From 959d4eac03af9f143934116e6fb432c9b91c90ac Mon Sep 17 00:00:00 2001
From: Ashish Dhingra <67916761+ashishdhingra@users.noreply.github.com>
Date: Tue, 10 Sep 2024 17:38:53 -0700
Subject: [PATCH 1/5] chore: Modified bug issue template to add checkbox to
report potential regression.
---
.github/ISSUE_TEMPLATE/bug-report.yml | 8 +++++
.../workflows/issue-regression-labeler.yml | 32 +++++++++++++++++++
2 files changed, 40 insertions(+)
create mode 100644 .github/workflows/issue-regression-labeler.yml
diff --git a/.github/ISSUE_TEMPLATE/bug-report.yml b/.github/ISSUE_TEMPLATE/bug-report.yml
index 94d19fbfdd..946fd2f78a 100644
--- a/.github/ISSUE_TEMPLATE/bug-report.yml
+++ b/.github/ISSUE_TEMPLATE/bug-report.yml
@@ -12,6 +12,14 @@ body:
description: What is the problem? A clear and concise description of the bug.
validations:
required: true
+ - type: checkboxes
+ id: regression
+ attributes:
+ label: Regression Issue
+ description: What is a regression? If it worked in a previous version but doesn't in the latest version, it's considered a regression. In this case, please provide specific version number in the report.
+ options:
+ - label: Select this option if this issue appears to be a regression.
+ required: false
- type: textarea
id: expected
attributes:
diff --git a/.github/workflows/issue-regression-labeler.yml b/.github/workflows/issue-regression-labeler.yml
new file mode 100644
index 0000000000..bd000719d1
--- /dev/null
+++ b/.github/workflows/issue-regression-labeler.yml
@@ -0,0 +1,32 @@
+# Apply potential regression label on issues
+name: issue-regression-label
+on:
+ issues:
+ types: [opened, edited]
+jobs:
+ add-regression-label:
+ runs-on: ubuntu-latest
+ permissions:
+ issues: write
+ steps:
+ - name: Fetch template body
+ id: check_regression
+ uses: actions/github-script@v7
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+ TEMPLATE_BODY: ${{ github.event.issue.body }}
+ with:
+ script: |
+ const regressionPattern = /\[x\] Select this option if this issue appears to be a regression\./i;
+ const template = `${process.env.TEMPLATE_BODY}`
+ const match = regressionPattern.test(template);
+ core.setOutput('is_regression', match);
+ - name: Manage regression label
+ env:
+ GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+ run: |
+ if [ "${{ steps.check_regression.outputs.is_regression }}" == "true" ]; then
+ gh issue edit ${{ github.event.issue.number }} --add-label "potential-regression" -R ${{ github.repository }}
+ else
+ gh issue edit ${{ github.event.issue.number }} --remove-label "potential-regression" -R ${{ github.repository }}
+ fi
From 0e229ae4488118c5025d4e2735d2919026e12018 Mon Sep 17 00:00:00 2001
From: Ashish Dhingra <67916761+ashishdhingra@users.noreply.github.com>
Date: Mon, 23 Sep 2024 13:29:30 -0700
Subject: [PATCH 2/5] chore: added permissions and modified action commit in
issue-regression-labeler.yml
---
.github/workflows/issue-regression-labeler.yml | 3 ++-
1 file changed, 2 insertions(+), 1 deletion(-)
diff --git a/.github/workflows/issue-regression-labeler.yml b/.github/workflows/issue-regression-labeler.yml
index bd000719d1..840a832b70 100644
--- a/.github/workflows/issue-regression-labeler.yml
+++ b/.github/workflows/issue-regression-labeler.yml
@@ -3,6 +3,7 @@ name: issue-regression-label
on:
issues:
types: [opened, edited]
+permissions: read-all
jobs:
add-regression-label:
runs-on: ubuntu-latest
@@ -11,7 +12,7 @@ jobs:
steps:
- name: Fetch template body
id: check_regression
- uses: actions/github-script@v7
+ uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
TEMPLATE_BODY: ${{ github.event.issue.body }}
From 27088b2f90445723ea6f9d98ce2267fc5e6ce107 Mon Sep 17 00:00:00 2001
From: aws-sdk-python-automation A map of tags assigned to a resource. A tag is a string-to-string map of key-value pairs. Either Provided if State is An AWS Chatbot configuration for Amazon Chime. The name of the Microsoft Teams Team. Either Provided if State is A Microsoft Teams team that is authorized with AWS Chatbot. A map of tags assigned to a resource. A tag is a string-to-string map of key-value pairs. Either Provided if State is An AWS Chatbot configuration for Slack. The name of the Slack workspace. Either Provided if State is A Slack workspace. A map of tags assigned to a resource. A tag is a string-to-string map of key-value pairs. Either Provided if State is An AWS Chatbot configuration for Microsoft Teams. Grants a principal permission to use a function. You can apply the policy at the function level, or specify a qualifier to restrict access to a single version or alias. If you use a qualifier, the invoker must use the full Amazon Resource Name (ARN) of that version or alias to invoke the function. Note: Lambda does not support adding policies to version $LATEST. To grant permission to another account, specify the account ID as the This operation adds a statement to a resource-based permissions policy for the function. For more information about function policies, see Using resource-based policies for Lambda. Grants a principal permission to use a function. You can apply the policy at the function level, or specify a