateDataRule and LateDataRuleConfiguration .
You can use these properties to specify a late data rule for your dataset. The late data rule enables AWS IoT Analytics to send notifications
through Amazon CloudWatch when late data arrives.
For more information,
see Getting late data notifications
in the
AWS IoT Analytics User Guide.
| February 18, 2021 |
AWS CloudFormation StackSets now supports delegated administrator with AWS Organizations | In addition to the organization's management account, delegated administrator
accounts can create and manage stack sets with service-managed permissions for their
organization. For more information, see Register a delegated administrator and Create a stack set with service-managed permissions. | February 18, 2021 |
New resources | The following resources were added: AWS::EC2::TransitGatewayMulticastDomain,
|