Releases: aws/aws-cdk
Releases · aws/aws-cdk
v2.229.1
v2.229.0
Features
- agentcore: add new properties for runtime, browser (#36003) (439495f)
- route53: add
HostedZoneGrants(#36109) (d24305c)
Bug Fixes
Alpha modules (2.229.0-alpha.0)
Features
- imagebuilder-alpha: add support for Container Recipe Construct (#36091) (875e0e7), closes aws/aws-cdk-rfcs#789 aws/aws-cdk-rfcs#789
- imagebuilder-alpha: add support for Image Recipe Construct (#36092) (4361f8b), closes aws/aws-cdk-rfcs#789 aws/aws-cdk-rfcs#789
- imagebuilder-alpha: add support for Workflow Construct (#36007) (616d32a), closes aws/aws-cdk-rfcs#789 aws/aws-cdk-rfcs#789
- mixins-preview: developer preview of CDK Mixins (#36136) (0c6ee1d)
Bug Fixes
v2.228.0
v2.227.0
CHANGES TO L1 RESOURCES: L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:
- aws-backup: AWS::Backup::LogicallyAirGappedBackupVault: EncryptionKeyArn attribute removed.
Features
- stepfunctions: add
StateMachineGrants(#36094) (59ef00d) - update L1 CloudFormation resource definitions (#36122) (51d805e)
- core: cfn constructs (L1s) can now accept constructs as parameters for known resource relationships (#35838) (6be7b4b)
- factory methods for Grants made public (#36123) (f9a894f)
- dynamodb: add
TableGrantsandStreamGrants(#36093) (d0b074a) - rds: support instance and iam-db-auth-error CloudWatch log exports (#35058) (e71a8b1), closes #35018
- s3: add
BucketGrants(#36102) (5891172) - grants are now available through a separate class (#35782) (21fd959)
Alpha modules (2.227.0-alpha.0)
Features
- bedrock-agentcore-alpha: agentcore gateway L2 construct (#35771) (07c4a0d)
- imagebuilder-alpha: add support for Component Construct (#36107) (93a76e4), closes #36006 #36104
- imagebuilder-alpha: add support for Distribution Configuration Construct (#36108) (6051039), closes #36005
Bug Fixes
v2.226.0
v2.225.0
⚠ BREAKING CHANGES
-
** L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:
- aws-dynamodb: AWS::DynamoDB::GlobalTable: ResourcePolicy property is now required.
Features
- update L1 CloudFormation resource definitions (#36082) (3df1d81)
- custom-resource: add External ID support for AwsCustomResource (#35252) (9f6c02b), closes #34018
- route53: support restricting delegated zone names when using grantDelegation (#35129) (d832aca)
Bug Fixes
- aws-cdk-lib: temporary Cloud Assemblies are not cleaned up (#36043) (1ace1ef), closes #802
- cognito: remove overly strict validation for threat protection on non-PLUS plans (#36027) (172c65f), closes #36023
- s3-deployment:
Source.jsonData()fails with null JSON values (#36054) (67b85f2), closes #36052
Reverts
- (dynamodb) revert Table.table field to private to fix .NET naming (#36029) (d84fce8), closes #36025 #35554
Alpha modules (2.225.0-alpha.0)
v2.224.0
⚠ BREAKING CHANGES
- aws-cdk-lib: Reference interfaces (such as
IBucketRef,IRoleRef,etc.) were moved to a newaws-cdk-lib.interfacessubmodule to prevent cyclic dependencies between service modules. If you are importing reference interfaces, you have to update import statements accordingly. See #36060 for full details. - Amazon.CDK.Lib (.NET): The .NET namespace for multiple submodules has changed. If you are using any of the renamed submodules, you have to update
usingstatements for these submodules. See #36037 for full details. - L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:
aws-opensearchserverless: AWS::OpenSearchServerless::Collection: StandbyReplicas property is now immutable.
aws-servicecatalog: AWS::ServiceCatalog::PortfolioPrincipalAssociation: Id attribute removed.
Features
- apigateway: add option for consolidating lambda permissions for rest and http lambda integrations (#36021) (35f8e46), closes #9327 #19535 #35705
- update L1 CloudFormation resource definitions (#35994) (47a9a20)
- core: add methods to SecretValue and aws-secretsmanager Secret to obtain a literal (unresolved by CloudFormation) dynamic reference key (#34397) (#35105) (457aa99), closes /github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/core/lib/secret-value.ts#L98C17-L98C31 /github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/aws-secretsmanager/lib/secret.ts#L499
- eks: add support for Kubernetes version 1.34 (#36016) (60096ac), closes #35717
- lambda: add nodejs24.x runtime for Lambda (#36001) (404bf1a)
- sagemaker: add support for serverless inference endpoints (#35557) (3f5c5ac), closes #23148 #23148
- stepfunctions-tasks: add architecture support to EvaluateExpression (#35468) (771ea13), closes #34974
Bug Fixes
- aws-cdk-lib: move reference interfaces to their own submodules (#35971) (1e4dfe6)
- aws-cdk-lib: multiple submodules use an incorrect namespace for .NET (#36002) (e48e584)
- dynamodb: resolve circular dependency with AccountRootPrincipal grants (#35983) (24d2adf), closes #35967
- ecs: allow empty placementStrategies on EC2Service (#35580) (0d773b1), closes #30382 /github.com/aws/aws-cdk/pull/27572#issuecomment-1766287866
Alpha modules (2.224.0-alpha.0)
Features
- imagebuilder-alpha: add support for EC2 Image Builder L2 Constructs - Infrastructure Configuration (#35882) (db1d964), closes aws/aws-cdk-rfcs#789 aws/aws-cdk-rfcs#789
v2.223.0
⚠ BREAKING CHANGES
L1 resources are automatically generated from public CloudFormation Resource Schemas. They are built to closely reflect the real state of CloudFormation. Sometimes these updates can contain changes that are incompatible with previous types, but more accurately reflect reality. In this release we have changed:
- aws-dynamodb: AWS::DynamoDB::GlobalTable: GlobalTableSettingsReplicationMode property removed.