qualifier to restrict access to a single version or alias. If you use a qualifier, the invoker must use the full Amazon Resource Name (ARN) of that version or alias to invoke the function. Note: Lambda does not support adding policies to version $LATEST. To grant permission to another account, specify the account ID as the This operation adds a statement to a resource-based permissions policy for the function. For more information about function policies, see Using resource-based policies for Lambda. Creates a Lambda function. To create a function, you need a deployment package and an execution role. The deployment package is a .zip file archive or container image that contains your function code. The execution role grants the function permission to use Amazon Web Servicesservices, such as Amazon CloudWatch Logs for log streaming and X-Ray for request tracing. If the deployment package is a container image, then you set the package type to If the deployment package is a .zip file archive, then you set the package type to When you create a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute or so. During this time, you can't invoke or modify the function. The A function has an unpublished version, and can have published versions and aliases. The unpublished version changes when you update your function's code and configuration. A published version is a snapshot of your function code and configuration that can't be changed. An alias is a named resource that maps to a version, and can be changed to map to a different version. Use the The other parameters let you configure version-specific and function-level settings. You can modify version-specific settings later with UpdateFunctionConfiguration. Function-level settings apply to both the unpublished and published versions of the function, and include tags (TagResource) and per-function concurrency limits (PutFunctionConcurrency). You can use code signing if your deployment package is a .zip file archive. To enable code signing for this function, specify the ARN of a code-signing configuration. When a user attempts to deploy a code package with UpdateFunctionCode, Lambda checks that the code package has a valid signature from a trusted publisher. The code-signing configuration includes set of signing profiles, which define the trusted publishers for this function. If another Amazon Web Services account or an Amazon Web Servicesservice invokes your function, use AddPermission to grant permission by creating a resource-based Identity and Access Management (IAM) policy. You can grant permissions at the function level, on a version, or on an alias. To invoke your function directly, use Invoke. To invoke your function in response to events in other Amazon Web Servicesservices, create an event source mapping (CreateEventSourceMapping), or configure a function trigger in the other service. For more information, see Invoking Lambda functions. Creates a Lambda function. To create a function, you need a deployment package and an execution role. The deployment package is a .zip file archive or container image that contains your function code. The execution role grants the function permission to use Amazon Web Services services, such as Amazon CloudWatch Logs for log streaming and X-Ray for request tracing. If the deployment package is a container image, then you set the package type to If the deployment package is a .zip file archive, then you set the package type to When you create a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute or so. During this time, you can't invoke or modify the function. The A function has an unpublished version, and can have published versions and aliases. The unpublished version changes when you update your function's code and configuration. A published version is a snapshot of your function code and configuration that can't be changed. An alias is a named resource that maps to a version, and can be changed to map to a different version. Use the The other parameters let you configure version-specific and function-level settings. You can modify version-specific settings later with UpdateFunctionConfiguration. Function-level settings apply to both the unpublished and published versions of the function, and include tags (TagResource) and per-function concurrency limits (PutFunctionConcurrency). You can use code signing if your deployment package is a .zip file archive. To enable code signing for this function, specify the ARN of a code-signing configuration. When a user attempts to deploy a code package with UpdateFunctionCode, Lambda checks that the code package has a valid signature from a trusted publisher. The code-signing configuration includes set of signing profiles, which define the trusted publishers for this function. If another Amazon Web Services account or an Amazon Web Services service invokes your function, use AddPermission to grant permission by creating a resource-based Identity and Access Management (IAM) policy. You can grant permissions at the function level, on a version, or on an alias. To invoke your function directly, use Invoke. To invoke your function in