chore(release): 2.145.0 #30487

See [CHANGELOG](https://github.com/aws/aws-cdk/blob/merge-back/2.144.0/CHANGELOG.md)

Automated changes by [create-pull-request](https://github.com/peter-evans/create-pull-request) GitHub action

### Issue # (if applicable) Closes #8827. ### Reason for this change Customers could not override the authorizer defined in the default method configuration if they want to set the authorization type to None. ### Description of changes If the customer set the authorization type to None while creating a new method, we will not use the authorizer value defined in the default configuration and instead we will set it to undefined. ### Description of how you validated changes added unit, and integration test cases. ### Checklist - [X] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

A small typo fix. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Minor typo fixed ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) N/A ### Reason for this change Missing Config Resource Type. ### Description of changes I added all resource types that have been added since PR #24424 (since March 2023). I have investigated the updates for added Config resource types from the [What's New with AWS?](https://aws.amazon.com/new/?nc1=h_ls&whats-new-content-all.sort-by=item.additionalFields.postDateTime&whats-new-content-all.sort-order=desc&awsf.whats-new-categories=*all&whats-new-content-all.q=AWS%2BConfig%2Bnow%2Bsupports%2Bnew%2Bresource%2Btypes&whats-new-content-all.q_operator=AND&awsm.page-whats-new-content-all=2) * [Posted On: Mar 8, 2023](https://aws.amazon.com/about-aws/whats-new/2023/03/aws-config-18-new-resource-types/) * [Posted On: Apr 3, 2023](https://aws.amazon.com/about-aws/whats-new/2023/04/aws-config-23-new-resource-types/) * [Posted On: May 1, 2023](https://aws.amazon.com/about-aws/whats-new/2023/05/aws-config-new-resource-types/) * [Posted On: Jun 20, 2023](https://aws.amazon.com/about-aws/whats-new/2023/06/aws-config-new-resource-types/) * [Posted On: Jul 6, 2023](https://aws.amazon.com/about-aws/whats-new/2023/07/aws-config-16-new-resource-types/) * [Posted On: Aug 2, 2023](https://aws.amazon.com/about-aws/whats-new/2023/08/aws-config-supports-19-new-resource-types/) * [Posted On: Oct 25, 2023](https://aws.amazon.com/about-aws/whats-new/2023/10/aws-config-supports-19-resource-types/) * [Posted On: Jan 12, 2024](https://aws.amazon.com/about-aws/whats-new/2024/01/aws-config-supports-22-new-resource-types/) I am separating the commits by update date. ### Description of how you validated changes Omit tests sins it's just adding ENUMs ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) Closes #30422 ### Reason for this change Missing Property in the Subscription class. ### Description of changes Add destination property to the Subscription class. ### Description of how you validated changes Add unit tests and integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…iguration` (#30420) ### Issue # (if applicable) Closes #30403. ### Reason for this change `chatbot.SlackChannelConfiguration` does not support for configuring `userRoleRequired` prop. ### Description of changes Add `userRoleRequired` to `SlackChannelConfigurationProps` ### Description of how you validated changes Add both unit and integ tests ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…trigger (#29127) ### Issue # (if applicable) Closes #29124 Related PR: #29128 