- aws-dynamodb: AWS::DynamoDB::GlobalTable: GlobalTableSourceArn property removed.
- aws-dynamodb: AWS::DynamoDB::Table: GlobalTableSettingsReplicationMode property removed.
- aws-events: AWS::Events::EventBusPolicy: Id attribute removed.
Features
- update L1 CloudFormation resource definitions (#35926) (3f4d585)
- ec2: support for Cloud Wan Core Network routes (#35008) (fba027b)
- s3-deployment: support securityGroups in BucketDeploymentProps (#33233) (f2a3166), closes #33229
Bug Fixes
- stepfunctions:
DistributedMapResultWriter correct query language selection (#35834) (75b8ead), closes #35403 - onEvent function to pass all the options to rule resource (#35829) (3d7023d)
Alpha modules (2.223.0-alpha.0)
v2.222.0
⚠ BREAKING CHANGES
- bedrock-agentcore: The signature of
RuntimeAuthorizerConfiguration.usingCognito()has changed to accept IUserPool and IUserPoolClient constructs instead of string parameters, and now supports multiple clients.
Features
- apigateway: add
binaryMediaTypesproperty to SpecRestApi (#35502) (bf10d94), closes #35498 - apigatewayv2:
WebSocketStagesupport accessLogSettings (#34766) (dad112e), closes #21935 - bedrock-agentcore: use IUserPool and IUserPoolClient interfaces instead of string identifiers (#35860) (a38afc9), closes #35854
- core:
IEnvironmentAwareinterface to retrieve a construct's environment (#35817) (8ee5d4b) - elasticloadbalancingv2: create security group settings for NLB by default (under feature flag) (#34675) (ff83cfd), closes #34606 /github.com/aws/aws-cdk/issues/34606#issuecomment-2931313249
- events-targets: support Amazon Data Firehose target using Firehose's
IDeliveryStream(#33798) (a374b6b), closes #33757 #33758 - kinesisfirehose: add built-in data processors to decompress CloudWatch logs and extract messages (#33749) (5dec21e), closes #33691 #20242 /github.com/aws/aws-cdk/issues/33691#issuecomment-2713012245
- lambda: add Java25 runtime for Lambda (#35867) (db71fac)
- lambda: add Python 3.14 runtime for Lambda (#35869) (ebef303)
- memory: add agentcore memory l2 construct (#35757) (6a2e17e)
- msk: support Express brokers (#34741) (0a69e5f), closes #32923
Bug Fixes
- agentcore:
addToRolePolicyfor runtime with imported role destroys and recreates policies on every deployment (#35842) (92525e4), closes #35844 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime-base.ts#L253 - agentcore: custom execution role policy for runtime lacks proper permissions (#35849) (ee94b63), closes #35852 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime-artifact.ts#L65 40aws-cdk/aws-bedrock-agentcore-alpha/agentcore/runtime/runtime.ts#L252-L259 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-codepipeline/lib/pipeline.ts#L693 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-lambda/lib/function.ts#L1468 /github.com/aws/aws-cdk/blob/v2.221.0/packages/aws-cdk-lib/aws-ecs/lib/base/base-service.ts#L1161
- dynamodb: addToResourcePolicy has no effect (#35554) (94d7e34), closes #35062
- ecs: remove empty CfnClusterCapacityProviderAssociations resource (#35783) (c8a131b), closes #35699 #35742
- iam: cannot grant lambda:InvokeFunction on ManagedPolicy or Policy via
grantInvoke()method (#32984) (a07d75a), closes #32980 /github.com/aws/aws-cdk/pull/32984#pullrequestreview-2863553504 - compilation failure in Go (#35871) (5e4f603), closes aws/aws-cdk#35770 #35862
- ec2: remove PassRole policy emitted by cloudwatch vpc flow destination (#35762) (c4b80df), closes #35729
Alpha modules (2.222.0-alpha.0)
Features
Bug Fixes
v2.221.1
Bug Fixes
- compilation failure in Go (#35871) (4379f66), closes aws/aws-cdk#35770 #35862