response to events in other Amazon Web Services services, create an event source mapping (CreateEventSourceMapping), or configure a function trigger in the other service. For more information, see Invoking Lambda functions. Deletes a Lambda function. To delete a specific function version, use the To delete Lambda event source mappings that invoke a function, use DeleteEventSourceMapping. For Amazon Web Servicesservices and resources that invoke your function directly, delete the trigger in the service where you originally configured it. Deletes a Lambda function. To delete a specific function version, use the To delete Lambda event source mappings that invoke a function, use DeleteEventSourceMapping. For Amazon Web Services services and resources that invoke your function directly, delete the trigger in the service where you originally configured it. Deletes the provisioned concurrency configuration for a function. The option to create and modify full JSON resource-based policies, and to use the PutResourcePolicy, GetResourcePolicy, and DeleteResourcePolicy APIs, won't be available in all Amazon Web Services Regions until September 30, 2024. Deletes a resource-based policy from a function. Retrieves the provisioned concurrency configuration for a function's alias or version. The option to configure public-access settings, and to use the PutPublicAccessBlock and GetPublicAccessBlock APIs, won't be available in all Amazon Web Services Regions until September 30, 2024. Retrieve the public-access settings for a function. The option to create and modify full JSON resource-based policies, and to use the PutResourcePolicy, GetResourcePolicy, and DeleteResourcePolicy APIs, won't be available in all Amazon Web Services Regions until September 30, 2024. Retrieves the resource-based policy attached to a function. Returns a function, event source mapping, or code signing configuration's tags. You can also view funciton tags with GetFunction. Returns a function, event source mapping, or code signing configuration's tags. You can also view function tags with GetFunction. Adds a provisioned concurrency configuration to a function's alias or version. The option to configure public-access settings, and to use the PutPublicAccessBlock and GetPublicAccessBlock APIs, won't be available in all Amazon Web Services Regions until September 30, 2024. Configure your function's public-access settings. To control public access to a Lambda function, you can choose whether to allow the creation of resource-based policies that allow public access to that function. You can also block public access to a function, even if it has an existing resource-based policy that allows it. The option to create and modify full JSON resource-based policies, and to use the PutResourcePolicy, GetResourcePolicy, and DeleteResourcePolicy APIs, won't be available in all Amazon Web Services Regions until September 30, 2024. Adds a resource-based policy to a function. You can use resource-based policies to grant access to other Amazon Web Services accounts, organizations, or services. Resource-based policies apply to a single function, version, or alias. Adding a resource-based policy using this API action replaces any existing policy you've previously created. This means that if you've previously added resource-based permissions to a function using the AddPermission action, those permissions will be overwritten by your new policy. Revokes function-use permission from an Amazon Web Servicesservice or another Amazon Web Services account. You can get the ID of the statement from the output of GetPolicy. Revokes function-use permission from an Amazon Web Services service or another Amazon Web Services account. You can get the ID of the statement from the output of GetPolicy. Modify the version-specific settings of a Lambda function. When you update a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute. During this time, you can't modify the function, but you can still invoke it. The These settings can vary between versions of a function and are locked when you publish a version. You can't modify the configuration of a published version, only the unpublished version. To configure function concurrency, use PutFunctionConcurrency. To grant invoke permissions to an Amazon Web Services account or Amazon Web Servicesservice, use AddPermission. Modify the version-specific settings of a Lambda function. When you update a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute. During this time, you can't modify the function, but you can still invoke it. The These settings can vary between versions of a function and are locked when you publish a version. You can't modify the configuration of a published version, only the unpublished version. To configure function concurrency, use PutFunctionConcurrency. To grant invoke permissions to an Amazon Web Services account or Amazon Web Services service, use AddPermission. The Amazon Web Servicesservice, Amazon Web Services account, IAM user, or IAM role that invokes the function. If you specify a service, use The Amazon Web Services service, Amazon Web Services account, IAM