BREAKING CHANGES:
- resource/aws_lexv2models_slot_type: Within the
value_selection_setting.advanced_recognition_settingblock, theaudio_recognition_settingargument has been renamedaudio_recognition_strategy(#39254)
NOTES:
- provider: Downgrades to Go
1.22.6. A small number of users have reported failed or hanging network connections using the version of the Terraform AWS provider which was first built with Go1.23.0(v5.65.0). At this point, maintainers have been unable to reproduce failures, but enough distinct users have reported issues that we are going to attempt downgrading to Go1.22.6for the next provider release. We will continue to coordinate with users and AWS in an attempt to identify the root cause, using this upcoming release with a reverted Go build version as a data point. (#39256) - resource/aws_lexv2models_slot_type: Within the
value_selection_setting.advanced_recognition_settingblock, theaudio_recognition_settingargument has been renamedaudio_recognition_strategy. See the linked pull request for additional justification on this change. The previous misnaming effectively made this argument unusable, therefore a breaking change in a minor version was deemed acceptable. (#39254)
FEATURES:
- New Data Source:
aws_codebuild_fleet(#39237) - New Resource:
aws_cloudformation_stack_instances(#36794) - New Resource:
aws_codebuild_fleet(#39237) - New Resource:
aws_computeoptimizer_enrollment_status(#35349) - New Resource:
aws_computeoptimizer_recommendation_preferences(#35349) - New Resource:
aws_costoptimizationhub_enrollment_status(#36440) - New Resource:
aws_costoptimizationhub_preferences(#36526) - New Resource:
aws_datazone_asset_type(#38812) - New Resource:
aws_datazone_environment_profile(#38581) - New Resource:
aws_lambda_function_recursion_config(#39153)
ENHANCEMENTS:
- data-source/aws_acm_certificate: Mark
domainandtagsas Optional. This enables certificates to be matched based on tags (#31453) - data-source/aws_kinesis_stream: Add
encryption_typeandkms_key_idattributes (#39212) - datasource/aws_cognito_user_pool: Deprecates
user_pool_tagsin favor of standardtags. (#39260) - provider: Adds support for IAM role chaining. The provider attribute
assume_rolenow accepts multiple elements. (#39255) - resource/aws_amplify_app: Add
cache_configargument (#39215) - resource/aws_cloudhsm_v2_cluster: Add
modeargument (#39206) - resource/aws_cloudhsm_v2_cluster: Support
hsm2m.mediumas a valid value forhsm_type(#39206) - resource/aws_codebuild_project: Add
fleetattribute inenvironmentconfiguration block (#39237) - resource/aws_kinesis_firehose_delivery_stream: Add
snowflake_configuration.buffering_internalandsnowflake_configuration.buffering_sizearguments (#39214) - resource/aws_quicksight_user: Add
READER_PRO,AUTHOR_PRO, andADMIN_PROas valid values for theuser_roleargument (#39220) - resource/aws_sagemaker_domain: Add
default_user_settings.domain_settings.docker_settingsconfiguration block (#35416) - resource/aws_sagemaker_domain: Add
default_user_settings.studio_web_portal_settings,default_space_settings.jupyter_lab_app_settings,default_space_settings.space_storage_settings,default_space_settings.custom_posix_user_config, anddefault_space_settings.custom_file_system_configconfiguration blocks (#38457) - resource/aws_sagemaker_endpoint_configuration: Add
production_variants.managed_instance_scalingandshadow_production_variants.managed_instance_scalingconfiguration blocks (#35479) - resource/aws_sagemaker_model: Add
primary_container.inference_specification_nameandcontainer.inference_specification_namearguments (#35873) - resource/aws_sagemaker_model: Add
primary_container.model_data_source.s3_data_source.model_access_config,primary_container.multi_model_config,container.model_data_source.s3_data_source.model_access_config, and ``container.multi_model_config` configuration blocks (#35873) - resource/aws_sagemaker_user_profile: Add
user_settings.studio_web_portal_settingsconfiguration block (#38567) - resource/aws_sfn_state_machine: Add plan-time validation of
definitionusing the AWS Step Functions Validation API (#39229)
BUG FIXES:
- data-source/aws_eks_cluster: Return
created_atas an RFC3339 formatted timestamp (#24183) - datasource/aws_cognito_user_pool: Fixes value conversion error. (#39260)
- provider: Fix empty tags drift on fwprovider resources (#38636)
- resource/aws_batch_job_queue: Fixes error in schema migration function. (#39257)
- resource/aws_cognito_user_pool: Correctly unsets tags. (#39260)
- resource/aws_ecr_repository_policy: Fix retry logic handling eventual consistency of newly created IAM roles (#39190)
- resource/aws_eks_cluster: Return
created_atas an RFC3339 formatted timestamp (#24183) - resource/aws_iam_role: Fix to reduce Terraform reporting differences when a role's ARN temporarily appears as the role's unique ID (#36794)
- resource/aws_networkfirewall_tls_inspection_configuration: Fix issue where
check_certificate_revovation_statusis ignored due to bad autoflex field mapping (#39211) - resource/aws_networkmonitor_monitor: Fixes error when optional attribute
aggregation_periodnot set. (#39279) - resource/aws_quicksight_data_set: Change
permissions.actionsMaxItemsfrom16to20. This fixes a regression introduced in v5.66.0 (#39226) - resource/aws_quicksight_vpc_connection: Remove
vpc_connection_idregular expression validator. This fixes a regression introduced in v5.66.0 (#39231) - resource/aws_sagemaker_domain: Fix update for
default_user_settings.domain_settingsto include missingsecurity_group_idsandr_studio_server_pro_domain_settingsvalues (#35416) - resource/aws_sesv2_configuration_set: Allow
suppression_options.suppressed_reasonsto be an empty list ([]) in order to disable the suppression list (#29671) - resource/aws_sesv2_configuration_set_event_destination: Change
event_destination.matching_event_typesfromTypeListtoTypeSetas order is not significant (#36897) - resource/aws_verifiedaccess_endpoint: fix crash when updating
load_balancer_options.subnet_ids(#39196)