Perhaps if one merges, the other will cause a conflict. ### Reason for this change We would be good to trigger pipelines by GitPushFilter with branches and file paths. - CFn docs - https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codepipeline-pipeline-gitpushfilter.html - https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codepipeline-pipeline-gitbranchfiltercriteria.html - https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-codepipeline-pipeline-gitfilepathfiltercriteria.html ### Description of changes Add props: - branchesExcludes - branchesIncludes - filePathsExcludes - filePathsIncludes ### Description of how you validated changes Both unit and integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…e with imported `delegatedZone` (#30440) ### Issue # (if applicable) Closes #28581. ### Reason for this change An imported `delegatedZone` will not have info about the Name Servers. When it is passed to `CrossAccountZoneDelegationRecord`, the handler will see `undefined` when trying to retrieve the Name Servers info on `delegatedZone`, then throw exception during deployment. This change throws the exception at build time for a faster feedback loop. ### Description of changes `CrossAccountZoneDelegationRecord` throws exception if `delegatedZone.hostedZoneNameServers` is undefined. ### Description of how you validated changes Add unit test to cover the case of passing an imported HostedZone to `CrossAccountZoneDelegationRecord` ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Reason for this change The contribution guide recommend the active node LTS: https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md#getting-started ### Description of changes Update node 18 to 20 in devcontainer and gitpod and also the os version to bookworm ### Description of how you validated changes opened devcontainer and gitpod, checkd the node version and run command `npx lerna run build --scope=aws-cdk-lib --scope=@aws-cdk-testing/framework-integ --skip-nx-cache` ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- refs: - #25381 - #25426 *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) Closes #29617. ### Reason for this change Implementation of reserved capacity CodeBuild projects ### Description of changes * Add Fleet Construct * Add `EnvironmentType` enum * Refactor existing type strings to use the new enum * Validate that Windows 2022 build images can only be used in fleet projects Changes merged from #29616: * Added missing build images * Updated JSDoc comments to indicate AL2023 based images, see [docs](https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-available.html) * It might be a good idea to deprecate and rename `AMAZON_LINUX_2_STANDARD_3_0` to `AMAZON_LINUX_2023_STANDARD_3_0`, despite how the images are named. I'll leave it up to the maintainers * Added `{@link}` tags where missing ### Description of how you validated changes Unit and integ tests The images were retrieved using the [codebuild:ListCuratedEnvironmentImages](https://docs.aws.amazon.com/codebuild/latest/APIReference/API_ListCuratedEnvironmentImages.html) API command, and comparing it to the CDK. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…seEncryption method (#30417) Removed the single quotes around the error message string to allow proper interpolation of the ${encryptionType} variable. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