user, or IAM role that invokes the function. If you specify a service, use For Amazon Web Servicesservices, the ARN of the Amazon Web Services resource that invokes the function. For example, an Amazon S3 bucket or Amazon SNS topic. Note that Lambda configures the comparison using the For Amazon Web Services services, the ARN of the Amazon Web Services resource that invokes the function. For example, an Amazon S3 bucket or Amazon SNS topic. Note that Lambda configures the comparison using the For Amazon Web Servicesservice, the ID of the Amazon Web Services account that owns the resource. Use this together with For Amazon Web Services service, the ID of the Amazon Web Services account that owns the resource. Use this together with The Amazon Resource Name (ARN) of the function you want to delete the policy from. You can use either a qualified or an unqualified ARN, but the value you specify must be a complete ARN and wildcard characters are not accepted. Delete the existing policy only if its revision ID matches the string you specify. To find the revision ID of the policy currently attached to your function, use the GetResourcePolicy action. The Amazon Resource Name (ARN) of the function you want to retrieve public-access settings for. The public-access settings configured for the function you specified The Amazon Resource Name (ARN) of the function you want to retrieve the policy for. You can use either a qualified or an unqualified ARN, but the value you specify must be a complete ARN and wildcard characters are not accepted. The resource-based policy attached to the function you specified. The revision ID of the policy. To block the creation of resource-based policies that would grant public access to your function, set To block public access to your function, even if its resource-based policy allows it, set An object that defines the public-access settings for a function. The exception type. Lambda prevented your policy from being created because it would grant public access to your function. If you intended to create a public policy, use the PutPublicAccessBlockConfig API action to configure your function's public-access settings to allow public policies. The Amazon Resource Name (ARN) of the function you want to configure public-access settings for. Public-access settings are applied at the function level, so you can't apply different settings to function versions or aliases. An object defining the public-access settings you want to apply. To block the creation of resource-based policies that would grant public access to your function, set To block public access to your function, even if its resource-based policy allows it, set The default setting for both The public-access settings Lambda applied to your function. The Amazon Resource Name (ARN) of the function you want to add the policy to. You can use either a qualified or an unqualified ARN, but the value you specify must be a complete ARN and wildcard characters are not accepted. The JSON resource-based policy you want to add to your function. To learn more about creating resource-based policies for controlling access to Lambda, see Working with resource-based IAM policies in Lambda in the Lambda Developer Guide. Replace the existing policy only if its revision ID matches the string you specify. To find the revision ID of the policy currently attached to your function, use the GetResourcePolicy action. The policy Lambda added to your function. The revision ID of the policy Lambda added to your function. Attaches a policy to a root, an organizational unit (OU), or an individual account. How the policy affects accounts depends on the type of policy. Refer to the Organizations User Guide for information about each policy type: This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an Amazon Web Services service. Attaches a policy to a root, an organizational unit (OU), or an individual account. How the policy affects accounts depends on the type of policy. Refer to the Organizations User Guide for information about each policy type: This operation can be called only from the organization's management account or by a member account that is a delegated administrator for an Amazon Web Services service. The type of policy to create. You can specify one of the following values: The type of policy to create. You can specify one of the following values: The type of policy that you want information about. You can specify one of the following values: The type of policy that you want information about. You can specify one of the following values: The policy type that you want to disable in this root. You can specify one of the following values: The policy type that you want to disable in this root. You can specify one of the following values: The policy type that you want to enable. You can specify one of the following values: The policy type that you want to enable. You can specify one of the following values: The type of policy that you want to include in the returned list. You must specify one of the following values: The type of policy that you want to include in the returned list. You must specify