Features
- backup: support RDS database cluster and serverless cluster (#17971) (53a6a47), closes #16457
- backup: vault lock (#21105) (a25677b), closes #21076
- cfnspec: cloudformation spec v79.0.0 (#21053) (68f09b7)
- cli: --force flag and glob-style key matches for context --reset (#19890) (39a7c1f), closes #19840 #19888
- codebuild: add support for new codebuild images (#20992) (9f3d71c), closes #20960
- core: add a description parameter for the NestedStackProps (#20930) (5ef106b), closes #16337
- ec2: expose interface endpoint service shortname (#20965) (ebfbf54)
- rds: support rolling instance updates to reduce downtime (#20054) (86790b6), closes #10595 #10595
- secretsmanager: create secret with secretObjectValue (#21091) (5f0eff2), closes #20461
- ses: DedicatedIpPool, ConfigurationSet and EmailIdentity (#20997) (541ce1b)
- stepfunctions-tasks: support parameters in StepFunctionsInvokeActivity (#21077) (10f8821), closes #21020
Bug Fixes
- apigateway: serialization exception with step functions integration (#20169) (6640338)
- aws-ec2: flow log destinationOptions requires all properties (#21042) (0a76009), closes #20765 /docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-ec2-flowlog.html#cfn-ec2 #21037
- aws-eks: cap generated stack names at 128 characters (#20528) (6e9963c), closes #20124
- cli:
--no-failflag is ignored in favor of theenableDiffNoFailfeature flag (#21107) (cad6fc5) - cli: CLI errors when run as a non-existent user (#21018) (e6015a9), closes #7937
- core: entrypoint option never used (#21124) (e123087)
- core: updatedProperties function name is misspelled (#21071) (7b389f0)
- core: use node.path in skip bundling check for consistency with cdk deploy CLI (#19950) (5cff2d9), closes #19927 /github.com/aws/aws-cdk/blob/1d0270446b3effa6b8518de3c7d76f0c14e626c5/packages/aws-cdk/lib/api/cxapp/cloud-assembly.ts#L138 aws-cdk/cx-api/lib/cloud-artifact.ts#L143-L145 aws-cdk/core/lib/stack-synthesizers/_shared.ts#L66
- ec2: deprecated
SubnetTypeenums are treated incorrectly (#21140) (0b5123a) - events-targets: api destination target ignores pathParameterValues and queryStringParameters (#21111) (8446c5c), closes #21101
- iam:
conditionsparameters accept array values (#21009) (0aad6c9), closes #20974 - kms: correctly recognize newly created resources (#21143) (0cd83cc), closes #19881
- logs:
ResourcePolicydoes not have adefaultChild(#21039) (4076153) - pipelines: cannot publish assets to more than 35 environments (#21010) (4b4af84)
- pipelines: reuseCrossRegionSupportStacks=true does not fail when existing pipeline is used (#20423) (9c0ccca)
- route53: publichostedzone import returns IHostedZone instead of IPublicHostedZone (#21007) (588ddf1), closes #21004
- sns-subscriptions: restrict encryption of queue to only the respective sns topic (under feature flag) (#20521) (4e0c80f), closes #20339
- flowlog has no default child (#21045) (b025abc)
- triggers: permissions race condition (#19455) (8ebb81b)
Alpha modules (2.32.0-alpha.0)
Features
- appsync: set max batch size when using batch invoke (#20995) (69d25a6), closes #20467
- batch: add launchTemplateId in LaunchTemplateSpecification (#20184) (269b8d0), closes #20163
- glue: enable partition filtering on tables (#21081) (bf35048), closes #20825
- integ-tests: expose adding IAM policies to the assertion provider (#20769) (c2f40b7)
- neptune: add engine version 1.1.1.0 (#21079) (a113816), closes #20869
- redshift: adds classic or elastic resize type option (#21084) (b5e9c1a), closes #19430