#30448) Update ADOT Lambda Layer ARNs for recent release aws-observability/aws-otel-lambda#922 includes the PR changes - #30263 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Updates the L1 CloudFormation resource definitions with the latest changes from `@aws-cdk/aws-service-spec` **L1 CloudFormation resource definition changes:** ``` ├[~] service aws-autoscaling │ └ resources │ └[~] resource AWS::AutoScaling::AutoScalingGroup │ └ properties │ └ NotificationConfiguration: (documentation changed) ├[~] service aws-ec2 │ └ resources │ └[~] resource AWS::EC2::CustomerGateway │ └ properties │ └[+] BgpAsnExtended: number (immutable) ├[~] service aws-eks │ └ resources │ └[~] resource AWS::EKS::Addon │ ├ properties │ │ └[+] PodIdentityAssociations: Array<PodIdentityAssociation> │ └ types │ └[+] type PodIdentityAssociation │ ├ documentation: A pod identity to associate with an add-on. │ │ name: PodIdentityAssociation │ └ properties │ ├ServiceAccount: string (required) │ └RoleArn: string (required) ├[~] service aws-mediaconnect │ └ resources │ └[~] resource AWS::MediaConnect::Flow │ └ types │ └[~] type Source │ └ properties │ ├ MaxLatency: - integer (default=2000) │ │ + integer │ └ MinLatency: - integer (default=2000) │ + integer ├[~] service aws-mediapackagev2 │ └ resources │ └[~] resource AWS::MediaPackageV2::OriginEndpoint │ ├ properties │ │ └[+] DashManifests: Array<DashManifestConfiguration> │ └ types │ ├[+] type DashManifestConfiguration │ │ ├ documentation: <p>Retrieve the DASH manifest configuration.</p> │ │ │ name: DashManifestConfiguration │ │ └ properties │ │ ├ManifestName: string (required) │ │ ├ManifestWindowSeconds: integer │ │ ├FilterConfiguration: FilterConfiguration │ │ ├MinUpdatePeriodSeconds: integer │ │ ├MinBufferTimeSeconds: integer │ │ ├SuggestedPresentationDelaySeconds: integer │ │ ├SegmentTemplateFormat: string │ │ ├PeriodTriggers: Array<string> │ │ ├ScteDash: ScteDash │ │ ├DrmSignaling: string │ │ └UtcTiming: DashUtcTiming │ ├[+] type DashUtcTiming │ │ ├ documentation: <p>Determines the type of UTC timing included in the DASH Media Presentation Description (MPD).</p> │ │ │ name: DashUtcTiming │ │ └ properties │ │ ├TimingMode: string │ │ └TimingSource: string │ └[+] type ScteDash │ ├ documentation: <p>The SCTE configuration.</p> │ │ name: ScteDash │ └ properties │ └AdMarkerDash: string ├[~] service aws-securityhub │ └ resources │ ├[+] resource AWS::SecurityHub::ConfigurationPolicy │ │ ├ name: ConfigurationPolicy │ │ │ cloudFormationType: AWS::SecurityHub::ConfigurationPolicy │ │ │ documentation: The AWS::SecurityHub::ConfigurationPolicy resource represents the Central Configuration Policy in your account. │ │ │ tagInformation: {"tagPropertyName":"Tags","variant":"map"} │ │ ├ properties │ │ │ ├Name: string (required) │ │ │ ├Description: string │ │ │ ├ConfigurationPolicy: Policy (required) │ │ │ └Tags: Map<string, string> │ │ ├ attributes │ │ │ ├Arn: string │ │ │ ├Id: string │ │ │ ├CreatedAt: string │ │ │ ├UpdatedAt: string │ │ │ └ServiceEnabled: boolean │ │ └ types │ │ ├type Policy │ │ │├ documentation: An object that defines how Security Hub is configured. │ │ ││ name: Policy │ │ │└ properties │ │ │ └SecurityHub: SecurityHubPolicy │ │ ├type SecurityHubPolicy │ │ │├ documentation: An object that defines how AWS Security Hub is configured. │ │ ││ name: SecurityHubPolicy │ │ │└ properties │ │ │ ├EnabledStandardIdentifiers: Array<string> │ │ │ ├ServiceEnabled: boolean │ │ │ └SecurityControlsConfiguration: SecurityControlsConfiguration │ │ ├type SecurityControlsConfiguration │ │ │├ documentation: An object that defines which security controls are enabled in an AWS Security Hub configuration policy. │ │ ││ name: SecurityControlsConfiguration │ │ │└ properties │ │ │ ├DisabledSecurityControlIdentifiers: Array<string> │ │ │ ├EnabledSecurityControlIdentifiers: Array<string> │ │ │ └SecurityControlCustomParameters: Array<SecurityControlCustomParameter> │ │ ├type SecurityControlCustomParameter │ │ │├ documentation: An object of security control and control parameter value that are included in a configuration policy. │ │ ││ name: SecurityControlCustomParameter │ │ │└ properties │ │ │ ├Parameters: Map<string, ParameterConfiguration> │ │ │ └SecurityControlId: string │ │ ├type ParameterConfiguration │ │ │├ documentation: An object that provides the current value of a security control parameter and identifies whether it has been customized. │ │ ││ name: ParameterConfiguration │ │ │└ properties │ │ │ ├ValueType: string (required) │ │ │ └Value: ParameterValue │ │ └type ParameterValue │ │ ├ documentation: An object that includes the data type of a security control parameter and its current value. │ │ │ name: ParameterValue │ │ └ properties │ │ ├Boolean: boolean │ │ ├Double: number │ │ ├Enum: string │ │ ├EnumList: Array<string> │ │ ├Integer: integer │ │ ├IntegerList: Array<integer> │ │ ├String: string │ │ └StringList: Array<string> │ ├[+] resource AWS::SecurityHub::FindingAggregator │ │ ├ name: FindingAggregator │ │ │ cloudFormationType: AWS::SecurityHub::FindingAggregator │ │ │ documentation: The AWS::SecurityHub::FindingAggregator resource represents the AWS Security Hub Finding Aggregator in your account. One finding aggregator resource is created for each account in non opt-in region in which you configure region linking mode. │ │ ├ properties │ │ │ ├RegionLinkingMode: string (required) │ │ │ └Regions: Array<string> │ │ └ attributes │ │ ├FindingAggregatorArn: string │ │ └FindingAggregationRegion: string │ ├[+] resource AWS::SecurityHub::OrganizationConfiguration │ │ ├ name: OrganizationConfiguration │ │ │ cloudFormationType: AWS::SecurityHub::OrganizationConfiguration │ │ │ documentation: The AWS::SecurityHub::OrganizationConfiguration resource represents the configuration of your organization in Security Hub. Only the Security Hub administrator account can create Organization Configuration resource in each region and can opt-in to Central Configuration only in the aggregation region of FindingAggregator. │ │ ├ properties │ │ │ ├AutoEnable: boolean (required) │ │ │ ├AutoEnableStandards: string │ │ │ └ConfigurationType: string │ │ └ attributes │ │ ├OrganizationConfigurationIdentifier: string │ │ ├Status: string │ │ ├StatusMessage: string │ │ └MemberAccountLimitReached: boolean │ └[+] resource AWS::SecurityHub::PolicyAssociation │ ├ name: PolicyAssociation │ │ cloudFormationType: AWS::SecurityHub::PolicyAssociation │ │ documentation: The AWS::SecurityHub::PolicyAssociation resource represents the AWS Security Hub Central Configuration Policy associations in your Target. Only the AWS Security Hub delegated administrator can create the resouce from the home region. │ ├ properties │ │ ├ConfigurationPolicyId: string (required) │ │ ├TargetId: string (required, immutable) │ │ └TargetType: string (required, immutable) │ └ attributes │ ├AssociationStatus: string │ ├AssociationType: string │ ├AssociationStatusMessage: string │ ├UpdatedAt: string │ └AssociationIdentifier: string └[~] service aws-securitylake └ resources ├[~] resource AWS::SecurityLake::Subscriber │ ├ properties │ │ └[-] Sources: Array<Source> (required) │ └ types │ ├[-] type AwsLogSource │ │ ├ documentation: Adds a natively supported AWS service as an Amazon Security Lake source. Enables source types for member accounts in required AWS Regions, based on the parameters you specify. You can choose any source type in any Region for either accounts that are part of a trusted organization or standalone accounts. Once you add an AWS service as a source, Security Lake starts collecting logs and events from it. │ │ │ name: AwsLogSource │ │ └ properties │ │ ├SourceName: string │ │ └SourceVersion: string │ ├[-] type CustomLogSource │ │ ├ documentation: Third-party custom log source that meets the requirements to be added to Amazon Security Lake . For more details, see [Custom log source](https://docs.aws.amazon.com//security-lake/latest/userguide/custom-sources.html#iam-roles-custom-sources) in the *Amazon Security Lake User Guide* . │ │ │ name: CustomLogSource │ │ └ properties │ │ ├SourceName: string │ │ └SourceVersion: string │ └[-] type Source │ ├ documentation: Sources are logs and events generated from a single system that match a specific event class in the Open Cybersecurity Schema Framework (OCSF) schema. Amazon Security Lake can collect logs and events from a variety of sources, including natively supported AWS services and third-party custom sources. │ │ name: Source │ └ properties │ ├AwsLogSource: AwsLogSource │ └CustomLogSource: CustomLogSource └[+] resource AWS::SecurityLake::SubscriberNotification ├ name: SubscriberNotification │ cloudFormationType: AWS::SecurityLake::SubscriberNotification │ documentation: Resource Type definition for AWS::SecurityLake::SubscriberNotification ├ properties │ └SubscriberArn: string (required, immutable) └ attributes └SubscriberEndpoint: string ```