one of the following values: Specifies the type of policy that you want to include in the response. You must specify one of the following values: Specifies the type of policy that you want to include in the response. You must specify one of the following values: The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have the Examples The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have the Examples Amazon Web Services PCS supports configuration of the following Slurm parameters: Amazon Web Services PCS supports configuration of the following Slurm parameters: For clusters For compute node groups The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have The Amazon Resource Name (ARN) of the IAM instance profile used to pass an IAM role when launching EC2 instances. The role contained in your instance profile must have the Examples Starts a SQL transaction. A transaction can run for a maximum of 24 hours. A transaction is terminated and rolled back automatically after 24 hours. A transaction times out if no calls use its transaction ID in three minutes. If a transaction times out before it's committed, it's rolled back automatically. DDL statements inside a transaction cause an implicit commit. We recommend that you run each DDL statement in a separate Starts a SQL transaction. A transaction can run for a maximum of 24 hours. A transaction is terminated and rolled back automatically after 24 hours. A transaction times out if no calls use its transaction ID in three minutes. If a transaction times out before it's committed, it's rolled back automatically. For Aurora MySQL, DDL statements inside a transaction cause an implicit commit. We recommend that you run each MySQL DDL statement in a separate Runs one or more SQL statements. This operation isn't supported for Aurora PostgreSQL Serverless v2 and provisioned DB clusters, and for Aurora Serverless v1 DB clusters, the operation is deprecated. Use the Runs one or more SQL statements. This operation isn't supported for Aurora Serverless v2 and provisioned DB clusters. For Aurora Serverless v1 DB clusters, the operation is deprecated. Use the Amazon RDS provides an HTTP endpoint to run SQL statements on an Amazon Aurora DB cluster. To run these statements, you use the RDS Data API (Data API). Data API is available with the following types of Aurora databases: Aurora PostgreSQL - Serverless v2, Serverless v1, and provisioned Aurora MySQL - Serverless v1 only For more information about the Data API, see Using RDS Data API in the Amazon Aurora User Guide.ENABLED
or DISABLED
. The resource returns DISABLED
if the organization's AWS Chatbot policy has explicitly denied that configuration. For example, if Amazon Chime is disabled.DISABLED
. Provides context as to why the resource is disabled.ENABLED
or DISABLED
. The resource returns DISABLED
if the organization's AWS Chatbot policy has explicitly denied that configuration. For example, if Amazon Chime is disabled.DISABLED
. Provides context as to why the resource is disabled.ENABLED
or DISABLED
. The resource returns DISABLED
if the organization's AWS Chatbot policy has explicitly denied that configuration. For example, if Amazon Chime is disabled.DISABLED
. Provides context as to why the resource is disabled.ENABLED
or DISABLED
. The resource returns DISABLED
if the organization's AWS Chatbot policy has explicitly denied that configuration. For example, if Amazon Chime is disabled.DISABLED
. Provides context as to why the resource is disabled.ENABLED
or DISABLED
. The resource returns DISABLED
if the organization's AWS Chatbot policy has explicitly denied that configuration. For example, if Amazon Chime is disabled.DISABLED
. Provides context as to why the resource is disabled.Principal
. To grant permission to an organization defined in Organizations, specify the organization ID as the PrincipalOrgID
. For Amazon Web Servicesservices, the principal is a domain-style identifier that the service defines, such as s3.amazonaws.com
or sns.amazonaws.com
. For Amazon Web Servicesservices, you can also specify the ARN of the associated resource as the SourceArn
. If you grant permission to a service principal without specifying the source, other accounts could potentially configure resources in their account to invoke your Lambda function.Principal
. To grant permission to an organization defined in Organizations, specify the organization ID as the PrincipalOrgID
. For Amazon Web Services services, the principal is a domain-style identifier that the service defines, such as s3.amazonaws.com
or sns.amazonaws.com
. For Amazon Web Services services, you can also specify the ARN of the associated resource as the SourceArn
. If you grant permission to a service principal without specifying the source, other accounts could potentially configure resources in their account to invoke your Lambda function.Image
. For a container image, the code property must include the URI of a container image in the Amazon ECR registry. You do not need to specify the handler and runtime properties.Zip
