- s3-deployment: This version includes an important update, please upgrade to prevent deployment failure. This is in prepartion of Lambda deperaction of the request module in boto, more details are available in AWS blog. Note, users of versions <
1.81.0
will not be impacted by this deprecation, but are still encoraged to upgrade to the latest version. - s3: The
grantWrite()
andgrantReadWrite()
methods no longer add thes3:PutObject*
permissions that includeds3:PutObjectAcl
, which could be used to grant read/write object access to IAM principals in other accounts. This change is gated behind the@aws-cdk/aws-s3:grantWriteWithoutAcl
feature flag, so make sure to set it totrue
in thecontext
key of yourcdk.json
file when upgrading. If you still need the principal to haves3:PutObjectAcl
permissions after upgrading, use the newgrantPutAcl()
method.
Features
- apigatewayv2: http api - disable execute api endpoint (#12426) (1724da7), closes #12241
- appmesh: add listener TLS certificates for VirtualNodes and VirtualGateways (#11863) (175a257), closes #10051
- cfnspec: CloudFormation resource specification update to v23.0.0 (#12490) (a7a2236)
Bug Fixes
- appsync: rds data source configured with cluster arn (#12255) (d0305f3), closes #11536
- aws-ecs: Support configuring Windows capacity for cluster ASGs (#12365) (6d9a0f1)
- eks: aws-node-termination-handler incorrectly deployed to on-demand instances as well (#12369) (05c0b5f), closes #12368
- s3: Bucket.grantWrite() no longer adds s3:PutObject* permission (#12391) (cd437cf)
- s3-deployment: stop using deprecated API's that will cause breakage post 01/31/21 (#12491) (f50f928)
- sns: require topic name for fifo topic #12386 (#12437) (37d8ccc)