…map (#30460) ### Issue # (if applicable) N/A ### Reason for this change The README.md currently points to a roadmap that is no longer in use. ### Description of changes Removing old roadmap reference and pointing to the proper roadmap location. ### Checklist - [ x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…ce event properties by default (#30418) Closes #30121, #29949 ### Reason for this change PR #29648 introduced a new resource property `logApiResponseData`. This resource property is `true` by default which forces an update for `AwsCustomResource`. For users without `onUpdate` configured an empty data object is returned if no SDK call is configured. This can cause an attribute error if the user is depending on a data from a specific SDK call. ### Description of changes Made `logApiResponseData` undefined by default which will not trigger `onUpdate`. To maintain backwards compatibility with the original PR introducing `logApiResponseData` as true by default, I've also introduced a feature flag that will allow users to keep the current behavior so they aren't now forced into another `onUpdate` event. ### Description of how you validated changes Updated unit tests where `logApiResponseData` was added as a resource property. Added new unit test to verify that `logApiResponseData` could be added to the event. Updated unit tests that test `_render()` to ensure that the default case will result in an empty object. Updated integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

…aths for trigger" (#30462) Reverts #29127

### Issue # (if applicable) - Similar to #29040, this PR adds 1.30 support. - Update all existing integ tests for `V1_29` and make sure they deploy with `V1_30`. DependOn: - [x] cdklabs/awscdk-asset-kubectl#838 - [x] cdklabs/awscdk-asset-kubectl#860 Closes #30443 ### Reason for this change ### Description of changes ### Description of how you validated changes ```ts export class EksClusterLatestVersion extends Stack { constructor(scope: Construct, id: string, props: StackProps) { super(scope, id, props); const vpc = new ec2.Vpc(this, 'Vpc', { natGateways: 1 }); const mastersRole = new iam.Role(this, 'Role', { assumedBy: new iam.AccountRootPrincipal(), }); // create eks.Cluster of the latest k8s version new eks.Cluster(this, 'Cluster', { vpc, mastersRole, version: eks.KubernetesVersion.V1_30, kubectlLayer: new KubectlV30Layer(this, 'KubectlLayer'), defaultCapacity: 1, }); } } ``` $ kubectl get no NAME STATUS ROLES AGE VERSION ip-172-31-3-166.ec2.internal Ready <none> 5m38s v1.30.0-eks-036c24b ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

… jsiirc (#30461) ### Issue # (if applicable) Closes #28348 ### Reason for this change When we promote apigatewayv2 from experimental to stable module, we did not add `jsiirc.json` file, thus no documentation is created and the namespace for import is incorrect. ### Description of changes We cannot fix the namespace now as this is stable modules and there're customers using it. Fixing this would be a breaking change to users who use apigatewayv2 in `aws-cdk-lib`. ### Description of how you validated changes N/A ### Checklist - [ ] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) Closes #<issue number here>. ### Reason for this change This is a minor refactor for preventing an Event Rule to have at most 5 associated targets defined during a synth. This is the main limit set by EventBridge https://docs.aws.amazon.com/eventbridge/latest/userguide/eb-quota.html#eb-limits ### Description of changes This is a very simple change in `aws-events` module to check if the `targets` array length of an `Event` is greater than 5. If it is then it throws an Error during build time. ### Description of how you validated changes Added a unit test by in `rule.test.ts` by verifying an Error is being thrown when a Rule has more than 5 associated targets. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Looks like we are comparing `LogFormat` to the `LoggingFormat` enum. This is not technically a problem for us because `LogFormat` is a string. We deprecated it and created `LoggingFormat` to enforce the enum. This conditional works because all the enums collapse to strings, but it is best if we sync up the properties with their correct enums. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

### Issue # (if applicable) Closes #30172. ### Reason for this change AWS Config supports for proactive evaluation mode but L2 construct cannot configure it. ### Description of changes - Define `EvaluationMode` class - Add `evaluationModes` prop to `RuleProps` ```ts new config.ManagedRule(stack, 'ManagedRule', { identifier: config.ManagedRuleIdentifiers.API_GW_XRAY_ENABLED, evaluationModes: config.EvaluationMode.DETECTIVE_AND_PROACTIVE, // add }); ``` ### Description of how you validated changes Add both unit and integ tests. ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

… is more strict than it should be (#30237) 1. fix the event source validation 2. move the validation from renderEntries() to validateEntries() 3. add unit tests ### Issue # (if applicable) Closes #30191 ### Reason for this change ### Description of changes ### Description of how you validated changes ### Checklist - [x] My code adheres to the [CONTRIBUTING GUIDE](https://github.com/aws/aws-cdk/blob/main/CONTRIBUTING.md) and [DESIGN GUIDELINES](https://github.com/aws/aws-cdk/blob/main/docs/DESIGN_GUIDELINES.md) ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(release): 2.145.0 #30487

chore(release): 2.145.0 #30487

Commits on May 31, 2024

Commits on Jun 1, 2024

Commits on Jun 3, 2024

Commits on Jun 4, 2024

Commits on Jun 5, 2024

Commits on Jun 6, 2024

Commits on Jun 7, 2024