. For a .zip file archive, the code property specifies the location of the .zip file. You must also specify the handler and runtime properties. The code in the deployment package must be compatible with the target instruction set architecture of the function (x86-64
or arm64
). If you do not specify the architecture, then the default value is x86-64
.State
, StateReason
, and StateReasonCode
fields in the response from GetFunctionConfiguration indicate when the function is ready to invoke. For more information, see Lambda function states.Publish
parameter to create version 1
of your function from its initial configuration.Image
. For a container image, the code property must include the URI of a container image in the Amazon ECR registry. You do not need to specify the handler and runtime properties.Zip
. For a .zip file archive, the code property specifies the location of the .zip file. You must also specify the handler and runtime properties. The code in the deployment package must be compatible with the target instruction set architecture of the function (x86-64
or arm64
). If you do not specify the architecture, then the default value is x86-64
.State
, StateReason
, and StateReasonCode
fields in the response from GetFunctionConfiguration indicate when the function is ready to invoke. For more information, see Lambda function states.Publish
parameter to create version 1
of your function from its initial configuration.Qualifier
parameter. Otherwise, all versions and aliases are deleted. This doesn't require the user to have explicit permissions for DeleteAlias.Qualifier
parameter. Otherwise, all versions and aliases are deleted. This doesn't require the user to have explicit permissions for DeleteAlias.LastUpdateStatus
, LastUpdateStatusReason
, and LastUpdateStatusReasonCode
fields in the response from GetFunctionConfiguration indicate when the update is complete and the function is processing events with the new configuration. For more information, see Lambda function states.LastUpdateStatus
, LastUpdateStatusReason
, and LastUpdateStatusReasonCode
fields in the response from GetFunctionConfiguration indicate when the update is complete and the function is processing events with the new configuration. For more information, see Lambda function states.SourceArn
or SourceAccount
to limit who can invoke the function through that service.SourceArn
or SourceAccount
to limit who can invoke the function through that service.StringLike
operator.StringLike
operator.SourceArn
to ensure that the specified account owns the resource. It is possible for an Amazon S3 bucket to be deleted by its owner and recreated by another account.SourceArn
to ensure that the specified account owns the resource. It is possible for an Amazon S3 bucket to be deleted by its owner and recreated by another account.BlockPublicPolicy
to true
. To allow the creation of resource-based policies that would grant public access to your function, set BlockPublicPolicy
to false
.RestrictPublicResource
to true
. To allow public access to a function with a resource-based policy that permits it, set RestrictPublicResource
to false
.BlockPublicPolicy
to true
. To allow the creation of resource-based policies that would grant public access to your function, set BlockPublicPolicy
to false
.RestrictPublicResource
to true
. To allow public access to a function with a resource-based policy that permits it, set RestrictPublicResource
to false
.BlockPublicPolicy
and RestrictPublicResource
is true
.pcs:RegisterComputeNodeGroupInstance
permissions attached to provision instances correctly.pcs:RegisterComputeNodeGroupInstance
permission. The resource identifier of the ARN must start with AWSPCS
or it must have /aws-pcs/
in its path.
"
},
"scalingConfiguration":{"shape":"ScalingConfiguration"},
"instanceConfigs":{
@@ -809,7 +809,7 @@
"customLaunchTemplate":{"shape":"CustomLaunchTemplate"},
"iamInstanceProfileArn":{
"shape":"InstanceProfileArn",
- "documentation":"arn:aws:iam::111122223333:instance-profile/AWSPCS-example-role-1
arn:aws:iam::111122223333:instance-profile/aws-pcs/example-role-2
pcs:RegisterComputeNodeGroupInstance
permissions attached in order to provision instances correctly. The resource identifier of the ARN must start with AWSPCS
. For example, arn:aws:iam:123456789012:instance-profile/AWSPCSMyComputeNodeInstanceProfile
. pcs:RegisterComputeNodeGroupInstance
permission. The resource identifier of the ARN must start with AWSPCS
or it must have /aws-pcs/
in its path.
"
},
"scalingConfiguration":{
"shape":"ScalingConfigurationRequest",
@@ -1643,7 +1643,7 @@
"members":{
"parameterName":{
"shape":"String",
- "documentation":"arn:aws:iam::111122223333:instance-profile/AWSPCS-example-role-1
arn:aws:iam::111122223333:instance-profile/aws-pcs/example-role-2
Prolog
, Epilog
, and SelectTypeParameters
.
"
},
"parameterValue":{
"shape":"String",
@@ -1791,7 +1791,7 @@
},
"iamInstanceProfileArn":{
"shape":"InstanceProfileArn",
- "documentation":"pcs:RegisterComputeNodeGroupInstance
permissions attached to provision instances correctly.pcs:RegisterComputeNodeGroupInstance
permission. The resource identifier of the ARN must start with AWSPCS
or it must have /aws-pcs/
in its path.
"
},
"slurmConfiguration":{
"shape":"UpdateComputeNodeGroupSlurmConfigurationRequest",
diff --git a/botocore/data/rds-data/2018-08-01/service-2.json b/botocore/data/rds-data/2018-08-01/service-2.json
index c5df0342d2..4d05b202a7 100644
--- a/botocore/data/rds-data/2018-08-01/service-2.json
+++ b/botocore/data/rds-data/2018-08-01/service-2.json
@@ -2,9 +2,10 @@
"version":"2.0",
"metadata":{
"apiVersion":"2018-08-01",
+ "auth":["aws.auth#sigv4"],
"endpointPrefix":"rds-data",
- "jsonVersion":"1.1",
"protocol":"rest-json",
+ "protocols":["rest-json"],
"serviceFullName":"AWS RDS DataService",
"serviceId":"RDS Data",
"signatureVersion":"v4",
@@ -62,7 +63,7 @@
{"shape":"StatementTimeoutException"},
{"shape":"InternalServerErrorException"}
],
- "documentation":"arn:aws:iam::111122223333:instance-profile/AWSPCS-example-role-1
arn:aws:iam::111122223333:instance-profile/aws-pcs/example-role-2
ExecuteStatement
call with continueAfterTimeout
enabled.ExecuteStatement
call with continueAfterTimeout
enabled.BatchExecuteStatement
or ExecuteStatement
operation.BatchExecuteStatement
or ExecuteStatement
operation.
Amazon RDS provides an HTTP endpoint to run SQL statements on an Amazon Aurora DB cluster. To run these statements, you use the RDS Data API (Data API).
Data API is available with the following types of Aurora databases:
Aurora PostgreSQL - Serverless v2, provisioned, and Serverless v1
Aurora MySQL - Serverless v2, provisioned, and Serverless v1
For more information about the Data API, see Using RDS Data API in the Amazon Aurora User Guide.
" } diff --git a/botocore/data/sagemaker/2017-07-24/service-2.json b/botocore/data/sagemaker/2017-07-24/service-2.json index 68ef71f069..e63889326a 100644 --- a/botocore/data/sagemaker/2017-07-24/service-2.json +++ b/botocore/data/sagemaker/2017-07-24/service-2.json @@ -8957,6 +8957,10 @@ "shape":"AppSecurityGroupManagement", "documentation":"The entity that creates and manages the required security groups for inter-app communication in VPCOnly
mode. Required when CreateDomain.AppNetworkAccessType
is VPCOnly
and DomainSettings.RStudioServerProDomainSettings.DomainExecutionRoleArn
is provided. If setting up the domain for use with RStudio, this value must be set to Service
.
Indicates whether custom tag propagation is supported for the domain. Defaults to DISABLED
.
The default settings used to create a space.
" @@ -13762,6 +13766,10 @@ "shape":"AppSecurityGroupManagement", "documentation":"The entity that creates and manages the required security groups for inter-app communication in VPCOnly
mode. Required when CreateDomain.AppNetworkAccessType
is VPCOnly
and DomainSettings.RStudioServerProDomainSettings.DomainExecutionRoleArn
is provided.
Indicates whether custom tag propagation is supported for the domain.
" + }, "DefaultSpaceSettings":{ "shape":"DefaultSpaceSettings", "documentation":"The default settings used to create a space.
" @@ -35740,6 +35748,13 @@ "max":50, "min":0 }, + "TagPropagation":{ + "type":"string", + "enum":[ + "ENABLED", + "DISABLED" + ] + }, "TagValue":{ "type":"string", "max":256, @@ -38131,6 +38146,10 @@ "AppNetworkAccessType":{ "shape":"AppNetworkAccessType", "documentation":"Specifies the VPC used for non-EFS traffic.
PublicInternetOnly
- Non-EFS traffic is through a VPC managed by Amazon SageMaker, which allows direct internet access.
VpcOnly
- All Studio traffic is through the specified VPC and subnets.
This configuration can only be modified if there are no apps in the InService
, Pending
, or Deleting
state. The configuration cannot be updated if DomainSettings.RStudioServerProDomainSettings.DomainExecutionRoleArn
is already set or DomainSettings.RStudioServerProDomainSettings.DomainExecutionRoleArn
is provided as part of the same request.
Indicates whether custom tag propagation is supported for the domain. Defaults to DISABLED
.